$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: KqJPWylYhuPrXBejYN6N6BFF0hbxW87XBVlnYU62bY4= Subject key identifier: CA:E1:80:1D:C3:7B:F4:F9:1D:41:57:4D:B8:9D:8C:BD:6D:9E:C0:8A Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: 2D Signing time: Thu 19 Jun 2025 07:07:54 +0000 Manifest this update: Thu 19 Jun 2025 07:07:53 +0000 Manifest next update: Thu 26 Jun 2025 07:07:53 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: gmBwHwwJD1S9B80Dqei5eA0su/XaTrg2Mz/dyGUsAiA=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: 44vHU0H/9/bs4kOPReZOgC2D0Y7H1F8Nu3vr76cFkxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: Jun 19 07:07:53 2025 GMT Not After : Jun 26 07:07:53 2025 GMT Subject: CN=6853b74a-5ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:98:65:d9:53:69:a1:a7:cb:b7:83:ab:be:00: 16:4c:ac:4b:f5:d3:fb:e2:2e:6f:1e:30:5d:27:21: 5f:ab:7f:84:a3:ba:82:09:a9:50:26:04:b3:08:17: 51:90:0a:db:1a:57:79:2f:76:2b:f9:45:c0:30:5a: a6:3a:28:7a:88:60:74:4d:13:9f:98:9a:58:26:e4: 05:c3:ee:c4:8d:6c:f9:76:20:96:cc:b4:ed:aa:55: b6:e4:e8:5a:75:84:05:29:7b:ee:2f:9d:9e:24:b3: aa:cf:ea:b1:63:bb:46:71:af:b1:36:43:74:67:96: 67:be:68:f7:28:10:ac:77:7a:f6:cd:88:7f:0f:49: 92:1e:ea:85:6c:93:ad:a5:47:09:98:ef:36:2b:0e: 01:3b:d0:a3:ce:11:64:ad:fd:f7:50:b9:a7:d1:94: 6e:86:6d:4c:52:be:00:d6:f2:2e:ff:74:87:1b:c0: 87:ff:7a:7d:01:7f:89:18:22:3e:c8:58:e6:16:e6: 9a:1d:85:76:5c:33:8f:7a:59:ea:fa:81:e3:12:ee: 32:a4:75:a7:78:57:fb:3c:80:a6:ec:ee:b1:ed:15: ce:41:6c:5c:5b:1b:a9:35:78:ea:53:28:df:6e:38: 36:55:bd:31:de:30:9d:50:54:4f:7a:87:c7:25:04: c6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E1:80:1D:C3:7B:F4:F9:1D:41:57:4D:B8:9D:8C:BD:6D:9E:C0:8A X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:f5:0f:4a:e8:c1:eb:49:ef:88:4b:27:f0:51:2f:e2:26:7e: bb:03:aa:4d:83:28:b9:24:91:0b:60:d7:fe:59:88:09:e2:79: fb:fe:19:91:e1:74:e6:96:6a:a0:c3:dc:61:e6:91:21:46:17: 3a:12:d2:bb:d9:fe:f1:a3:0e:87:db:21:ee:36:bb:55:71:c9: 14:20:c5:9a:eb:8a:d1:bc:d0:52:88:1a:d2:1a:e4:67:be:05: d8:ff:b8:b5:c0:39:dd:c9:3d:06:0c:41:7e:65:ab:7b:84:93: 6c:f7:2a:59:0d:4f:af:c6:1c:c9:25:2c:25:ca:0f:2a:90:68: 61:99:3e:e8:2e:55:cc:4f:5a:bc:16:08:2f:2e:55:d8:d1:80: 7d:6e:0e:8e:c8:5d:da:31:77:cb:5b:47:13:69:70:f9:d1:60: d7:6e:1c:2f:01:3e:84:16:6b:c5:64:98:82:04:00:7a:e7:bb: ad:a7:2a:42:bb:f2:05:45:cc:9e:40:94:98:57:b5:53:bd:9b: ec:52:a0:60:55:44:5d:7d:51:12:22:7a:40:f7:7a:ff:9f:7e: 76:df:4a:6a:4c:4e:a8:15:25:be:db:95:29:3d:97:a6:bb:3f: 1d:7e:f4:5e:78:50:15:20:7e:b1:69:04:1b:df:3e:67:b7:3b: 48:e5:0f:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoRTRFNEMyNDI0Nzc4NUMzNDJGRjM1OTA3RjdFMTFDNEFC QjM5OEI4MzAeFw0yNTA2MTkwNzA3NTNaFw0yNTA2MjYwNzA3NTNaMBgxFjAUBgNV BAMTDTY4NTNiNzRhLTVhZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZmGXZU2mhp8u3g6u+ABZMrEv10/viLm8eMF0nIV+rf4SjuoIJqVAmBLMIF1GQ CtsaV3kvdiv5RcAwWqY6KHqIYHRNE5+Ymlgm5AXD7sSNbPl2IJbMtO2qVbbk6Fp1 hAUpe+4vnZ4ks6rP6rFju0Zxr7E2Q3Rnlme+aPcoEKx3evbNiH8PSZIe6oVsk62l RwmY7zYrDgE70KPOEWSt/fdQuafRlG6GbUxSvgDW8i7/dIcbwIf/en0Bf4kYIj7I WOYW5podhXZcM496Wer6geMS7jKkdad4V/s8gKbs7rHtFc5BbFxbG6k1eOpTKN9u ODZVvTHeMJ1QVE96h8clBMZdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyuGAHcN7 9PkdQVdNuJ2MvW2ewIowHwYDVR0jBBgwFoAU5OTCQkd4XDQv81kH9+EcSrs5i4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzYyMjA2MzNDMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNU9UQ1FrZDRYRFF2ODFrSDktRWNTcnM1aTRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzYyMjA2MzNDMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERR djgxa0g5LUVjU3JzNWk0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMn1D0rowetJ74hLJ/BRL+ImfrsDqk2DKLkkkQtg1/5ZiAniefv+GZHh dOaWaqDD3GHmkSFGFzoS0rvZ/vGjDofbIe42u1VxyRQgxZrritG80FKIGtIa5Ge+ Bdj/uLXAOd3JPQYMQX5lq3uEk2z3KlkNT6/GHMklLCXKDyqQaGGZPuguVcxPWrwW CC8uVdjRgH1uDo7IXdoxd8tbRxNpcPnRYNduHC8BPoQWa8VkmIIEAHrnu62nKkK7 8gVFzJ5AlJhXtVO9m+xSoGBVRF19URIiekD3ev+ffnbfSmpMTqgVJb7blSk9l6a7 Px1+9F54UBUgfrFpBBvfPme3O0jlD6s= -----END CERTIFICATE-----Generated at Fri Jun 20 07:29:13 2025 by rpki-client