$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft File: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft (raw, json) Hash identifier: ipATkcn1bqbhbwkk8hlQNlBNSVPU62E9V/ypKsAkf10= Subject key identifier: 34:15:65:0E:D3:25:A9:25:3A:96:06:08:4D:F6:74:C2:90:81:13:C4 Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0D67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft Manifest number: 0D60 Signing time: Mon 16 Jun 2025 17:57:03 +0000 Manifest this update: Mon 16 Jun 2025 17:57:03 +0000 Manifest next update: Mon 23 Jun 2025 17:57:03 +0000 Files and hashes: 1: 9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl (hash: OFZAtOTp6SWhD6mVbpQ1yJmni2AULG7DSYa8AvxKEbs=) 2: C9819022CE7011E98E86DD52C4F9AE02.roa (hash: EM624Ee5dZvup/p2NN7lZAjAZv2Q+/2EJL827rz91tU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3431 (0xd67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571, serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: Jun 16 17:57:03 2025 GMT Not After : Jun 23 17:57:03 2025 GMT Subject: CN=68505aef-a3ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:25:e3:19:4f:4b:e0:63:37:cc:fc:ad:87:3c: 20:02:fc:d2:95:ff:52:47:29:39:aa:dc:67:c5:33: 3c:71:95:12:10:88:ee:3c:3f:a6:67:05:61:62:21: 8a:37:22:8e:fa:92:33:e8:cb:16:28:c2:f9:14:a3: 04:cd:e7:58:5d:2f:c0:fd:59:65:3e:bd:6e:91:1c: 41:e9:ea:cb:7e:86:56:74:89:5f:d3:30:11:53:c6: 04:32:e1:d4:58:c4:0d:f4:f5:70:99:8b:c9:92:c6: c8:51:c4:ea:dc:d3:4c:9a:c4:32:f5:50:85:c3:5b: 3c:54:ef:e6:8b:79:b8:e1:b6:5a:b0:94:9b:0e:00: 1a:bc:39:c2:44:4e:82:bf:36:d5:f0:6a:23:37:77: 1e:ad:5d:26:e2:c3:da:04:18:28:20:6d:58:ac:fc: 39:aa:cc:cb:ab:ed:0f:31:bd:8e:3e:53:9e:c9:d1: a0:42:4f:34:a5:37:f7:e0:d8:de:c2:53:8b:de:b4: c4:cd:d7:e7:7a:1a:f7:86:0b:10:73:54:8f:d4:6a: 16:a1:2f:c2:b3:fc:96:f2:2f:53:1d:9b:75:39:0d: 46:06:30:4e:e1:bd:08:d0:96:e3:2f:f4:9a:49:8a: 1d:0e:f1:44:bf:26:2d:a7:06:13:a5:0f:84:24:bf: 1d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:15:65:0E:D3:25:A9:25:3A:96:06:08:4D:F6:74:C2:90:81:13:C4 X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:36:cc:64:12:1c:2f:d8:1c:33:a6:9b:7f:c2:46:eb:95:a1: 71:5c:71:be:f0:ca:a4:2e:0a:62:3e:49:7a:bc:81:e1:3e:fa: f8:ec:f4:4b:b6:2e:30:b3:14:74:36:a3:f3:2f:30:7e:f8:c5: ab:c0:56:d2:d9:50:d8:62:5f:fb:45:6c:2f:f2:a1:62:c7:2d: 5c:97:6a:b8:ac:39:f6:bb:58:02:82:88:06:ca:ed:26:bc:e6: 06:9e:ba:90:a7:cd:06:d3:bf:cf:62:9e:96:10:5b:e7:97:61: 9c:eb:a0:94:5d:41:25:20:61:ee:fd:2a:cb:20:c4:d9:bd:dd: bb:e3:54:7e:9f:ee:82:9a:d9:e6:9c:21:68:f2:b7:7d:f2:db: 79:63:34:4a:3f:0a:91:7b:07:75:0d:cf:e3:63:49:e4:fe:a0: b0:d4:3c:6a:2b:8a:a6:76:47:3e:52:e0:45:ef:bf:e7:22:0c: 31:1b:93:50:17:61:a7:c0:ea:87:3e:89:f1:5d:bb:e1:99:aa: 20:d6:1c:a7:7a:0f:4b:f3:e6:46:c8:78:79:9a:da:5a:87:69: be:ec:84:b9:b2:18:94:b0:9e:ed:37:b8:66:71:9a:d9:e2:71: a1:ef:34:46:2a:7a:70:7b:35:05:a7:58:3c:9c:bb:c0:59:62: cb:52:c0:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjUwNjE2MTc1NzAzWhcNMjUwNjIzMTc1NzAzWjAYMRYwFAYD VQQDEw02ODUwNWFlZi1hM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyXjGU9L4GM3zPythzwgAvzSlf9SRyk5qtxnxTM8cZUSEIjuPD+mZwVhYiGK NyKO+pIz6MsWKML5FKMEzedYXS/A/VllPr1ukRxB6erLfoZWdIlf0zARU8YEMuHU WMQN9PVwmYvJksbIUcTq3NNMmsQy9VCFw1s8VO/mi3m44bZasJSbDgAavDnCRE6C vzbV8GojN3cerV0m4sPaBBgoIG1YrPw5qszLq+0PMb2OPlOeydGgQk80pTf34Nje wlOL3rTEzdfnehr3hgsQc1SP1GoWoS/Cs/yW8i9THZt1OQ1GBjBO4b0I0JbjL/Sa SYodDvFEvyYtpwYTpQ+EJL8dCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQVZQ7T JaklOpYGCE32dMKQgRPEMB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU3MS9FQ0QyREY5NkNFNkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBj TFJtVnNuLTFQX1lQOENTZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCONsxkEhwv2Bwzppt/wkbrlaFxXHG+8MqkLgpiPkl6vIHhPvr47PRL ti4wsxR0NqPzLzB++MWrwFbS2VDYYl/7RWwv8qFixy1cl2q4rDn2u1gCgogGyu0m vOYGnrqQp80G07/PYp6WEFvnl2Gc66CUXUElIGHu/SrLIMTZvd2741R+n+6Cmtnm nCFo8rd98tt5YzRKPwqRewd1Dc/jY0nk/qCw1DxqK4qmdkc+UuBF77/nIgwxG5NQ F2GnwOqHPonxXbvhmaog1hyneg9L8+ZGyHh5mtpah2m+7IS5shiUsJ7tN7hmcZrZ 4nGh7zRGKnpwezUFp1g8nLvAWWLLUsD8 -----END CERTIFICATE-----Generated at Mon Jun 16 23:53:14 2025 by rpki-client