$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: Kkb69K6jPE8eRTobf/38/MdFW50uatXOeKJ98fdtXOM= Subject key identifier: CF:0E:92:91:2A:48:EC:E7:90:DD:9D:96:59:41:A0:06:B2:53:71:29 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0C4D Signing time: Wed 18 Jun 2025 18:19:14 +0000 Manifest this update: Wed 18 Jun 2025 18:19:13 +0000 Manifest next update: Wed 25 Jun 2025 18:19:13 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: ypcEq5bM8zzRdvv4NyPtzBY1rzimjJYq/ybdbDMbjhk=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Jun 18 18:19:13 2025 GMT Not After : Jun 25 18:19:13 2025 GMT Subject: CN=68530321-0826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:89:14:57:20:7e:c6:b5:0e:cd:20:4e:fa: 10:11:b0:e0:45:64:28:f3:88:f8:60:59:9d:83:05: e3:4d:b3:bb:38:6f:b0:9c:d6:bc:6b:02:1f:09:15: 84:1e:52:d9:bf:a0:c1:2f:a3:22:32:b7:ab:14:b6: 24:ae:dd:71:f9:5b:48:22:54:38:0b:29:ee:7b:52: 21:b5:0b:64:93:3d:c6:d3:34:a0:39:bd:ca:54:2f: 28:d5:d4:88:64:4d:1b:d7:f3:f1:7c:5f:e3:4c:2d: 8c:1e:e4:a6:bc:a2:13:e5:d5:52:27:67:22:5c:a9: a7:dc:ad:70:2e:5c:b3:28:ff:93:7d:e7:16:0b:cc: a6:b5:dd:ad:aa:83:83:da:05:2a:a5:ae:6e:bf:bc: 27:fd:78:4c:ee:a8:04:ef:4a:03:4a:e6:a7:49:2c: fc:8b:58:ff:03:82:63:64:54:1e:fa:09:5d:44:e0: a4:a1:cc:5a:e1:1e:90:23:12:86:87:19:c0:09:21: 66:b1:cf:22:98:57:34:e8:4a:d3:5b:b8:f0:3c:a1: f8:87:e9:50:fe:91:29:f7:13:5a:65:e3:7b:b0:09: 17:78:a2:8d:e0:17:1a:e9:08:34:54:d2:a9:26:72: 01:3d:df:e7:9a:e1:ca:b5:7f:6a:91:10:68:c7:67: d1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:0E:92:91:2A:48:EC:E7:90:DD:9D:96:59:41:A0:06:B2:53:71:29 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:35:a2:0d:16:95:5b:7d:47:b3:0e:c5:3c:4c:fe:b8:cf:de: d5:a2:f8:3b:76:45:f8:50:77:77:76:25:a8:b6:30:4e:c4:86: 2c:fa:05:95:41:1a:1a:4d:12:d6:d6:b9:22:df:3d:1c:a6:18: 03:cc:d9:34:1a:bd:d2:32:aa:6d:24:82:61:e6:a7:bb:72:92: e2:df:54:89:d5:56:2a:e7:9b:d9:df:3f:bc:30:59:37:46:88: 6b:eb:2a:05:63:9b:15:52:d7:0e:ca:37:99:be:5f:11:10:e2: 05:c7:ab:24:e2:f7:b4:b6:7d:63:25:a0:a6:4e:53:ef:83:a0: 58:f4:5a:71:f5:d9:ad:fd:09:e7:61:c9:a4:9e:fc:58:c1:2f: b0:7e:e4:f3:6c:36:bc:f7:ab:09:1b:63:06:14:ab:7f:c7:8e: aa:0a:09:1d:1b:19:74:cc:6b:87:e8:ac:ef:79:ec:12:6e:a2: 4c:75:db:d2:2f:99:b0:7a:45:ea:46:ba:a5:1f:da:1f:f5:6a: 39:bf:28:36:e2:a7:37:f4:31:be:6e:26:c1:06:c3:41:9d:c8: 6c:61:b0:a1:e2:a0:42:e3:2b:50:db:30:b0:ab:09:59:32:75: 73:56:c9:5a:3b:5f:6e:c4:a7:41:82:b7:86:a3:39:59:18:08: 04:5b:f7:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUwNjE4MTgxOTEzWhcNMjUwNjI1MTgxOTEzWjAYMRYwFAYD VQQDEw02ODUzMDMyMS0wODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1waJFFcgfsa1Ds0gTvoQEbDgRWQo84j4YFmdgwXjTbO7OG+wnNa8awIfCRWE HlLZv6DBL6MiMrerFLYkrt1x+VtIIlQ4Cynue1IhtQtkkz3G0zSgOb3KVC8o1dSI ZE0b1/PxfF/jTC2MHuSmvKIT5dVSJ2ciXKmn3K1wLlyzKP+TfecWC8ymtd2tqoOD 2gUqpa5uv7wn/XhM7qgE70oDSuanSSz8i1j/A4JjZFQe+gldROCkocxa4R6QIxKG hxnACSFmsc8imFc06ErTW7jwPKH4h+lQ/pEp9xNaZeN7sAkXeKKN4Bca6Qg0VNKp JnIBPd/nmuHKtX9qkRBox2fRgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8OkpEq SOznkN2dlllBoAayU3EpMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALNaINFpVbfUezDsU8TP64z97Vovg7dkX4UHd3diWotjBOxIYs+gWV QRoaTRLW1rki3z0cphgDzNk0Gr3SMqptJIJh5qe7cpLi31SJ1VYq55vZ3z+8MFk3 Rohr6yoFY5sVUtcOyjeZvl8REOIFx6sk4ve0tn1jJaCmTlPvg6BY9Fpx9dmt/Qnn YcmknvxYwS+wfuTzbDa896sJG2MGFKt/x46qCgkdGxl0zGuH6KzveewSbqJMddvS L5mwekXqRrqlH9of9Wo5vyg24qc39DG+bibBBsNBnchsYbCh4qBC4ytQ2zCwqwlZ MnVzVslaO19uxKdBgreGozlZGAgEW/dd -----END CERTIFICATE-----Generated at Fri Jun 20 07:16:47 2025 by rpki-client