$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft File: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft (raw, json) Hash identifier: WVyvI4k7uE6SPuoFkKgu7Ubfawyo++1JdNAMYA3TOnk= Subject key identifier: 7D:43:70:A2:1B:C4:95:B0:F2:4A:4A:31:6F:C9:76:E3:85:FF:BF:C1 Authority key identifier: 44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47 Certificate issuer: /CN=A91F3C11/serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447 Certificate serial: 098C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft Manifest number: 098C Signing time: Sat 14 Jun 2025 14:58:59 +0000 Manifest this update: Sat 14 Jun 2025 14:58:58 +0000 Manifest next update: Sat 21 Jun 2025 14:58:58 +0000 Files and hashes: 1: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl (hash: L2rSOnRzB5ZUIUDUNUMrxMMeglLJUeG8VJY9dC79cFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2444 (0x98c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C11, serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447 Validity Not Before: Jun 14 14:58:58 2025 GMT Not After : Jun 21 14:58:58 2025 GMT Subject: CN=684d8e33-69ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:76:4b:7e:80:2f:89:a5:33:ac:e4:ca:e3:b9: 37:d1:9a:a3:4f:be:cd:44:f4:76:e4:28:d6:df:bf: 05:4d:00:eb:69:b6:dd:db:35:2e:02:c0:ef:02:9a: 06:a1:4e:80:01:ea:05:17:17:98:13:12:e2:51:5d: 90:bf:88:88:3d:6f:e3:39:f5:51:61:e7:1c:98:d7: 69:12:ab:7f:fb:00:4f:4d:a2:33:51:4d:3f:7d:95: d2:d5:43:64:d0:74:68:b2:6e:37:9f:b6:6f:eb:e3: 94:74:92:d1:27:f2:fb:b0:c6:91:92:59:eb:17:db: 39:07:57:fc:c9:08:ac:a6:76:c6:83:7c:d6:a0:e2: 01:a2:a5:8f:c7:68:a8:17:1a:0f:20:77:12:78:13: e2:7f:c1:bc:33:dc:d3:9d:9a:9a:1f:0e:e7:ec:4c: c8:5c:9e:77:71:6a:1d:7d:25:e4:63:6c:1d:c9:56: f1:0c:09:08:52:2e:79:58:db:14:c9:d4:aa:36:e4: 74:7d:ec:12:b0:bb:4e:b3:e7:4b:87:83:1a:02:35: 8e:c8:31:9b:fb:ba:22:97:48:19:5d:5c:73:7b:27: 36:fd:df:12:d6:96:40:06:62:10:b8:5a:f1:42:bb: 98:71:ca:36:88:2b:bb:29:26:64:6d:cb:1c:cf:c2: ce:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:43:70:A2:1B:C4:95:B0:F2:4A:4A:31:6F:C9:76:E3:85:FF:BF:C1 X509v3 Authority Key Identifier: keyid:44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:68:ed:64:04:60:a4:dd:53:db:b0:1d:78:a1:b8:00:56:16: f6:b8:78:f8:e7:a5:72:fa:74:ac:f3:28:1e:0d:d6:5a:73:3a: a9:93:aa:f7:28:3d:da:31:86:27:b8:50:a2:4d:2d:8b:85:99: df:60:30:35:70:f3:98:1b:df:a0:eb:f4:98:74:bc:ff:34:94: fa:18:dd:56:68:91:f0:95:10:de:ce:6f:78:ba:df:0a:38:73: 9d:23:cd:b7:54:1e:d4:46:74:61:d9:87:dd:10:8c:7b:fd:ba: 87:e5:4c:ff:14:a1:ab:87:7c:60:bd:49:65:c9:f6:77:d8:56: be:34:0e:b7:6f:e5:0d:78:7b:65:d2:67:48:51:e9:7c:59:9f: da:25:2c:50:c4:e2:84:ad:2d:4e:12:8a:7e:48:4e:c5:17:16: c4:47:2b:13:d0:e0:a4:6e:e2:2a:09:6b:c5:a7:63:5f:ce:e3: 13:81:c7:9b:1f:2e:56:30:66:00:2a:9a:91:1e:42:1c:33:a3: b0:0b:19:5c:b3:7b:90:18:ba:eb:91:0f:03:e4:25:53:e9:4e: 8b:4a:e6:cd:a4:c5:a6:ec:2d:f4:6f:36:cf:c7:0f:bf:32:bb: 89:82:00:02:fc:d4:05:22:fc:4b:3b:a0:81:bb:93:32:f9:8f: ad:7a:d1:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDMTExMTAvBgNVBAUTKDQ0RjhEMTUzQjc3QjA5MkIxMUVERjAwQTkzRTRCQjY0 MDkxQzI0NDcwHhcNMjUwNjE0MTQ1ODU4WhcNMjUwNjIxMTQ1ODU4WjAYMRYwFAYD VQQDEw02ODRkOGUzMy02OWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83ZLfoAviaUzrOTK47k30ZqjT77NRPR25CjW378FTQDrabbd2zUuAsDvApoG oU6AAeoFFxeYExLiUV2Qv4iIPW/jOfVRYeccmNdpEqt/+wBPTaIzUU0/fZXS1UNk 0HRosm43n7Zv6+OUdJLRJ/L7sMaRklnrF9s5B1f8yQispnbGg3zWoOIBoqWPx2io FxoPIHcSeBPif8G8M9zTnZqaHw7n7EzIXJ53cWodfSXkY2wdyVbxDAkIUi55WNsU ydSqNuR0fewSsLtOs+dLh4MaAjWOyDGb+7oil0gZXVxzeyc2/d8S1pZABmIQuFrx QruYcco2iCu7KSZkbcscz8LOFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1DcKIb xJWw8kpKMW/JduOF/7/BMB8GA1UdIwQYMBaAFET40VO3ewkrEe3wCpPku2QJHCRH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0MxMS81MTk4RkI5NjhG N0IxMUVBOUFDQjdFN0ZDNEY5QUUwMi9SUGpSVTdkN0NTc1I3ZkFLay1TN1pBa2NK RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQalJVN2Q3Q1NzUjdmQUtrLVM3WkFrY0pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0MxMS81MTk4RkI5NjhGN0IxMUVBOUFDQjdFN0ZDNEY5QUUwMi9SUGpSVTdkN0NT c1I3ZkFLay1TN1pBa2NKRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALaO1kBGCk3VPbsB14obgAVhb2uHj456Vy+nSs8ygeDdZaczqpk6r3 KD3aMYYnuFCiTS2LhZnfYDA1cPOYG9+g6/SYdLz/NJT6GN1WaJHwlRDezm94ut8K OHOdI823VB7URnRh2YfdEIx7/bqH5Uz/FKGrh3xgvUllyfZ32Fa+NA63b+UNeHtl 0mdIUel8WZ/aJSxQxOKErS1OEop+SE7FFxbERysT0OCkbuIqCWvFp2NfzuMTgceb Hy5WMGYAKpqRHkIcM6OwCxlcs3uQGLrrkQ8D5CVT6U6LSubNpMWm7C30bzbPxw+/ MruJggAC/NQFIvxLO6CBu5My+Y+tetHE -----END CERTIFICATE-----Generated at Mon Jun 16 14:48:02 2025 by rpki-client