$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: w37SGNn6LpmG3f2rGAAeERXP7fBpHv2p+4dfT5zk4+o= Subject key identifier: D1:1E:06:70:73:5C:20:C6:4E:FF:CD:8F:2E:99:8F:10:C8:A7:DC:99 Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0C52 Signing time: Wed 02 Jul 2025 18:39:56 +0000 Manifest this update: Wed 02 Jul 2025 18:39:55 +0000 Manifest next update: Wed 09 Jul 2025 18:39:55 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: 1WHwiq8jVaBcPcr1+eo8zQPc+6Rdr4Ojbx8p73ccJQc=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: SvZjqtxcRIhPhrqiLm27nklXEkCJpvMYZMwhSGgkVOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A, serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: Jul 2 18:39:55 2025 GMT Not After : Jul 9 18:39:55 2025 GMT Subject: CN=68657cfc-6068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b4:66:c7:7a:02:cc:f8:44:ac:12:51:27:df: 2e:26:d1:be:60:8f:d9:ae:24:10:48:65:32:b8:cb: 16:a8:c2:fe:53:b3:a6:4b:dd:b7:b0:ab:e9:cc:ef: 50:b1:92:7b:6d:1d:5c:06:92:3b:df:c6:9d:81:70: 09:2c:98:52:c5:a0:1d:68:ae:d2:3c:17:9b:73:ff: 8f:c2:7f:9e:2d:2f:bc:13:62:62:a3:52:7c:5b:1c: 22:52:5d:22:c7:3f:cf:a7:bf:5e:c7:09:c6:e3:c5: fe:bf:db:73:e5:3e:e7:bb:fd:e3:24:52:9c:ac:d6: a2:ea:78:9b:6b:4c:1a:2f:92:54:87:44:12:33:50: 16:d8:e9:0b:f2:f9:8d:4a:01:da:df:44:e8:91:95: 7d:dd:d2:9b:4a:11:f4:ac:f0:e7:90:20:b1:d7:ce: 92:f6:37:50:ae:cb:d6:1e:ee:7d:8a:86:a6:5b:99: 7c:5f:3a:91:de:b5:10:ec:05:42:f5:9d:5c:f2:36: de:31:cf:d0:f7:b0:de:fa:2d:5b:86:7c:a9:21:75: 86:e5:b9:c4:f0:46:85:5a:e0:ed:6e:ac:75:40:20: 6f:a4:34:cf:d5:ff:0d:4a:71:cb:c7:7b:07:e1:84: 6f:5d:a2:21:3c:ae:0f:a5:36:ba:14:48:93:aa:f0: 38:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1E:06:70:73:5C:20:C6:4E:FF:CD:8F:2E:99:8F:10:C8:A7:DC:99 X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:9d:f3:55:d2:bb:b7:f3:f0:1e:e7:0d:11:21:b5:9a:91:65: 92:d5:e9:d9:b2:e8:8e:91:48:ff:21:13:cb:33:17:eb:ca:89: 7c:d9:b6:c0:18:ac:5e:5d:d6:87:d8:a7:37:5f:18:d2:ec:72: fe:10:be:1f:19:6a:81:e6:1e:78:71:e5:9f:be:23:28:ff:d5: 4a:ba:98:c4:bf:9b:21:eb:25:ab:2a:89:ab:e6:dd:f5:2c:5e: d1:1b:3b:e2:eb:29:22:bb:ff:bb:e0:20:6d:11:42:07:ae:23: f7:d1:d0:9a:7b:7e:2f:f1:6d:62:7e:6f:6e:70:e5:28:94:f3: 5b:82:23:41:d0:3e:11:3d:d1:34:06:e3:65:f9:f1:77:2e:3e: dc:85:56:02:b8:53:ad:11:47:d6:09:bc:58:a0:69:6c:65:62: 26:9d:ed:28:2d:69:df:db:64:02:43:df:2e:d2:3c:a0:3f:57: 69:75:3f:27:b7:8f:8d:22:cd:cc:cb:72:ad:72:6b:56:d9:f7: 40:bc:44:ab:3d:98:b2:a3:37:97:1e:65:31:f3:dd:39:f6:e3: b5:50:2e:72:51:b8:86:d5:47:e4:57:01:39:1f:c0:90:df:9a: 5b:65:3b:28:04:b0:ed:01:30:2a:3a:7f:24:5a:19:8d:0a:f8: 2d:1b:80:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjUwNzAyMTgzOTU1WhcNMjUwNzA5MTgzOTU1WjAYMRYwFAYD VQQDEw02ODY1N2NmYy02MDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprRmx3oCzPhErBJRJ98uJtG+YI/ZriQQSGUyuMsWqML+U7OmS923sKvpzO9Q sZJ7bR1cBpI738adgXAJLJhSxaAdaK7SPBebc/+Pwn+eLS+8E2Jio1J8WxwiUl0i xz/Pp79exwnG48X+v9tz5T7nu/3jJFKcrNai6niba0waL5JUh0QSM1AW2OkL8vmN SgHa30TokZV93dKbShH0rPDnkCCx186S9jdQrsvWHu59ioamW5l8XzqR3rUQ7AVC 9Z1c8jbeMc/Q97De+i1bhnypIXWG5bnE8EaFWuDtbqx1QCBvpDTP1f8NSnHLx3sH 4YRvXaIhPK4PpTa6FEiTqvA4xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEeBnBz XCDGTv/Njy6ZjxDIp9yZMB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbnfNV0ru38/Ae5w0RIbWakWWS1enZsuiOkUj/IRPLMxfryol82bbA GKxeXdaH2Kc3XxjS7HL+EL4fGWqB5h54ceWfviMo/9VKupjEv5sh6yWrKomr5t31 LF7RGzvi6ykiu/+74CBtEUIHriP30dCae34v8W1ifm9ucOUolPNbgiNB0D4RPdE0 BuNl+fF3Lj7chVYCuFOtEUfWCbxYoGlsZWImne0oLWnf22QCQ98u0jygP1dpdT8n t4+NIs3My3KtcmtW2fdAvESrPZiyozeXHmUx89059uO1UC5yUbiG1UfkVwE5H8CQ 35pbZTsoBLDtATAqOn8kWhmNCvgtG4CZ -----END CERTIFICATE-----Generated at Fri Jul 4 08:13:34 2025 by rpki-client