$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft File: fJ9yIp7REllMdyLTwhtRBeKfxIo.mft (raw, json) Hash identifier: 34fZv5mQUPJbQg2OeWqXnv58AhQqlZCILtCpJ0Axnzw= Subject key identifier: 29:34:B2:80:FB:9E:2C:25:E5:74:13:16:F0:72:B9:07:31:AE:31:02 Authority key identifier: 7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A Certificate issuer: /CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft Manifest number: 0173 Signing time: Tue 17 Jun 2025 02:57:30 +0000 Manifest this update: Tue 17 Jun 2025 02:57:29 +0000 Manifest next update: Tue 24 Jun 2025 02:57:29 +0000 Files and hashes: 1: fJ9yIp7REllMdyLTwhtRBeKfxIo.crl (hash: 1C7VWxmWup1N6siKXPCliYiFD+fI0CyZgb4JwQ3w2tE=) 2: 0D99319006F011EFA8C8D445C4F9AE02.roa (hash: A4DVK+hVAcm077tOI0UtMRITW1ft4Rq073mjOE1b4lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77AD, serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Validity Not Before: Jun 17 02:57:29 2025 GMT Not After : Jun 24 02:57:29 2025 GMT Subject: CN=6850d99a-7e55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8a:06:ec:57:d1:55:2a:04:b5:9e:6b:ac:e9: 60:71:1f:0f:a2:32:e3:a9:48:19:05:15:95:d3:93: d1:13:97:d1:b5:91:8e:ea:b1:21:b5:9b:da:0f:42: f1:2a:f9:c1:9c:0c:a9:72:60:49:68:a6:ee:c7:62: 1e:99:79:fe:27:cc:f7:5c:fa:47:77:fa:26:bf:e1: e8:ea:b8:21:6b:dc:f9:5a:0d:6c:65:da:9b:c3:41: f0:a9:83:07:1a:d3:5d:d4:1a:75:69:b3:c8:1d:be: d2:bc:ee:7b:06:6d:cc:3d:98:b7:dc:7c:71:67:91: 2e:42:1a:c1:6b:13:02:2e:8e:94:40:a0:87:93:94: fc:eb:81:fd:ff:a8:75:5e:fa:27:2c:95:48:75:da: ce:b6:83:38:20:03:0b:2d:1b:d0:8a:aa:5b:16:a8: e2:61:97:07:25:a5:3a:81:7a:1f:4e:50:0d:6e:09: b4:6c:b2:e7:7f:87:f2:2a:9c:62:ea:cc:38:83:33: 3a:56:cd:a4:12:88:a1:ff:93:7a:fd:41:01:05:a8: 8f:1b:85:fc:b3:5b:5e:b1:56:39:24:96:13:83:d5: 47:9a:b1:dc:4e:1a:62:5d:1a:06:b1:f6:11:fb:43: 79:76:53:ab:6a:6f:61:6a:e6:e0:0d:86:80:a3:a1: 54:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:34:B2:80:FB:9E:2C:25:E5:74:13:16:F0:72:B9:07:31:AE:31:02 X509v3 Authority Key Identifier: keyid:7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:98:56:15:13:27:72:12:2b:84:fb:6e:70:63:7f:16:39:8a: 4b:47:d2:c8:8f:7f:31:65:7c:21:6d:bf:2f:b2:0b:d4:4e:bf: 77:fe:49:22:13:cb:6f:46:89:42:85:30:fb:a6:87:7a:ca:77: 32:db:0e:35:64:44:7d:6b:94:b0:81:24:11:9b:73:2c:de:19: 19:60:75:fb:95:a7:a3:09:87:4d:dd:37:25:05:2d:4c:56:f8: 74:13:69:1f:43:29:f2:b2:11:c7:92:3b:89:c5:73:f4:7d:2e: c0:d2:b6:05:8f:fc:dd:20:cf:ce:54:aa:ff:d5:cd:0a:9c:39: 70:8e:8d:da:7a:db:f3:32:ad:50:ec:4c:49:18:aa:fe:db:e4: c5:48:23:32:dc:b0:67:50:81:71:99:eb:69:97:1e:31:0b:4a: 06:36:a4:61:20:d4:e6:a5:b4:4f:5c:f7:1f:60:29:55:df:70: 15:24:41:89:21:f2:b4:1a:d4:21:08:17:fb:9a:83:4f:df:01: 16:07:1c:69:ec:73:27:80:f0:fe:c3:a9:32:6b:58:18:72:d8: 02:d0:9e:cc:f9:79:d4:d2:d6:7a:d6:60:ff:77:a0:45:18:a9: 18:e8:e3:b8:be:6d:53:f8:d3:9d:eb:9c:90:96:a1:52:43:72: 11:76:71:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3QUQxMTAvBgNVBAUTKDdDOUY3MjIyOUVEMTEyNTk0Qzc3MjJEM0MyMUI1MTA1 RTI5RkM0OEEwHhcNMjUwNjE3MDI1NzI5WhcNMjUwNjI0MDI1NzI5WjAYMRYwFAYD VQQDEw02ODUwZDk5YS03ZTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzooG7FfRVSoEtZ5rrOlgcR8PojLjqUgZBRWV05PRE5fRtZGO6rEhtZvaD0Lx KvnBnAypcmBJaKbux2IemXn+J8z3XPpHd/omv+Ho6rgha9z5Wg1sZdqbw0HwqYMH GtNd1Bp1abPIHb7SvO57Bm3MPZi33HxxZ5EuQhrBaxMCLo6UQKCHk5T864H9/6h1 XvonLJVIddrOtoM4IAMLLRvQiqpbFqjiYZcHJaU6gXofTlANbgm0bLLnf4fyKpxi 6sw4gzM6Vs2kEoih/5N6/UEBBaiPG4X8s1tesVY5JJYTg9VHmrHcThpiXRoGsfYR +0N5dlOram9haubgDYaAo6FUpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCk0soD7 niwl5XQTFvByuQcxrjECMB8GA1UdIwQYMBaAFHyfciKe0RJZTHci08IbUQXin8SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdBRC9DRTZDMjM3QTIw QTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVsbE1keUxUd2h0UkJlS2Z4 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKOXlJcDdSRWxsTWR5TFR3aHRSQmVLZnhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzdBRC9DRTZDMjM3QTIwQTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVs bE1keUxUd2h0UkJlS2Z4SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADmFYVEydyEiuE+25wY38WOYpLR9LIj38xZXwhbb8vsgvUTr93/kki E8tvRolChTD7pod6yncy2w41ZER9a5SwgSQRm3Ms3hkZYHX7laejCYdN3TclBS1M Vvh0E2kfQynyshHHkjuJxXP0fS7A0rYFj/zdIM/OVKr/1c0KnDlwjo3aetvzMq1Q 7ExJGKr+2+TFSCMy3LBnUIFxmetplx4xC0oGNqRhINTmpbRPXPcfYClV33AVJEGJ IfK0GtQhCBf7moNP3wEWBxxp7HMngPD+w6kya1gYctgC0J7M+XnU0tZ61mD/d6BF GKkY6OO4vm1T+NOd65yQlqFSQ3IRdnGh -----END CERTIFICATE-----Generated at Tue Jun 17 20:15:17 2025 by rpki-client