$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: DFxkKzWarPWACVKTBnSJEPwxr6wxrDPDGxZNjjnB99A= Subject key identifier: 8E:C4:F8:4F:4F:B5:F1:3E:78:A8:FA:54:F1:17:ED:02:A5:D6:57:04 Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 01FF Signing time: Sat 21 Jun 2025 00:09:49 +0000 Manifest this update: Sat 21 Jun 2025 00:09:49 +0000 Manifest next update: Sat 28 Jun 2025 00:09:49 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: QOJSMzQH5UDIY5QbrnSGpX9S/bhZU/DleabrJ6ryRyM=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 00:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Jun 21 00:09:49 2025 GMT Not After : Jun 28 00:09:49 2025 GMT Subject: CN=6855f84d-ccf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:51:e2:bd:ac:95:2d:19:ef:e7:70:41:6b:40: 08:59:b4:ac:c3:b0:52:33:a2:82:36:10:65:ba:ac: 6b:26:85:74:9f:71:dd:38:2e:ec:c1:21:35:81:45: b4:1d:0d:13:fc:51:43:e2:45:4b:df:54:7c:9d:a4: 32:4b:44:ee:90:ef:5a:93:63:b0:49:d8:cf:a8:d5: 6d:a0:c4:cd:35:f3:b1:c6:bc:95:c1:ed:fa:71:17: 2f:f9:16:cb:30:8a:6a:df:d8:7b:c5:7d:c5:ba:d3: 1c:7e:b9:fa:ee:02:14:b4:f1:f1:8b:6d:08:46:ed: 7a:13:c1:fb:98:07:63:17:d9:48:26:2d:82:89:b7: ef:10:ab:77:f7:75:c4:00:36:b5:71:93:18:86:1e: 02:e8:af:5e:4d:e9:09:a2:92:b9:76:f5:b0:2b:b7: ad:dc:6b:55:63:e3:88:15:1f:67:ed:24:48:57:21: 63:cb:23:f4:ac:15:97:7a:a2:9d:b7:b5:87:e2:41: f3:9f:bc:9c:04:fd:e6:90:1a:c2:9a:2f:7c:73:ee: 75:8e:0c:f3:11:9b:0b:2b:24:d6:4d:1c:51:43:60: 27:a2:90:3d:0e:ee:ee:f8:c4:ba:39:13:11:27:15: aa:20:5d:1d:9f:80:c4:fc:d4:0c:f2:7d:da:2a:37: 14:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C4:F8:4F:4F:B5:F1:3E:78:A8:FA:54:F1:17:ED:02:A5:D6:57:04 X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:98:57:ea:73:a0:d5:e8:26:b8:b1:2a:48:cf:6c:6d:5b:9e: a9:37:db:92:48:67:84:9a:fe:d2:1f:72:08:14:13:fe:6a:3c: 81:a7:7e:d7:94:8f:3b:26:9c:07:11:e0:c7:ca:0d:87:2c:62: 70:1b:b1:92:bd:6b:28:19:78:8d:0a:20:32:de:96:c9:32:50: 00:f9:d6:21:fd:90:ed:b9:f8:35:33:8d:20:c1:a4:55:57:3d: e8:52:f1:8d:04:89:10:01:8c:6b:4a:be:e2:36:17:9e:37:60: a3:a6:73:31:40:d2:bf:20:17:8a:e8:85:87:91:80:e0:2e:b2: 6b:71:5d:e3:ba:d3:ee:1d:21:6e:03:73:e3:4f:c4:2e:b1:00: 15:11:ae:23:11:dc:05:ab:05:d4:88:bf:d5:71:b9:ee:c1:28: c1:81:6f:3c:29:ff:7e:36:2e:3d:8a:a6:2c:68:76:5b:1f:5c: 48:a7:d0:e0:ac:a9:eb:88:46:7d:c9:98:18:5f:b9:fe:fc:45: 06:fd:c8:f9:14:ee:f6:98:2b:2f:a9:e3:1d:f5:8b:61:1f:69: f9:66:c7:65:0f:56:f2:8c:7c:4a:12:9d:d1:27:a7:3c:8a:61: 12:07:57:3b:a8:db:35:0c:be:6e:8f:28:ee:a8:04:0c:da:51: fd:5e:e3:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUwNjIxMDAwOTQ5WhcNMjUwNjI4MDAwOTQ5WjAYMRYwFAYD VQQDEw02ODU1Zjg0ZC1jY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lHivayVLRnv53BBa0AIWbSsw7BSM6KCNhBluqxrJoV0n3HdOC7swSE1gUW0 HQ0T/FFD4kVL31R8naQyS0TukO9ak2OwSdjPqNVtoMTNNfOxxryVwe36cRcv+RbL MIpq39h7xX3FutMcfrn67gIUtPHxi20IRu16E8H7mAdjF9lIJi2CibfvEKt393XE ADa1cZMYhh4C6K9eTekJopK5dvWwK7et3GtVY+OIFR9n7SRIVyFjyyP0rBWXeqKd t7WH4kHzn7ycBP3mkBrCmi98c+51jgzzEZsLKyTWTRxRQ2AnopA9Du7u+MS6ORMR JxWqIF0dn4DE/NQM8n3aKjcUtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7E+E9P tfE+eKj6VPEX7QKl1lcEMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOmFfqc6DV6Ca4sSpIz2xtW56pN9uSSGeEmv7SH3IIFBP+ajyBp37X lI87JpwHEeDHyg2HLGJwG7GSvWsoGXiNCiAy3pbJMlAA+dYh/ZDtufg1M40gwaRV Vz3oUvGNBIkQAYxrSr7iNheeN2CjpnMxQNK/IBeK6IWHkYDgLrJrcV3jutPuHSFu A3PjT8QusQAVEa4jEdwFqwXUiL/VcbnuwSjBgW88Kf9+Ni49iqYsaHZbH1xIp9Dg rKnriEZ9yZgYX7n+/EUG/cj5FO72mCsvqeMd9YthH2n5ZsdlD1byjHxKEp3RJ6c8 imESB1c7qNs1DL5ujyjuqAQM2lH9XuNx -----END CERTIFICATE-----Generated at Sat Jun 21 10:52:40 2025 by rpki-client