$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: Omn3Epu5P66zNZ768Gqi4KXbyTd6Z9k0z50Eo05Nl1o= Subject key identifier: 33:EB:5B:BB:50:2D:B6:A1:49:14:43:3D:63:E1:90:47:2A:50:5B:9C Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0C97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0C91 Signing time: Sat 14 Jun 2025 18:06:59 +0000 Manifest this update: Sat 14 Jun 2025 18:06:58 +0000 Manifest next update: Sat 21 Jun 2025 18:06:58 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: iO+m963txnt2vquXfs6qBxcD8/dCIkQ4D1dg0Ge7bpM=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: ZlxWP9id3BOwgT849Ql20JmEjoi9oTlH+F8ceOZ0tcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Jun 14 18:06:58 2025 GMT Not After : Jun 21 18:06:58 2025 GMT Subject: CN=684dba42-765c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:bf:60:cc:75:4a:bb:9b:70:d7:74:82:86: d5:1a:ca:c8:24:11:55:52:aa:2a:96:7b:a4:19:9e: b8:1e:b0:12:32:73:74:b4:4c:4f:fc:fd:5f:d1:92: a5:6e:19:85:91:0d:c1:1f:fa:c5:f9:33:95:ad:ee: 4c:80:1c:0e:83:60:f7:0b:fd:11:a6:d9:8d:81:21: 02:1a:5e:80:28:37:7a:f9:db:fc:1f:42:2e:6a:78: 45:05:ef:70:26:7c:81:44:03:ff:a3:a5:50:30:27: 2a:45:b2:11:23:bd:68:91:a4:77:1b:f7:03:42:42: 1e:65:02:f7:7f:44:88:e4:59:fc:cc:0b:8d:6f:70: 2d:b0:85:b9:dd:a0:b5:fe:fb:94:52:dd:b5:ac:15: 26:f8:30:a3:7d:50:a2:36:c1:19:d5:3c:85:38:3d: c1:34:91:00:3d:17:d6:dd:f1:d9:f3:17:e3:60:3d: 22:c5:5d:0d:39:60:f5:d1:44:b1:f4:4b:03:bf:a5: 2e:3a:50:38:b2:8b:a9:27:0f:a1:ad:c6:1e:59:1e: 41:2d:57:36:f0:9e:84:ab:b1:ed:7a:dd:52:11:86: f5:d1:01:55:37:57:e5:84:09:16:f2:e7:b3:d3:75: ea:33:65:0e:8e:58:a6:cd:43:11:2f:a7:29:0c:4a: 33:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:EB:5B:BB:50:2D:B6:A1:49:14:43:3D:63:E1:90:47:2A:50:5B:9C X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:53:b9:e7:ed:52:b5:f3:3b:2b:a7:bb:03:ca:8b:e3:e0:f2: 96:57:ef:44:31:28:e5:43:dc:c2:e0:6a:89:17:a6:f4:dd:b1: 62:ab:df:13:6b:fe:a8:01:bd:e7:9f:19:a8:f8:c3:8a:a1:e1: 22:4c:76:92:ae:fe:42:a3:11:22:6e:d4:14:68:f5:86:bf:8c: b5:7f:6a:05:5c:f2:df:86:48:de:2e:e6:6d:62:1c:cb:1d:e6: 8a:6c:4b:ed:64:16:0d:3d:8b:99:fe:76:2c:ea:d3:2a:d9:6b: 72:d3:cd:02:8b:ca:7d:10:4e:c0:de:e6:d4:26:00:03:c3:fa: a5:b5:3a:6d:b6:b4:99:33:52:0d:db:c9:45:ee:a0:2c:6e:5e: b2:aa:3f:b3:28:22:40:7d:0f:2f:38:a2:b3:a8:13:00:3c:5e: 21:f9:18:5d:bd:ae:39:83:96:9c:ba:3c:8a:ea:2f:6d:a0:70: f6:7b:e8:fa:ce:74:e4:52:b5:26:00:01:fa:ad:aa:72:33:c6: 1d:d7:9b:a1:db:48:61:5c:3a:89:1a:aa:bf:38:3e:6a:4c:f3: 68:6d:e2:33:5a:23:21:51:6b:f7:3b:73:11:92:69:9e:0e:5e: 80:2e:0b:17:d2:a3:23:72:5e:08:c9:1d:ca:07:ea:69:55:0b: 36:aa:d7:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUwNjE0MTgwNjU4WhcNMjUwNjIxMTgwNjU4WjAYMRYwFAYD VQQDEw02ODRkYmE0Mi03NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi2/YMx1SrubcNd0gobVGsrIJBFVUqoqlnukGZ64HrASMnN0tExP/P1f0ZKl bhmFkQ3BH/rF+TOVre5MgBwOg2D3C/0RptmNgSECGl6AKDd6+dv8H0IuanhFBe9w JnyBRAP/o6VQMCcqRbIRI71okaR3G/cDQkIeZQL3f0SI5Fn8zAuNb3AtsIW53aC1 /vuUUt21rBUm+DCjfVCiNsEZ1TyFOD3BNJEAPRfW3fHZ8xfjYD0ixV0NOWD10USx 9EsDv6UuOlA4soupJw+hrcYeWR5BLVc28J6Eq7Htet1SEYb10QFVN1flhAkW8uez 03XqM2UOjlimzUMRL6cpDEozwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPrW7tQ LbahSRRDPWPhkEcqUFucMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArU7nn7VK18zsrp7sDyovj4PKWV+9EMSjlQ9zC4GqJF6b03bFiq98T a/6oAb3nnxmo+MOKoeEiTHaSrv5CoxEibtQUaPWGv4y1f2oFXPLfhkjeLuZtYhzL HeaKbEvtZBYNPYuZ/nYs6tMq2Wty080Ci8p9EE7A3ubUJgADw/qltTpttrSZM1IN 28lF7qAsbl6yqj+zKCJAfQ8vOKKzqBMAPF4h+Rhdva45g5acujyK6i9toHD2e+j6 znTkUrUmAAH6rapyM8Yd15uh20hhXDqJGqq/OD5qTPNobeIzWiMhUWv3O3MRkmme Dl6ALgsX0qMjcl4IyR3KB+ppVQs2qtdh -----END CERTIFICATE-----Generated at Mon Jun 16 01:21:58 2025 by rpki-client