$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: 7LtYpFw1BUNYJQ//ifM2wUNjqJnNfDBz431Z2MlyfoY= Subject key identifier: F2:16:3B:49:37:42:E7:BA:1A:01:73:71:62:27:D2:39:6C:CE:86:66 Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0DB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0D78 Signing time: Wed 18 Jun 2025 17:56:54 +0000 Manifest this update: Wed 18 Jun 2025 17:56:54 +0000 Manifest next update: Wed 25 Jun 2025 17:56:54 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: ozVr90Y8vSswW7RwIzDwnErJjm9KaRdnQlRC1SgLIOs=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3506 (0xdb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Jun 18 17:56:54 2025 GMT Not After : Jun 25 17:56:54 2025 GMT Subject: CN=6852fde6-d9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:12:62:2c:7e:2b:98:13:68:64:7c:a5:38:76: c6:28:1d:78:7e:de:02:14:33:9a:02:f6:b4:fc:20: 3e:0b:e5:e6:f8:df:b7:7b:ba:51:47:0f:b2:35:e1: 1f:6b:66:be:ff:de:7e:1c:0e:b0:04:19:22:ef:f5: 6b:5d:89:86:c9:a8:df:fc:16:19:82:40:46:4e:e9: 46:13:ba:db:6d:ef:0a:9d:55:0e:bf:09:2f:57:d5: 48:1b:33:be:d6:5d:3d:7c:72:3d:df:78:57:ba:e0: dd:1a:c6:37:e6:bd:a5:21:f9:b9:5e:d6:31:43:7f: 87:d8:e4:91:33:ed:81:cd:26:e9:f6:a3:13:3b:58: 5e:a7:cd:d5:dc:90:5a:6d:25:54:e5:62:3b:7c:cb: c8:66:cc:59:aa:3a:3e:e8:26:38:ee:6a:db:79:79: a9:e6:20:aa:8d:95:aa:91:70:c8:a4:ed:6f:6d:b7: ff:5a:52:2a:56:87:b5:5d:ba:c5:f0:d3:aa:11:93: 42:44:9d:99:5c:ef:0e:80:c1:ce:02:f9:e3:0d:73: 92:88:d5:24:eb:73:84:bd:23:c5:f3:fa:b4:4b:a9: 73:39:34:1b:a6:7b:c0:a5:9f:97:6a:35:a2:6a:13: 0b:f9:48:cf:bc:39:eb:fa:4f:0c:af:d9:de:25:77: 78:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:16:3B:49:37:42:E7:BA:1A:01:73:71:62:27:D2:39:6C:CE:86:66 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:67:df:ef:94:b0:c2:94:a2:12:a9:90:b3:36:45:68:f9:63: 43:bb:cc:e9:23:27:a1:73:98:a1:42:96:ae:28:bd:5f:fe:a5: ec:29:b6:22:17:5e:e0:be:80:50:e3:55:82:d3:8e:fb:e9:21: e9:e0:d5:00:3b:92:8a:28:99:72:a2:9e:8e:04:ff:b1:6e:d3: e1:65:8f:3d:a1:12:0a:c3:a8:21:0f:0e:2f:67:33:2c:91:6d: c4:ee:39:76:bf:d9:a4:b2:92:76:e3:e3:c1:af:ab:b3:5d:e6: f2:74:47:67:b7:06:41:56:a9:5c:15:98:cb:ce:fc:37:8c:21: 97:11:ba:90:51:e0:7f:d1:d2:60:f6:bd:27:71:87:1a:e9:7a: 1d:6c:49:2b:63:58:3a:54:5b:b8:4d:ff:84:31:76:a5:76:19: 6e:30:35:92:b1:4f:8e:fa:07:d5:03:bc:1c:5d:4c:b1:38:ce: ec:d5:c5:f5:38:8b:24:ff:bf:e4:e5:3b:aa:a2:c1:f1:7d:58: ea:1d:1d:fb:f5:bb:8d:2e:2f:93:98:2b:4c:0a:e1:9c:bb:f7: a8:51:e2:56:16:dd:09:e6:1d:a8:81:1d:79:d8:f5:43:ef:2e: 32:b2:2f:25:61:2b:6d:57:27:8a:1a:57:5e:46:f5:34:e6:44: f5:93:d6:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUwNjE4MTc1NjU0WhcNMjUwNjI1MTc1NjU0WjAYMRYwFAYD VQQDEw02ODUyZmRlNi1kOWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RJiLH4rmBNoZHylOHbGKB14ft4CFDOaAva0/CA+C+Xm+N+3e7pRRw+yNeEf a2a+/95+HA6wBBki7/VrXYmGyajf/BYZgkBGTulGE7rbbe8KnVUOvwkvV9VIGzO+ 1l09fHI933hXuuDdGsY35r2lIfm5XtYxQ3+H2OSRM+2BzSbp9qMTO1hep83V3JBa bSVU5WI7fMvIZsxZqjo+6CY47mrbeXmp5iCqjZWqkXDIpO1vbbf/WlIqVoe1XbrF 8NOqEZNCRJ2ZXO8OgMHOAvnjDXOSiNUk63OEvSPF8/q0S6lzOTQbpnvApZ+XajWi ahML+UjPvDnr+k8Mr9neJXd4nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIWO0k3 Que6GgFzcWIn0jlszoZmMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCZ9/vlLDClKISqZCzNkVo+WNDu8zpIyehc5ihQpauKL1f/qXsKbYi F17gvoBQ41WC04776SHp4NUAO5KKKJlyop6OBP+xbtPhZY89oRIKw6ghDw4vZzMs kW3E7jl2v9mkspJ24+PBr6uzXebydEdntwZBVqlcFZjLzvw3jCGXEbqQUeB/0dJg 9r0ncYca6XodbEkrY1g6VFu4Tf+EMXaldhluMDWSsU+O+gfVA7wcXUyxOM7s1cX1 OIsk/7/k5TuqosHxfVjqHR379buNLi+TmCtMCuGcu/eoUeJWFt0J5h2ogR152PVD 7y4ysi8lYSttVyeKGldeRvU05kT1k9Yq -----END CERTIFICATE-----Generated at Fri Jun 20 11:04:13 2025 by rpki-client