$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft File: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft (raw, json) Hash identifier: 8qZ2UU8As+cjRyJ+QgnD6g18fWYwFqG0NuHVHEbmYTA= Subject key identifier: 1E:B6:51:85:63:42:FD:7B:04:E0:7F:E0:01:5B:4C:01:E9:98:DC:E2 Authority key identifier: B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 Certificate issuer: /CN=A91F3099/serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft Manifest number: 04BD Signing time: Mon 16 Jun 2025 23:32:22 +0000 Manifest this update: Mon 16 Jun 2025 23:32:22 +0000 Manifest next update: Mon 23 Jun 2025 23:32:22 +0000 Files and hashes: 1: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl (hash: T82w8S+ap8NbfIJfXmlLPK2/4ad/EBK7VJ9jhwi+WkM=) 2: 99961F74315E11EC953A8215C4F9AE02.roa (hash: OEZzXzknZfZ5+s266LCfZPiCa3g7F7GJ2hmeU6hbgO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3099, serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Validity Not Before: Jun 16 23:32:22 2025 GMT Not After : Jun 23 23:32:22 2025 GMT Subject: CN=6850a986-c335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:65:bd:57:3a:6c:d1:ea:6d:0f:97:d1:e9:64: 3d:4a:99:6c:f4:e5:ae:bc:2e:82:70:1f:31:45:da: 6e:54:ed:2a:b2:f7:3a:71:da:17:2a:47:02:46:9f: d1:f0:f9:04:9d:67:73:79:89:c9:e3:ae:ef:f5:72: 2d:2f:c5:c2:ba:e2:1e:a8:75:7f:3d:06:06:50:ae: 2c:58:af:0f:25:97:d0:48:ef:3d:53:e4:62:da:e0: 9d:1d:78:7f:c5:2f:f1:e7:40:f9:90:c3:6e:2f:ba: c7:dd:d5:41:e0:5b:15:4b:af:80:3e:6d:67:42:6d: 96:de:e0:b4:89:e7:6f:60:a0:24:74:d8:63:4f:7d: c0:69:6b:62:24:7d:13:07:91:b4:3d:3f:fd:97:5d: e0:d0:79:24:5e:a7:d7:65:30:8d:78:a7:b8:d2:01: c5:88:fb:42:45:fa:ba:c0:0f:de:b0:2a:b0:da:58: e5:0f:ea:0d:ad:aa:dd:5f:70:c9:ff:4f:b0:d4:32: e5:ef:9b:e4:2b:f1:c7:bc:21:78:a8:64:fb:88:15: 5e:f1:ec:3d:70:af:27:02:1d:62:21:3d:4f:15:df: dd:4e:4a:9d:2a:87:eb:eb:5d:40:42:cf:dc:e1:3f: a9:43:a0:e1:34:a8:e7:1c:9c:1b:f4:34:ca:9f:da: d9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B6:51:85:63:42:FD:7B:04:E0:7F:E0:01:5B:4C:01:E9:98:DC:E2 X509v3 Authority Key Identifier: keyid:B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b4:3c:d6:86:a6:aa:6c:62:27:5d:ba:0a:8e:d3:6c:50:41: b3:3b:f1:6c:24:e0:8d:8d:73:a7:31:fe:5d:b7:17:40:8c:08: cc:3e:f9:1c:d1:fb:84:83:c4:16:18:9c:a7:b0:41:80:6e:74: 5b:c4:90:4d:93:87:61:ec:01:9b:7c:c1:d8:8a:5d:6e:94:1c: ac:72:77:da:b2:b2:21:de:47:86:fd:5e:6b:d7:55:18:e9:12: 5d:e9:40:80:61:7b:86:85:90:54:31:9c:87:f7:26:73:68:db: 92:f7:14:8c:4b:1a:9b:1b:39:a8:cb:5b:c7:79:66:d7:a0:b6: 8d:77:2c:83:f9:96:cb:5a:ff:93:95:18:f1:ef:0a:ce:d3:89: d7:45:22:cc:c2:ee:0e:3a:4c:ff:05:44:c8:67:2d:2e:bd:00: 41:2e:75:1d:01:cd:19:da:5b:cf:ad:5e:fc:e5:62:29:2e:9d: 40:2d:49:ad:7b:14:eb:2a:34:29:7a:b3:70:1d:39:c3:68:19: ab:d1:ba:d9:38:21:e7:3a:99:5e:4f:88:82:b7:3f:d5:71:da: 5e:69:84:04:35:b1:b8:8f:7b:35:b4:47:57:22:a8:ca:c8:02: 58:1b:70:84:f1:54:60:3e:be:01:e4:11:c8:1f:06:79:a9:0e: 9b:9b:2e:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwOTkxMTAvBgNVBAUTKEIwRjQ3QTY5NkFDRDc3Qzc0QTM0NzNDNENEMTcxREEz NzIxQ0VDRDAwHhcNMjUwNjE2MjMzMjIyWhcNMjUwNjIzMjMzMjIyWjAYMRYwFAYD VQQDEw02ODUwYTk4Ni1jMzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2W9Vzps0eptD5fR6WQ9Spls9OWuvC6CcB8xRdpuVO0qsvc6cdoXKkcCRp/R 8PkEnWdzeYnJ467v9XItL8XCuuIeqHV/PQYGUK4sWK8PJZfQSO89U+Ri2uCdHXh/ xS/x50D5kMNuL7rH3dVB4FsVS6+APm1nQm2W3uC0iedvYKAkdNhjT33AaWtiJH0T B5G0PT/9l13g0HkkXqfXZTCNeKe40gHFiPtCRfq6wA/esCqw2ljlD+oNrardX3DJ /0+w1DLl75vkK/HHvCF4qGT7iBVe8ew9cK8nAh1iIT1PFd/dTkqdKofr611AQs/c 4T+pQ6DhNKjnHJwb9DTKn9rZPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB62UYVj Qv17BOB/4AFbTAHpmNziMB8GA1UdIwQYMBaAFLD0emlqzXfHSjRzxM0XHaNyHOzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzA5OS9FQjRFRkJDNjMx NUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4ZEtOSFBFelJjZG8zSWM3 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NQUjZhV3JOZDhkS05IUEV6UmNkbzNJYzdOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzA5OS9FQjRFRkJDNjMxNUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4 ZEtOSFBFelJjZG8zSWM3TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYtDzWhqaqbGInXboKjtNsUEGzO/FsJOCNjXOnMf5dtxdAjAjMPvkc 0fuEg8QWGJynsEGAbnRbxJBNk4dh7AGbfMHYil1ulByscnfasrIh3keG/V5r11UY 6RJd6UCAYXuGhZBUMZyH9yZzaNuS9xSMSxqbGzmoy1vHeWbXoLaNdyyD+ZbLWv+T lRjx7wrO04nXRSLMwu4OOkz/BUTIZy0uvQBBLnUdAc0Z2lvPrV785WIpLp1ALUmt exTrKjQperNwHTnDaBmr0brZOCHnOpleT4iCtz/VcdpeaYQENbG4j3s1tEdXIqjK yAJYG3CE8VRgPr4B5BHIHwZ5qQ6bmy5j -----END CERTIFICATE-----Generated at Wed Jun 18 00:00:51 2025 by rpki-client