$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft File: NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft (raw, json) Hash identifier: OhJ6vn1IzzeXLS0CyP1XW71dFVpMuwz7STVnKwUFtdw= Subject key identifier: 62:92:DA:BE:96:E1:D0:AF:D7:9E:C0:12:0C:8E:74:96:E8:AE:4E:F1 Authority key identifier: 35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 Certificate issuer: /CN=A91E2EFF/serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft Manifest number: 03 Signing time: Sun 15 Jun 2025 07:17:21 +0000 Manifest this update: Sun 15 Jun 2025 07:17:20 +0000 Manifest next update: Sun 22 Jun 2025 07:17:20 +0000 Files and hashes: 1: NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl (hash: CDy2Q6/3tUiuvm8X604KB4N1Ah/4v1vTST5j54nsiBk=) 2: 370DA046484A11F0B96B9D10C4F9AE02.roa (hash: 2Lm246NHiIIsj3yU5G9cofOj46hOe93SJKM95sww3VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2EFF, serialNumber=35433C9EC408099F7018BC51441D22C4C11FC385 Validity Not Before: Jun 15 07:17:20 2025 GMT Not After : Jun 22 07:17:20 2025 GMT Subject: CN=684e7380-d64d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c9:4d:ef:82:92:a9:06:a5:17:44:62:c0:27: e7:e6:c9:c8:f0:99:13:9e:dd:ba:28:77:bd:c8:28: 5f:23:31:ad:ff:05:58:00:99:d4:fd:13:af:5b:45: c3:e1:d6:3a:58:51:3f:97:5d:5e:da:dd:1e:83:1d: a7:7b:1e:06:33:b7:68:38:d1:ef:80:af:15:9a:af: 0d:e7:3c:5d:79:1c:f3:b0:9a:ff:92:2c:74:3a:49: 5e:17:7f:c2:29:59:44:36:e2:36:91:09:97:17:47: 47:fa:c6:35:27:c2:82:f3:60:17:3a:b9:d1:9b:4d: a6:64:34:f5:fe:c9:93:3b:60:a9:5a:ae:66:94:4b: 4e:9b:d7:e4:85:cf:a4:2f:1e:4d:a2:27:fe:5c:72: 77:25:31:b9:47:8a:e2:8e:6d:1a:25:fc:c9:df:8e: ba:fd:6a:ed:ad:da:91:87:87:44:70:ec:55:56:5c: 63:1a:1d:07:0e:48:b1:8c:e2:45:68:3f:88:2d:fc: bc:9b:39:f7:cf:e9:63:77:a1:7d:97:6e:43:a8:4a: fa:40:f3:4c:82:a4:37:8f:81:56:4d:d2:95:f2:82: b1:5c:d9:c5:43:5b:d3:66:f0:06:f7:64:17:64:58: 0c:95:14:4f:50:79:02:04:0f:05:69:7a:35:3e:bd: 75:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:92:DA:BE:96:E1:D0:AF:D7:9E:C0:12:0C:8E:74:96:E8:AE:4E:F1 X509v3 Authority Key Identifier: keyid:35:43:3C:9E:C4:08:09:9F:70:18:BC:51:44:1D:22:C4:C1:1F:C3:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NUM8nsQICZ9wGLxRRB0ixMEfw4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2EFF/AB975BCE484911F0BF070370C4F9AE02/NUM8nsQICZ9wGLxRRB0ixMEfw4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:59:91:dc:5e:97:64:88:84:83:86:31:65:dd:a0:6f:a6:d7: 89:63:5d:c3:37:43:ff:5a:d4:30:58:dc:b4:5b:fb:cb:b8:fb: e3:9b:46:c0:ee:ba:b7:b1:86:1d:85:76:17:fa:a9:1d:a2:55: f6:83:87:55:ad:27:13:2a:62:db:24:db:b9:51:89:2b:a7:a3: 9f:39:62:ea:61:2c:b9:38:46:58:37:4e:00:22:77:3f:2f:76: 30:d2:21:d1:9e:2f:f4:9f:d5:d5:fd:e3:4e:2f:1d:08:67:29: aa:3d:95:ac:49:7d:c2:c6:1a:40:a9:3d:ff:c5:ac:5f:17:63: 92:8c:12:a8:e8:a3:9a:d0:77:80:58:10:a4:bd:e9:c7:24:fc: a5:fb:b0:55:ac:22:7f:01:47:e5:a9:c7:b8:25:6d:08:db:c4: a1:32:e9:38:f6:2a:bc:6f:4c:99:a3:56:83:4f:5d:0b:75:89: 79:93:f9:2a:f5:64:2c:f0:ff:de:4d:b0:b0:41:fa:d6:20:78: f8:5a:73:02:01:9b:ea:e0:ad:b3:c4:c0:43:e2:0f:26:19:df: db:f1:ad:44:98:e9:28:d1:9e:04:b1:0e:6e:c0:af:77:b2:0a: aa:aa:a1:07:ba:34:0c:07:03:98:52:08:46:00:1b:49:f8:1d: a2:18:37:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkVGRjExMC8GA1UEBRMoMzU0MzNDOUVDNDA4MDk5RjcwMThCQzUxNDQxRDIyQzRD MTFGQzM4NTAeFw0yNTA2MTUwNzE3MjBaFw0yNTA2MjIwNzE3MjBaMBgxFjAUBgNV BAMTDTY4NGU3MzgwLWQ2NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKyU3vgpKpBqUXRGLAJ+fmycjwmROe3bood73IKF8jMa3/BVgAmdT9E69bRcPh 1jpYUT+XXV7a3R6DHad7HgYzt2g40e+ArxWarw3nPF15HPOwmv+SLHQ6SV4Xf8Ip WUQ24jaRCZcXR0f6xjUnwoLzYBc6udGbTaZkNPX+yZM7YKlarmaUS06b1+SFz6Qv Hk2iJ/5ccnclMblHiuKObRol/Mnfjrr9au2t2pGHh0Rw7FVWXGMaHQcOSLGM4kVo P4gt/LybOffP6WN3oX2XbkOoSvpA80yCpDePgVZN0pXygrFc2cVDW9Nm8Ab3ZBdk WAyVFE9QeQIEDwVpejU+vXWBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYpLavpbh 0K/XnsASDI50luiuTvEwHwYDVR0jBBgwFoAUNUM8nsQICZ9wGLxRRB0ixMEfw4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRUZGL0FCOTc1QkNFNDg0 OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5d0dMeFJSQjBpeE1FZnc0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlVNOG5zUUlDWjl3R0x4UlJCMGl4TUVmdzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUy RUZGL0FCOTc1QkNFNDg0OTExRjBCRjA3MDM3MEM0RjlBRTAyL05VTThuc1FJQ1o5 d0dMeFJSQjBpeE1FZnc0VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGpZkdxel2SIhIOGMWXdoG+m14ljXcM3Q/9a1DBY3LRb+8u4++ObRsDu urexhh2Fdhf6qR2iVfaDh1WtJxMqYtsk27lRiSuno585YuphLLk4Rlg3TgAidz8v djDSIdGeL/Sf1dX9404vHQhnKao9laxJfcLGGkCpPf/FrF8XY5KMEqjoo5rQd4BY EKS96cck/KX7sFWsIn8BR+Wpx7glbQjbxKEy6Tj2KrxvTJmjVoNPXQt1iXmT+Sr1 ZCzw/95NsLBB+tYgePhacwIBm+rgrbPEwEPiDyYZ39vxrUSY6SjRngSxDm7Ar3ey CqqqoQe6NAwHA5hSCEYAG0n4HaIYN94= -----END CERTIFICATE-----Generated at Tue Jun 17 01:23:55 2025 by rpki-client