$ rpki-client -vvf rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft File: _LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft (raw, json) Hash identifier: kwvWs0tXmV+D5cMblu8o5cfLY9Lnvoo2SmUPJhghfBI= Subject key identifier: 84:D4:B5:1E:78:44:62:B1:25:00:18:0A:03:A3:60:C8:35:3F:A3:27 Authority key identifier: FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC Certificate issuer: /CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Certificate serial: 14F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft Manifest number: 14E9 Signing time: Fri 20 Jun 2025 16:50:43 +0000 Manifest this update: Fri 20 Jun 2025 16:50:43 +0000 Manifest next update: Fri 27 Jun 2025 16:50:43 +0000 Files and hashes: 1: _LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl (hash: xT2p92Dw3Q+0CiTYVNlR6XUL00bFzBo1CmtX/MxPGTs=) 2: 1BFCE1E0554F11E8A5C82D57C4F9AE02.roa (hash: ZrttKe2gUPdi3/NYLhVsPF2RlqfjZO1IxCJ4ZBHDkLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5362 (0x14f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D599B, serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Validity Not Before: Jun 20 16:50:43 2025 GMT Not After : Jun 27 16:50:43 2025 GMT Subject: CN=68559163-4566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f8:c1:27:89:0f:34:97:1a:a0:e9:db:af:e2: b9:6c:f0:c4:bd:96:51:6a:74:7e:f5:7d:94:9f:96: 4a:e1:16:88:31:f1:61:a4:56:bb:01:9c:f6:3f:1d: 81:89:4c:47:a9:61:c1:cc:16:3d:38:c5:4c:cd:fa: 9c:ed:ac:c8:36:5f:4b:9c:e4:97:15:07:11:93:69: eb:ff:1b:7b:4e:72:2c:2e:2a:52:46:8b:99:d5:ff: e3:ca:b3:c8:55:06:55:c5:16:8e:1e:f4:3f:dc:87: 94:97:63:e1:d4:cb:e2:c1:26:f5:b7:fb:12:9c:ff: 05:85:bd:e1:84:d7:ba:db:cd:a8:51:d2:9a:bd:c6: de:15:49:8e:e6:c2:5b:dc:b0:39:f7:86:56:20:4d: 13:47:a6:67:7b:7a:94:66:b8:a5:63:18:b9:9f:e5: 2a:56:3b:96:8c:9a:ef:3c:44:19:1f:4c:77:fb:fb: 75:60:aa:3e:b6:f9:ee:3e:75:04:0e:af:0d:4c:0d: db:9e:38:1b:5c:ac:d3:ae:a6:d8:ab:b8:3b:28:9f: 76:07:f7:83:83:2e:fc:22:7e:c5:82:94:d7:f3:ba: 6d:63:c8:9f:28:42:41:15:87:6b:04:ee:24:b6:6a: 8c:39:f5:a1:6d:46:d0:8d:5e:54:fd:a2:3e:25:cf: fb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D4:B5:1E:78:44:62:B1:25:00:18:0A:03:A3:60:C8:35:3F:A3:27 X509v3 Authority Key Identifier: keyid:FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:03:62:7d:5f:fd:56:9a:24:07:20:0a:fd:28:bd:2a:50:b3: d2:b7:b4:93:9d:b8:cc:52:2e:98:6a:32:9b:95:97:e4:49:5e: d8:b7:72:2a:4f:da:96:a6:c7:e9:ec:04:ef:0a:6a:a0:d5:8d: 06:9b:f1:58:06:de:01:85:bb:b3:09:76:7d:8c:e9:cb:46:04: b1:88:4f:2f:c5:6b:a0:32:62:97:66:a1:94:c0:4f:e1:99:fa: b7:10:16:49:d1:18:5c:58:c7:d2:91:32:2a:10:d3:9f:5a:39: 71:71:ef:70:fe:4c:6a:bb:c6:4a:eb:d7:5d:10:4f:40:a1:0c: d8:87:22:68:f8:0b:12:52:e7:21:fb:24:e9:92:77:4f:c2:7d: 8c:a0:fd:c6:eb:4b:81:0d:12:48:e8:2a:4c:4d:5a:3c:3a:dc: 24:97:ec:5b:a5:53:d1:4b:f8:c1:d8:57:dd:48:84:ba:7f:b8: 8b:09:1e:b7:53:1e:c6:a0:6d:da:7f:92:49:d4:ec:05:6c:34: 5c:60:4a:73:81:00:c8:79:18:0a:d3:cb:f5:b8:ba:1f:4c:80: 31:62:fe:ae:14:64:b7:fd:e7:98:a2:93:ef:2b:a6:b9:a8:d4: 2e:cd:b6:36:47:90:60:6c:4c:fd:a9:e8:3e:60:49:3a:51:7d: ea:69:09:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU5OUIxMTAvBgNVBAUTKEZDQjIzQzdCRjVGMTkzNTYyNzVCQUNGNTdDREI1NUJG RDYwRTA0QUMwHhcNMjUwNjIwMTY1MDQzWhcNMjUwNjI3MTY1MDQzWjAYMRYwFAYD VQQDEw02ODU1OTE2My00NTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/jBJ4kPNJcaoOnbr+K5bPDEvZZRanR+9X2Un5ZK4RaIMfFhpFa7AZz2Px2B iUxHqWHBzBY9OMVMzfqc7azINl9LnOSXFQcRk2nr/xt7TnIsLipSRouZ1f/jyrPI VQZVxRaOHvQ/3IeUl2Ph1MviwSb1t/sSnP8Fhb3hhNe6282oUdKavcbeFUmO5sJb 3LA594ZWIE0TR6Zne3qUZrilYxi5n+UqVjuWjJrvPEQZH0x3+/t1YKo+tvnuPnUE Dq8NTA3bnjgbXKzTrqbYq7g7KJ92B/eDgy78In7FgpTX87ptY8ifKEJBFYdrBO4k tmqMOfWhbUbQjV5U/aI+Jc/7ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITUtR54 RGKxJQAYCgOjYMg1P6MnMB8GA1UdIwQYMBaAFPyyPHv18ZNWJ1us9XzbVb/WDgSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTk5Qi9ENzIyNEZGMjU0 QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsxWW5XNnoxZk50VnY5WU9C S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19MSThlX1h4azFZblc2ejFmTnRWdjlZT0JLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTk5Qi9ENzIyNEZGMjU0QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsx WW5XNnoxZk50VnY5WU9CS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3A2J9X/1WmiQHIAr9KL0qULPSt7STnbjMUi6YajKblZfkSV7Yt3Iq T9qWpsfp7ATvCmqg1Y0Gm/FYBt4BhbuzCXZ9jOnLRgSxiE8vxWugMmKXZqGUwE/h mfq3EBZJ0RhcWMfSkTIqENOfWjlxce9w/kxqu8ZK69ddEE9AoQzYhyJo+AsSUuch +yTpkndPwn2MoP3G60uBDRJI6CpMTVo8Otwkl+xbpVPRS/jB2FfdSIS6f7iLCR63 Ux7GoG3af5JJ1OwFbDRcYEpzgQDIeRgK08v1uLofTIAxYv6uFGS3/eeYopPvK6a5 qNQuzbY2R5BgbEz9qeg+YEk6UX3qaQkS -----END CERTIFICATE-----Generated at Sat Jun 21 23:42:38 2025 by rpki-client