$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: lBZ08snVEOd60j5llnPsV4u5ztOgZh5uzcRjzVnqNU4= Subject key identifier: 3C:86:C4:63:11:26:6C:80:B1:AC:EA:FA:1C:9E:9B:64:83:EE:BD:FF Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 0154 Signing time: Thu 19 Jun 2025 03:37:53 +0000 Manifest this update: Thu 19 Jun 2025 03:37:52 +0000 Manifest next update: Thu 26 Jun 2025 03:37:52 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: BGtmt4FDz/6uu3I6X+IKjvJytKsnpj0H8fbHv8SDdO8=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Jun 19 03:37:52 2025 GMT Not After : Jun 26 03:37:52 2025 GMT Subject: CN=68538611-ec52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:92:1e:fe:53:b9:a0:c0:f4:2c:4f:19:e9:bc: 32:fe:4c:da:64:78:b1:df:90:42:8f:83:18:bb:8b: e9:ba:30:46:51:8a:f0:ff:74:66:2e:47:48:1d:b9: 67:c5:b4:43:7d:c2:98:e6:e6:90:03:d2:a8:8d:25: 46:50:47:fb:14:d7:53:e4:47:99:4b:86:e6:7e:06: ae:d4:be:e6:cb:47:ce:78:50:16:5e:3f:43:08:70: d2:80:63:17:57:aa:c4:13:64:8c:cb:9c:e0:12:c5: 99:eb:0f:88:42:8f:b5:54:e4:aa:a7:d7:a7:26:06: 99:42:24:e2:76:5f:a4:67:b2:71:54:02:cd:f0:ac: e4:8b:fd:67:90:66:74:45:1a:3c:a9:4e:d6:7b:85: 41:5f:42:49:75:f6:7b:2a:64:9b:42:f6:5c:0a:cb: ec:cb:e3:6b:a5:b9:0b:8e:18:de:4a:a0:87:8c:03: 28:f2:af:c5:bd:d8:d1:e6:56:38:1a:2f:4a:f0:7c: c1:e1:e2:07:83:a7:0c:c1:e3:66:e1:22:d5:d2:ec: b2:a8:46:17:ca:3d:a7:1b:05:88:0d:5e:d5:cc:d1: 3a:af:1e:8d:bb:3d:74:0a:12:f6:a5:4a:69:4e:b7: 1c:e2:76:2e:ec:b6:27:55:b1:04:6d:ec:31:c7:30: 38:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:86:C4:63:11:26:6C:80:B1:AC:EA:FA:1C:9E:9B:64:83:EE:BD:FF X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:25:cb:bb:b5:f8:33:f7:03:13:c8:a3:22:28:87:87:f2:8f: 98:40:bd:bd:e2:1e:b2:5c:b6:c4:08:c6:2c:6e:3e:6a:9a:b8: 48:b0:4c:83:0d:95:c7:68:7a:72:c0:d1:3f:c5:2e:24:d3:99: e3:27:8f:b6:10:19:8f:73:be:d7:ce:8a:76:57:d3:6c:48:6b: fd:38:34:a3:44:e2:ed:4d:59:ac:e5:5d:b1:c0:89:7d:6a:b4: 36:bd:5f:77:7b:50:af:6c:39:68:39:bf:a6:4c:e0:60:87:ab: 2f:1c:40:01:65:7b:bf:1c:c9:bb:4a:af:10:33:8f:ba:b5:b3: a0:af:a3:74:2a:95:f3:a4:78:34:32:ea:aa:37:25:89:0d:c0: 83:ce:3e:56:05:50:d6:6a:52:03:0c:34:7f:bf:ed:6c:44:bd: 7c:87:4e:a7:09:ef:72:91:89:3b:d6:06:4a:6c:5c:34:a2:21: 39:ed:e3:0d:d6:4e:11:43:38:e3:41:01:38:c4:5b:d8:f7:66: 59:c0:47:b8:8a:37:13:05:c2:48:81:d6:9f:80:87:95:c3:e9: 8c:ef:50:23:03:8d:61:19:39:91:74:78:68:b6:88:62:00:88: ed:e2:3b:9c:0c:3a:0f:2e:65:d2:32:c4:a3:97:6c:45:ee:d3: 93:e2:d2:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUwNjE5MDMzNzUyWhcNMjUwNjI2MDMzNzUyWjAYMRYwFAYD VQQDEw02ODUzODYxMS1lYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JIe/lO5oMD0LE8Z6bwy/kzaZHix35BCj4MYu4vpujBGUYrw/3RmLkdIHbln xbRDfcKY5uaQA9KojSVGUEf7FNdT5EeZS4bmfgau1L7my0fOeFAWXj9DCHDSgGMX V6rEE2SMy5zgEsWZ6w+IQo+1VOSqp9enJgaZQiTidl+kZ7JxVALN8Kzki/1nkGZ0 RRo8qU7We4VBX0JJdfZ7KmSbQvZcCsvsy+NrpbkLjhjeSqCHjAMo8q/FvdjR5lY4 Gi9K8HzB4eIHg6cMweNm4SLV0uyyqEYXyj2nGwWIDV7VzNE6rx6Nuz10ChL2pUpp Trcc4nYu7LYnVbEEbewxxzA4xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyGxGMR JmyAsazq+hyem2SD7r3/MB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxJcu7tfgz9wMTyKMiKIeH8o+YQL294h6yXLbECMYsbj5qmrhIsEyD DZXHaHpywNE/xS4k05njJ4+2EBmPc77Xzop2V9NsSGv9ODSjROLtTVms5V2xwIl9 arQ2vV93e1CvbDloOb+mTOBgh6svHEABZXu/HMm7Sq8QM4+6tbOgr6N0KpXzpHg0 MuqqNyWJDcCDzj5WBVDWalIDDDR/v+1sRL18h06nCe9ykYk71gZKbFw0oiE57eMN 1k4RQzjjQQE4xFvY92ZZwEe4ijcTBcJIgdafgIeVw+mM71AjA41hGTmRdHhotohi AIjt4jucDDoPLmXSMsSjl2xF7tOT4tJD -----END CERTIFICATE-----Generated at Fri Jun 20 18:07:55 2025 by rpki-client