$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft File: bBl9pJIs_dxOmMiEbgOn19DkC3E.mft (raw, json) Hash identifier: VOl9O7JYj2ra1P1PFdCvLV4ZMvSozcOZ7hYS6BIJrKw= Subject key identifier: 64:06:D4:6B:1B:ED:DC:C3:50:75:50:F3:F2:E5:3F:E5:40:0F:75:DF Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 0688 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft Manifest number: 0673 Signing time: Sat 14 Jun 2025 22:05:48 +0000 Manifest this update: Sat 14 Jun 2025 22:05:48 +0000 Manifest next update: Sat 21 Jun 2025 22:05:48 +0000 Files and hashes: 1: bBl9pJIs_dxOmMiEbgOn19DkC3E.crl (hash: XCJNkSvSvFXarWCsI4SxujPOzyGf4vaeAYY8v72a0d4=) 2: ECCDCA04809A11EB9093216EC4F9AE02.roa (hash: //P4Dwc0yC8aNI6dL5grZWmAPuUGPAB2QMNisS1s91o=) 3: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (hash: sO+5ZUlz1ZfgN4m9jGacz4xKmgRg5xQ7WfaHnr5n8EY=) 4: 7D6F53547F0411EBB8CAEE2BC4F9AE02.roa (hash: VneqGQNP18iG+RzoK9rzGT1v0y/EKMK88ucBZjMvCCE=) 5: 08C849682F6E11EDA8ABA74BC4F9AE02.roa (hash: hmEwq8j3GlUgHO4QkFMDsLDsFyKYgDX+OadwrR+PhRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1, serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: Jun 14 22:05:48 2025 GMT Not After : Jun 21 22:05:48 2025 GMT Subject: CN=684df23c-5950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:45:59:0f:6b:e7:5f:1d:7b:8f:ab:fc:af: e3:69:1f:d7:be:a5:e7:ef:4c:db:87:f4:4d:0c:16: d4:5c:44:89:0e:88:a0:fe:d9:03:b6:19:f1:e3:f9: 74:7c:ad:26:2c:95:8b:ef:5d:6a:a4:37:ea:dd:ba: 50:dd:63:8e:ae:70:97:94:23:42:d0:7f:18:bd:a2: 29:90:b8:ae:1d:d9:96:00:ee:b6:78:5a:66:63:4b: d9:8d:df:1b:7d:19:ad:be:15:24:1d:04:0f:f1:6a: 33:72:a7:80:39:ca:7a:be:4b:c0:73:3c:4e:ec:55: 5b:9d:cf:59:b9:1d:ef:b4:1b:56:3a:87:e2:3a:10: e7:ff:c9:59:8e:8b:77:a4:51:3a:37:bc:e1:a3:d0: af:cf:04:71:7e:b4:a9:aa:1c:9b:ae:f2:ab:f6:07: 48:18:83:2e:c9:48:15:e6:fc:a8:af:1a:70:71:d7: db:cf:47:44:81:70:8c:ee:30:24:7d:87:4d:e1:fa: cb:79:20:d7:c3:bd:b4:8c:a4:61:80:80:ae:21:0f: a0:c4:55:33:2a:8d:ed:fb:bf:aa:ca:d4:d5:71:33: 40:7d:8e:21:ca:d8:e7:30:7d:71:0a:9e:65:b0:95: f6:85:cc:23:66:14:19:33:db:8f:43:23:ec:d2:2d: e2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:06:D4:6B:1B:ED:DC:C3:50:75:50:F3:F2:E5:3F:E5:40:0F:75:DF X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:24:47:86:29:ad:28:a5:02:79:84:90:1d:e3:b9:13:14:c3: 2f:53:f4:4f:b4:d9:5e:a4:f6:4c:b3:a2:90:00:c4:e7:cc:8a: fe:41:d3:1a:1a:43:16:62:00:33:c5:5b:35:1a:75:f6:d0:1c: 37:5d:7f:9d:76:5a:8d:69:7a:f5:16:e9:ab:30:ad:fc:54:ae: a6:a6:6e:ba:fd:0b:41:df:bb:cb:68:e9:e9:31:b5:72:df:1b: 9b:f4:11:58:ee:cd:15:b8:93:e9:a0:e5:5a:a1:d6:80:16:3e: a4:12:c3:d1:eb:a5:b4:38:51:39:49:44:8e:08:96:f4:69:64: 97:3f:e9:44:bb:3e:14:1a:5b:0a:8c:f9:fd:ce:2c:39:08:5b: b6:da:14:f0:d5:b0:bc:bd:ad:40:92:f4:33:9d:64:f8:18:41: d1:d8:6f:6e:1f:1a:ff:4f:d2:5c:a9:06:e1:d6:22:cf:b9:cb: b4:1c:11:45:09:dc:41:73:3f:75:d1:1c:cd:37:87:7a:2f:4e: 69:98:23:74:37:9a:da:e7:4f:3c:4a:b0:3b:0d:1f:87:0c:ea: 61:9c:75:ae:a5:9c:64:8a:35:94:43:50:80:43:39:77:d6:45: a7:d6:59:8c:c4:50:0e:55:00:56:ef:55:ff:37:2a:3a:d0:64: c9:b1:e5:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjUwNjE0MjIwNTQ4WhcNMjUwNjIxMjIwNTQ4WjAYMRYwFAYD VQQDEw02ODRkZjIzYy01OTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMZFWQ9r518de4+r/K/jaR/XvqXn70zbh/RNDBbUXESJDoig/tkDthnx4/l0 fK0mLJWL711qpDfq3bpQ3WOOrnCXlCNC0H8YvaIpkLiuHdmWAO62eFpmY0vZjd8b fRmtvhUkHQQP8WozcqeAOcp6vkvAczxO7FVbnc9ZuR3vtBtWOofiOhDn/8lZjot3 pFE6N7zho9CvzwRxfrSpqhybrvKr9gdIGIMuyUgV5vyorxpwcdfbz0dEgXCM7jAk fYdN4frLeSDXw720jKRhgICuIQ+gxFUzKo3t+7+qytTVcTNAfY4hytjnMH1xCp5l sJX2hcwjZhQZM9uPQyPs0i3ixwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQG1Gsb 7dzDUHVQ8/LlP+VAD3XfMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjJFMS8zRjY5Q0M2NjdGMDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19k eE9tTWlFYmdPbjE5RGtDM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQJEeGKa0opQJ5hJAd47kTFMMvU/RPtNlepPZMs6KQAMTnzIr+QdMa GkMWYgAzxVs1GnX20Bw3XX+ddlqNaXr1FumrMK38VK6mpm66/QtB37vLaOnpMbVy 3xub9BFY7s0VuJPpoOVaodaAFj6kEsPR66W0OFE5SUSOCJb0aWSXP+lEuz4UGlsK jPn9ziw5CFu22hTw1bC8va1AkvQznWT4GEHR2G9uHxr/T9JcqQbh1iLPucu0HBFF CdxBcz910RzNN4d6L05pmCN0N5ra5088SrA7DR+HDOphnHWupZxkijWUQ1CAQzl3 1kWn1lmMxFAOVQBW71X/Nyo60GTJseVo -----END CERTIFICATE-----Generated at Mon Jun 16 22:11:45 2025 by rpki-client