$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: jEM0l6z0/lP7y29AlNwLY2EV/QhR40huhsfrPIabDxE= Subject key identifier: 2E:36:78:C8:2C:36:7B:03:86:6D:17:47:E0:40:8A:A6:6A:D0:58:80 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0E44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0E3C Signing time: Mon 16 Jun 2025 17:45:57 +0000 Manifest this update: Mon 16 Jun 2025 17:45:56 +0000 Manifest next update: Mon 23 Jun 2025 17:45:56 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: q8aLJmzpwgRIIYzFi+4W4H6U99St4oVID1m8U21PkL0=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: 8FSx/7pmWfnqq5buFAKmXuNtb84bNl4hKWrDWfIfWSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:45:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C, serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: Jun 16 17:45:56 2025 GMT Not After : Jun 23 17:45:56 2025 GMT Subject: CN=68505855-a3df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:03:f7:f7:84:47:c7:5c:6a:db:54:6e:61:68: 8f:42:4e:96:6c:37:69:10:ca:9d:60:52:c1:29:dc: 66:1d:bf:09:b0:4a:fd:60:a9:9b:95:1c:dc:ab:2a: 97:e7:c0:3e:43:bd:32:85:a4:5c:21:47:a8:0a:5b: 80:2d:f8:f0:cf:28:6d:86:e5:4e:7e:9a:bd:a5:f9: 0b:03:9e:16:59:d1:4d:b5:2c:d2:d3:05:70:45:8f: ef:bf:2c:9d:c8:f4:fd:ac:6e:4e:d2:68:a7:fe:2c: d5:79:af:2b:52:23:97:f1:14:db:b9:a5:ba:89:da: 67:87:4e:93:13:ba:a1:07:21:38:04:07:6e:46:5c: bb:8d:b6:c0:a4:52:fd:95:2b:fd:02:b9:5f:78:b8: 37:62:c3:8c:77:20:0f:35:4b:cf:73:b2:02:88:cd: 12:79:49:95:bc:4c:8b:ce:7f:7f:2a:9b:01:57:3b: a2:7a:69:6b:bc:53:7c:8d:fb:b7:5c:71:ac:0e:b1: f9:d9:31:1f:b2:1b:ca:5a:d3:95:96:c8:de:cf:89: 63:7c:69:aa:d6:72:00:e2:6b:d4:31:21:8a:0c:03: 58:ba:85:fa:7d:49:21:45:94:44:3a:60:65:24:ff: 68:20:44:a0:19:b9:5a:34:a1:e7:f9:db:57:d7:1c: bf:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:36:78:C8:2C:36:7B:03:86:6D:17:47:E0:40:8A:A6:6A:D0:58:80 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:e5:52:48:36:3a:4e:56:66:95:f3:e8:02:46:67:a5:dc:e5: 7f:ba:cf:f4:ef:5b:c9:60:9a:31:67:ba:e0:4a:19:df:e2:38: e6:15:35:02:5c:c0:15:9d:35:07:3a:ad:e4:fd:47:7f:c0:f8: 31:29:59:1d:96:88:1b:8c:7c:5b:2e:a8:8c:a1:d3:ce:b1:fd: a2:b3:9b:d3:e1:5c:f9:06:d2:19:95:4e:62:5c:55:75:46:9e: a6:d5:5f:c8:0c:0f:8e:84:d0:09:63:62:b1:47:12:ac:b0:09: 2e:ed:f2:e7:ba:2a:1f:3a:f0:aa:ed:9d:bb:0e:4e:8f:c6:d4: 3e:04:fd:35:09:7b:00:92:12:7a:2c:b0:43:e4:d0:dc:5c:84: fc:09:2c:fe:c3:92:74:a7:ee:52:e6:6e:a9:09:21:d9:83:71: 65:b9:a1:3c:c7:12:fe:bc:37:26:a2:f3:9d:51:d9:21:18:8d: c7:81:c7:16:74:d6:fe:30:e4:59:a2:d9:7a:c8:42:54:16:46: 24:27:ad:38:73:89:71:c5:f6:29:92:fe:d3:2c:95:22:a6:10: 0e:9c:fd:58:27:05:90:38:af:86:3d:13:2a:4a:fb:ae:53:45: fa:ff:26:89:1e:43:5f:f5:a1:b4:ea:2f:ac:e9:f4:59:3f:dd: d6:ed:8b:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjUwNjE2MTc0NTU2WhcNMjUwNjIzMTc0NTU2WjAYMRYwFAYD VQQDEw02ODUwNTg1NS1hM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgP394RHx1xq21RuYWiPQk6WbDdpEMqdYFLBKdxmHb8JsEr9YKmblRzcqyqX 58A+Q70yhaRcIUeoCluALfjwzyhthuVOfpq9pfkLA54WWdFNtSzS0wVwRY/vvyyd yPT9rG5O0min/izVea8rUiOX8RTbuaW6idpnh06TE7qhByE4BAduRly7jbbApFL9 lSv9ArlfeLg3YsOMdyAPNUvPc7ICiM0SeUmVvEyLzn9/KpsBVzuiemlrvFN8jfu3 XHGsDrH52TEfshvKWtOVlsjez4ljfGmq1nIA4mvUMSGKDANYuoX6fUkhRZREOmBl JP9oIESgGblaNKHn+dtX1xy/bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC42eMgs NnsDhm0XR+BAiqZq0FiAMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs5VJINjpOVmaV8+gCRmel3OV/us/071vJYJoxZ7rgShnf4jjmFTUC XMAVnTUHOq3k/Ud/wPgxKVkdlogbjHxbLqiModPOsf2is5vT4Vz5BtIZlU5iXFV1 Rp6m1V/IDA+OhNAJY2KxRxKssAku7fLnuiofOvCq7Z27Dk6PxtQ+BP01CXsAkhJ6 LLBD5NDcXIT8CSz+w5J0p+5S5m6pCSHZg3FluaE8xxL+vDcmovOdUdkhGI3HgccW dNb+MORZotl6yEJUFkYkJ604c4lxxfYpkv7TLJUiphAOnP1YJwWQOK+GPRMqSvuu U0X6/yaJHkNf9aG06i+s6fRZP93W7Yuj -----END CERTIFICATE-----Generated at Tue Jun 17 09:13:03 2025 by rpki-client