$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft File: nEKLhAc-vngu7TP5LkDdc2GgnKo.mft (raw, json) Hash identifier: n8aqAC8ktzwMs6ntGcSuvi22NpJSt9X+h/wDsQptplA= Subject key identifier: 7F:EF:6F:46:E0:B1:89:DC:43:1C:C3:E6:ED:D6:02:D8:64:C9:66:DF Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 0875 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft Manifest number: 0870 Signing time: Mon 16 Jun 2025 20:26:53 +0000 Manifest this update: Mon 16 Jun 2025 20:26:52 +0000 Manifest next update: Mon 23 Jun 2025 20:26:52 +0000 Files and hashes: 1: nEKLhAc-vngu7TP5LkDdc2GgnKo.crl (hash: QPYFZ6YSQucHKvYqTMadA+fnK/yJWvFsMXRusVmbgBU=) 2: FE60ECB0879311EB84047577C4F9AE02.roa (hash: 7JqfyMrbJ4CL7Io5TdtHAHWsu8lXWZvGXH4eXClkDWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 20:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2165 (0x875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Jun 16 20:26:52 2025 GMT Not After : Jun 23 20:26:52 2025 GMT Subject: CN=68507e0c-e890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:be:ed:33:7b:7a:7e:64:7a:f2:c4:55:ba: 65:79:c7:1a:91:42:43:89:49:83:48:51:52:c6:08: 31:2f:ed:20:d4:6c:9d:00:29:03:ad:e5:cb:d2:3c: c5:50:0d:8b:9f:48:a5:ac:da:d5:8b:1c:8f:32:12: ed:d8:e8:40:51:f8:fc:1d:49:c8:d2:bd:86:72:e9: b3:bd:01:bf:bd:29:1f:0c:60:f7:28:af:83:c4:5b: b4:d6:37:a9:56:94:73:61:dd:2a:f8:47:cd:ef:2c: 7e:6c:ed:b1:d1:80:3e:41:c2:d4:11:c8:c3:76:26: d8:86:78:95:1a:86:b6:d8:a6:e4:dd:07:58:b6:bd: e6:c3:4e:c7:e2:1d:bb:76:77:2b:76:eb:ef:0a:38: 94:f4:2f:fd:14:76:3e:cc:58:46:5b:45:ba:c5:99: 7c:e6:af:c4:df:aa:8b:cd:2e:6d:5a:2c:0f:ca:0a: c1:08:25:0b:83:42:c1:18:0a:48:74:68:0b:a1:b6: a1:0d:b2:cd:7b:a0:25:18:bc:f9:8d:a4:41:ba:00: 80:fe:2d:e2:0a:9c:65:13:b3:b9:f7:8c:16:fa:1b: 6e:26:c5:1a:bd:66:c2:6d:5a:92:b7:3a:a6:6a:e9: a3:a3:c1:21:ec:1c:3b:f3:3a:ae:fa:57:4c:db:64: 5f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:EF:6F:46:E0:B1:89:DC:43:1C:C3:E6:ED:D6:02:D8:64:C9:66:DF X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:fb:ff:d8:a3:18:5b:ec:05:58:e1:6f:c2:52:5b:e6:49:23: 0e:3e:10:5f:41:60:74:53:63:34:61:e5:c6:2f:b0:b2:f4:d0: b9:84:13:31:fb:2b:09:24:62:be:92:ca:57:f6:74:cb:29:0d: 82:c1:8e:13:ce:03:d6:48:44:93:34:2d:8d:97:c0:53:8e:73: 1c:ff:71:e3:91:7d:72:f5:91:45:36:9b:e8:96:3e:b2:6a:1a: a9:97:1d:76:af:70:40:53:e0:9c:46:2e:f6:c2:93:6e:03:0f: 29:e6:e4:23:d9:b9:ad:f0:99:ec:a6:99:51:37:1e:6b:54:e8: ae:34:b8:ab:34:9b:78:32:09:56:02:18:f4:af:49:b6:8e:fe: cd:90:1e:60:55:e4:81:f2:00:a7:65:6a:f7:1b:72:6f:a0:27: 58:53:43:d1:01:22:67:49:2f:32:e4:ab:e7:6f:1c:72:db:1d: 2c:dc:e1:99:2d:55:07:a7:9a:9d:f1:7e:b5:f4:73:df:52:b3: 52:4b:f3:7f:aa:f8:8d:36:db:fd:03:54:76:6d:e3:08:68:ac: 65:9f:a1:f1:82:16:6c:6c:c3:2f:c8:63:f3:97:36:7c:82:e0: 77:94:d7:83:89:ae:03:4d:93:1c:33:83:0b:ed:dc:eb:ba:fe: fd:be:dd:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUwNjE2MjAyNjUyWhcNMjUwNjIzMjAyNjUyWjAYMRYwFAYD VQQDEw02ODUwN2UwYy1lODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudm+7TN7en5kevLEVbpleccakUJDiUmDSFFSxggxL+0g1GydACkDreXL0jzF UA2Ln0ilrNrVixyPMhLt2OhAUfj8HUnI0r2GcumzvQG/vSkfDGD3KK+DxFu01jep VpRzYd0q+EfN7yx+bO2x0YA+QcLUEcjDdibYhniVGoa22Kbk3QdYtr3mw07H4h27 dncrduvvCjiU9C/9FHY+zFhGW0W6xZl85q/E36qLzS5tWiwPygrBCCULg0LBGApI dGgLobahDbLNe6AlGLz5jaRBugCA/i3iCpxlE7O594wW+htuJsUavWbCbVqStzqm aumjo8Eh7Bw78zqu+ldM22RfAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/vb0bg sYncQxzD5u3WAthkyWbfMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEI2Ri9FNDQ4QkYxOEM0RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZu Z3U3VFA1TGtEZGMyR2duS28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1+//Yoxhb7AVY4W/CUlvmSSMOPhBfQWB0U2M0YeXGL7Cy9NC5hBMx +ysJJGK+kspX9nTLKQ2CwY4TzgPWSESTNC2Nl8BTjnMc/3HjkX1y9ZFFNpvolj6y ahqplx12r3BAU+CcRi72wpNuAw8p5uQj2bmt8JnspplRNx5rVOiuNLirNJt4MglW Ahj0r0m2jv7NkB5gVeSB8gCnZWr3G3JvoCdYU0PRASJnSS8y5Kvnbxxy2x0s3OGZ LVUHp5qd8X619HPfUrNSS/N/qviNNtv9A1R2beMIaKxln6HxghZsbMMvyGPzlzZ8 guB3lNeDia4DTZMcM4ML7dzruv79vt0A -----END CERTIFICATE-----Generated at Wed Jun 18 15:20:03 2025 by rpki-client