$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: bemUna82chKyGhlpVj0hVMOm65t2uk1rK4yvYAk1AMI= Subject key identifier: D2:6B:45:43:3B:15:F8:B5:CB:9D:66:1C:04:15:75:19:91:0C:B8:F4 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 0F89 Signing time: Mon 16 Jun 2025 17:33:08 +0000 Manifest this update: Mon 16 Jun 2025 17:33:07 +0000 Manifest next update: Mon 23 Jun 2025 17:33:07 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: dpyddvzfKRrQdE3w7YD01apG6lcqfTrzFt8uZ0R+4gs=) 2: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: QtpDimKOHqXsxnqa4q87zCBuPpMrfxyNN2d7cp4WlrA=) 3: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 6uU1bRzcclFeMC/RnwQZxh3s9UKuJJHVwL7cdGjMFOc=) 4: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: XWm8GaGIPPLP9AKtaT6KRszth65jZeSEF8vfSa7oAA0=) 5: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: PNhMIJG2WqhTSsHQs6Q3B5W+HPqAu/8Af4Ot4nkDDLQ=) 6: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: t18G/jUeuq8lptvTyxkqs2wnq4jb4g41EOSptQznrUs=) 7: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: Jk6V50ct0NhfCUNeq2rSB6SPY6PZ86y8Zd5FDESJ7kI=) 8: B490CD0621C911EB991D562EC4F9AE02.roa (hash: WNk4We2Ht/Om3rf3IbH7SVRsK901hQ7kL7sR1ONDJ8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4031 (0xfbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Jun 16 17:33:07 2025 GMT Not After : Jun 23 17:33:07 2025 GMT Subject: CN=68505554-1147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3c:2a:be:5c:af:5d:5d:5e:cd:9d:ce:88:4a: 47:34:e9:00:78:98:54:67:5c:9d:0d:4d:54:91:33: 9a:d2:57:65:81:19:72:d1:e0:bf:fd:26:02:70:8e: e4:bb:9b:88:00:e5:93:06:11:b2:28:e4:36:7a:b0: 5b:12:14:39:bb:d6:34:3f:91:00:9c:2c:80:3d:19: c6:d4:d4:1a:02:f1:f8:ac:5b:d4:50:51:60:5d:54: 21:ba:ea:55:eb:77:58:31:14:38:9c:4a:90:ea:5b: fd:02:99:a6:04:4f:ff:b5:6a:1f:e7:81:c1:c4:eb: 78:ae:af:07:5a:cf:d2:3d:63:b3:3d:da:06:c2:17: 62:c4:77:69:af:9c:cf:05:42:ed:19:fd:e9:80:7e: 65:64:ca:c4:da:bf:1a:b3:19:78:a6:eb:4b:f9:63: 0b:f1:1b:4a:3d:58:11:47:83:1c:0c:4a:ed:c1:00: 04:da:8d:97:0e:27:06:85:06:71:ab:71:c5:4b:5b: fd:3b:29:90:bc:c8:17:91:8c:19:62:35:95:67:c6: 57:f0:aa:23:2f:f7:2e:f2:d6:e9:64:80:47:a2:a9: b7:92:0b:84:7b:f1:72:ec:95:be:cc:40:99:62:c9: 97:5f:b1:c2:c6:40:af:4e:9b:23:f3:5d:e5:2a:63: d5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6B:45:43:3B:15:F8:B5:CB:9D:66:1C:04:15:75:19:91:0C:B8:F4 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:d2:2f:92:db:1f:a7:e3:0d:8f:2f:2b:2f:09:0d:f8:5b:51: b4:7f:60:c1:b5:06:c9:3c:74:69:bc:e0:47:e6:17:94:72:00: cb:44:2a:e7:b9:85:d1:63:13:c1:2c:63:af:b5:c6:18:60:74: a8:af:93:f0:69:77:a0:e9:3c:a6:6c:6f:b6:68:3e:40:25:4e: 0a:33:e8:f1:9d:f9:3c:97:47:66:fa:c4:0f:70:34:42:cd:74: 93:bf:79:d7:00:03:6d:d5:ef:29:ff:6a:a6:72:74:6a:2d:c0: 0b:cf:e6:50:e2:7d:56:23:e6:6b:5c:35:3f:7c:ab:9f:6c:ec: a4:3b:7d:18:fd:bb:1a:b5:63:7a:79:97:7d:d0:ac:b0:9d:97: 61:65:c0:97:e2:1c:3b:ab:1d:ad:23:6a:4c:5f:5b:68:35:75: 51:dc:a3:ae:43:83:4c:cf:c3:52:e5:90:81:5a:78:38:39:a9: 59:10:c6:9d:2f:88:33:af:a7:4e:d0:c9:44:94:05:6b:19:10: c1:1d:56:59:8c:11:c8:70:00:69:d0:f5:76:2f:9b:b9:ce:8f: fd:2e:f3:d7:7e:12:db:5c:12:52:b3:aa:88:08:e1:cf:e5:38: 14:a9:1f:04:f9:0b:5f:4a:fe:1f:3e:f7:5f:73:7a:90:5c:55: 27:d2:1e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUwNjE2MTczMzA3WhcNMjUwNjIzMTczMzA3WjAYMRYwFAYD VQQDEw02ODUwNTU1NC0xMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjwqvlyvXV1ezZ3OiEpHNOkAeJhUZ1ydDU1UkTOa0ldlgRly0eC//SYCcI7k u5uIAOWTBhGyKOQ2erBbEhQ5u9Y0P5EAnCyAPRnG1NQaAvH4rFvUUFFgXVQhuupV 63dYMRQ4nEqQ6lv9ApmmBE//tWof54HBxOt4rq8HWs/SPWOzPdoGwhdixHdpr5zP BULtGf3pgH5lZMrE2r8asxl4putL+WML8RtKPVgRR4McDErtwQAE2o2XDicGhQZx q3HFS1v9OymQvMgXkYwZYjWVZ8ZX8KojL/cu8tbpZIBHoqm3kguEe/Fy7JW+zECZ YsmXX7HCxkCvTpsj813lKmPV8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJrRUM7 Ffi1y51mHAQVdRmRDLj0MB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz0i+S2x+n4w2PLysvCQ34W1G0f2DBtQbJPHRpvOBH5heUcgDLRCrn uYXRYxPBLGOvtcYYYHSor5PwaXeg6TymbG+2aD5AJU4KM+jxnfk8l0dm+sQPcDRC zXSTv3nXAANt1e8p/2qmcnRqLcALz+ZQ4n1WI+ZrXDU/fKufbOykO30Y/bsatWN6 eZd90KywnZdhZcCX4hw7qx2tI2pMX1toNXVR3KOuQ4NMz8NS5ZCBWng4OalZEMad L4gzr6dO0MlElAVrGRDBHVZZjBHIcABp0PV2L5u5zo/9LvPXfhLbXBJSs6qICOHP 5TgUqR8E+QtfSv4fPvdfc3qQXFUn0h4L -----END CERTIFICATE-----Generated at Wed Jun 18 01:25:44 2025 by rpki-client