$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft File: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft (raw, json) Hash identifier: u3Dr4rA49XoVW9QOm+zLRw9R7jMRhyLdLQjHSFNmPaY= Subject key identifier: 10:5F:A0:FB:FE:64:CA:FD:6C:5E:B9:B3:3E:82:7F:5C:FC:BA:51:B7 Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft Manifest number: 0641 Signing time: Sat 28 Jun 2025 22:18:44 +0000 Manifest this update: Sat 28 Jun 2025 22:18:43 +0000 Manifest next update: Sat 05 Jul 2025 22:18:43 +0000 Files and hashes: 1: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl (hash: qJaV7IUEHh64CO+1fgtDcSzXV/9TwHGMEryXiF5fnbI=) 2: 105CB01A830711ECB472CA0AC4F9AE02.roa (hash: P0BhZPNBq4fF0iWoLAGwiGCR4fuUazibBS/DViNXhlI=) 3: 0E2711E6830711ECB472CA0AC4F9AE02.roa (hash: 6bWPYL9HlnXbgKm1pf8hjZDzf0KdOhZ+kEEuV8xvMnc=) 4: 0F6980C0830711ECB472CA0AC4F9AE02.roa (hash: GSq2aTh4Ighs8Kd5WfNm9bR33IhLvfkn/9rz4nvZ37o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D91, serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Validity Not Before: Jun 28 22:18:43 2025 GMT Not After : Jul 5 22:18:43 2025 GMT Subject: CN=68606a44-d90c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:3b:e7:f0:d3:83:03:69:bd:39:3c:0c:2b: 2b:70:b6:23:cf:e0:fb:0e:1a:6d:90:3a:a0:9b:f6: 4f:f6:ce:b2:a5:be:e1:1a:3d:fc:5e:ec:be:ca:d6: 77:76:4f:6f:af:ea:4e:f3:2d:36:f4:4b:03:e0:ae: 0b:8e:8b:fa:73:58:5a:4e:78:64:e1:2d:0f:3d:e7: 1a:ba:5c:db:68:6f:ee:74:ed:e7:31:d8:b4:c0:dc: f5:a1:f2:a7:7b:cd:0a:75:a8:37:25:e0:59:f8:ec: 8f:43:02:6b:55:b1:ee:c2:aa:de:3b:44:a9:b0:f3: 7a:78:a5:60:1e:e8:a6:95:65:81:92:08:e6:85:4c: 10:ae:97:1c:4c:50:68:ad:52:de:a3:f2:50:bb:90: ef:9b:8c:79:70:6d:50:c2:97:50:4a:b9:9f:b6:3a: 80:4d:67:1c:e9:6e:03:06:7f:3c:17:89:c7:e1:2b: 1b:e7:89:fe:81:6b:fc:72:67:6d:ba:94:e5:97:ca: a1:dc:21:ef:53:dd:e6:50:f4:d5:52:48:78:7e:ea: 4a:54:7e:26:2e:71:88:f6:d4:43:5c:61:86:73:29: b8:42:d9:cd:4d:ea:ec:4b:81:eb:cc:8f:c5:c1:04: a7:6a:57:5d:7c:5d:79:30:19:be:c7:84:28:45:9a: 09:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:5F:A0:FB:FE:64:CA:FD:6C:5E:B9:B3:3E:82:7F:5C:FC:BA:51:B7 X509v3 Authority Key Identifier: keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:06:69:a1:65:d6:7c:08:73:a9:8f:a7:26:42:18:c7:28:49: 06:fc:ea:c4:4c:34:00:39:94:b6:31:f7:96:24:ce:19:12:53: 78:6f:33:d3:53:a8:3f:c4:7e:92:e7:6e:cc:07:6d:d6:b4:78: b6:82:1f:93:e9:12:2f:0d:44:9f:56:e1:d8:d7:5d:94:df:94: 13:79:80:91:d6:77:c1:38:68:61:ce:f7:2e:c9:2f:41:e2:f1: 9a:31:f0:9c:0d:b6:ff:12:90:fa:86:46:a7:75:5c:1a:d3:08: 38:0e:b4:50:30:07:57:97:06:cb:39:4b:0a:cf:76:49:a8:7c: fe:22:d3:b9:03:9d:ad:1f:7b:45:75:55:1e:af:7b:da:4b:8c: 2f:fb:03:d7:f3:d0:78:53:4b:1e:5b:1b:c5:71:92:82:fa:88: b3:1e:f7:cf:05:15:78:24:a8:69:b3:9b:7b:fd:8e:58:cb:d7: 90:12:76:09:b8:c6:69:d3:f7:54:72:41:70:92:1f:ac:93:de: 6a:fa:4a:ea:9f:d3:48:dd:69:6f:8a:ec:36:ee:1c:e6:10:42: f5:75:d5:c5:9e:83:ba:13:60:ff:db:87:9c:47:0c:04:c3:46: 85:d9:18:fb:e9:4a:d6:c3:c7:7f:44:d2:dc:46:2b:1c:7d:24: f0:3f:34:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZEOTExMTAvBgNVBAUTKEY2NzE4QTVFNUU0MkQwOEUyNTNBMkZCMzAwRkYwOUMz RjUzNTFEMzIwHhcNMjUwNjI4MjIxODQzWhcNMjUwNzA1MjIxODQzWjAYMRYwFAYD VQQDEw02ODYwNmE0NC1kOTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnQ75/DTgwNpvTk8DCsrcLYjz+D7DhptkDqgm/ZP9s6ypb7hGj38Xuy+ytZ3 dk9vr+pO8y029EsD4K4Ljov6c1haTnhk4S0PPecaulzbaG/udO3nMdi0wNz1ofKn e80Kdag3JeBZ+OyPQwJrVbHuwqreO0SpsPN6eKVgHuimlWWBkgjmhUwQrpccTFBo rVLeo/JQu5Dvm4x5cG1QwpdQSrmftjqATWcc6W4DBn88F4nH4Ssb54n+gWv8cmdt upTll8qh3CHvU93mUPTVUkh4fupKVH4mLnGI9tRDXGGGcym4QtnNTersS4HrzI/F wQSnalddfF15MBm+x4QoRZoJQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBfoPv+ ZMr9bF65sz6Cf1z8ulG3MB8GA1UdIwQYMBaAFPZxil5eQtCOJTovswD/CcP1NR0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ5MS9FNTE3RjJCNjlB RTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJNGxPaS16QVA4SndfVTFI VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluR0tYbDVDMEk0bE9pLXpBUDhKd19VMUhUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ5MS9FNTE3RjJCNjlBRTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJ NGxPaS16QVA4SndfVTFIVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBBmmhZdZ8CHOpj6cmQhjHKEkG/OrETDQAOZS2MfeWJM4ZElN4bzPT U6g/xH6S527MB23WtHi2gh+T6RIvDUSfVuHY112U35QTeYCR1nfBOGhhzvcuyS9B 4vGaMfCcDbb/EpD6hkandVwa0wg4DrRQMAdXlwbLOUsKz3ZJqHz+ItO5A52tH3tF dVUer3vaS4wv+wPX89B4U0seWxvFcZKC+oizHvfPBRV4JKhps5t7/Y5Yy9eQEnYJ uMZp0/dUckFwkh+sk95q+krqn9NI3Wlviuw27hzmEEL1ddXFnoO6E2D/24ecRwwE w0aF2Rj76UrWw8d/RNLcRiscfSTwPzRK -----END CERTIFICATE-----Generated at Sun Jun 29 16:41:20 2025 by rpki-client