$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: RCeX+8BqFDcpzJcnFygQOZdnwQowLizExmKtLtfOX7E= Subject key identifier: F0:42:E7:3B:E0:D7:D4:74:24:4F:4C:2E:AF:4C:AF:A5:25:5F:20:64 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0E4A Signing time: Wed 18 Jun 2025 17:48:56 +0000 Manifest this update: Wed 18 Jun 2025 17:48:55 +0000 Manifest next update: Wed 25 Jun 2025 17:48:55 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: cpCbmArBU8yZUBmzbIovdgRKA7Y2L1dmoT8Tp04QqJ0=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: vEfRiQNE3h/B834WLq9GOeXPVajCjfh3DLWpODG+4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Jun 18 17:48:55 2025 GMT Not After : Jun 25 17:48:55 2025 GMT Subject: CN=6852fc07-858a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ab:d9:41:0b:5f:08:38:67:1e:77:47:6d:53: 0b:a1:e0:28:6d:80:fd:37:88:a9:8e:5f:47:32:5c: b5:63:37:a7:45:69:4b:9b:da:1b:0b:9f:31:59:29: 91:91:6a:6b:1a:2a:0e:ac:b0:a5:97:35:73:d9:c9: 0e:31:90:5c:db:89:7e:66:15:0d:c4:07:d8:90:35: 4e:eb:5f:0b:cb:2b:b3:30:32:25:7f:c4:ba:1f:f8: b6:3c:4a:3f:2e:4f:01:48:33:e5:82:46:e4:ef:e1: e7:d1:ec:aa:9c:0c:9a:3b:89:0e:c2:16:5e:38:6a: 2a:d9:1b:91:7f:42:8f:d3:d3:f5:62:93:ef:56:ac: 92:9b:98:2b:30:e6:cd:1d:2f:53:03:ab:af:f2:f8: 01:6e:33:d2:f9:57:96:dc:c5:54:71:16:4a:26:52: 27:a1:e0:eb:ef:47:61:7f:7b:07:d3:bf:a9:f3:24: 5b:45:25:21:d0:08:48:5b:3b:31:78:4b:c8:83:78: 86:1e:38:1c:22:af:9b:4a:24:6b:aa:be:4d:2d:0d: 8b:98:1b:91:66:95:b8:57:cd:48:93:d9:63:60:33: 69:ea:0d:2d:3e:f1:ee:30:26:c5:91:39:0b:65:53: 40:79:fa:d0:14:4f:7a:2c:cd:d7:2e:d4:df:0a:91: f4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:42:E7:3B:E0:D7:D4:74:24:4F:4C:2E:AF:4C:AF:A5:25:5F:20:64 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:d7:df:6f:d8:1b:10:bf:dd:73:c1:6a:99:fd:b3:cd:84:54: 76:4c:9f:83:2a:13:18:58:b1:77:26:af:33:0f:8f:b8:4c:a2: c3:5e:07:fe:53:f0:e3:1f:d5:aa:f6:24:06:b4:2a:3c:56:d4: 02:68:9e:2a:84:ec:83:32:aa:ad:b7:a5:03:4e:30:84:f7:4e: a3:bc:97:e4:95:2c:7e:3b:d8:4a:a9:91:ef:de:e3:67:f7:45: de:c2:27:88:94:7c:17:9a:e7:f0:f0:fe:a1:1f:68:40:a9:21: e9:e9:a7:a1:e7:b1:fc:63:fe:35:fc:8c:34:a2:a1:5e:b3:23: 26:f5:82:82:0e:ce:ea:14:05:f1:57:e8:c0:4b:25:07:de:c5: 0d:89:40:e7:29:29:24:54:f8:0d:7e:a7:07:5b:4a:7f:2e:1c: 81:59:a1:ee:eb:5e:e3:95:2b:a3:5c:44:8c:21:7c:a7:ed:f3: 28:1e:e6:df:12:e2:ee:35:a6:fc:43:c8:c4:e2:30:91:79:6b: f3:2d:c6:9b:2c:18:32:30:f2:0c:a3:cb:3b:a6:6f:28:08:25: f3:49:9c:0b:fd:2c:83:a0:03:66:6a:44:ce:21:cf:ff:77:a3: df:5f:5d:e4:c1:16:71:d0:8f:97:d2:30:6e:c2:b1:e0:a5:c7: fa:4f:83:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzJDQzExMC8GA1UEBRMoREI3OEQ5RjkzNThFNTY3RDMwNkVFM0JEMUVBQzc0OEU5 NjA2QkY4RjAeFw0yNTA2MTgxNzQ4NTVaFw0yNTA2MjUxNzQ4NTVaMBgxFjAUBgNV BAMTDTY4NTJmYzA3LTg1OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbq9lBC18IOGced0dtUwuh4ChtgP03iKmOX0cyXLVjN6dFaUub2hsLnzFZKZGR amsaKg6ssKWXNXPZyQ4xkFzbiX5mFQ3EB9iQNU7rXwvLK7MwMiV/xLof+LY8Sj8u TwFIM+WCRuTv4efR7KqcDJo7iQ7CFl44airZG5F/Qo/T0/Vik+9WrJKbmCsw5s0d L1MDq6/y+AFuM9L5V5bcxVRxFkomUieh4OvvR2F/ewfTv6nzJFtFJSHQCEhbOzF4 S8iDeIYeOBwir5tKJGuqvk0tDYuYG5FmlbhXzUiT2WNgM2nqDS0+8e4wJsWROQtl U0B5+tAUT3oszdcu1N8KkfSJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8ELnO+DX 1HQkT0wur0yvpSVfIGQwHwYDVR0jBBgwFoAU23jZ+TWOVn0wbuO9Hqx0jpYGv48w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MkNDLzQzMzBBQzlDQjM2 RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjNqWi1UV09WbjB3YnVPOUhxeDBqcFlHdjQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 MkNDLzQzMzBBQzlDQjM2RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4w d2J1TzlIcXgwanBZR3Y0OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKTX32/YGxC/3XPBapn9s82EVHZMn4MqExhYsXcmrzMPj7hMosNeB/5T 8OMf1ar2JAa0KjxW1AJoniqE7IMyqq23pQNOMIT3TqO8l+SVLH472Eqpke/e42f3 Rd7CJ4iUfBea5/Dw/qEfaECpIenpp6Hnsfxj/jX8jDSioV6zIyb1goIOzuoUBfFX 6MBLJQfexQ2JQOcpKSRU+A1+pwdbSn8uHIFZoe7rXuOVK6NcRIwhfKft8yge5t8S 4u41pvxDyMTiMJF5a/MtxpssGDIw8gyjyzumbygIJfNJnAv9LIOgA2ZqRM4hz/93 o99fXeTBFnHQj5fSMG7CseClx/pPg6I= -----END CERTIFICATE-----Generated at Fri Jun 20 09:37:16 2025 by rpki-client