$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: 0rgiJ77GNu2Tmhjdd42WmdQENQ2HTkky+xlAjjgFwPQ= Subject key identifier: BC:0C:FB:36:37:34:17:0A:0F:B7:1D:1C:B8:66:86:A0:07:75:B7:21 Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 1F69 Signing time: Wed 02 Jul 2025 16:12:02 +0000 Manifest this update: Wed 02 Jul 2025 16:12:02 +0000 Manifest next update: Wed 09 Jul 2025 16:12:02 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: lmMbdyYUxW9Xe4GYrJc+jgnNP1uAom/IWTYZygsVcHk=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: oRm2blLyiJS/QAfKc6f3YExIUJkkRHUJrPUQp9W2Q+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Jul 2 16:12:02 2025 GMT Not After : Jul 9 16:12:02 2025 GMT Subject: CN=68655a52-2cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:32:b1:a4:eb:d3:89:a7:17:9c:24:11:29: 1d:0b:f1:76:c0:04:03:db:02:2f:29:60:ca:d0:cb: 56:b4:d9:3f:b9:a3:4e:85:b7:64:f3:cc:16:d1:36: fc:a0:de:dc:28:b8:62:44:22:5e:f0:ed:41:46:8c: ec:5b:bf:1e:be:5c:5d:04:12:aa:d3:3c:92:4e:48: be:58:47:5e:90:66:29:19:56:c4:a8:27:be:2d:b1: 59:8e:33:76:80:1e:11:a8:69:18:85:99:34:ca:92: 78:74:33:3a:65:fd:c8:f4:37:bc:74:8c:14:e6:13: 5d:a2:b7:04:b8:cf:bf:05:0b:8d:04:78:09:e1:60: 5b:e4:7e:e3:dd:9a:c7:e6:29:7d:93:4e:29:29:40: 43:86:66:a0:0a:1d:4d:2a:e4:a2:3a:e8:59:af:8d: 92:33:9a:f8:f9:7b:de:ed:31:2a:d1:07:ea:25:3a: 16:4b:11:bd:9e:fd:3d:44:2f:21:0c:16:87:7b:25: c6:a6:27:ff:d8:f0:d5:ea:b8:50:a8:87:48:5b:55: b3:d0:94:75:4f:5e:1d:d9:fb:0c:5b:cd:5e:97:24: 17:33:05:02:17:7d:24:6f:a4:d8:b2:7f:e5:c1:9c: bd:10:8b:da:15:8d:de:93:d8:1f:3d:a4:6c:4b:aa: 96:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0C:FB:36:37:34:17:0A:0F:B7:1D:1C:B8:66:86:A0:07:75:B7:21 X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:84:4d:76:27:50:0b:41:44:63:ae:9f:0e:ea:8e:85:25:f3: 21:3f:38:2e:eb:35:9c:78:7f:1b:3e:ce:fc:f0:4c:f5:fb:b3: 5c:74:7f:37:62:d4:5b:8c:63:7c:93:a7:8d:b5:3a:2c:a0:10: 48:ba:b9:32:3d:db:35:b8:58:4d:38:0f:3e:de:61:03:cb:0c: 97:f9:fe:a0:7c:30:0c:c0:1d:de:70:f9:a3:95:a2:6e:88:ac: cf:4c:1e:1a:9c:84:0a:ab:0a:b8:cc:eb:b3:b1:6e:d5:73:c6: aa:92:9a:f7:83:25:b7:6a:70:fe:07:92:03:ad:81:66:b1:8f: 5e:39:80:04:35:41:88:48:c5:03:dd:e2:44:e4:5f:6c:6e:08: 5c:b0:ba:6d:17:af:14:88:a6:2e:b3:18:4b:c3:39:ca:85:c1: 40:1a:00:b7:34:35:4d:d0:bc:d8:b6:9d:5b:61:29:10:52:87: 45:76:94:26:66:2e:42:28:43:39:34:0b:72:05:99:32:b5:df: f0:05:4a:dc:50:2e:19:cc:d3:8a:f1:0e:ae:8f:6d:f2:51:db: 65:94:7c:c8:c4:41:4e:4b:f2:5d:ab:23:6a:ec:0e:7e:dc:2d: 83:5e:60:cb:e4:a6:10:91:fd:71:ed:74:6c:9c:58:05:46:86: a1:80:f4:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUwNzAyMTYxMjAyWhcNMjUwNzA5MTYxMjAyWjAYMRYwFAYD VQQDEw02ODY1NWE1Mi0yY2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqicysaTr04mnF5wkESkdC/F2wAQD2wIvKWDK0MtWtNk/uaNOhbdk88wW0Tb8 oN7cKLhiRCJe8O1BRozsW78evlxdBBKq0zySTki+WEdekGYpGVbEqCe+LbFZjjN2 gB4RqGkYhZk0ypJ4dDM6Zf3I9De8dIwU5hNdorcEuM+/BQuNBHgJ4WBb5H7j3ZrH 5il9k04pKUBDhmagCh1NKuSiOuhZr42SM5r4+Xve7TEq0QfqJToWSxG9nv09RC8h DBaHeyXGpif/2PDV6rhQqIdIW1Wz0JR1T14d2fsMW81elyQXMwUCF30kb6TYsn/l wZy9EIvaFY3ek9gfPaRsS6qW6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwM+zY3 NBcKD7cdHLhmhqAHdbchMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBhE12J1ALQURjrp8O6o6FJfMhPzgu6zWceH8bPs788Ez1+7NcdH83 YtRbjGN8k6eNtTosoBBIurkyPds1uFhNOA8+3mEDywyX+f6gfDAMwB3ecPmjlaJu iKzPTB4anIQKqwq4zOuzsW7Vc8aqkpr3gyW3anD+B5IDrYFmsY9eOYAENUGISMUD 3eJE5F9sbghcsLptF68UiKYusxhLwznKhcFAGgC3NDVN0LzYtp1bYSkQUodFdpQm Zi5CKEM5NAtyBZkytd/wBUrcUC4ZzNOK8Q6uj23yUdtllHzIxEFOS/JdqyNq7A5+ 3C2DXmDL5KYQkf1x7XRsnFgFRoahgPQB -----END CERTIFICATE-----Generated at Thu Jul 3 14:15:50 2025 by rpki-client