$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: z0iyTMWlF4hoOUvD7peIiNrrXNABOTVCd5BR5wDh3qY= Subject key identifier: C2:56:EA:AD:C5:73:FD:E3:6F:C4:E2:62:98:EF:E4:6E:A8:F1:0D:1F Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 34 Signing time: Thu 03 Jul 2025 07:55:30 +0000 Manifest this update: Thu 03 Jul 2025 07:55:30 +0000 Manifest next update: Thu 10 Jul 2025 07:55:30 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: X1czZCv8c0hBAv0ZsxBpJloD15x0xuKeIb6srByW0kI=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: S0xpbapYuUp7EVUcnIqHkGByKZFeAz8MROSbzxDfhw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Jul 3 07:55:30 2025 GMT Not After : Jul 10 07:55:30 2025 GMT Subject: CN=68663772-e231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ee:3c:7d:3d:75:21:c3:ba:52:1a:6d:3e:0a: cc:ec:97:79:09:56:42:65:bd:80:b8:f7:07:1b:b8: 04:f3:ad:d2:95:29:e0:da:b8:76:dc:e5:ea:6a:25: b8:a9:e1:ef:01:7a:b4:05:0f:87:f0:1f:58:16:ea: 95:40:80:82:a3:98:33:ce:58:5d:f2:e3:9e:ba:97: 6e:85:d5:bc:8e:d3:b9:7e:64:d3:ab:bb:bd:9b:d6: b1:0c:7f:a6:79:90:6f:9c:2b:af:4e:f7:81:9e:5a: 76:50:93:5d:78:64:26:e2:9a:ea:b5:6e:b0:ac:87: 2a:03:ab:ae:96:67:e3:a0:4c:b2:1d:cd:09:5e:b7: c8:67:0f:1c:fb:c4:97:23:dd:03:67:7e:91:2a:1c: bd:30:29:65:b9:66:d2:92:d9:48:c8:32:a4:84:3e: 63:44:95:38:7e:73:d6:af:dc:14:84:c6:5b:c1:5a: 33:f5:96:b8:61:99:4c:2f:b6:ef:6a:7f:49:7d:3c: 59:aa:3b:68:7e:c2:e8:f6:e6:71:0e:8c:a5:4f:9e: eb:13:71:b0:df:45:90:5e:cd:53:9c:81:db:68:97: 8d:d3:4e:59:aa:5f:78:08:29:57:c5:2d:33:27:7b: cb:ee:70:8b:73:66:a1:bb:8f:b2:d8:e6:30:21:59: 89:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:56:EA:AD:C5:73:FD:E3:6F:C4:E2:62:98:EF:E4:6E:A8:F1:0D:1F X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:2f:25:cc:93:a8:cf:14:e0:3c:af:6c:5c:73:16:17:ff:3a: 8b:8e:7d:ac:94:ee:fb:64:25:22:61:63:d2:ad:31:cd:25:96: c1:80:dc:7c:30:21:4e:8f:4a:bb:f8:20:b9:f8:3b:8b:70:9a: d8:ee:39:ac:f9:3e:8b:61:cd:59:bb:e5:c6:e8:37:64:b1:a8: 8f:cf:6a:28:68:c0:11:8d:2a:5c:47:f4:0d:b8:0f:94:70:e1: a4:b5:66:44:90:a0:90:c5:dd:1c:1b:9a:c8:17:03:94:23:75: a1:98:e7:b6:f5:56:f8:65:0c:c6:e1:82:93:cf:e0:05:bb:13: 47:4f:9f:1e:0c:fc:0e:0c:84:5e:e1:44:55:0a:5e:2e:fe:ea: 21:62:7f:d6:34:66:63:d8:ba:87:72:f9:b1:60:4d:55:de:02: a3:97:63:5d:d2:a0:5c:39:6b:65:12:ec:c1:d6:9f:66:22:a8: 71:0d:cb:75:c4:e6:e0:63:1f:d2:95:2d:c5:43:f3:87:92:96: fe:ac:b7:89:22:4d:c8:f7:a6:7a:15:cd:5e:66:7c:31:4e:8d: 65:b8:59:e9:ca:a8:73:76:aa:60:df:b7:cb:c9:f6:51:59:41: e1:ed:10:89:32:d9:4c:61:2a:3b:38:a7:89:ae:93:79:c4:e9: 64:2a:5c:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTA3MDMwNzU1MzBaFw0yNTA3MTAwNzU1MzBaMBgxFjAUBgNV BAMTDTY4NjYzNzcyLWUyMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO7jx9PXUhw7pSGm0+Cszsl3kJVkJlvYC49wcbuATzrdKVKeDauHbc5epqJbip 4e8BerQFD4fwH1gW6pVAgIKjmDPOWF3y4566l26F1byO07l+ZNOru72b1rEMf6Z5 kG+cK69O94GeWnZQk114ZCbimuq1brCshyoDq66WZ+OgTLIdzQlet8hnDxz7xJcj 3QNnfpEqHL0wKWW5ZtKS2UjIMqSEPmNElTh+c9av3BSExlvBWjP1lrhhmUwvtu9q f0l9PFmqO2h+wuj25nEOjKVPnusTcbDfRZBezVOcgdtol43TTlmqX3gIKVfFLTMn e8vucItzZqG7j7LY5jAhWYlrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwlbqrcVz /eNvxOJimO/kbqjxDR8wHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALovJcyTqM8U4DyvbFxzFhf/OouOfayU7vtkJSJhY9KtMc0llsGA3Hww IU6PSrv4ILn4O4twmtjuOaz5PothzVm75cboN2SxqI/PaihowBGNKlxH9A24D5Rw 4aS1ZkSQoJDF3RwbmsgXA5QjdaGY57b1VvhlDMbhgpPP4AW7E0dPnx4M/A4MhF7h RFUKXi7+6iFif9Y0ZmPYuody+bFgTVXeAqOXY13SoFw5a2US7MHWn2YiqHENy3XE 5uBjH9KVLcVD84eSlv6st4kiTcj3pnoVzV5mfDFOjWW4WenKqHN2qmDft8vJ9lFZ QeHtEIky2UxhKjs4p4muk3nE6WQqXFA= -----END CERTIFICATE-----Generated at Fri Jul 4 13:33:37 2025 by rpki-client