$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft File: 6XepImIg6MeKHRs74E1gzcyKIYg.mft (raw, json) Hash identifier: rHo87zGtcVS6O28zx5jUOjHl829UJ1bYOH+Oq6Gcjjs= Subject key identifier: A7:F5:2E:E1:64:10:41:C4:52:4F:D1:B6:07:C7:34:F8:9F:C9:5D:4E Authority key identifier: E9:77:A9:22:62:20:E8:C7:8A:1D:1B:3B:E0:4D:60:CD:CC:8A:21:88 Certificate issuer: /CN=A91FC5BD/serialNumber=E977A9226220E8C78A1D1B3BE04D60CDCC8A2188 Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft Manifest number: C8 Signing time: Thu 19 Jun 2025 05:05:56 +0000 Manifest this update: Thu 19 Jun 2025 05:05:55 +0000 Manifest next update: Thu 26 Jun 2025 05:05:55 +0000 Files and hashes: 1: 6XepImIg6MeKHRs74E1gzcyKIYg.crl (hash: 2rc8PquKP8BAwmqh9Q/XBoxlJyEfSgfuePqz+WCWOTs=) 2: 1101B5C01CEC11EFA7CDC085C4F9AE02.roa (hash: BZA1P97SNGTrhAAl2/Ui2Ojz/Jo4Dfx0oXuCfnfQd+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.crl rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC5BD, serialNumber=E977A9226220E8C78A1D1B3BE04D60CDCC8A2188 Validity Not Before: Jun 19 05:05:55 2025 GMT Not After : Jun 26 05:05:55 2025 GMT Subject: CN=68539ab4-1b1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2e:07:03:9b:c4:e2:a4:79:f9:52:a7:05:c5: 45:3d:97:85:00:3a:42:99:f7:2f:d2:8f:91:c9:6c: 10:4e:25:4e:01:af:38:c4:94:b1:42:51:44:1e:10: d1:bf:94:53:79:b6:5a:62:43:50:be:71:46:0d:52: 1b:b5:54:8e:e7:2c:b9:b8:f2:3e:03:67:dd:ff:71: a5:45:0f:7b:7e:a7:19:a4:f6:8a:61:7a:cd:f9:f7: bc:fe:1d:93:18:d2:eb:45:5c:60:b6:ef:d5:aa:1f: 16:e4:bc:d0:df:63:36:45:e3:2d:39:df:4a:5a:ad: de:37:f8:87:42:34:cf:18:bc:f0:ac:51:5b:59:61: 65:11:6a:c6:b6:46:bf:65:db:39:e9:b7:09:6e:05: 31:1d:53:63:08:e1:dc:75:55:7a:c8:f0:0d:7b:a7: 48:3e:60:79:b2:f0:f3:46:8e:50:8e:ee:e7:4d:af: 3f:a6:6d:2a:56:8c:24:4b:fd:85:d4:d0:bb:8c:be: 3a:18:74:21:1e:12:19:ee:72:fd:db:67:d9:08:86: 9f:0b:d1:a7:3e:93:7d:78:cd:8e:2c:aa:40:8f:81: e2:b3:b0:ff:bb:fa:00:a1:7a:99:c5:c9:0f:d0:1d: e3:d0:ad:e3:4d:03:35:72:66:bc:89:6e:55:c7:7c: 1f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F5:2E:E1:64:10:41:C4:52:4F:D1:B6:07:C7:34:F8:9F:C9:5D:4E X509v3 Authority Key Identifier: keyid:E9:77:A9:22:62:20:E8:C7:8A:1D:1B:3B:E0:4D:60:CD:CC:8A:21:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:0c:20:a2:cd:ce:e2:d3:4d:4d:43:32:f2:7b:d3:5a:6f:e6: 3c:e3:26:77:01:cc:56:5f:eb:b4:5d:ee:65:46:bc:f3:e8:9b: 64:39:26:cd:c4:95:73:41:a7:23:da:ee:15:89:02:65:2d:c9: a1:5a:b6:ce:85:fb:d7:13:63:ec:93:74:ed:ce:2e:b5:e0:19: 73:f8:62:b7:27:1e:40:a8:99:c8:ee:27:82:c2:82:1c:ca:90: 3e:5d:e7:6e:6a:70:41:92:db:62:4f:58:bf:83:56:a8:b6:a8: ba:dd:d4:10:81:ae:84:32:e0:cd:ef:20:0e:2e:ef:f3:78:bc: df:84:e7:87:4b:86:50:e1:2d:83:56:29:a0:4f:db:46:ca:2c: 28:ab:13:59:0b:6a:1f:d7:5a:8f:1b:9b:5c:9b:f5:d8:d9:4b: bc:c2:3c:be:77:20:5e:6f:c2:77:df:e6:17:57:32:a4:25:8b: ad:20:09:2a:80:a5:b4:b0:38:00:19:ce:36:2d:49:a3:97:33: 90:51:9c:f9:a4:92:e1:c4:c8:13:f0:50:db:2a:cf:0d:73:74: fe:f3:ad:11:dc:b2:5b:fe:2e:9d:ce:43:f5:06:11:96:12:04: 87:2d:d1:11:e1:d7:1b:46:eb:7b:42:83:d4:a4:25:0f:89:50: 7e:16:14:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM1QkQxMTAvBgNVBAUTKEU5NzdBOTIyNjIyMEU4Qzc4QTFEMUIzQkUwNEQ2MENE Q0M4QTIxODgwHhcNMjUwNjE5MDUwNTU1WhcNMjUwNjI2MDUwNTU1WjAYMRYwFAYD VQQDEw02ODUzOWFiNC0xYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1S4HA5vE4qR5+VKnBcVFPZeFADpCmfcv0o+RyWwQTiVOAa84xJSxQlFEHhDR v5RTebZaYkNQvnFGDVIbtVSO5yy5uPI+A2fd/3GlRQ97fqcZpPaKYXrN+fe8/h2T GNLrRVxgtu/Vqh8W5LzQ32M2ReMtOd9KWq3eN/iHQjTPGLzwrFFbWWFlEWrGtka/ Zds56bcJbgUxHVNjCOHcdVV6yPANe6dIPmB5svDzRo5Qju7nTa8/pm0qVowkS/2F 1NC7jL46GHQhHhIZ7nL922fZCIafC9GnPpN9eM2OLKpAj4His7D/u/oAoXqZxckP 0B3j0K3jTQM1cma8iW5Vx3wf5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKf1LuFk EEHEUk/RtgfHNPifyV1OMB8GA1UdIwQYMBaAFOl3qSJiIOjHih0bO+BNYM3MiiGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzVCRC83NkMyQzcyRTFD RUIxMUVGODVERkQ3NzZDNEY5QUUwMi82WGVwSW1JZzZNZUtIUnM3NEUxZ3pjeUtJ WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZYZXBJbUlnNk1lS0hSczc0RTFnemN5S0lZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzVCRC83NkMyQzcyRTFDRUIxMUVGODVERkQ3NzZDNEY5QUUwMi82WGVwSW1JZzZN ZUtIUnM3NEUxZ3pjeUtJWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSDCCizc7i001NQzLye9Nab+Y84yZ3AcxWX+u0Xe5lRrzz6JtkOSbN xJVzQacj2u4ViQJlLcmhWrbOhfvXE2Psk3Ttzi614Blz+GK3Jx5AqJnI7ieCwoIc ypA+XeduanBBkttiT1i/g1aotqi63dQQga6EMuDN7yAOLu/zeLzfhOeHS4ZQ4S2D VimgT9tGyiwoqxNZC2of11qPG5tcm/XY2Uu8wjy+dyBeb8J33+YXVzKkJYutIAkq gKW0sDgAGc42LUmjlzOQUZz5pJLhxMgT8FDbKs8Nc3T+860R3LJb/i6dzkP1BhGW EgSHLdER4dcbRut7QoPUpCUPiVB+FhTz -----END CERTIFICATE-----Generated at Fri Jun 20 19:37:23 2025 by rpki-client