$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft File: 3IDIXlEBCJqyQl0_yRd5haASXG4.mft (raw, json) Hash identifier: zC/0EJIBF3U7xet+OPTuPrwfWNKBvkaFU+u3LbN2aC4= Subject key identifier: 20:90:8C:38:1F:10:AB:6E:1C:73:0D:DE:87:A4:B7:5C:AA:82:FB:3D Authority key identifier: DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E Certificate issuer: /CN=A91D74A6/serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft Manifest number: 5D Signing time: Tue 17 Jun 2025 06:09:33 +0000 Manifest this update: Tue 17 Jun 2025 06:09:32 +0000 Manifest next update: Tue 24 Jun 2025 06:09:32 +0000 Files and hashes: 1: 3IDIXlEBCJqyQl0_yRd5haASXG4.crl (hash: fNdjvtVlnqzLAm2J/nWtquq1QEYickAEWtVlTPhrkCM=) 2: 727850D8D3EF11EFB596E00CC4F9AE02.roa (hash: hvte1LGzH8lQs5HlVIeT4otbezAzwXIr7d7vqIECmd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6, serialNumber=DC80C85E5101089AB2425D3FC9177985A0125C6E Validity Not Before: Jun 17 06:09:32 2025 GMT Not After : Jun 24 06:09:32 2025 GMT Subject: CN=6851069d-2aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:45:ba:7d:d6:93:f9:13:fa:2d:52:98:ca: 29:04:b3:ca:f3:a0:00:98:60:e0:8c:c1:8b:d4:eb: a0:b0:21:b7:3e:46:ca:85:62:b4:2d:ff:4f:b8:b2: 67:8d:c7:6f:4a:a9:cc:1a:a7:10:44:70:ca:c2:52: 08:6b:66:9e:23:d4:d6:1d:49:2d:a2:62:2b:61:8e: f3:65:38:b5:9f:8f:b0:80:ca:1f:9e:cf:52:9f:22: ad:da:7a:75:9c:86:89:51:da:73:28:c2:92:e1:9c: 3d:0e:6f:6b:f6:10:54:76:5b:8b:94:18:0a:d7:b1: 02:c9:25:8f:03:38:11:0c:1d:d1:a6:7b:53:1c:ef: eb:03:1d:25:e4:02:a4:09:ef:17:3a:6f:15:21:93: bd:bf:d0:7b:e7:c1:32:46:3f:f4:26:95:25:be:84: 61:c2:d5:6e:e8:0b:49:aa:3a:fe:4e:8a:13:7d:37: 77:a8:08:5f:f8:3d:30:a7:2b:6a:0b:cb:63:00:d1: c4:b0:85:6e:de:7c:38:82:c7:63:0b:99:78:21:d4: 0b:fa:15:a5:8e:c9:63:34:75:cc:44:66:71:0b:36: 28:79:a1:da:5b:1b:99:70:3b:a1:df:65:a2:9c:05: 37:2c:30:3e:19:15:f0:41:4e:89:1b:e0:33:f8:e7: 77:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:90:8C:38:1F:10:AB:6E:1C:73:0D:DE:87:A4:B7:5C:AA:82:FB:3D X509v3 Authority Key Identifier: keyid:DC:80:C8:5E:51:01:08:9A:B2:42:5D:3F:C9:17:79:85:A0:12:5C:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3IDIXlEBCJqyQl0_yRd5haASXG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/7171BBF2D19C11EF83CEAD3CC4F9AE02/3IDIXlEBCJqyQl0_yRd5haASXG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:d5:43:c9:fb:49:7b:a4:fe:96:bc:0a:e6:d9:52:41:ed:03: a7:4f:ee:cf:03:ab:27:10:f5:1d:eb:a8:58:bd:37:db:bb:4a: 26:bb:a7:a9:f9:da:9e:32:29:4a:9e:b4:7f:ee:c8:66:93:3b: 6d:dc:88:6f:9f:a9:91:40:6f:5c:ee:b9:31:c1:24:29:75:e1: 80:42:80:35:8e:68:dc:31:64:7c:94:98:da:ac:ac:39:ba:80: e3:dc:26:6e:fc:1e:a8:6a:14:df:2f:28:c9:d1:0e:86:ee:69: 84:d2:04:a6:a2:30:ab:87:da:0f:2b:88:ab:53:eb:b2:7a:f0: 69:7c:4f:c3:87:96:99:18:60:2e:48:24:8f:e7:07:47:26:78: 93:1c:7a:88:40:de:8b:ff:76:f4:a5:59:d8:ba:b5:d8:b8:95: 47:3b:50:4d:0b:a6:c4:9f:0c:67:52:d1:5a:8e:6b:68:d5:8f: ae:1c:fd:4c:ac:cc:ba:70:4a:9c:72:ec:84:e8:8c:24:8b:bd: 2b:a9:da:02:6b:bd:cb:fd:0b:6f:3a:75:75:e1:69:59:a6:67: 13:4d:98:06:9e:c3:a9:33:a4:f8:6b:2e:bd:bd:a9:d0:95:28: 26:e7:6a:4c:db:03:fd:d2:7f:9a:f3:b5:6e:a4:b4:36:b2:40: f2:f6:5b:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzRBNjExMC8GA1UEBRMoREM4MEM4NUU1MTAxMDg5QUIyNDI1RDNGQzkxNzc5ODVB MDEyNUM2RTAeFw0yNTA2MTcwNjA5MzJaFw0yNTA2MjQwNjA5MzJaMBgxFjAUBgNV BAMTDTY4NTEwNjlkLTJhZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaZEW6fdaT+RP6LVKYyikEs8rzoACYYOCMwYvU66CwIbc+RsqFYrQt/0+4smeN x29KqcwapxBEcMrCUghrZp4j1NYdSS2iYithjvNlOLWfj7CAyh+ez1KfIq3aenWc holR2nMowpLhnD0Ob2v2EFR2W4uUGArXsQLJJY8DOBEMHdGme1Mc7+sDHSXkAqQJ 7xc6bxUhk72/0HvnwTJGP/QmlSW+hGHC1W7oC0mqOv5OihN9N3eoCF/4PTCnK2oL y2MA0cSwhW7efDiCx2MLmXgh1Av6FaWOyWM0dcxEZnELNih5odpbG5lwO6HfZaKc BTcsMD4ZFfBBTokb4DP453dZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIJCMOB8Q q24ccw3eh6S3XKqC+z0wHwYDVR0jBBgwFoAU3IDIXlEBCJqyQl0/yRd5haASXG4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3NEE2LzcxNzFCQkYyRDE5 QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0pxeVFsMF95UmQ1aGFBU1hH NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM0lESVhsRUJDSnF5UWwwX3lSZDVoYUFTWEc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 NEE2LzcxNzFCQkYyRDE5QzExRUY4M0NFQUQzQ0M0RjlBRTAyLzNJRElYbEVCQ0px eVFsMF95UmQ1aGFBU1hHNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALLVQ8n7SXuk/pa8CubZUkHtA6dP7s8DqycQ9R3rqFi9N9u7Sia7p6n5 2p4yKUqetH/uyGaTO23ciG+fqZFAb1zuuTHBJCl14YBCgDWOaNwxZHyUmNqsrDm6 gOPcJm78HqhqFN8vKMnRDobuaYTSBKaiMKuH2g8riKtT67J68Gl8T8OHlpkYYC5I JI/nB0cmeJMceohA3ov/dvSlWdi6tdi4lUc7UE0LpsSfDGdS0VqOa2jVj64c/Uys zLpwSpxy7ITojCSLvSup2gJrvcv9C286dXXhaVmmZxNNmAaew6kzpPhrLr29qdCV KCbnakzbA/3Sf5rztW6ktDayQPL2W3s= -----END CERTIFICATE-----Generated at Wed Jun 18 06:00:53 2025 by rpki-client