$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: 6t7TctpixPrWaLxt/Rj5KFHjuEcJqpbYOQY8wtyVNSI= Subject key identifier: EB:67:71:79:E5:95:19:10:99:8C:34:53:CF:88:B1:C1:3F:62:D4:CD Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 065E Signing time: Mon 16 Jun 2025 22:09:30 +0000 Manifest this update: Mon 16 Jun 2025 22:09:29 +0000 Manifest next update: Mon 23 Jun 2025 22:09:29 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: Lh1agOmiAjGyCsnbjmRyDphW+jRuuqcvhaPxskb/qM0=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: oKHV5TBmq4GqrFfr2VIYxjHb/BXfTV1fp7LSb6WOO9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Jun 16 22:09:29 2025 GMT Not After : Jun 23 22:09:29 2025 GMT Subject: CN=6850961a-e107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ec:96:e2:32:2d:5c:c9:73:b4:28:e0:06:3e: 9a:55:2a:1a:b7:66:22:58:55:32:62:68:33:c1:41: ef:c3:17:aa:01:d2:55:fd:35:df:03:19:81:36:80: 29:15:dc:a6:d4:44:fa:1e:30:45:0e:f2:ee:76:dd: c3:32:de:d8:93:fe:d3:6a:b2:b4:aa:d3:51:ee:be: 45:95:72:a6:2e:ac:bd:55:c6:11:26:da:d9:e4:f1: a0:5b:5d:83:83:cc:8b:f3:7a:86:bf:d2:c5:9c:e8: d1:fa:c7:4f:1b:78:f7:10:0b:ca:aa:04:6a:91:44: bb:25:6a:a5:f5:ec:55:1d:25:f2:d4:99:bc:1a:da: ab:d8:34:6c:59:43:6a:65:1c:83:2f:0f:40:9d:b4: c1:9e:60:61:dc:ec:bc:92:16:ee:b1:dc:44:4a:f7: b6:c5:ce:9a:ba:83:73:78:45:f3:74:d1:99:31:c0: b2:60:5a:b8:c9:9d:e8:28:59:a7:2b:7f:b7:4b:f5: c1:ee:3c:c5:a6:16:c9:f0:34:fb:e9:17:88:69:eb: d5:76:6d:83:11:72:93:01:e9:ae:b6:98:74:b3:0f: 97:49:fb:6b:01:1b:73:cf:a2:73:c8:85:9b:eb:62: 41:a3:8b:29:aa:18:09:e3:97:37:c8:07:a6:da:36: 00:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:67:71:79:E5:95:19:10:99:8C:34:53:CF:88:B1:C1:3F:62:D4:CD X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:7f:a5:0a:49:32:02:5b:f1:03:4a:3d:ff:52:f3:de:3c:f7: 73:9b:04:8a:2e:13:39:09:45:74:d2:1b:e2:10:f7:ce:f2:c4: 63:26:9e:68:f0:24:30:8a:b0:3f:7c:6c:67:f1:28:8e:89:52: 45:ff:44:73:3f:07:92:90:8e:20:56:13:d8:3f:11:44:21:cb: 7d:51:b6:3b:69:66:8d:2c:43:c9:5d:eb:f0:2d:07:dd:34:94: a8:ba:cb:7f:10:16:79:6c:e7:27:d8:94:54:c6:65:25:b2:fd: 83:57:e8:a4:89:d4:6a:94:8c:ef:a7:8e:b7:10:ff:34:6c:d5: 13:da:f1:c1:0a:82:3d:a3:90:52:9b:c1:cb:56:18:47:05:6b: c5:60:bf:f2:b5:3f:18:22:ae:b6:3f:07:36:03:9f:96:ad:25: 40:ec:f3:cd:5f:ea:0a:e5:62:d3:7e:50:00:a3:e3:52:37:f8: 2f:8e:4d:fc:1d:96:99:03:60:9e:f2:14:f6:27:24:f6:72:a5: 5d:d2:3d:37:c1:0d:85:91:9f:e7:e6:38:00:aa:a0:d3:12:8b: 02:aa:f0:03:77:1e:c7:8f:11:9c:cc:78:d4:93:ee:d3:52:52: 38:93:8b:7e:ee:47:8a:ea:98:82:ea:24:28:f0:a6:76:45:fa: 8c:a6:bc:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwNjE2MjIwOTI5WhcNMjUwNjIzMjIwOTI5WjAYMRYwFAYD VQQDEw02ODUwOTYxYS1lMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OyW4jItXMlztCjgBj6aVSoat2YiWFUyYmgzwUHvwxeqAdJV/TXfAxmBNoAp Fdym1ET6HjBFDvLudt3DMt7Yk/7TarK0qtNR7r5FlXKmLqy9VcYRJtrZ5PGgW12D g8yL83qGv9LFnOjR+sdPG3j3EAvKqgRqkUS7JWql9exVHSXy1Jm8Gtqr2DRsWUNq ZRyDLw9AnbTBnmBh3Oy8khbusdxESve2xc6auoNzeEXzdNGZMcCyYFq4yZ3oKFmn K3+3S/XB7jzFphbJ8DT76ReIaevVdm2DEXKTAemutph0sw+XSftrARtzz6JzyIWb 62JBo4spqhgJ45c3yAem2jYAVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtncXnl lRkQmYw0U8+IscE/YtTNMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwf6UKSTICW/EDSj3/UvPePPdzmwSKLhM5CUV00hviEPfO8sRjJp5o 8CQwirA/fGxn8SiOiVJF/0RzPweSkI4gVhPYPxFEIct9UbY7aWaNLEPJXevwLQfd NJSoust/EBZ5bOcn2JRUxmUlsv2DV+ikidRqlIzvp463EP80bNUT2vHBCoI9o5BS m8HLVhhHBWvFYL/ytT8YIq62Pwc2A5+WrSVA7PPNX+oK5WLTflAAo+NSN/gvjk38 HZaZA2Ce8hT2JyT2cqVd0j03wQ2FkZ/n5jgAqqDTEosCqvADdx7HjxGczHjUk+7T UlI4k4t+7keK6piC6iQo8KZ2RfqMprxj -----END CERTIFICATE-----Generated at Tue Jun 17 19:42:22 2025 by rpki-client