$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: Yaay0QjRuKBfFJO+XUdEH79W1QCQPDqwbLkGnRqYnjM= Subject key identifier: 6B:67:32:27:68:8B:DB:E5:A2:A4:CF:20:55:90:2E:A2:87:E8:CC:88 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0BD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0BCA Signing time: Wed 18 Jun 2025 18:46:09 +0000 Manifest this update: Wed 18 Jun 2025 18:46:08 +0000 Manifest next update: Wed 25 Jun 2025 18:46:08 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: Wmtn217jS19QHzRzuNeMRDkstH22551aFX/6bsNFcGw=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: EeQ1Nt52m1hyZ6VPZEPVHxza1Z77ig7QYE1EDDBnm08=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: TRjcmxyqZohfOlB4LLbzqsFvH4uXUeHEH5tCE+DExYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Jun 18 18:46:08 2025 GMT Not After : Jun 25 18:46:08 2025 GMT Subject: CN=68530971-c27c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:94:cd:68:57:06:57:c8:9c:c2:d2:fe:0c:dd: df:f5:a0:2e:ff:31:9c:4b:0b:00:98:3b:c6:82:0d: 76:20:aa:5a:94:8f:d0:7a:35:bd:fd:e3:96:26:4d: c4:f6:fb:b6:04:ed:77:08:4f:c4:e9:0d:1e:47:6a: 14:68:2a:73:64:1b:5c:3e:2d:77:9c:ad:c0:4e:b4: 00:68:d2:db:0b:4d:c1:00:0a:bd:b1:91:be:29:3c: d1:e0:87:c9:b9:c0:0c:e1:1e:41:5d:d3:b9:7e:b2: 14:3f:ab:7f:fa:34:13:45:1a:d4:77:b9:5a:d5:e1: 97:47:b2:dc:23:08:1b:8f:57:6a:23:78:4f:a3:8c: 7e:d9:e0:8a:20:b7:95:a9:d9:4f:1c:1b:a6:0d:c4: 28:d9:37:44:77:85:e3:a1:69:6e:63:09:c3:20:d6: f5:9a:26:2c:d4:42:81:0f:86:e7:90:bf:c8:61:cf: f8:cb:3e:f0:a8:56:3b:64:60:88:1f:76:f0:b7:07: de:bb:b2:16:76:b2:2c:e8:e0:f9:77:c9:9d:7d:8e: f1:e6:2a:09:bd:f4:83:db:06:f6:3c:96:47:84:65: 38:97:5a:80:65:1e:7c:c3:b8:40:98:5b:5d:e6:ef: ec:4d:af:ae:cf:de:e0:d5:0f:97:96:54:49:a9:79: 93:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:67:32:27:68:8B:DB:E5:A2:A4:CF:20:55:90:2E:A2:87:E8:CC:88 X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:54:f7:7a:7d:a7:2f:1c:4c:37:b8:1c:7a:73:58:18:0d:71: 4b:ed:dd:f2:a4:ab:1e:75:4d:44:00:e3:b4:a1:ff:ce:17:e3: 7f:1f:b8:a2:34:65:48:e3:cb:f2:83:66:b6:00:20:ff:1b:f5: 83:3a:60:ab:a7:06:94:1c:68:c4:de:0c:6f:9f:6b:8d:b7:c5: f0:21:92:ce:af:2d:bd:fd:df:9c:70:fd:b7:ac:1f:e6:1c:2b: a2:be:6b:b3:16:72:12:ab:22:b6:2e:91:b0:ac:48:89:f9:23: 2e:88:3c:45:ce:fa:d2:e6:47:a0:65:1c:78:b4:96:f7:19:3e: 3d:ee:28:d9:d8:e8:82:d1:58:be:a0:4a:6c:87:b7:f6:ea:2a: cc:4a:c7:a0:2c:98:e9:a7:97:1a:a2:50:93:9f:ee:79:e2:e8: 96:10:8c:9e:5e:4b:cb:bb:61:5f:be:55:1a:f6:bf:33:70:0b: f4:1b:a9:19:e3:8d:f1:4a:eb:b1:6f:48:78:da:5c:79:3b:2a: 5b:49:9f:15:ea:9a:82:8a:12:8e:e4:c4:57:e0:9d:b3:e1:40: 1a:78:90:47:ca:e9:ab:36:cb:e7:3e:c6:50:30:88:ad:9b:d8: 7b:8d:b8:40:28:37:65:1b:07:59:57:49:a4:c8:55:86:43:b5: a7:09:8d:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwNjE4MTg0NjA4WhcNMjUwNjI1MTg0NjA4WjAYMRYwFAYD VQQDEw02ODUzMDk3MS1jMjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pTNaFcGV8icwtL+DN3f9aAu/zGcSwsAmDvGgg12IKpalI/QejW9/eOWJk3E 9vu2BO13CE/E6Q0eR2oUaCpzZBtcPi13nK3ATrQAaNLbC03BAAq9sZG+KTzR4IfJ ucAM4R5BXdO5frIUP6t/+jQTRRrUd7la1eGXR7LcIwgbj1dqI3hPo4x+2eCKILeV qdlPHBumDcQo2TdEd4XjoWluYwnDINb1miYs1EKBD4bnkL/IYc/4yz7wqFY7ZGCI H3bwtwfeu7IWdrIs6OD5d8mdfY7x5ioJvfSD2wb2PJZHhGU4l1qAZR58w7hAmFtd 5u/sTa+uz97g1Q+XllRJqXmTfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtnMido i9vloqTPIFWQLqKH6MyIMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMVPd6facvHEw3uBx6c1gYDXFL7d3ypKsedU1EAOO0of/OF+N/H7ii NGVI48vyg2a2ACD/G/WDOmCrpwaUHGjE3gxvn2uNt8XwIZLOry29/d+ccP23rB/m HCuivmuzFnISqyK2LpGwrEiJ+SMuiDxFzvrS5kegZRx4tJb3GT497ijZ2OiC0Vi+ oEpsh7f26irMSsegLJjpp5caolCTn+554uiWEIyeXkvLu2FfvlUa9r8zcAv0G6kZ 443xSuuxb0h42lx5OypbSZ8V6pqCihKO5MRX4J2z4UAaeJBHyumrNsvnPsZQMIit m9h7jbhAKDdlGwdZV0mkyFWGQ7WnCY2W -----END CERTIFICATE-----Generated at Fri Jun 20 14:18:36 2025 by rpki-client