$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: 4FsHcQbupR4mxHFMdlOA01Fy25tW95kgVl/Xf5BVZPY= Subject key identifier: 0F:26:64:2C:41:17:24:2F:B2:8B:B9:CC:D1:1E:2E:20:28:3F:EA:77 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 8E Signing time: Sun 15 Jun 2025 05:35:26 +0000 Manifest this update: Sun 15 Jun 2025 05:35:26 +0000 Manifest next update: Sun 22 Jun 2025 05:35:26 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: FvmGKUxwpC5/PKh67KO9gdVKf/nG1iqrTbUFqXhMHEs=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Jun 15 05:35:26 2025 GMT Not After : Jun 22 05:35:26 2025 GMT Subject: CN=684e5b9e-55b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b0:57:89:f3:ff:ab:f1:f6:07:65:a3:9e:3a: 81:c9:9a:76:ea:a8:5b:f8:ca:fa:0e:3f:d8:19:2e: b1:8e:d9:8e:f1:5f:e0:01:dc:a0:04:0a:5a:8f:02: 2e:f8:ed:bc:44:c8:e8:28:ae:6d:33:79:10:f8:cc: bb:51:af:16:02:dd:d6:49:9c:44:49:5e:1e:d7:eb: bd:ec:e1:23:ba:62:5f:6f:40:0b:05:f3:c6:fc:17: ff:ab:f4:b4:f8:df:04:f2:72:17:79:80:8d:dd:3f: 3d:ca:11:c6:59:51:a2:c0:b8:cf:c2:98:36:5f:93: dc:c8:fc:86:08:25:69:bc:74:05:89:97:e9:a7:9e: 71:6e:44:f6:a7:02:a3:40:8e:86:fa:c8:d5:ff:39: b9:ef:99:1e:d7:62:cf:b3:38:5c:85:0e:16:f3:ab: 95:5f:9d:18:ed:c7:5a:40:7f:84:2e:4c:72:87:d0: 1e:a2:a5:e5:40:34:48:26:98:d0:e3:39:66:c9:17: cd:5b:b7:3a:c6:0b:d2:79:ea:35:82:4c:44:52:ea: 93:79:bf:d0:35:62:6f:51:f8:57:be:c0:49:a1:83: 9d:ac:ec:74:6d:4c:c9:20:29:b4:18:0a:63:de:28: 68:6a:97:a2:d8:22:d3:b6:bb:47:63:27:84:cc:c0: b1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:26:64:2C:41:17:24:2F:B2:8B:B9:CC:D1:1E:2E:20:28:3F:EA:77 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:75:a9:be:fe:01:38:6c:d2:78:e9:0d:0c:ac:16:ef:2f:0e: aa:c6:f2:a8:6d:1e:1b:84:e2:2c:7e:16:60:6c:b2:c8:b1:36: f2:a9:13:77:38:09:7b:b7:87:74:9f:4a:11:e1:93:b6:0e:5e: c8:12:1e:03:c8:b7:98:62:97:85:0f:84:e8:4d:c4:11:fb:2a: 55:14:66:ce:f6:e6:8a:f9:95:77:7a:a2:ae:a1:6e:c9:90:16: fe:a5:00:a0:34:1d:30:23:e2:60:c8:dd:81:25:6a:44:72:0f: e3:f7:3a:d7:cc:37:ea:3a:30:9f:05:06:b1:78:df:90:94:0f: 68:d2:9a:8c:e5:67:ee:bf:0e:17:19:b0:4f:4a:20:bf:fc:6b: c0:e4:1e:77:f5:c4:e6:c9:2d:91:e8:f0:eb:8c:cd:7d:5d:2d: d6:1f:77:d4:82:30:a5:8f:2a:66:50:13:cd:1d:c0:89:0e:b4: e6:b8:79:13:93:79:c2:c3:f3:8a:08:f8:86:9f:d4:6a:8b:ae: 76:6f:37:a1:00:7e:3c:c8:9c:32:a4:73:ac:8c:0a:7f:a5:7c: a5:b3:84:4e:ec:b9:b2:f8:9a:74:d3:54:e0:2d:0b:33:cf:c9: 65:7c:62:07:f0:bb:e4:87:2d:07:25:84:ee:16:2a:e2:fa:aa: 04:67:bc:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUwNjE1MDUzNTI2WhcNMjUwNjIyMDUzNTI2WjAYMRYwFAYD VQQDEw02ODRlNWI5ZS01NWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLBXifP/q/H2B2WjnjqByZp26qhb+Mr6Dj/YGS6xjtmO8V/gAdygBApajwIu +O28RMjoKK5tM3kQ+My7Ua8WAt3WSZxESV4e1+u97OEjumJfb0ALBfPG/Bf/q/S0 +N8E8nIXeYCN3T89yhHGWVGiwLjPwpg2X5PcyPyGCCVpvHQFiZfpp55xbkT2pwKj QI6G+sjV/zm575ke12LPszhchQ4W86uVX50Y7cdaQH+ELkxyh9AeoqXlQDRIJpjQ 4zlmyRfNW7c6xgvSeeo1gkxEUuqTeb/QNWJvUfhXvsBJoYOdrOx0bUzJICm0GApj 3ihoapei2CLTtrtHYyeEzMCxkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8mZCxB FyQvsou5zNEeLiAoP+p3MB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAedam+/gE4bNJ46Q0MrBbvLw6qxvKobR4bhOIsfhZgbLLIsTbyqRN3 OAl7t4d0n0oR4ZO2Dl7IEh4DyLeYYpeFD4ToTcQR+ypVFGbO9uaK+ZV3eqKuoW7J kBb+pQCgNB0wI+JgyN2BJWpEcg/j9zrXzDfqOjCfBQaxeN+QlA9o0pqM5Wfuvw4X GbBPSiC//GvA5B539cTmyS2R6PDrjM19XS3WH3fUgjCljypmUBPNHcCJDrTmuHkT k3nCw/OKCPiGn9Rqi652bzehAH48yJwypHOsjAp/pXyls4RO7Lmy+Jp001TgLQsz z8llfGIH8Lvkhy0HJYTuFiri+qoEZ7zw -----END CERTIFICATE-----Generated at Mon Jun 16 10:38:09 2025 by rpki-client