$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: ogrWPe15xje4HZHJXDCtGjSSx3tx3llvqZ8QP38B2ZU= Subject key identifier: FD:14:22:1E:16:A2:45:F9:BC:99:B2:0B:C7:E5:CC:79:E1:8B:88:39 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: 61 Signing time: Tue 17 Jun 2025 06:00:01 +0000 Manifest this update: Tue 17 Jun 2025 06:00:01 +0000 Manifest next update: Tue 24 Jun 2025 06:00:01 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: 2p4WFelBbqyPRySy6H4MlPyHUarvkBVYg465ufaYT08=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: NJttL+qjjIMKQduatRuB9wCf9GQJviKk9JlU07XKUgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Jun 17 06:00:01 2025 GMT Not After : Jun 24 06:00:01 2025 GMT Subject: CN=68510461-34e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:02:39:c6:7c:df:8e:d0:70:ea:1a:66:97:ff: 45:34:12:89:14:da:58:33:45:04:79:37:d2:25:62: 3a:d3:f1:46:63:08:ff:ec:c7:b2:f8:5e:62:a2:cd: ae:36:ac:fa:b3:66:81:37:1e:a8:8d:aa:aa:d2:8a: a8:ef:00:50:a7:9b:7e:3a:49:97:7a:0f:8f:5b:25: 19:df:06:40:bf:e2:2d:ea:e4:b0:e1:9c:23:f7:91: b3:a1:af:af:0c:21:d1:13:21:d7:02:31:ba:7f:3c: 51:94:68:67:4d:48:40:cf:75:56:0d:cf:4e:df:52: aa:1c:38:14:fe:9c:59:97:7e:1b:5b:aa:cd:c2:30: 1f:d5:a8:56:4d:6d:e0:85:c7:db:ff:fb:e4:1a:17: e1:1d:de:23:b7:06:1a:b9:7f:78:73:b0:e3:97:d0: b6:d1:fb:3a:ff:dd:f6:a8:3d:ff:20:29:b1:84:a3: 4d:29:3d:eb:52:72:29:aa:fd:ff:c5:ec:5c:16:73: d9:9d:71:1b:e5:d7:63:09:cc:98:af:24:ac:c7:a0: 8f:5e:57:71:b0:62:69:f8:fd:bc:ef:ee:7f:e3:ee: 8b:c4:40:1d:d9:2b:ba:79:07:66:8c:18:11:41:be: f2:f2:eb:e5:8c:d1:46:2d:a5:37:92:c3:43:42:b4: 10:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:14:22:1E:16:A2:45:F9:BC:99:B2:0B:C7:E5:CC:79:E1:8B:88:39 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:6b:b1:c4:63:fc:2f:d4:49:22:fc:7b:6f:51:f8:75:72:50: df:b6:7c:f5:a9:f8:f7:da:0a:e4:36:1b:54:1a:8a:fe:ee:5b: ec:13:6d:e7:c5:f3:70:05:8a:65:dd:61:ba:ca:05:a8:2a:7b: 17:e0:0f:83:95:d5:1d:ee:ee:16:55:8e:1d:da:2c:70:6f:e0: 95:56:f4:ae:14:c8:78:f2:fd:3b:76:f3:b7:7e:03:2e:c4:dc: 97:a6:da:75:5e:ea:f4:5a:d2:bd:44:03:60:ef:b3:9a:46:b0: 20:1b:4b:da:c1:cf:d4:d2:bf:ca:a9:66:e4:1f:fc:21:c7:c3: ce:f9:8d:d8:af:a8:91:ea:5b:1e:34:8e:4f:a9:73:8f:ea:8c: dd:e9:06:fd:d3:15:87:01:d6:f6:bd:c1:38:db:61:0b:15:08: c5:29:e7:ad:3f:69:0d:fe:97:c9:a2:aa:e7:41:a0:28:83:25: 43:cf:ad:5e:40:7d:07:10:1a:b3:6f:ec:cb:e8:35:91:d7:5f: aa:8e:fd:59:a5:5f:29:5f:1e:26:f0:27:cb:87:05:90:42:a4: 8a:a4:14:f8:d3:6b:be:5e:6f:d0:2b:ca:5b:92:97:0e:fc:df: 9e:fe:96:0b:e4:0d:24:3b:da:6b:0e:9a:40:a9:d7:9c:25:a6: 9f:7a:ab:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODM3QjExMC8GA1UEBRMoRkEyMjgwMUM1MkFFMkE1RkM0OTFCN0NCRUJFNjhFRkNB MkM4RDFEOTAeFw0yNTA2MTcwNjAwMDFaFw0yNTA2MjQwNjAwMDFaMBgxFjAUBgNV BAMTDTY4NTEwNDYxLTM0ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEAjnGfN+O0HDqGmaX/0U0EokU2lgzRQR5N9IlYjrT8UZjCP/sx7L4XmKiza42 rPqzZoE3HqiNqqrSiqjvAFCnm346SZd6D49bJRnfBkC/4i3q5LDhnCP3kbOhr68M IdETIdcCMbp/PFGUaGdNSEDPdVYNz07fUqocOBT+nFmXfhtbqs3CMB/VqFZNbeCF x9v/++QaF+Ed3iO3Bhq5f3hzsOOX0LbR+zr/3faoPf8gKbGEo00pPetScimq/f/F 7FwWc9mdcRvl12MJzJivJKzHoI9eV3GwYmn4/bzv7n/j7ovEQB3ZK7p5B2aMGBFB vvLy6+WM0UYtpTeSw0NCtBDvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/RQiHhai Rfm8mbILx+XMeeGLiDkwHwYDVR0jBBgwFoAU+iKAHFKuKl/EkbfL6+aO/KLI0dkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MzdCLzE1OEQ3RjNDQjk5 QzExRUY5NjM4Rjc2OUM0RjlBRTAyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLWlLQUhGS3VLbF9Fa2JmTDYtYU9fS0xJMGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MzdCLzE1OEQ3RjNDQjk5QzExRUY5NjM4Rjc2OUM0RjlBRTAyLy1pS0FIRkt1S2xf RWtiZkw2LWFPX0tMSTBkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHRrscRj/C/USSL8e29R+HVyUN+2fPWp+PfaCuQ2G1Qaiv7uW+wTbefF 83AFimXdYbrKBagqexfgD4OV1R3u7hZVjh3aLHBv4JVW9K4UyHjy/Tt287d+Ay7E 3Jem2nVe6vRa0r1EA2Dvs5pGsCAbS9rBz9TSv8qpZuQf/CHHw875jdivqJHqWx40 jk+pc4/qjN3pBv3TFYcB1va9wTjbYQsVCMUp560/aQ3+l8miqudBoCiDJUPPrV5A fQcQGrNv7MvoNZHXX6qO/VmlXylfHibwJ8uHBZBCpIqkFPjTa75eb9AryluSlw78 357+lgvkDSQ72msOmkCp15wlpp96q6Q= -----END CERTIFICATE-----Generated at Wed Jun 18 20:45:32 2025 by rpki-client