$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: hlULp+XlhFcHCgZRfKz4Enpj2IEvZkzM1DFMzxzp6mU= Subject key identifier: 4E:38:2A:AE:AD:8B:D9:66:0E:24:49:DE:A9:3D:30:C3:D7:10:2C:8E Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B27 Signing time: Wed 18 Jun 2025 19:05:34 +0000 Manifest this update: Wed 18 Jun 2025 19:05:34 +0000 Manifest next update: Wed 25 Jun 2025 19:05:34 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: CAuN0Zse+SWEOPEi30pOK2j8mlU6cErrRw9uu8FEYlE=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Jun 18 19:05:34 2025 GMT Not After : Jun 25 19:05:34 2025 GMT Subject: CN=68530dfe-8132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:80:76:93:6f:e5:1a:50:8a:a4:85:cc:2d:12: a0:58:6d:6f:0a:ad:42:d9:90:33:95:2d:0d:3f:b4: cd:1a:d7:cc:f3:f5:a9:04:a7:49:36:94:16:5d:34: eb:36:6c:6b:c4:d1:69:61:83:59:70:fc:88:c6:49: 0d:32:ce:42:d4:f7:40:91:f0:02:e6:bf:ca:a9:36: c8:ea:c6:84:af:12:62:20:67:df:ac:78:b2:fe:ec: 2b:03:b5:5b:e6:32:09:c7:94:0c:a7:e8:f7:7a:55: d1:d2:a1:67:96:7e:42:1c:92:94:23:7a:e2:ad:5a: e1:24:66:82:e1:36:b6:5b:42:f3:63:60:29:5f:8d: 15:f2:e1:21:af:35:54:a0:17:a8:4c:e1:29:3f:d4: be:c0:d6:7d:d4:ba:89:64:a9:76:9e:52:f3:3f:2a: 29:78:81:ea:d7:31:7c:f8:f9:bf:a5:aa:fc:2f:d6: e5:b5:86:c4:39:e1:51:24:2b:9a:2e:47:da:09:4a: 98:41:bc:db:5b:62:3c:e0:95:6d:4b:c1:c0:12:4d: 0d:b5:d8:89:2f:4e:1b:d0:a8:dc:17:79:de:91:0e: 36:78:17:0e:02:c4:31:75:3d:5d:e7:98:ae:6d:79: db:f4:a9:04:e5:a0:04:53:17:b3:67:9c:ea:fb:0c: 8f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:38:2A:AE:AD:8B:D9:66:0E:24:49:DE:A9:3D:30:C3:D7:10:2C:8E X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2a:ef:e7:97:ab:6c:c8:e9:ac:5e:f8:95:98:0e:71:c0:21: 85:54:af:ff:da:a8:33:e4:af:b0:8d:73:cc:9a:9f:86:e5:70: 8c:aa:34:ed:78:db:26:54:15:d4:cd:f5:f7:f9:1a:ae:6e:b9: 56:4f:e4:a0:38:d3:1b:c6:62:72:9b:fb:3c:f7:ff:87:1b:a3: 09:62:83:36:6d:7f:60:35:bb:9a:c9:36:15:85:a0:a5:76:03: 5b:a7:cd:f8:49:5b:78:57:8f:73:8d:8e:3b:0b:d0:e8:c9:e5: 41:3c:63:80:9a:c3:08:7e:e3:96:43:ba:6c:48:a5:c3:5c:45: d7:97:3c:8e:01:20:41:d3:67:1a:28:8d:91:6b:4a:f7:38:98: fd:2b:3a:8d:14:60:88:be:ea:f3:7e:7b:44:ea:37:06:ec:a1: 4b:a8:4f:a2:8f:29:8a:ac:0c:74:34:44:91:b1:12:df:27:24: 3e:2f:9b:3c:2c:da:d5:fd:ee:7e:82:dc:63:0b:29:35:8f:75: 07:0c:e1:a8:da:40:d9:7a:a7:fd:ca:0d:1a:e6:51:f6:be:5f: 46:6a:d0:50:ae:a1:c5:d0:d3:55:46:e8:a0:bc:6d:e7:c3:b4: 00:3e:6b:82:5f:77:65:6e:d1:d7:b4:0a:9d:42:8a:80:cc:c5: d2:80:84:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUwNjE4MTkwNTM0WhcNMjUwNjI1MTkwNTM0WjAYMRYwFAYD VQQDEw02ODUzMGRmZS04MTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoB2k2/lGlCKpIXMLRKgWG1vCq1C2ZAzlS0NP7TNGtfM8/WpBKdJNpQWXTTr NmxrxNFpYYNZcPyIxkkNMs5C1PdAkfAC5r/KqTbI6saErxJiIGffrHiy/uwrA7Vb 5jIJx5QMp+j3elXR0qFnln5CHJKUI3rirVrhJGaC4Ta2W0LzY2ApX40V8uEhrzVU oBeoTOEpP9S+wNZ91LqJZKl2nlLzPyopeIHq1zF8+Pm/par8L9bltYbEOeFRJCua LkfaCUqYQbzbW2I84JVtS8HAEk0NtdiJL04b0KjcF3nekQ42eBcOAsQxdT1d55iu bXnb9KkE5aAEUxezZ5zq+wyP8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE44Kq6t i9lmDiRJ3qk9MMPXECyOMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOKu/nl6tsyOmsXviVmA5xwCGFVK//2qgz5K+wjXPMmp+G5XCMqjTt eNsmVBXUzfX3+RqubrlWT+SgONMbxmJym/s89/+HG6MJYoM2bX9gNbuayTYVhaCl dgNbp834SVt4V49zjY47C9DoyeVBPGOAmsMIfuOWQ7psSKXDXEXXlzyOASBB02ca KI2Ra0r3OJj9KzqNFGCIvurzfntE6jcG7KFLqE+ijymKrAx0NESRsRLfJyQ+L5s8 LNrV/e5+gtxjCyk1j3UHDOGo2kDZeqf9yg0a5lH2vl9GatBQrqHF0NNVRuigvG3n w7QAPmuCX3dlbtHXtAqdQoqAzMXSgIRU -----END CERTIFICATE-----Generated at Thu Jun 19 23:01:44 2025 by rpki-client