$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: WtctOJ42S35MokwLrS2bXqvb4Q+qCeQ21m1u4sskY3A= Subject key identifier: 85:9F:3D:FF:EC:0E:49:4F:1D:D6:E8:5B:53:42:CF:3E:07:64:7B:5D Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 01EA Signing time: Thu 19 Jun 2025 01:59:27 +0000 Manifest this update: Thu 19 Jun 2025 01:59:26 +0000 Manifest next update: Thu 26 Jun 2025 01:59:26 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: QR5ut7IO9Od+D/Y+1xaPFl+6CHfsmYak0oK5kdUa0Pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Jun 19 01:59:26 2025 GMT Not After : Jun 26 01:59:26 2025 GMT Subject: CN=68536eff-911c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:01:cb:7b:db:8e:14:14:4a:75:c8:94:6e:db: f3:19:93:42:0a:a9:94:5f:45:a4:76:b3:59:48:93: 99:cb:aa:2a:68:ce:3e:40:ed:0b:6a:8d:63:8e:76: 77:50:e6:f8:fe:ab:11:a2:e7:cd:21:c0:ff:26:1e: 72:06:b2:63:aa:8f:1d:26:7b:3f:2c:07:4f:e8:56: cf:a4:29:c3:95:9c:6e:9c:5a:0c:da:29:b4:13:34: c8:6c:64:6c:0a:c0:8d:10:20:8d:b3:21:bf:a8:98: 96:0c:10:0f:22:9e:81:39:25:23:e3:d7:6a:18:6e: 39:78:52:b3:73:a7:61:65:68:38:8d:39:72:cd:96: c7:ed:e1:d4:83:d7:e0:96:c9:e8:a4:c0:26:7a:c3: 12:dc:e5:a3:cb:d4:ca:86:fb:72:50:3b:8c:95:04: 01:fa:b9:bf:b4:22:8f:8d:4d:08:45:78:8d:ce:73: 6e:98:ec:bc:77:8b:f5:ce:75:0e:9f:f3:2e:b3:52: 1e:6f:cd:3b:0b:94:4b:82:67:26:29:d7:b8:47:21: ea:d9:c8:df:b1:a8:d4:03:04:5c:02:21:7a:59:ed: a0:e7:ad:6f:11:d5:76:0a:db:3f:4a:b7:83:eb:c3: 27:dc:fb:40:87:52:38:2a:5d:f7:3d:f5:99:07:75: f3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9F:3D:FF:EC:0E:49:4F:1D:D6:E8:5B:53:42:CF:3E:07:64:7B:5D X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:36:47:40:49:d2:ea:3d:0f:bb:25:1d:f1:e7:29:a2:65:2e: 55:b3:5f:19:9f:47:4e:83:09:27:54:13:94:a8:6f:32:90:30: 12:a7:ac:34:a3:65:32:87:39:17:5c:e2:ec:96:77:46:39:42: 72:bd:de:2f:ee:d5:b1:85:70:a2:e2:80:03:c7:cd:48:c3:b1: 3b:81:f2:76:a8:71:11:9f:9a:d5:8f:9e:1c:e2:b0:68:24:ad: 62:b8:ed:9d:f0:f3:2c:0d:34:8e:ca:b4:f6:c9:eb:2d:98:44: 65:7a:0b:ac:81:4d:16:ac:f2:20:ed:b5:00:70:10:2a:8d:15: 24:d6:d0:35:94:80:46:d1:88:be:e0:0c:84:ff:5b:36:12:20: a8:c9:04:44:b1:6a:95:f8:31:94:fe:20:81:94:2c:96:9c:75: 6f:bf:58:8d:4a:52:04:7e:9f:26:ad:29:58:35:8d:37:fc:55: 69:e7:e8:7e:39:1e:b2:fa:b7:31:8c:4c:1b:49:75:db:4b:f1: 41:55:49:8f:3c:b6:33:0c:ac:a7:a5:8b:09:c6:ca:10:f2:b0: 33:b4:ea:86:6e:e7:0b:52:8f:f1:53:3e:bb:75:cd:55:1a:86: 58:93:cd:38:ff:1d:eb:62:20:6c:e6:63:9b:fd:30:32:f2:7d: 00:2c:87:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUwNjE5MDE1OTI2WhcNMjUwNjI2MDE1OTI2WjAYMRYwFAYD VQQDEw02ODUzNmVmZi05MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAHLe9uOFBRKdciUbtvzGZNCCqmUX0WkdrNZSJOZy6oqaM4+QO0Lao1jjnZ3 UOb4/qsRoufNIcD/Jh5yBrJjqo8dJns/LAdP6FbPpCnDlZxunFoM2im0EzTIbGRs CsCNECCNsyG/qJiWDBAPIp6BOSUj49dqGG45eFKzc6dhZWg4jTlyzZbH7eHUg9fg lsnopMAmesMS3OWjy9TKhvtyUDuMlQQB+rm/tCKPjU0IRXiNznNumOy8d4v1znUO n/Mus1Ieb807C5RLgmcmKde4RyHq2cjfsajUAwRcAiF6We2g561vEdV2Cts/SreD 68Mn3PtAh1I4Kl33PfWZB3XzLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWfPf/s DklPHdboW1NCzz4HZHtdMB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjNkdASdLqPQ+7JR3x5ymiZS5Vs18Zn0dOgwknVBOUqG8ykDASp6w0 o2UyhzkXXOLslndGOUJyvd4v7tWxhXCi4oADx81Iw7E7gfJ2qHERn5rVj54c4rBo JK1iuO2d8PMsDTSOyrT2yestmERlegusgU0WrPIg7bUAcBAqjRUk1tA1lIBG0Yi+ 4AyE/1s2EiCoyQREsWqV+DGU/iCBlCyWnHVvv1iNSlIEfp8mrSlYNY03/FVp5+h+ OR6y+rcxjEwbSXXbS/FBVUmPPLYzDKynpYsJxsoQ8rAztOqGbucLUo/xUz67dc1V GoZYk804/x3rYiBs5mOb/TAy8n0ALIdu -----END CERTIFICATE-----Generated at Thu Jun 19 21:52:52 2025 by rpki-client