$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: EMcOjFphT42zeiPKIklUs3EnEmnjh0nlIwOY/jHxArk= Subject key identifier: D2:49:F2:D6:F4:0F:CC:1F:BF:56:68:53:D4:C1:16:B0:A7:8C:C0:B9 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 0A21 Signing time: Wed 18 Jun 2025 19:39:48 +0000 Manifest this update: Wed 18 Jun 2025 19:39:47 +0000 Manifest next update: Wed 25 Jun 2025 19:39:47 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: EJNfGJdb7BSb2uHb5k3SMQFobx+a0mxM8Ywfn68+fuM=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Jun 18 19:39:47 2025 GMT Not After : Jun 25 19:39:47 2025 GMT Subject: CN=68531604-eee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:85:0e:76:b6:b2:60:e6:b5:77:72:07:8e:6d: 27:e5:b7:e3:dc:20:75:71:77:8b:aa:0b:f7:a9:a7: 44:56:53:33:55:8d:40:0b:63:22:bb:39:85:e9:b3: de:40:17:3f:ac:d4:c2:24:d7:38:15:1f:1c:b9:05: 9b:f7:7e:a0:0b:93:3a:23:6d:9b:08:b6:07:32:cc: 24:e9:e4:8a:51:d2:61:e7:87:45:77:b9:9c:20:90: 74:fa:b4:25:58:b1:4d:68:fc:d7:3e:1a:2d:11:be: 39:8f:f4:f5:ff:4d:31:6a:86:4b:8b:f7:0e:b7:3e: a3:34:65:35:b3:bf:d6:a7:d2:0d:e2:c1:45:e4:ad: f1:c0:d5:06:54:23:2a:d9:3a:8c:cb:fc:85:50:ba: e3:08:a8:cd:05:d9:0a:28:54:2b:96:d9:49:b4:f8: 9d:0d:1b:cd:ea:05:e0:d5:3c:94:35:ee:f5:47:02: bf:d1:26:5b:2d:40:e9:44:9d:f8:4e:b6:4f:e0:35: 26:7e:37:e5:0e:7d:d8:c6:13:1b:6a:20:7b:45:e5: fb:75:53:78:04:ac:b5:3b:62:fc:a7:20:24:59:5b: d2:10:c9:21:a1:b3:12:45:d9:cc:64:c1:2e:87:60: 85:ee:47:73:c8:66:5f:7e:80:96:4e:db:31:3b:2b: 54:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:49:F2:D6:F4:0F:CC:1F:BF:56:68:53:D4:C1:16:B0:A7:8C:C0:B9 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:7a:aa:34:96:20:79:fd:52:c3:c7:cf:eb:38:92:0b:7e:60: 83:cb:01:5f:8c:70:2b:61:41:45:8d:c8:48:c3:64:8e:ad:14: 7b:d5:28:46:db:56:c0:2b:eb:28:d8:07:33:1a:21:da:45:56: dd:55:0e:ce:4a:a0:c6:d0:13:f6:ca:29:1b:8b:0c:52:5a:45: be:d2:9e:64:69:30:4a:a5:41:76:f0:c2:5f:bf:65:f3:3b:95: c2:cc:fb:b9:56:4f:3d:c0:26:ab:d3:38:37:59:42:87:d4:2b: 63:32:20:22:a5:72:06:f1:15:9f:33:d4:d4:83:5f:48:71:31: 85:c0:3b:d3:ba:d9:d4:73:5d:ab:84:a2:a8:9a:d5:89:25:4b: 67:fc:07:2f:58:2e:e2:7e:f1:a2:68:1b:e0:3e:9c:73:80:8a: 11:ac:83:4c:83:e9:83:7a:44:cc:d6:b6:2a:dd:70:be:a4:72: 2c:a7:ca:90:f9:e1:9c:73:7e:87:2e:d6:bb:57:7e:c8:95:21: 0e:0a:b3:d3:70:3a:62:99:78:3d:2c:fd:74:63:f0:12:0f:fc: 57:31:1d:51:5e:aa:63:5c:cd:81:85:e4:99:0d:74:14:c2:83: 66:16:2d:67:e7:26:8b:7e:5f:98:52:45:a3:a6:62:07:e6:3b: 47:a1:fc:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwNjE4MTkzOTQ3WhcNMjUwNjI1MTkzOTQ3WjAYMRYwFAYD VQQDEw02ODUzMTYwNC1lZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IUOdrayYOa1d3IHjm0n5bfj3CB1cXeLqgv3qadEVlMzVY1AC2MiuzmF6bPe QBc/rNTCJNc4FR8cuQWb936gC5M6I22bCLYHMswk6eSKUdJh54dFd7mcIJB0+rQl WLFNaPzXPhotEb45j/T1/00xaoZLi/cOtz6jNGU1s7/Wp9IN4sFF5K3xwNUGVCMq 2TqMy/yFULrjCKjNBdkKKFQrltlJtPidDRvN6gXg1TyUNe71RwK/0SZbLUDpRJ34 TrZP4DUmfjflDn3YxhMbaiB7ReX7dVN4BKy1O2L8pyAkWVvSEMkhobMSRdnMZMEu h2CF7kdzyGZffoCWTtsxOytU+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJJ8tb0 D8wfv1ZoU9TBFrCnjMC5MB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3eqo0liB5/VLDx8/rOJILfmCDywFfjHArYUFFjchIw2SOrRR71ShG 21bAK+so2AczGiHaRVbdVQ7OSqDG0BP2yikbiwxSWkW+0p5kaTBKpUF28MJfv2Xz O5XCzPu5Vk89wCar0zg3WUKH1CtjMiAipXIG8RWfM9TUg19IcTGFwDvTutnUc12r hKKomtWJJUtn/AcvWC7ifvGiaBvgPpxzgIoRrINMg+mDekTM1rYq3XC+pHIsp8qQ +eGcc36HLta7V37IlSEOCrPTcDpimXg9LP10Y/ASD/xXMR1RXqpjXM2BheSZDXQU woNmFi1n5yaLfl+YUkWjpmIH5jtHofwg -----END CERTIFICATE-----Generated at Thu Jun 19 11:00:58 2025 by rpki-client