$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: kMO44mQIS3rfuKAxKk42cz2On+xr5U7mv0V2ajKcuEs= Subject key identifier: 79:9C:60:D7:E8:C0:B4:FC:41:0F:5E:DA:24:6F:83:14:57:C1:2B:48 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2B9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B76 Signing time: Wed 18 Jun 2025 15:31:41 +0000 Manifest this update: Wed 18 Jun 2025 15:31:41 +0000 Manifest next update: Wed 25 Jun 2025 15:31:41 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: 5w27juE7Ku7oJmkn1E51z8AbhFqJ9H15iPAhsndG3bE=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 15:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11162 (0x2b9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Jun 18 15:31:41 2025 GMT Not After : Jun 25 15:31:41 2025 GMT Subject: CN=6852dbdd-391c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:32:9b:bb:1e:05:e6:32:96:f6:88:12:d4:72: f6:6b:8b:9b:92:db:4e:26:fb:45:c8:c2:3b:7e:e7: 43:83:b1:84:9f:ce:ca:6c:8f:7b:6b:00:56:1e:8e: 0d:dc:3b:2a:a8:4f:49:da:fd:e6:37:ca:f1:69:67: 17:57:6d:54:bb:4b:ed:ad:88:de:0a:42:2f:98:c0: 42:fe:dd:79:ea:65:eb:7e:46:7e:19:a7:0f:9a:34: ef:f9:19:fa:ca:ad:f0:71:3b:a2:50:62:e3:3b:55: fc:fd:6a:92:39:69:3b:74:b9:eb:bf:53:33:87:be: b6:0d:44:f7:63:81:14:7d:7d:4e:2f:8a:54:d3:c4: 67:a6:76:e3:04:16:82:e9:66:0e:b3:f9:b8:b9:4a: 67:6f:05:7c:c7:e3:4b:1d:7e:6e:59:75:91:bc:e9: 7c:a8:06:37:06:15:84:97:38:52:48:3d:24:94:88: 9b:08:19:e5:2a:cc:c8:20:d6:4d:07:26:a6:b3:b5: 0f:fb:bb:d7:25:03:b6:d9:5f:3a:83:eb:c0:8b:cb: fa:1e:41:11:b8:da:8f:39:eb:db:38:07:7a:89:0e: 03:67:04:42:54:03:4f:ff:e3:d2:36:8e:b1:2c:4d: 0f:7c:ce:75:2b:15:2b:8c:9a:20:8e:ae:80:15:3b: 86:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:9C:60:D7:E8:C0:B4:FC:41:0F:5E:DA:24:6F:83:14:57:C1:2B:48 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:0b:06:88:62:e7:43:ba:59:24:8d:2a:75:76:ea:61:de:f0: ad:59:b1:68:29:fd:cb:e7:65:ef:3c:e4:9d:c9:35:1b:e9:ea: 8b:b7:20:31:5d:17:79:e4:c1:80:3b:d5:fd:0c:e2:cd:d0:a0: e4:05:56:77:51:e2:43:e3:2c:7b:87:b9:a0:f5:27:b0:30:a5: 78:39:70:62:bc:a0:19:ca:81:91:d9:fc:7f:07:f2:28:80:b6: db:e9:ea:67:f6:e5:ba:71:74:f9:9f:09:79:b3:48:cf:f4:de: 5b:fc:d7:63:d1:51:84:11:42:2f:2c:d1:48:01:d7:e1:69:14: 7a:d5:d0:4b:65:f3:d5:92:22:05:35:1a:48:5e:44:fc:48:1d: 6a:43:e8:d9:3b:67:ce:03:cd:da:d1:ee:18:1d:f2:74:0c:c4: e6:82:08:3e:80:f0:40:0b:71:fa:f5:b8:82:51:44:9e:d2:1d: 18:bd:1b:e7:84:a1:29:c3:b0:88:e8:50:dd:89:3e:05:55:6d: 37:6a:12:19:11:cf:68:40:70:39:f0:29:80:39:62:e0:92:43: d4:d3:ef:de:58:e8:ab:ba:5e:70:f6:36:fa:1d:96:87:ed:2e: b1:e4:23:18:57:0c:a9:ee:1a:b6:3d:84:d5:f0:2a:42:2b:f5: 6d:b2:26:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwNjE4MTUzMTQxWhcNMjUwNjI1MTUzMTQxWjAYMRYwFAYD VQQDEw02ODUyZGJkZC0zOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjKbux4F5jKW9ogS1HL2a4ubkttOJvtFyMI7fudDg7GEn87KbI97awBWHo4N 3DsqqE9J2v3mN8rxaWcXV21Uu0vtrYjeCkIvmMBC/t156mXrfkZ+GacPmjTv+Rn6 yq3wcTuiUGLjO1X8/WqSOWk7dLnrv1Mzh762DUT3Y4EUfX1OL4pU08RnpnbjBBaC 6WYOs/m4uUpnbwV8x+NLHX5uWXWRvOl8qAY3BhWElzhSSD0klIibCBnlKszIINZN Byams7UP+7vXJQO22V86g+vAi8v6HkERuNqPOevbOAd6iQ4DZwRCVANP/+PSNo6x LE0PfM51KxUrjJogjq6AFTuGZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmcYNfo wLT8QQ9e2iRvgxRXwStIMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6CwaIYudDulkkjSp1duph3vCtWbFoKf3L52XvPOSdyTUb6eqLtyAx XRd55MGAO9X9DOLN0KDkBVZ3UeJD4yx7h7mg9SewMKV4OXBivKAZyoGR2fx/B/Io gLbb6epn9uW6cXT5nwl5s0jP9N5b/Ndj0VGEEUIvLNFIAdfhaRR61dBLZfPVkiIF NRpIXkT8SB1qQ+jZO2fOA83a0e4YHfJ0DMTmggg+gPBAC3H69biCUUSe0h0YvRvn hKEpw7CI6FDdiT4FVW03ahIZEc9oQHA58CmAOWLgkkPU0+/eWOirul5w9jb6HZaH 7S6x5CMYVwyp7hq2PYTV8CpCK/VtsiYr -----END CERTIFICATE-----Generated at Fri Jun 20 14:43:09 2025 by rpki-client