$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: 2pg5Sb8A92rrg3zEBgqNBNspjLo9kamoGJ3d9+TCoaU= Subject key identifier: 11:EC:D1:50:B0:8A:1F:A2:B6:F4:ED:8D:AC:3D:0E:69:00:06:D0:FB Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 3550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 34EB Signing time: Mon 16 Jun 2025 14:54:48 +0000 Manifest this update: Mon 16 Jun 2025 14:54:48 +0000 Manifest next update: Mon 23 Jun 2025 14:54:48 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: x3rav+PzXYG1Xv2Mc0MZId9XqC3Dtvl5nJSD2IFYknI=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13648 (0x3550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Jun 16 14:54:48 2025 GMT Not After : Jun 23 14:54:48 2025 GMT Subject: CN=68503038-f622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:3b:21:cd:d1:35:ea:0b:ec:39:d1:e6:1e: 5f:3a:61:2c:ba:03:d3:24:7f:12:52:7d:22:4a:4b: 5b:a5:8b:ec:b0:da:40:06:55:f2:16:c6:32:4d:ff: 19:75:3c:14:85:be:2e:04:cd:15:a3:bc:bd:97:af: 33:2e:c3:d3:62:74:ba:64:d9:97:7a:66:69:f7:82: ec:15:94:a2:6d:43:41:58:04:bc:d6:a1:60:82:42: 3a:a1:3e:fc:9e:45:14:3d:14:61:dd:4e:41:cf:50: 73:8c:d9:b1:14:93:51:11:36:ad:b7:e5:e7:98:ed: 8b:a3:c5:59:d7:03:ff:cf:62:16:df:6e:92:c5:b5: 7a:fb:1b:02:a9:89:0e:b9:f9:ec:3a:79:be:51:10: eb:2b:da:59:9a:72:12:50:e1:1d:52:3a:8d:0d:c0: 55:21:c5:3a:52:94:fd:d7:2b:bc:d5:28:9c:0c:be: bc:06:0e:42:75:94:7b:ab:7b:dc:c6:ef:c5:25:52: 1d:82:52:ea:5f:f0:3d:d7:43:e7:e0:ff:6d:5d:22: 56:1d:7a:7c:45:4d:f5:98:67:62:89:81:61:f1:fd: 9f:cb:92:b4:22:14:55:c6:c8:a8:47:b1:2c:e3:c8: dc:1b:92:ce:f4:09:01:95:7e:81:5e:5c:94:6f:4a: a4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EC:D1:50:B0:8A:1F:A2:B6:F4:ED:8D:AC:3D:0E:69:00:06:D0:FB X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:40:e7:84:74:01:79:c3:b7:fe:25:94:69:8d:29:a1:27:24: 6d:5d:4c:c9:2d:05:0e:5c:d8:ca:c7:e9:58:f2:f0:26:de:c2: e8:64:2b:33:24:6e:a6:49:ec:90:74:3f:f4:38:86:f8:07:7a: 23:45:6a:e2:e4:67:72:0b:a3:db:99:8b:a7:fa:d4:cc:65:f5: de:52:e7:fd:04:3a:e8:20:38:9b:62:af:e9:02:dc:1c:9e:02: 8c:1b:bc:7d:4d:63:68:3d:5b:fa:de:d3:8e:f8:4e:ad:f4:17: f1:45:77:c5:80:fd:c8:88:cc:8a:ca:4e:b3:9e:a2:d7:ef:40: a9:22:6f:85:f6:d9:50:3b:41:ce:67:b3:a0:7b:bf:a0:a5:4e: 52:38:72:50:f4:38:c8:7b:0e:22:62:18:aa:ce:7b:ec:68:e6: e8:71:54:69:8f:fc:bc:87:84:4a:a7:84:f3:76:6a:44:83:0d: a4:f0:22:37:65:36:34:24:5c:1f:db:98:40:66:73:bd:48:d2: 59:a8:60:93:6a:c8:7e:7c:35:8f:19:b0:ec:22:fd:84:a9:b6: 97:2f:be:28:82:04:08:ea:7d:7a:9d:e8:63:f2:04:2f:8a:3f: 68:20:79:db:18:38:a9:6d:62:b6:9c:71:be:60:d7:8d:3a:f4: 66:a4:61:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUwNjE2MTQ1NDQ4WhcNMjUwNjIzMTQ1NDQ4WjAYMRYwFAYD VQQDEw02ODUwMzAzOC1mNjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuj47Ic3RNeoL7DnR5h5fOmEsugPTJH8SUn0iSktbpYvssNpABlXyFsYyTf8Z dTwUhb4uBM0Vo7y9l68zLsPTYnS6ZNmXemZp94LsFZSibUNBWAS81qFggkI6oT78 nkUUPRRh3U5Bz1BzjNmxFJNRETatt+XnmO2Lo8VZ1wP/z2IW326SxbV6+xsCqYkO ufnsOnm+URDrK9pZmnISUOEdUjqNDcBVIcU6UpT91yu81SicDL68Bg5CdZR7q3vc xu/FJVIdglLqX/A910Pn4P9tXSJWHXp8RU31mGdiiYFh8f2fy5K0IhRVxsioR7Es 48jcG5LO9AkBlX6BXlyUb0qklQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHs0VCw ih+itvTtjaw9DmkABtD7MB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABQOeEdAF5w7f+JZRpjSmhJyRtXUzJLQUOXNjKx+lY8vAm3sLoZCsz JG6mSeyQdD/0OIb4B3ojRWri5GdyC6PbmYun+tTMZfXeUuf9BDroIDibYq/pAtwc ngKMG7x9TWNoPVv63tOO+E6t9BfxRXfFgP3IiMyKyk6znqLX70CpIm+F9tlQO0HO Z7Oge7+gpU5SOHJQ9DjIew4iYhiqznvsaObocVRpj/y8h4RKp4TzdmpEgw2k8CI3 ZTY0JFwf25hAZnO9SNJZqGCTash+fDWPGbDsIv2EqbaXL74oggQI6n16nehj8gQv ij9oIHnbGDipbWK2nHG+YNeNOvRmpGED -----END CERTIFICATE-----Generated at Tue Jun 17 18:41:10 2025 by rpki-client