$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft File: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft (raw, json) Hash identifier: JopGcGQvGZcN4hrYoaZuNP+ybOdZdNLclawpCYQXOdQ= Subject key identifier: 4C:35:65:F7:0D:5F:A3:41:59:45:D2:44:DA:5D:F2:D3:AE:CC:1C:8D Authority key identifier: DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE Certificate issuer: /CN=A91E6CCA/serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft Manifest number: 26 Signing time: Sun 15 Jun 2025 06:52:42 +0000 Manifest this update: Sun 15 Jun 2025 06:52:42 +0000 Manifest next update: Sun 22 Jun 2025 06:52:42 +0000 Files and hashes: 1: 2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl (hash: S2G0ro9HEIKco16jzmG98L13cfhMKZi4ns9huLRThs4=) 2: E9CF18DE0F7111F096BBCF24C4F9AE02.roa (hash: 0kwUuP5urHGVd8jLbBCR4DTFP/4KfdSRWVGXFWx70hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 06:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=DB13FBAF7B3B38DB7630DB0B97374DAAD0315ADE Validity Not Before: Jun 15 06:52:42 2025 GMT Not After : Jun 22 06:52:42 2025 GMT Subject: CN=684e6dba-98bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:56:5a:64:5d:6e:10:2c:81:c8:f7:de:8f:1d: f2:6a:b7:32:7a:85:eb:5e:fb:03:4a:22:76:4c:f8: 2d:e7:ef:f0:0e:6c:9a:b7:92:25:b8:d5:21:ba:cd: 4d:d8:d8:95:7d:34:42:95:47:01:b3:5d:94:8d:6d: f2:3f:3f:9b:ba:a6:91:de:5f:82:1e:ac:93:e8:5e: 6b:53:66:79:57:e1:c0:16:b6:36:c7:08:82:9a:9d: 21:9d:c3:50:b5:e8:4f:43:ca:ae:d8:f7:f1:91:88: 5a:65:7b:b8:de:99:26:2e:d9:9c:76:0c:6c:14:1e: 83:75:11:3a:19:41:96:41:af:e7:3d:37:40:a1:23: 10:44:c1:e6:fc:4b:78:f0:c6:f0:b9:74:2c:4d:c4: 53:2f:47:79:47:0b:24:3d:97:21:d6:4b:bc:3c:80: cd:ed:78:8c:5b:75:b1:44:e2:0f:08:85:a4:11:05: 2b:b2:f2:01:09:0e:28:ce:26:ee:7b:83:c6:82:5e: 2e:2a:f9:d3:90:4f:4e:1f:94:fe:f0:e9:c1:63:97: 13:47:f8:8b:5f:ad:03:99:f1:08:3c:ae:d8:31:de: 9c:21:0c:39:61:c9:18:4d:9e:ce:26:d7:4d:82:c5: 04:ec:5c:e2:e1:57:25:3c:9c:d4:9f:e1:6d:f8:af: a4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:35:65:F7:0D:5F:A3:41:59:45:D2:44:DA:5D:F2:D3:AE:CC:1C:8D X509v3 Authority Key Identifier: keyid:DB:13:FB:AF:7B:3B:38:DB:76:30:DB:0B:97:37:4D:AA:D0:31:5A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xP7r3s7ONt2MNsLlzdNqtAxWt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/24010D520F7011F09E2F7D1FC4F9AE02/2xP7r3s7ONt2MNsLlzdNqtAxWt4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:d4:cb:33:26:53:8a:b9:5f:78:15:5c:6b:ea:90:71:de:ce: 12:3b:01:b1:5a:d2:bd:47:f6:35:d9:74:15:21:0c:5c:d4:72: 01:c8:b1:f0:9c:40:7a:33:38:32:03:59:f3:ae:75:2f:df:ea: 23:d0:f8:3c:57:8c:ea:90:d9:d0:4d:24:07:0d:41:f9:62:19: 04:71:17:ad:a5:c8:2b:47:30:49:07:61:ed:04:ee:d1:82:e4: 51:83:f9:03:32:f0:cd:35:fc:d9:69:b9:3c:9f:e4:65:9e:8c: 13:ea:94:1f:f8:e5:51:bd:c8:d3:b1:fb:77:1a:29:76:5a:36: d6:68:02:74:cc:97:02:71:30:54:ee:32:40:d7:4b:46:a6:4a: 3c:2b:06:ef:05:a2:73:7a:d0:75:73:f6:13:27:c9:92:84:c5: a4:63:e8:21:55:14:6c:85:b0:37:1b:46:98:b6:f7:f7:5f:54: 6f:d7:1a:b3:3a:d3:c4:cb:62:30:be:37:fc:f5:e9:49:a8:b2: 71:ff:87:f6:82:65:9b:d0:f0:29:ca:7a:64:f3:0d:7b:d9:09: 94:77:8b:f8:fc:66:de:62:38:cd:ad:fd:63:28:a8:c0:c2:83: 22:07:cc:d5:7d:a4:3e:03:33:de:b3:53:a8:cf:8e:c1:14:ca: 52:88:1b:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoREIxM0ZCQUY3QjNCMzhEQjc2MzBEQjBCOTczNzREQUFE MDMxNUFERTAeFw0yNTA2MTUwNjUyNDJaFw0yNTA2MjIwNjUyNDJaMBgxFjAUBgNV BAMTDTY4NGU2ZGJhLTk4YmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbVlpkXW4QLIHI996PHfJqtzJ6hete+wNKInZM+C3n7/AObJq3kiW41SG6zU3Y 2JV9NEKVRwGzXZSNbfI/P5u6ppHeX4IerJPoXmtTZnlX4cAWtjbHCIKanSGdw1C1 6E9Dyq7Y9/GRiFple7jemSYu2Zx2DGwUHoN1EToZQZZBr+c9N0ChIxBEweb8S3jw xvC5dCxNxFMvR3lHCyQ9lyHWS7w8gM3teIxbdbFE4g8IhaQRBSuy8gEJDijOJu57 g8aCXi4q+dOQT04flP7w6cFjlxNH+ItfrQOZ8Qg8rtgx3pwhDDlhyRhNns4m102C xQTsXOLhVyU8nNSf4W34r6QXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTDVl9w1f o0FZRdJE2l3y067MHI0wHwYDVR0jBBgwFoAU2xP7r3s7ONt2MNsLlzdNqtAxWt4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzI0MDEwRDUyMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050Mk1Oc0xsemROcXRBeFd0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnhQN3IzczdPTnQyTU5zTGx6ZE5xdEF4V3Q0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzI0MDEwRDUyMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyLzJ4UDdyM3M3T050 Mk1Oc0xsemROcXRBeFd0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD7UyzMmU4q5X3gVXGvqkHHezhI7AbFa0r1H9jXZdBUhDFzUcgHIsfCc QHozODIDWfOudS/f6iPQ+DxXjOqQ2dBNJAcNQfliGQRxF62lyCtHMEkHYe0E7tGC 5FGD+QMy8M01/NlpuTyf5GWejBPqlB/45VG9yNOx+3caKXZaNtZoAnTMlwJxMFTu MkDXS0amSjwrBu8FonN60HVz9hMnyZKExaRj6CFVFGyFsDcbRpi29/dfVG/XGrM6 08TLYjC+N/z16UmosnH/h/aCZZvQ8CnKemTzDXvZCZR3i/j8Zt5iOM2t/WMoqMDC gyIHzNV9pD4DM96zU6jPjsEUylKIG8c= -----END CERTIFICATE-----Generated at Tue Jun 17 04:19:31 2025 by rpki-client