$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft File: K6PqbAvX8YRghmD5ogTlEYZaAN0.mft (raw, json) Hash identifier: YW5bWRlqzNCT6xWbVE1IJiogK87wdOVIaw3vtbvhH4M= Subject key identifier: 81:55:47:30:4B:D9:13:4E:B8:9C:B7:BA:48:53:A2:FF:73:D9:E4:7C Authority key identifier: 2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD Certificate issuer: /CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Certificate serial: 0925 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft Manifest number: 091E Signing time: Sat 14 Jun 2025 20:05:39 +0000 Manifest this update: Sat 14 Jun 2025 20:05:38 +0000 Manifest next update: Sat 21 Jun 2025 20:05:38 +0000 Files and hashes: 1: K6PqbAvX8YRghmD5ogTlEYZaAN0.crl (hash: OGc5lrzTcmSjSHuJvWwtzxcNUxe7aKjdDreIufhAc4k=) 2: 33F713A8A3CF11EAA31D8C20C4F9AE02.roa (hash: U+2Kae/qqfcPAGDUNj2rc7ly1La28a/4nOUamtVuvAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2341 (0x925) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1E8B, serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Validity Not Before: Jun 14 20:05:38 2025 GMT Not After : Jun 21 20:05:38 2025 GMT Subject: CN=684dd613-4146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:26:87:75:08:ff:ab:ce:90:bf:f0:fd:7b:41: b7:88:49:39:28:ce:77:ce:33:3d:68:00:5e:2d:7c: ad:47:9c:cf:36:d8:41:66:8d:d2:75:bd:70:81:eb: 56:fc:bc:96:87:fa:7f:08:c7:c9:82:14:15:4d:cb: fd:86:2b:8e:be:75:96:f9:fb:91:08:7e:27:1b:c3: 1b:15:2b:25:84:41:a2:d8:a2:0f:bb:82:bd:34:e3: c4:f4:fd:64:ce:97:ed:d0:4b:d0:0d:cf:7a:97:5c: 19:c3:65:d0:2c:cb:4f:31:b7:a0:de:bd:92:d9:f7: 6c:72:94:82:e9:a7:c6:06:a6:40:0f:2b:69:d4:f0: 3a:a4:fa:e7:80:2c:92:9e:dc:70:69:2c:ce:13:78: dc:4c:1e:a6:09:0b:7d:3f:88:c0:32:06:8f:a5:7a: a0:02:24:ef:5e:f2:3e:0a:53:c9:d6:ff:f4:15:96: 76:59:7a:09:67:ee:8e:10:a4:33:75:36:7d:83:f2: 8f:d4:bb:24:17:8c:18:20:67:b3:71:64:77:c5:4e: 72:35:fe:be:5d:8e:1e:d7:36:80:ec:34:10:17:13: 75:9c:d3:5d:ec:61:74:75:23:f7:ff:36:06:c3:58: 8a:6f:6f:30:23:a3:57:d7:ea:26:02:c2:c7:6e:3d: d3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:55:47:30:4B:D9:13:4E:B8:9C:B7:BA:48:53:A2:FF:73:D9:E4:7C X509v3 Authority Key Identifier: keyid:2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:2b:17:09:04:fb:17:1c:05:3f:7b:af:62:42:2b:cc:0e:e0: 5e:8d:1d:70:82:ba:f9:3d:3f:93:b2:59:27:e5:02:49:62:04: ea:3e:80:22:fb:58:2d:70:d4:0b:f5:45:37:49:53:be:4f:8f: e9:a7:47:a0:8e:11:1d:7f:a1:b5:b1:30:27:79:a0:75:fd:42: a6:f6:06:38:74:a2:0d:13:ee:d3:92:78:00:0b:83:22:46:7f: b7:92:9b:77:66:cf:c5:7d:48:30:9e:33:84:ae:49:00:52:2f: 9b:79:2e:6b:f5:d5:be:a2:96:6f:72:94:93:38:a6:50:f8:5c: 08:2d:8a:07:d7:21:63:f9:fe:0f:e7:e0:40:d5:81:88:56:ae: 94:7c:07:dd:cc:64:62:d0:98:7c:25:e8:83:e4:78:86:32:11: 32:a6:c0:ec:1e:18:14:ee:34:6c:0d:d3:d0:50:cb:ae:6b:4b: 2a:06:1e:9a:5a:14:96:37:b3:21:6e:7d:ab:d4:3b:53:a5:7f: 6f:ba:b2:35:ca:c2:94:13:8a:99:87:bf:1a:b3:53:a8:30:c3: 16:7f:64:f8:88:48:b7:52:f1:bd:13:de:98:52:09:9f:0d:fd: 43:0a:94:20:fc:ff:54:1b:10:fb:5f:74:2e:fd:32:7d:a6:d4: df:21:5d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFFOEIxMTAvBgNVBAUTKDJCQTNFQTZDMEJEN0YxODQ2MDg2NjBGOUEyMDRFNTEx ODY1QTAwREQwHhcNMjUwNjE0MjAwNTM4WhcNMjUwNjIxMjAwNTM4WjAYMRYwFAYD VQQDEw02ODRkZDYxMy00MTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSaHdQj/q86Qv/D9e0G3iEk5KM53zjM9aABeLXytR5zPNthBZo3Sdb1wgetW /LyWh/p/CMfJghQVTcv9hiuOvnWW+fuRCH4nG8MbFSslhEGi2KIPu4K9NOPE9P1k zpft0EvQDc96l1wZw2XQLMtPMbeg3r2S2fdscpSC6afGBqZADytp1PA6pPrngCyS ntxwaSzOE3jcTB6mCQt9P4jAMgaPpXqgAiTvXvI+ClPJ1v/0FZZ2WXoJZ+6OEKQz dTZ9g/KP1LskF4wYIGezcWR3xU5yNf6+XY4e1zaA7DQQFxN1nNNd7GF0dSP3/zYG w1iKb28wI6NX1+omAsLHbj3TxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFVRzBL 2RNOuJy3ukhTov9z2eR8MB8GA1UdIwQYMBaAFCuj6mwL1/GEYIZg+aIE5RGGWgDd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUU4Qi84MDdERkRBMEEz Q0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZUmdobUQ1b2dUbEVZWmFB TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s2UHFiQXZYOFlSZ2htRDVvZ1RsRVlaYUFOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUU4Qi84MDdERkRBMEEzQ0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZ UmdobUQ1b2dUbEVZWmFBTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcKxcJBPsXHAU/e69iQivMDuBejR1wgrr5PT+Tslkn5QJJYgTqPoAi +1gtcNQL9UU3SVO+T4/pp0egjhEdf6G1sTAneaB1/UKm9gY4dKINE+7TkngAC4Mi Rn+3kpt3Zs/FfUgwnjOErkkAUi+beS5r9dW+opZvcpSTOKZQ+FwILYoH1yFj+f4P 5+BA1YGIVq6UfAfdzGRi0Jh8JeiD5HiGMhEypsDsHhgU7jRsDdPQUMuua0sqBh6a WhSWN7Mhbn2r1DtTpX9vurI1ysKUE4qZh78as1OoMMMWf2T4iEi3UvG9E96YUgmf Df1DCpQg/P9UGxD7X3Qu/TJ9ptTfIV2S -----END CERTIFICATE-----Generated at Sun Jun 15 09:35:12 2025 by rpki-client