$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft File: iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft (raw, json) Hash identifier: 3BJqn3185H3cC6fm4IGwklDcsgfBWFIHguxuGqYkNNM= Subject key identifier: DF:6D:33:73:B6:8C:EC:63:49:41:C7:EB:CD:23:85:7A:15:D8:4D:25 Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft Manifest number: 0160 Signing time: Tue 17 Jun 2025 03:05:33 +0000 Manifest this update: Tue 17 Jun 2025 03:05:33 +0000 Manifest next update: Tue 24 Jun 2025 03:05:33 +0000 Files and hashes: 1: iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl (hash: rmtjICXi0hhe4livT2f/WyqMQ01IWISjLI5ocp8f28M=) 2: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (hash: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Jun 17 03:05:33 2025 GMT Not After : Jun 24 03:05:33 2025 GMT Subject: CN=6850db7d-bd2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:6f:8e:e1:bf:55:6c:00:30:06:d5:e9:68:06: b9:b7:c3:05:bb:69:76:ce:04:aa:8a:e7:b9:12:c9: 2e:e5:e7:50:6c:01:57:46:18:21:7d:94:bc:72:2a: 0c:2b:bf:cf:b2:6c:d1:78:bb:d9:ad:df:8e:a8:93: 21:1b:86:a6:7f:a9:e9:9a:d8:c6:17:9e:01:fb:53: be:cf:b6:a9:19:4a:95:f7:c0:94:3e:dd:1b:2e:f0: b4:37:35:18:2f:11:71:60:88:3f:38:19:d8:50:d2: 2e:8d:ea:a2:f5:3e:f4:c1:a0:26:b8:f1:76:bb:f0: fe:be:e1:4d:da:3d:2a:92:4d:46:55:5a:b7:72:df: 62:dd:e4:01:8c:71:89:53:7d:dc:dc:90:6c:b5:66: a4:4b:a9:5c:d7:8c:62:75:e6:45:ad:8d:32:5b:02: a3:62:05:9a:cd:e9:33:16:c2:9a:5e:43:4f:fb:25: a3:27:56:c9:f5:43:ed:70:08:eb:2f:a9:2d:ff:eb: d3:44:77:a2:88:25:98:dc:70:39:fa:9a:1c:74:16: df:28:f3:2a:ed:e4:37:6d:dc:ef:bf:2b:59:ef:e6: d5:54:f1:55:8a:ca:62:99:29:07:ca:82:9d:b9:4f: d3:53:50:40:53:40:77:6c:37:ac:4e:b6:51:94:19: 58:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:6D:33:73:B6:8C:EC:63:49:41:C7:EB:CD:23:85:7A:15:D8:4D:25 X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:ef:3b:1f:29:52:08:f1:58:3f:99:33:b8:30:a0:3f:36:42: a2:40:b2:9b:3a:01:77:f3:9b:2a:e6:5f:aa:86:59:6a:fa:07: d5:54:51:17:1c:bc:c4:8f:3e:0c:e6:1f:b4:6c:c2:3b:6e:28: 3d:16:f0:0c:4f:fa:7c:55:b9:1a:f8:09:af:80:dc:af:8c:eb: b2:36:e3:56:44:69:0a:c6:dc:5b:ce:0e:a9:a2:fe:27:d4:66: 5c:e9:e8:af:cb:57:4d:5d:45:34:48:b7:f1:60:47:b9:bb:29: 80:30:c6:78:a1:b4:3a:fa:3a:8e:a8:a9:0f:09:19:70:ef:e3: b1:62:76:81:04:58:15:6c:29:38:26:55:2c:2e:84:f5:de:d4: fc:69:36:cd:bf:07:66:c0:80:42:df:b4:4c:6e:f0:8a:aa:20: ae:96:a6:cc:01:9b:40:7e:10:18:7c:78:41:3d:47:3c:71:9c: f7:ca:55:f7:ac:d3:75:ca:5a:1c:8f:77:7d:18:f2:b6:ae:61: b6:c5:57:7e:4c:4a:ac:54:03:da:2a:c1:66:1f:00:99:1a:db: f9:c2:4d:e5:0d:f4:9e:bb:fd:7a:60:8a:ae:96:ce:32:28:dd: 41:ea:ba:d6:60:15:94:ea:05:ac:ef:9d:a6:4e:e0:00:ea:ef: c2:56:06:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUwNjE3MDMwNTMzWhcNMjUwNjI0MDMwNTMzWjAYMRYwFAYD VQQDEw02ODUwZGI3ZC1iZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8G+O4b9VbAAwBtXpaAa5t8MFu2l2zgSqiue5Esku5edQbAFXRhghfZS8cioM K7/PsmzReLvZrd+OqJMhG4amf6npmtjGF54B+1O+z7apGUqV98CUPt0bLvC0NzUY LxFxYIg/OBnYUNIujeqi9T70waAmuPF2u/D+vuFN2j0qkk1GVVq3ct9i3eQBjHGJ U33c3JBstWakS6lc14xideZFrY0yWwKjYgWazekzFsKaXkNP+yWjJ1bJ9UPtcAjr L6kt/+vTRHeiiCWY3HA5+pocdBbfKPMq7eQ3bdzvvytZ7+bVVPFVispimSkHyoKd uU/TU1BAU0B3bDesTrZRlBlYNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9tM3O2 jOxjSUHH680jhXoV2E0lMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0U2Mi8yMUQ1Q0NERTM0MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhX STcxT1E1aHVpQTlxc1RoSlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf7zsfKVII8Vg/mTO4MKA/NkKiQLKbOgF385sq5l+qhllq+gfVVFEX HLzEjz4M5h+0bMI7big9FvAMT/p8Vbka+AmvgNyvjOuyNuNWRGkKxtxbzg6pov4n 1GZc6eivy1dNXUU0SLfxYEe5uymAMMZ4obQ6+jqOqKkPCRlw7+OxYnaBBFgVbCk4 JlUsLoT13tT8aTbNvwdmwIBC37RMbvCKqiCulqbMAZtAfhAYfHhBPUc8cZz3ylX3 rNN1ylocj3d9GPK2rmG2xVd+TEqsVAPaKsFmHwCZGtv5wk3lDfSeu/16YIquls4y KN1B6rrWYBWU6gWs752mTuAA6u/CVgag -----END CERTIFICATE-----Generated at Wed Jun 18 01:45:35 2025 by rpki-client