$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: UliYorVRj5BjkID6NHKQnYXx9GHBaWC9w0DdzPdpYrg= Subject key identifier: E5:69:AB:0B:67:6F:AF:9D:06:CC:1E:01:83:76:46:9F:67:53:DC:24 Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 20F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 20DF Signing time: Mon 16 Jun 2025 16:01:15 +0000 Manifest this update: Mon 16 Jun 2025 16:01:15 +0000 Manifest next update: Mon 23 Jun 2025 16:01:15 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: jVXxDeurKYY4TsC8H7058PiSDukZTDIcydnGw52XZ3A=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 16:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8433 (0x20f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Jun 16 16:01:15 2025 GMT Not After : Jun 23 16:01:15 2025 GMT Subject: CN=68503fcb-e7f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c3:e5:88:0f:38:79:83:6c:3d:c3:74:2c:05: 03:fc:b5:5b:6b:61:3e:a0:60:b2:08:98:5b:c8:74: 5b:aa:64:ba:7b:2e:87:be:e1:0a:2c:e2:a9:cd:bf: ad:fa:cd:79:4e:52:01:a4:af:d5:c3:e5:49:29:e4: 51:4a:bf:3a:78:74:2f:cb:ae:a2:2a:16:ef:50:1c: ad:49:c3:2e:0e:3a:83:9a:a6:cd:25:2c:c2:96:c6: 65:1b:4c:16:65:46:65:f5:f6:dc:52:16:55:a4:3b: e6:e7:4c:c2:97:53:99:77:69:3f:fb:fc:91:30:84: 94:57:1c:68:4d:aa:5f:e4:35:9f:70:13:00:53:6d: ec:7b:da:28:c8:f6:4d:ab:23:72:aa:b6:82:20:f2: bb:2c:eb:b8:85:8e:60:72:6f:ac:3c:b1:17:2c:c5: 8c:ed:7a:53:da:25:c2:c8:eb:e8:6a:4a:ea:17:4d: f5:7f:fc:32:49:9e:17:ec:92:08:7f:8e:69:63:b9: a6:af:97:f7:14:20:ff:29:4b:52:76:55:e3:dd:a8: 7f:7d:61:86:cd:47:a3:f4:62:b7:f6:1e:a4:c3:e6: 52:dc:3e:0c:93:d5:03:a5:a4:23:28:77:b6:b2:37: 89:38:dc:89:78:ba:ee:f2:32:5f:5f:08:f2:52:c7: 4d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:69:AB:0B:67:6F:AF:9D:06:CC:1E:01:83:76:46:9F:67:53:DC:24 X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:46:a1:05:3e:b1:c7:a5:db:eb:29:9b:23:41:d7:38:65:18: c4:41:4e:6b:5c:a3:40:93:33:83:13:e5:9a:56:4b:6b:40:99: 45:82:65:5a:71:39:69:1d:94:8f:e0:6d:95:a4:28:29:0d:65: 71:13:8b:46:7e:eb:b0:07:ff:42:68:68:a5:1e:59:68:42:f7: 41:8f:6a:9d:a0:98:72:3a:8b:25:0c:1a:4c:db:db:e9:b4:bb: f2:98:93:bc:88:f0:e4:cc:56:88:81:29:29:d3:88:f1:9f:c3: dc:22:71:08:f0:43:1c:81:34:3c:a6:ad:a5:12:15:07:d0:39: 5d:f4:93:2c:07:e7:2c:0e:b9:c3:90:7c:af:1c:b7:49:34:de: a2:27:91:ee:ea:cf:60:33:df:0f:34:bf:6e:00:47:e5:2a:95: ec:04:ca:cf:e5:43:4c:e6:de:57:75:ec:3f:06:80:d4:1b:1b: 37:97:0e:79:c4:63:a9:08:5e:df:fc:d0:af:c0:02:82:73:6f: 22:bc:22:d8:db:2d:60:f6:d8:26:3a:bb:79:67:02:57:9e:ad: 65:e1:9f:11:2c:d9:58:37:cd:f3:6d:33:22:f1:cf:85:51:e5: 36:0c:95:03:47:5e:d5:61:b6:dc:36:a3:76:38:a3:3d:3a:58: 59:12:f2:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwNjE2MTYwMTE1WhcNMjUwNjIzMTYwMTE1WjAYMRYwFAYD VQQDEw02ODUwM2ZjYi1lN2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MPliA84eYNsPcN0LAUD/LVba2E+oGCyCJhbyHRbqmS6ey6HvuEKLOKpzb+t +s15TlIBpK/Vw+VJKeRRSr86eHQvy66iKhbvUBytScMuDjqDmqbNJSzClsZlG0wW ZUZl9fbcUhZVpDvm50zCl1OZd2k/+/yRMISUVxxoTapf5DWfcBMAU23se9ooyPZN qyNyqraCIPK7LOu4hY5gcm+sPLEXLMWM7XpT2iXCyOvoakrqF031f/wySZ4X7JII f45pY7mmr5f3FCD/KUtSdlXj3ah/fWGGzUej9GK39h6kw+ZS3D4Mk9UDpaQjKHe2 sjeJONyJeLru8jJfXwjyUsdNdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVpqwtn b6+dBsweAYN2Rp9nU9wkMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFRqEFPrHHpdvrKZsjQdc4ZRjEQU5rXKNAkzODE+WaVktrQJlFgmVa cTlpHZSP4G2VpCgpDWVxE4tGfuuwB/9CaGilHlloQvdBj2qdoJhyOoslDBpM29vp tLvymJO8iPDkzFaIgSkp04jxn8PcInEI8EMcgTQ8pq2lEhUH0Dld9JMsB+csDrnD kHyvHLdJNN6iJ5Hu6s9gM98PNL9uAEflKpXsBMrP5UNM5t5Xdew/BoDUGxs3lw55 xGOpCF7f/NCvwAKCc28ivCLY2y1g9tgmOrt5ZwJXnq1l4Z8RLNlYN83zbTMi8c+F UeU2DJUDR17VYbbcNqN2OKM9OlhZEvIq -----END CERTIFICATE-----Generated at Tue Jun 17 10:44:39 2025 by rpki-client