$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: bgAKESoK82HV1AIueKa8+FrLFs2HTL+2Smn03tNN0IY= Subject key identifier: B3:66:BC:2B:C5:7A:F9:1D:1C:79:D7:27:64:47:68:B6:51:D3:D0:6B Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05DE Signing time: Sat 14 Jun 2025 22:43:35 +0000 Manifest this update: Sat 14 Jun 2025 22:43:35 +0000 Manifest next update: Sat 21 Jun 2025 22:43:35 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: Zz8pbaHY441m9MmCCXRGuFYA9C6LFZitfb3Le5VWSX4=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Jun 14 22:43:35 2025 GMT Not After : Jun 21 22:43:35 2025 GMT Subject: CN=684dfb17-b684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f4:58:ce:ee:f8:12:aa:a9:6d:9c:e3:e9:0d: 98:5c:5f:b7:e0:f4:aa:66:29:cd:29:ab:8f:ac:c9: 4f:2d:75:80:2e:03:41:e1:39:c8:d6:57:c4:13:23: 81:aa:5a:80:ea:30:c2:03:99:d8:fb:bd:7c:a5:7a: d8:ba:9e:05:26:61:0d:fe:f5:0b:df:5e:ef:71:f4: 6b:b1:3f:a5:bb:71:c9:9d:57:05:04:07:fc:1d:d8: db:4e:c1:1e:d4:61:fd:26:64:67:ac:15:ab:22:8c: ed:4c:38:74:30:ad:3f:df:d5:0c:ec:4f:59:ef:3f: a1:b9:d7:10:28:84:ed:61:56:4d:3e:b3:fb:e2:f1: bd:ac:2b:21:b2:9c:5b:53:85:78:45:8d:fa:56:bd: 6d:d1:b4:f0:f9:ad:cb:98:b5:f8:2d:75:22:c1:c0: c5:4f:52:53:de:d0:c5:c2:8a:b7:b9:5a:1b:88:44: fd:05:10:34:a3:c9:a6:a4:86:14:8a:af:40:c4:03: cb:61:a8:59:4e:0a:f0:e7:77:3c:18:f5:b0:7d:dc: dc:96:78:d1:61:4a:56:33:61:c2:6a:fd:5d:35:e1: 0a:00:50:77:e5:71:e7:0d:4d:92:35:b2:9d:ee:1b: 0c:b8:a9:30:a4:3c:d4:58:02:d5:cf:ea:ca:80:8d: db:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:66:BC:2B:C5:7A:F9:1D:1C:79:D7:27:64:47:68:B6:51:D3:D0:6B X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:3d:31:2b:99:64:0c:62:80:88:f1:36:04:c2:95:0e:cb:1e: 05:c7:30:3f:a2:89:e8:e1:9e:54:84:8f:fb:0d:4e:94:fe:7e: 02:e5:66:19:3b:8d:d0:a9:1e:ae:ca:9a:e9:c1:1d:9d:e9:31: 0e:1d:ce:ec:98:6c:3e:6d:0f:8a:58:d5:31:e2:19:7e:20:a2: be:73:36:df:fa:c1:0c:e1:6d:85:62:89:6c:b7:65:ed:1b:fc: 1b:ff:ef:8f:24:14:d3:47:7d:52:11:45:89:28:17:60:ee:3e: 99:21:6b:84:65:b9:e5:2d:0b:73:47:5c:57:88:1a:02:d6:41: 12:2a:e4:60:39:3c:1c:86:d1:3a:e4:ce:14:4c:7a:65:db:2c: 45:71:aa:4a:95:e2:6f:b4:c5:bb:16:c4:e9:7e:00:ae:a5:3c: 64:00:5b:af:5b:a8:4e:76:12:c9:aa:69:61:0e:a4:82:ad:7e: 2b:f0:d6:cf:6a:da:05:9b:61:73:02:7c:74:dd:2b:81:9a:42: dd:ff:bb:c6:9e:fe:33:91:ba:91:a3:f5:fc:2c:3e:7d:25:50: f0:12:1e:4c:0b:32:60:94:7b:3a:0e:01:87:66:a9:96:2f:68: e5:a0:c8:5e:fa:d6:37:f0:4e:ac:a2:dc:ca:a3:24:b3:8a:27: 0e:d2:02:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNjE0MjI0MzM1WhcNMjUwNjIxMjI0MzM1WjAYMRYwFAYD VQQDEw02ODRkZmIxNy1iNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/RYzu74EqqpbZzj6Q2YXF+34PSqZinNKauPrMlPLXWALgNB4TnI1lfEEyOB qlqA6jDCA5nY+718pXrYup4FJmEN/vUL317vcfRrsT+lu3HJnVcFBAf8HdjbTsEe 1GH9JmRnrBWrIoztTDh0MK0/39UM7E9Z7z+hudcQKITtYVZNPrP74vG9rCshspxb U4V4RY36Vr1t0bTw+a3LmLX4LXUiwcDFT1JT3tDFwoq3uVobiET9BRA0o8mmpIYU iq9AxAPLYahZTgrw53c8GPWwfdzclnjRYUpWM2HCav1dNeEKAFB35XHnDU2SNbKd 7hsMuKkwpDzUWALVz+rKgI3bfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNmvCvF evkdHHnXJ2RHaLZR09BrMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4PTErmWQMYoCI8TYEwpUOyx4FxzA/oono4Z5UhI/7DU6U/n4C5WYZ O43QqR6uyprpwR2d6TEOHc7smGw+bQ+KWNUx4hl+IKK+czbf+sEM4W2FYolst2Xt G/wb/++PJBTTR31SEUWJKBdg7j6ZIWuEZbnlLQtzR1xXiBoC1kESKuRgOTwchtE6 5M4UTHpl2yxFcapKleJvtMW7FsTpfgCupTxkAFuvW6hOdhLJqmlhDqSCrX4r8NbP atoFm2FzAnx03SuBmkLd/7vGnv4zkbqRo/X8LD59JVDwEh5MCzJglHs6DgGHZqmW L2jloMhe+tY38E6sotzKoySziicO0gKE -----END CERTIFICATE-----Generated at Mon Jun 16 16:26:25 2025 by rpki-client