$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: Uxj8GJ8E1js+IESwttRGqevwMxyuj2RYVYjZIhsk3Kk= Subject key identifier: F8:73:FC:F1:BA:3D:5C:52:7F:F3:DA:AF:7E:08:54:7E:31:44:5F:BB Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 0699 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 068D Signing time: Thu 12 Jun 2025 21:55:28 +0000 Manifest this update: Thu 12 Jun 2025 21:55:27 +0000 Manifest next update: Thu 19 Jun 2025 21:55:27 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: dwVt0JddyKDSPEN2Ku0db0Z0driUhmO2CTYEhYcQguc=) 2: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: GbZWi9q6UX7D+oMHHFTd4plXypkHkfSoO+ds1DieM3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:55:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Jun 12 21:55:27 2025 GMT Not After : Jun 19 21:55:27 2025 GMT Subject: CN=684b4cd0-df4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f8:a5:69:7f:98:7a:af:82:ab:72:9a:eb:7a: e2:50:c8:b5:50:fa:2d:2a:1f:d3:f2:74:0f:75:1a: 36:4f:79:23:39:44:11:40:67:c4:75:08:86:27:80: 45:1e:5c:5b:95:80:a7:67:67:e6:6e:8f:5f:23:06: 45:fa:8e:3e:3d:65:b8:77:b5:16:f2:c1:d1:94:84: fc:5c:f7:af:d7:6d:2a:45:31:02:39:da:f0:13:d2: db:fa:db:2f:90:55:13:26:7d:82:17:15:cb:99:a7: ed:11:88:49:43:62:d7:87:e1:62:83:24:9c:7e:ec: e6:25:ec:02:82:dd:15:8c:dc:e9:a4:7c:4e:6b:bd: 31:ac:9c:d1:2f:d5:e2:7f:a8:37:fb:55:ec:0e:5b: cb:54:b0:e0:e1:7a:20:38:2e:bc:fd:05:93:78:98: 5f:49:4a:50:79:bb:9b:d7:62:ec:f6:a2:24:84:c8: 45:56:df:e5:9a:e8:ac:8c:24:c2:c7:1d:da:d1:07: f4:be:be:ed:20:14:f2:b2:f5:76:67:09:c7:bc:6b: 86:22:90:bc:43:ec:2c:73:7e:6b:b9:45:2a:13:18: 22:ca:9d:76:13:a1:d2:ec:8b:16:73:f0:d2:33:7b: 2a:47:ca:93:41:f6:fb:d4:43:7c:c2:72:3e:b7:7a: 21:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:73:FC:F1:BA:3D:5C:52:7F:F3:DA:AF:7E:08:54:7E:31:44:5F:BB X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:a7:a9:76:05:92:79:57:47:5e:8e:91:6e:8e:eb:bd:c5:7d: 34:89:1c:72:0d:a3:01:5f:38:4c:60:d1:d8:ee:6b:d0:5e:4d: fd:fb:38:c4:5c:91:8b:8f:20:1e:92:cb:a5:db:49:ae:4e:09: 89:22:46:bf:7c:06:fa:71:4e:00:d8:9c:71:11:d0:c5:dc:b1: c2:87:4e:cf:84:79:a2:9d:21:f5:1b:ab:5e:50:c7:33:8a:c5: 45:54:a3:ff:ac:d8:3b:53:2a:22:c4:b7:b4:02:75:a5:0d:c5: 96:28:eb:55:fb:d4:4d:9f:88:6f:0e:ab:ec:2d:c0:ce:8c:10: 38:84:0e:16:64:69:23:72:2c:a2:57:7c:5d:a7:53:f8:7d:13: 03:3c:a9:c0:ff:e2:89:a7:44:5d:3c:cf:ca:88:37:fa:55:3f: f1:d4:dd:93:7a:2d:b6:be:81:bd:eb:21:50:cf:75:cd:66:a4: f3:5a:fd:ff:16:fa:55:f1:ca:a8:c9:0d:19:f0:4f:e6:5f:d4: 2f:f8:72:18:98:e2:ca:aa:99:9a:8c:ae:51:5c:a5:23:ef:66: d7:92:0b:4b:62:a7:17:00:37:06:ba:f8:53:c1:59:7d:f5:48: bb:dd:09:fb:8d:85:15:b8:2a:37:3c:4c:c7:12:8d:da:9d:b2: d4:53:df:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwNjEyMjE1NTI3WhcNMjUwNjE5MjE1NTI3WjAYMRYwFAYD VQQDEw02ODRiNGNkMC1kZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPilaX+Yeq+Cq3Ka63riUMi1UPotKh/T8nQPdRo2T3kjOUQRQGfEdQiGJ4BF HlxblYCnZ2fmbo9fIwZF+o4+PWW4d7UW8sHRlIT8XPev120qRTECOdrwE9Lb+tsv kFUTJn2CFxXLmaftEYhJQ2LXh+FigyScfuzmJewCgt0VjNzppHxOa70xrJzRL9Xi f6g3+1XsDlvLVLDg4XogOC68/QWTeJhfSUpQebub12Ls9qIkhMhFVt/lmuisjCTC xx3a0Qf0vr7tIBTysvV2ZwnHvGuGIpC8Q+wsc35ruUUqExgiyp12E6HS7IsWc/DS M3sqR8qTQfb71EN8wnI+t3ohUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhz/PG6 PVxSf/Par34IVH4xRF+7MB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/p6l2BZJ5V0dejpFujuu9xX00iRxyDaMBXzhMYNHY7mvQXk39+zjE XJGLjyAeksul20muTgmJIka/fAb6cU4A2JxxEdDF3LHCh07PhHminSH1G6teUMcz isVFVKP/rNg7UyoixLe0AnWlDcWWKOtV+9RNn4hvDqvsLcDOjBA4hA4WZGkjciyi V3xdp1P4fRMDPKnA/+KJp0RdPM/KiDf6VT/x1N2Tei22voG96yFQz3XNZqTzWv3/ FvpV8cqoyQ0Z8E/mX9Qv+HIYmOLKqpmajK5RXKUj72bXkgtLYqcXADcGuvhTwVl9 9Ui73Qn7jYUVuCo3PEzHEo3anbLUU98l -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:39 2025 by rpki-client