$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: jNXo2Ph7ct/W7VRh7z8PsqPHQWA9ZIIlXz7GOc0YGy0= Subject key identifier: 0C:A8:67:2B:9F:A5:AE:E5:45:AE:F7:AF:08:62:8A:A3:1E:07:F5:D1 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 51 Signing time: Tue 17 Jun 2025 06:18:14 +0000 Manifest this update: Tue 17 Jun 2025 06:18:14 +0000 Manifest next update: Tue 24 Jun 2025 06:18:14 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: 5hc5/1JD4joktmkSBwplDJ2Ti0xMbbrz8mgsjuKEtrM=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Jun 17 06:18:14 2025 GMT Not After : Jun 24 06:18:14 2025 GMT Subject: CN=685108a6-d23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bd:2c:d8:8c:7a:28:05:5b:d2:08:59:69:f4: 0c:de:39:49:d2:f1:58:31:9d:d6:2e:f6:89:ee:0c: 0f:0e:cf:99:c8:52:25:59:8c:49:d9:e5:ac:18:72: cc:d7:e6:eb:9e:e3:ce:35:86:65:ca:41:a1:57:ad: bd:1e:e1:cf:c6:4d:7d:80:cb:9b:11:fa:b0:76:98: 50:c7:91:5d:7a:d3:ea:33:9e:3b:03:99:11:d8:40: ac:50:fb:bf:f7:cd:d6:6f:a0:eb:0f:6b:ce:c0:e5: 97:14:64:77:be:f5:92:16:59:fa:3e:77:89:21:81: ef:84:2c:cd:aa:a7:c1:c7:25:e6:8e:9f:9d:91:5f: 73:f4:21:4f:cc:af:dc:86:e2:39:5c:2a:b5:ae:e4: 56:1d:22:40:5d:1b:da:0f:dd:4b:49:37:29:74:ed: e6:da:9a:98:d8:f8:af:bf:55:fd:52:2e:ec:b4:39: 1e:57:f2:03:ee:64:20:b2:67:8a:10:1e:f9:81:9b: 1d:5f:7c:ea:16:bc:6f:73:9c:79:f8:fb:e0:53:41: aa:ce:fd:e1:ff:12:4e:14:cf:0a:50:20:ea:3a:f1: 7c:f6:ec:db:70:e7:bb:ba:eb:41:ed:93:f0:20:f4: 0c:7b:c5:65:a3:d2:4c:99:af:e5:16:3a:10:1f:f7: 34:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A8:67:2B:9F:A5:AE:E5:45:AE:F7:AF:08:62:8A:A3:1E:07:F5:D1 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:08:f1:8d:d2:5e:2a:92:00:9f:29:64:86:0d:a3:96:41:2f: 25:f0:51:dd:6d:b3:80:c4:ff:d1:6d:43:48:b7:59:c7:82:a9: 6e:c5:ec:ce:3c:69:32:4c:bb:48:70:1f:68:15:4e:96:57:9d: c3:6f:1c:27:e3:ef:54:7b:6e:08:1e:60:9a:03:09:09:4a:9f: 2b:d9:ea:46:a2:4e:fb:87:bc:b2:fc:57:8f:dd:35:67:bd:8c: a6:11:d1:78:cf:0c:1b:8c:1f:27:c7:71:46:54:65:cd:6d:42: 2f:8e:e0:9c:a5:f0:8c:ea:9d:dc:7a:6e:bb:5b:59:68:e2:46: e9:17:79:16:b8:31:e3:af:bd:df:ed:d0:ca:eb:80:df:34:04: cc:00:ef:16:ee:ca:83:87:c7:a9:b5:f9:77:3a:31:c6:39:41: 3e:13:ee:38:fa:1c:5c:83:f7:68:a2:db:10:e5:d3:15:1c:d3: 00:68:47:ea:da:8b:7b:89:d1:9e:39:11:1d:05:5e:2c:9f:8e: ca:07:06:59:26:76:17:1c:39:e4:35:3c:76:88:e9:20:38:a5: e8:01:7c:67:5d:f0:67:e3:5f:03:86:e2:a6:3b:de:96:ac:c6: 27:c0:a2:de:00:99:a9:29:c0:aa:10:bd:54:0f:63:b6:ca:bf: 79:2a:d3:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA2MTcwNjE4MTRaFw0yNTA2MjQwNjE4MTRaMBgxFjAUBgNV BAMTDTY4NTEwOGE2LWQyM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrvSzYjHooBVvSCFlp9AzeOUnS8VgxndYu9onuDA8Oz5nIUiVZjEnZ5awYcszX 5uue4841hmXKQaFXrb0e4c/GTX2Ay5sR+rB2mFDHkV160+oznjsDmRHYQKxQ+7/3 zdZvoOsPa87A5ZcUZHe+9ZIWWfo+d4khge+ELM2qp8HHJeaOn52RX3P0IU/Mr9yG 4jlcKrWu5FYdIkBdG9oP3UtJNyl07ebampjY+K+/Vf1SLuy0OR5X8gPuZCCyZ4oQ HvmBmx1ffOoWvG9znHn4++BTQarO/eH/Ek4UzwpQIOo68Xz27Ntw57u660Htk/Ag 9Ax7xWWj0kyZr+UWOhAf9zQZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDKhnK5+l ruVFrvevCGKKox4H9dEwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 Q0E4LzIwREEyNzQ2RTRGRDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6 TTRHVG9UMDhtN2I3Q1o3RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAN4I8Y3SXiqSAJ8pZIYNo5ZBLyXwUd1ts4DE/9FtQ0i3WceCqW7F7M48 aTJMu0hwH2gVTpZXncNvHCfj71R7bggeYJoDCQlKnyvZ6kaiTvuHvLL8V4/dNWe9 jKYR0XjPDBuMHyfHcUZUZc1tQi+O4Jyl8Izqndx6brtbWWjiRukXeRa4MeOvvd/t 0MrrgN80BMwA7xbuyoOHx6m1+Xc6McY5QT4T7jj6HFyD92ii2xDl0xUc0wBoR+ra i3uJ0Z45ER0FXiyfjsoHBlkmdhccOeQ1PHaI6SA4pegBfGdd8GfjXwOG4qY73pas xifAot4AmakpwKoQvVQPY7bKv3kq0zI= -----END CERTIFICATE-----Generated at Tue Jun 17 11:27:03 2025 by rpki-client