$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: qzjnEB5PuBOVdzpDZdmdfbsI5lxZsIYH/RuB3TapgqA= Subject key identifier: 17:BF:2B:F7:B4:75:BF:F7:92:FE:35:06:97:11:19:20:9B:DE:B9:75 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 0176 Signing time: Sun 15 Jun 2025 03:00:48 +0000 Manifest this update: Sun 15 Jun 2025 03:00:48 +0000 Manifest next update: Sun 22 Jun 2025 03:00:48 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: /M7ktsXiFPzV/NaiYttxkHgWIC6iQbZ4FbaJK2mTjzQ=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: JgXDvvb08AKpWtQFVgWoJSRrsvnpi7N5Npk5xtbR4bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Jun 15 03:00:48 2025 GMT Not After : Jun 22 03:00:48 2025 GMT Subject: CN=684e3760-a883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9c:b0:ba:c4:13:e9:bf:3d:17:8e:a5:70:26: 66:ab:fc:64:57:4d:83:3c:56:e5:6a:db:9d:bf:b0: e7:10:44:9a:ab:50:f6:c2:a5:d8:d8:01:ca:7c:0f: 90:c1:18:cf:74:07:94:48:cf:5c:de:bd:b7:f8:3d: ff:7a:01:0b:27:7e:05:4e:12:03:22:57:e2:46:92: d8:c0:ab:72:42:90:6e:9f:6d:10:3d:90:1b:ad:f7: 3f:35:69:63:a5:7e:d1:ec:29:90:b2:c6:74:3b:91: 85:91:75:7a:46:95:9e:08:42:9b:64:4d:96:37:9d: b9:23:7b:74:a1:d3:43:58:55:f0:5f:a1:fb:5b:65: 52:10:80:ef:f3:03:49:0a:ae:18:0b:05:1e:6c:ba: ca:25:ae:54:a9:75:ee:95:6f:53:ec:cc:44:84:c2: 97:7b:60:c2:c5:8f:b9:5d:f6:e5:68:8e:d3:cd:28: fa:bc:50:ff:fa:dd:2e:2c:63:59:11:15:d0:01:a4: 60:75:3a:be:12:e8:86:86:45:36:60:6a:4c:bf:62: dd:79:25:7f:18:45:c5:29:6b:2e:9b:ac:30:0f:19: 04:d8:ee:28:3a:5b:66:c6:73:b1:1b:f6:cb:9a:46: 65:5e:a5:2b:72:0f:b1:5d:fe:b8:ca:10:97:a9:d7: 5e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BF:2B:F7:B4:75:BF:F7:92:FE:35:06:97:11:19:20:9B:DE:B9:75 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b3:59:95:f2:c1:d2:70:54:52:3d:93:4d:ef:5a:94:fb:b3: b1:ee:f9:59:ee:a1:c7:e5:9c:73:10:15:b7:1c:4f:c4:e9:58: 4d:99:e7:1f:7f:0c:98:b7:68:42:cf:a2:31:69:7d:3c:5c:cd: f9:ed:ab:f5:c2:58:ce:78:08:b5:50:d0:93:02:3d:d8:8e:a5: 7b:dd:aa:c4:ff:1f:85:6b:37:dc:8d:e3:9e:e0:31:be:80:4b: 8b:50:8f:75:08:7f:5f:bd:07:de:8d:9b:33:1e:bc:6a:60:a2: e2:80:80:8f:b5:dc:06:26:aa:0a:59:67:18:26:32:5e:07:98: 6d:20:dd:a2:ca:3b:67:52:55:c8:b7:d0:95:2b:5c:09:42:23: 83:47:bb:c2:4e:db:7f:f7:98:7e:15:9f:d0:11:ae:6a:27:d9: 31:ec:a6:8a:cc:df:4f:09:17:0c:69:0b:bd:b1:8d:96:ce:e0: b3:f1:59:66:a4:b6:19:11:22:86:de:8b:0f:7f:35:70:83:7b: e4:3e:17:63:ec:48:f4:d7:49:f3:44:30:3f:3e:09:99:c9:78: c5:01:5a:d8:1c:71:21:92:79:81:b6:33:42:c0:0e:20:0d:2b: 8d:ad:e1:8e:aa:16:63:e1:18:2f:cd:c7:a9:ad:95:b7:50:99: 2b:69:e4:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwNjE1MDMwMDQ4WhcNMjUwNjIyMDMwMDQ4WjAYMRYwFAYD VQQDEw02ODRlMzc2MC1hODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZywusQT6b89F46lcCZmq/xkV02DPFblatudv7DnEESaq1D2wqXY2AHKfA+Q wRjPdAeUSM9c3r23+D3/egELJ34FThIDIlfiRpLYwKtyQpBun20QPZAbrfc/NWlj pX7R7CmQssZ0O5GFkXV6RpWeCEKbZE2WN525I3t0odNDWFXwX6H7W2VSEIDv8wNJ Cq4YCwUebLrKJa5UqXXulW9T7MxEhMKXe2DCxY+5XfblaI7TzSj6vFD/+t0uLGNZ ERXQAaRgdTq+EuiGhkU2YGpMv2LdeSV/GEXFKWsum6wwDxkE2O4oOltmxnOxG/bL mkZlXqUrcg+xXf64yhCXqdde8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBe/K/e0 db/3kv41BpcRGSCb3rl1MB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7s1mV8sHScFRSPZNN71qU+7Ox7vlZ7qHH5ZxzEBW3HE/E6VhNmecf fwyYt2hCz6IxaX08XM357av1wljOeAi1UNCTAj3YjqV73arE/x+FazfcjeOe4DG+ gEuLUI91CH9fvQfejZszHrxqYKLigICPtdwGJqoKWWcYJjJeB5htIN2iyjtnUlXI t9CVK1wJQiODR7vCTtt/95h+FZ/QEa5qJ9kx7KaKzN9PCRcMaQu9sY2WzuCz8Vlm pLYZESKG3osPfzVwg3vkPhdj7Ej010nzRDA/PgmZyXjFAVrYHHEhknmBtjNCwA4g DSuNreGOqhZj4RgvzceprZW3UJkraeTm -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:07 2025 by rpki-client