$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: 4Q9GzkKCDX1A6UZ6bMvKlCKIqffjQnP84BUUs4O0xHs= Subject key identifier: 75:78:1C:F3:75:FD:98:E5:D0:2E:DF:03:DD:7E:79:39:41:ED:8C:3F Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 06E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 06DD Signing time: Mon 16 Jun 2025 21:43:46 +0000 Manifest this update: Mon 16 Jun 2025 21:43:46 +0000 Manifest next update: Mon 23 Jun 2025 21:43:46 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: NJ+72I1bqX+E1RHiSKbmVlE9rBeVcazU1ybm3D4pnaQ=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1763 (0x6e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD, serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Jun 16 21:43:46 2025 GMT Not After : Jun 23 21:43:46 2025 GMT Subject: CN=68509012-d23f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cb:e6:70:0a:c8:1d:05:23:10:74:57:12:d6: 1d:45:81:d3:15:41:f5:0a:2f:54:54:3d:f8:c8:07: 31:d2:22:1d:3e:0a:30:de:96:f5:ed:8d:f2:92:2c: 53:44:86:05:d1:23:1d:4a:8c:f7:ee:25:c2:a1:ae: ad:94:c6:08:57:94:65:01:74:ca:62:78:c2:ed:8d: 17:eb:4e:e8:ab:b8:ba:d8:6c:c6:1c:2d:1f:02:2a: d8:24:e4:ac:95:f9:d1:b4:b8:22:e2:10:32:0e:b0: 7d:28:5b:e3:90:bb:c1:c2:aa:bb:d9:f5:ca:92:5d: 2b:35:8c:c9:3b:be:b2:d0:ac:66:f3:ea:3d:10:68: a7:bd:6f:a0:8c:65:25:06:bf:45:e8:51:9e:e2:16: 31:3b:ff:39:34:ac:51:5e:ce:e9:12:81:dc:0a:9d: 53:5a:98:27:2d:de:de:be:c0:6e:6c:9b:37:48:27: ca:22:33:6b:f6:a8:ae:f3:b2:4a:14:67:a7:cd:66: ef:91:09:3f:90:bc:f8:97:92:fe:00:61:ea:9c:51: 21:6d:75:bb:e4:11:89:27:28:75:c0:09:02:7b:b5: 8b:5b:78:c9:0d:b7:28:31:cd:22:73:2d:fe:74:3c: db:7f:44:aa:c5:ad:bb:55:41:d4:62:87:ef:86:3d: 4f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:78:1C:F3:75:FD:98:E5:D0:2E:DF:03:DD:7E:79:39:41:ED:8C:3F X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:67:16:f9:6d:00:03:36:ba:bb:bd:bf:ef:75:1a:cd:e6:c3: 9a:a2:71:96:49:3a:92:0e:8b:15:a6:70:82:ba:4a:9b:56:c3: 79:f9:ca:89:0f:13:a2:a4:3f:52:34:03:38:c9:8c:39:60:3f: 2a:71:c0:a1:2f:12:10:3b:88:5a:93:3b:07:dc:88:98:8f:f9: 16:1e:05:8a:70:98:25:86:08:1d:9f:20:81:56:81:1e:fe:7f: 10:17:70:47:6c:51:66:bb:af:09:a5:27:a1:00:09:4e:91:a6: ca:90:f2:a7:b2:21:7a:70:78:83:45:68:b0:e5:c9:82:73:65: bf:0f:5e:a2:ed:3b:bc:a9:94:a3:63:c5:bf:78:dc:16:d3:72: a3:a4:aa:ae:be:04:ae:04:9e:66:20:e5:74:d8:27:92:6b:57: e6:ce:93:77:9d:58:35:4f:7f:e0:21:23:3f:14:eb:bc:4f:cf: 02:44:4e:d4:af:e6:a4:96:86:b6:9a:d1:45:55:ba:4b:0f:5d: e4:fd:94:39:04:9d:38:65:3e:e1:ed:d6:ad:a0:7a:56:58:11: 37:45:09:2c:85:ef:f6:72:1d:be:98:fa:0c:63:9b:ed:bb:7a: fc:0c:b1:c4:98:d0:99:23:db:f1:26:f9:57:e7:d7:6b:bb:48: 81:25:43:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjUwNjE2MjE0MzQ2WhcNMjUwNjIzMjE0MzQ2WjAYMRYwFAYD VQQDEw02ODUwOTAxMi1kMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsvmcArIHQUjEHRXEtYdRYHTFUH1Ci9UVD34yAcx0iIdPgow3pb17Y3ykixT RIYF0SMdSoz37iXCoa6tlMYIV5RlAXTKYnjC7Y0X607oq7i62GzGHC0fAirYJOSs lfnRtLgi4hAyDrB9KFvjkLvBwqq72fXKkl0rNYzJO76y0Kxm8+o9EGinvW+gjGUl Br9F6FGe4hYxO/85NKxRXs7pEoHcCp1TWpgnLd7evsBubJs3SCfKIjNr9qiu87JK FGenzWbvkQk/kLz4l5L+AGHqnFEhbXW75BGJJyh1wAkCe7WLW3jJDbcoMc0icy3+ dDzbf0Sqxa27VUHUYofvhj1PAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV4HPN1 /Zjl0C7fA91+eTlB7Yw/MB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIZxb5bQADNrq7vb/vdRrN5sOaonGWSTqSDosVpnCCukqbVsN5+cqJ DxOipD9SNAM4yYw5YD8qccChLxIQO4hakzsH3IiYj/kWHgWKcJglhggdnyCBVoEe /n8QF3BHbFFmu68JpSehAAlOkabKkPKnsiF6cHiDRWiw5cmCc2W/D16i7Tu8qZSj Y8W/eNwW03KjpKquvgSuBJ5mIOV02CeSa1fmzpN3nVg1T3/gISM/FOu8T88CRE7U r+akloa2mtFFVbpLD13k/ZQ5BJ04ZT7h7datoHpWWBE3RQkshe/2ch2+mPoMY5vt u3r8DLHEmNCZI9vxJvlX59dru0iBJUOt -----END CERTIFICATE-----Generated at Wed Jun 18 06:44:36 2025 by rpki-client