$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft File: 0gZrYZNOd88mep3MOL9d7iHwe6M.mft (raw, json) Hash identifier: x5vaZvIZmGS1+vmCTeRFyiEAAtehdjMQz04OsMCwPBM= Subject key identifier: 8B:70:2C:1E:95:F8:60:C5:1E:D2:4A:F0:D1:38:42:65:80:46:B0:FA Authority key identifier: D2:06:6B:61:93:4E:77:CF:26:7A:9D:CC:38:BF:5D:EE:21:F0:7B:A3 Certificate issuer: /CN=A91EBBAF/serialNumber=D2066B61934E77CF267A9DCC38BF5DEE21F07BA3 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft Manifest number: 0F Signing time: Sun 15 Jun 2025 07:09:59 +0000 Manifest this update: Sun 15 Jun 2025 07:09:59 +0000 Manifest next update: Sun 22 Jun 2025 07:09:59 +0000 Files and hashes: 1: 0gZrYZNOd88mep3MOL9d7iHwe6M.crl (hash: jPYuTxCzJD7woEfozRHnIrpddYJ2Xt93ER7x10ygSdk=) 2: C3C056A636DD11F08C82E269C4F9AE02.roa (hash: HBKXI2AjuuTAqBzBKbi8y9q49xdsPFITyMYY5p5WuOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=D2066B61934E77CF267A9DCC38BF5DEE21F07BA3 Validity Not Before: Jun 15 07:09:59 2025 GMT Not After : Jun 22 07:09:59 2025 GMT Subject: CN=684e71c7-cab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:4a:c5:d4:b5:39:4e:52:70:fe:db:28:ec:c5: 38:9b:5e:4c:83:9c:fb:b0:fa:47:a8:c9:a6:9d:ad: 91:15:4a:c5:e6:ef:ce:36:80:62:d7:b9:13:4a:93: 7a:13:df:af:fd:e2:75:bd:f6:af:cf:9c:5c:03:a2: 3e:70:af:34:be:b0:c0:6d:99:da:d5:e4:35:da:a8: 59:64:e9:2d:f6:63:d9:19:e8:a9:06:a0:fe:42:fc: 96:b6:f5:53:36:f2:6b:b2:17:ba:21:de:67:75:ca: d1:82:3d:89:05:bf:9c:4f:0d:a5:fc:9e:4f:ec:8e: 58:77:b0:44:0b:68:c8:21:ea:d4:75:3c:52:e9:24: 27:c6:6f:40:ef:7f:c4:06:8d:3d:ac:cf:8f:0b:68: 08:d2:7a:a3:b8:da:e3:b9:d6:79:83:43:23:22:92: b4:8f:21:96:7a:07:c5:be:82:49:5b:09:ef:f1:b1: ce:ad:54:f9:29:95:87:4d:c7:f9:62:06:6b:1a:f6: 96:39:d0:db:c6:65:bb:2d:b6:4b:84:1c:25:3c:4d: be:24:bc:6f:16:49:8a:79:7e:14:7a:ef:60:07:d9: 33:ce:a9:20:a2:6f:c5:23:68:5f:8a:6c:c1:e2:59: 69:7e:da:6d:f3:62:33:f2:01:b2:e7:36:92:99:a9: ca:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:70:2C:1E:95:F8:60:C5:1E:D2:4A:F0:D1:38:42:65:80:46:B0:FA X509v3 Authority Key Identifier: keyid:D2:06:6B:61:93:4E:77:CF:26:7A:9D:CC:38:BF:5D:EE:21:F0:7B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ed:ea:73:ed:45:13:01:20:9f:cd:3c:1b:e0:4c:77:3d:af: 45:35:0b:0d:42:e9:fb:aa:e0:6c:75:77:64:6c:7f:15:9a:5e: cf:63:73:02:28:14:00:c7:05:45:1d:3f:ca:b6:ed:7e:50:e0: 0c:00:e7:b2:a5:dc:cb:55:23:8b:38:37:d4:dd:7a:2c:fb:94: d5:c5:11:04:e0:22:ab:ab:e9:e5:41:a1:44:27:a7:b0:b5:f4: 38:a8:83:21:12:ca:8b:92:99:15:44:69:d8:1b:da:6f:ae:3e: fc:c7:37:b3:87:f1:6d:7b:51:c3:f0:95:23:df:2f:ef:bf:55: fc:18:83:8b:84:d3:fc:e4:4c:4f:91:7d:7d:e9:68:f8:50:c8: 86:a9:d0:88:d9:64:42:8e:59:ed:4c:57:5e:68:86:1d:e8:7c: d6:5e:18:08:76:8f:13:4e:d8:5d:3d:3a:c6:66:c5:36:60:1b: 21:0e:68:80:84:af:b7:f8:02:ed:41:bc:e2:0b:46:3b:be:5b: dc:b6:49:53:f8:0c:d3:e9:90:d2:c1:43:b0:7d:75:7a:8c:0d: f6:b1:dc:23:de:c0:8e:38:1e:72:fb:a7:b9:02:b8:31:c1:98: de:ea:7b:b7:03:54:9b:43:f7:7d:ce:ac:26:70:4e:f3:d6:04: fb:e3:87:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoRDIwNjZCNjE5MzRFNzdDRjI2N0E5RENDMzhCRjVERUUy MUYwN0JBMzAeFw0yNTA2MTUwNzA5NTlaFw0yNTA2MjIwNzA5NTlaMBgxFjAUBgNV BAMTDTY4NGU3MWM3LWNhYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD7SsXUtTlOUnD+2yjsxTibXkyDnPuw+keoyaadrZEVSsXm7842gGLXuRNKk3oT 36/94nW99q/PnFwDoj5wrzS+sMBtmdrV5DXaqFlk6S32Y9kZ6KkGoP5C/Ja29VM2 8muyF7oh3md1ytGCPYkFv5xPDaX8nk/sjlh3sEQLaMgh6tR1PFLpJCfGb0Dvf8QG jT2sz48LaAjSeqO42uO51nmDQyMikrSPIZZ6B8W+gklbCe/xsc6tVPkplYdNx/li Bmsa9pY50NvGZbsttkuEHCU8Tb4kvG8WSYp5fhR672AH2TPOqSCib8UjaF+KbMHi WWl+2m3zYjPyAbLnNpKZqcrHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi3AsHpX4 YMUe0krw0ThCZYBGsPowHwYDVR0jBBgwFoAU0gZrYZNOd88mep3MOL9d7iHwe6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzEwQzE5RDMwMzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyLzBnWnJZWk5PZDg4bWVwM01PTDlkN2lId2U2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGdacllaTk9kODhtZXAzTU9MOWQ3aUh3ZTZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzEwQzE5RDMwMzZERDExRjA5Njg2MjE2NkM0RjlBRTAyLzBnWnJZWk5PZDg4 bWVwM01PTDlkN2lId2U2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA/t6nPtRRMBIJ/NPBvgTHc9r0U1Cw1C6fuq4Gx1d2RsfxWaXs9jcwIo FADHBUUdP8q27X5Q4AwA57Kl3MtVI4s4N9Tdeiz7lNXFEQTgIqur6eVBoUQnp7C1 9DiogyESyouSmRVEadgb2m+uPvzHN7OH8W17UcPwlSPfL++/VfwYg4uE0/zkTE+R fX3paPhQyIap0IjZZEKOWe1MV15ohh3ofNZeGAh2jxNO2F09OsZmxTZgGyEOaICE r7f4Au1BvOILRju+W9y2SVP4DNPpkNLBQ7B9dXqMDfax3CPewI44HnL7p7kCuDHB mN7qe7cDVJtD933OrCZwTvPWBPvjh2I= -----END CERTIFICATE-----Generated at Mon Jun 16 06:58:12 2025 by rpki-client