$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: sQGiRepW/2kRNN+6TDfURYzvoz4VmJ0H4CHO9Fs3JgY= Subject key identifier: 21:5A:E2:BF:36:3C:8A:7D:48:69:EC:5B:65:6B:F0:B6:BD:BB:54:0C Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DD1 Signing time: Sat 14 Jun 2025 17:48:21 +0000 Manifest this update: Sat 14 Jun 2025 17:48:21 +0000 Manifest next update: Sat 21 Jun 2025 17:48:21 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: Uk26j2po2XuuHH67twEhYoLkVDrh/OiefYzWFDBhB9Y=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3546 (0xdda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Jun 14 17:48:21 2025 GMT Not After : Jun 21 17:48:21 2025 GMT Subject: CN=684db5e5-c951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1c:55:ca:87:56:5a:62:25:6f:67:89:6e:cf: 3f:b5:56:a3:7a:b5:2b:71:ba:1c:67:7e:25:36:cf: 17:2d:d5:cc:9c:c9:3b:e7:a2:f8:b3:33:0b:31:70: 2b:ab:ec:22:fb:c6:86:4e:a8:07:12:d0:ad:4a:e8: 19:e2:85:56:3c:4c:73:e0:21:d0:c6:7d:2b:8c:cb: 96:1c:a1:82:32:57:cc:1e:f0:26:fc:cc:d0:bf:ff: 03:0c:3f:37:36:6f:d4:ba:f5:f0:12:61:cf:84:7c: ed:8d:e4:26:11:da:05:ab:2f:a8:e2:5d:a5:77:c0: 7b:95:22:31:23:c7:ec:a9:05:fa:68:ec:95:b3:c4: 81:dd:34:d9:fd:2c:95:13:e6:ea:32:8a:ec:d3:e8: 7c:14:66:7c:18:86:17:6b:b1:af:b2:a7:aa:02:c0: ce:01:a0:32:58:21:04:84:b5:79:bf:af:85:9c:9c: 54:ab:6d:38:30:b2:c2:70:85:bc:18:c7:ab:6e:61: 2f:22:f2:02:d6:91:de:01:0d:81:8a:a0:dc:9a:c3: ae:10:26:47:23:21:66:eb:23:46:40:0f:db:44:7a: 20:56:24:c0:22:1e:3e:3f:43:e2:c7:1a:bc:2b:8c: 9d:b5:f4:d1:9e:ee:e9:43:76:7c:8b:4b:ba:50:e6: d1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:5A:E2:BF:36:3C:8A:7D:48:69:EC:5B:65:6B:F0:B6:BD:BB:54:0C X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:06:cd:0c:22:1f:70:44:64:e5:15:f5:70:2a:da:4a:41:f3: e3:5d:43:9f:1b:64:39:4b:2f:cc:a5:3e:16:69:53:10:87:a1: 77:d3:6e:cd:87:78:a9:d7:f2:5d:18:8c:48:e0:e4:0a:d6:9d: 66:6c:45:45:6f:4d:2b:2a:cd:47:e9:51:c9:9b:a2:c9:67:2e: 3b:b6:fb:f7:3d:9f:db:14:94:0c:ef:e6:1e:41:10:7c:cf:43: 80:4d:5b:48:0a:8b:ec:c0:54:33:27:94:34:c3:e7:4a:0f:7c: a5:89:a0:6c:58:eb:51:5d:50:4f:a1:09:5c:fc:dc:93:70:b6: 60:a8:58:b9:0d:10:18:bf:d2:0a:ec:7f:29:ea:aa:b7:2f:9c: f1:16:e9:0f:4d:34:b7:40:dd:c1:bf:c8:6e:a9:c0:05:df:7c: 54:99:3e:49:c1:5d:08:7a:f8:1c:45:da:b7:63:79:6a:7c:2d: 16:9b:33:1f:62:73:1e:3b:18:d4:3e:27:3c:13:53:2a:2f:3b: 4d:b4:e8:49:00:f1:5a:2d:e6:82:cc:4d:db:36:36:2f:f4:69: 91:00:46:9d:8f:15:c8:40:51:ca:82:50:a5:27:40:e1:e4:25: 61:bd:e3:3c:fa:62:4c:ca:21:45:ef:dd:0b:8b:b3:10:3d:39: dd:5d:c8:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwNjE0MTc0ODIxWhcNMjUwNjIxMTc0ODIxWjAYMRYwFAYD VQQDEw02ODRkYjVlNS1jOTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRxVyodWWmIlb2eJbs8/tVajerUrcbocZ34lNs8XLdXMnMk756L4szMLMXAr q+wi+8aGTqgHEtCtSugZ4oVWPExz4CHQxn0rjMuWHKGCMlfMHvAm/MzQv/8DDD83 Nm/UuvXwEmHPhHztjeQmEdoFqy+o4l2ld8B7lSIxI8fsqQX6aOyVs8SB3TTZ/SyV E+bqMors0+h8FGZ8GIYXa7GvsqeqAsDOAaAyWCEEhLV5v6+FnJxUq204MLLCcIW8 GMerbmEvIvIC1pHeAQ2BiqDcmsOuECZHIyFm6yNGQA/bRHogViTAIh4+P0Pixxq8 K4ydtfTRnu7pQ3Z8i0u6UObRfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFa4r82 PIp9SGnsW2Vr8La9u1QMMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgBs0MIh9wRGTlFfVwKtpKQfPjXUOfG2Q5Sy/MpT4WaVMQh6F3027N h3ip1/JdGIxI4OQK1p1mbEVFb00rKs1H6VHJm6LJZy47tvv3PZ/bFJQM7+YeQRB8 z0OATVtICovswFQzJ5Q0w+dKD3yliaBsWOtRXVBPoQlc/NyTcLZgqFi5DRAYv9IK 7H8p6qq3L5zxFukPTTS3QN3Bv8huqcAF33xUmT5JwV0IevgcRdq3Y3lqfC0WmzMf YnMeOxjUPic8E1MqLztNtOhJAPFaLeaCzE3bNjYv9GmRAEadjxXIQFHKglClJ0Dh 5CVhveM8+mJMyiFF790Li7MQPTndXcjm -----END CERTIFICATE-----Generated at Mon Jun 16 17:06:43 2025 by rpki-client