$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: qVy9Xeatu/rHWSfv+4Sd/SARHr8JL7rupgYGLGE3Njc= Subject key identifier: BC:1C:C4:F8:9A:D3:72:D4:D9:1D:2B:3B:E1:55:1B:4B:A6:F1:9C:1E Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 09FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 09D7 Signing time: Wed 02 Jul 2025 20:29:49 +0000 Manifest this update: Wed 02 Jul 2025 20:29:49 +0000 Manifest next update: Wed 09 Jul 2025 20:29:49 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: lEz9HI2etShYNtmim91Xl9V7L21ywUUQ74iLy4glykk=) 2: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: 4oLW18xAlE3B8nPyqU3w32UG4L4+C+i7k1rNnlKSQ7s=) 3: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: PcZXGp5zvO/A3lEsDn884MTZ2FtXJ7tXRCkkHLH+i5g=) 4: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: 7NNAaJL+KytCopmMwh7xFBD72cI0M9FvnIHrWbUqbbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Jul 2 20:29:49 2025 GMT Not After : Jul 9 20:29:49 2025 GMT Subject: CN=686596bd-4f46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7f:34:6f:fe:15:19:48:5c:02:78:4c:9a:53: f0:a6:2d:f0:01:81:cc:d0:44:97:f9:8e:82:cc:cf: 1c:83:75:67:90:ec:b8:56:72:3b:ad:cb:2c:9b:ce: 49:18:02:ab:f3:dc:33:c3:06:fe:bb:fc:9e:eb:32: ff:5e:b3:e8:e4:39:21:2e:83:e8:7b:47:bc:02:f4: 45:9b:f3:9b:55:51:1d:cc:b9:eb:e4:0b:d2:52:da: 66:3e:0c:8e:f9:bf:2e:26:cf:8b:f3:fe:fc:65:f8: e0:47:5a:56:34:f4:19:41:2d:36:f7:7e:47:f0:1b: 68:ec:08:fb:c6:26:29:08:59:c6:5e:ff:ba:e0:87: d9:28:3f:71:d6:d5:a4:8f:fd:c7:c3:25:fa:2c:f8: 0b:fb:f1:ca:5d:3d:69:81:a3:80:51:17:2c:00:5a: 9c:34:70:a2:1e:43:aa:ac:b8:9f:9c:93:bb:11:8a: db:b1:95:48:48:28:af:39:61:a1:ea:01:bd:d7:33: 9d:48:1e:65:5e:2c:10:cf:67:64:0e:42:5d:ab:c5: 8e:4f:89:cc:16:a4:56:5e:06:9d:19:32:86:be:29: c1:c9:23:8e:38:9a:6c:87:37:20:e1:1d:b1:ec:1f: 25:7b:67:46:ad:4d:76:2c:c8:fb:6c:75:75:55:01: 74:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1C:C4:F8:9A:D3:72:D4:D9:1D:2B:3B:E1:55:1B:4B:A6:F1:9C:1E X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:da:be:6f:a9:02:5c:4f:69:1f:4d:1f:ac:ef:e0:88:71:3f: 08:38:92:f2:75:60:3a:35:1f:ce:f5:ee:36:16:c5:d6:04:ee: 99:fa:5c:f0:00:54:db:8b:0d:2e:7b:4d:2a:8f:21:9f:38:ca: 58:ba:99:92:19:f0:b5:bd:a8:42:65:e0:75:f5:2f:c9:af:bc: 22:8d:59:45:d0:a7:84:9a:90:bd:82:80:98:29:9f:e2:0e:03: f8:50:05:e8:6b:e5:b0:38:14:b5:99:af:e6:9c:8e:32:19:78: f0:63:c7:26:22:0c:50:10:24:08:42:46:68:68:16:19:c0:34: 71:80:cc:3f:fc:ff:17:91:be:13:77:8c:9f:2e:bf:ac:68:46: 46:8d:63:a1:2a:e0:fb:30:13:b0:1f:2d:c8:90:15:78:d4:d3: d7:98:41:f7:89:92:4b:79:e7:59:1c:21:b1:f5:c5:d2:a6:e9: 09:e2:9a:30:c7:1f:6d:23:48:de:55:81:c9:2f:84:01:31:c2: bf:30:2c:06:94:a7:36:02:b3:93:6e:f0:60:ae:15:d3:f8:b8: dd:e3:95:bf:84:1f:c7:a1:b5:24:a4:c7:08:44:89:7d:84:4f: 12:f7:74:56:67:91:f5:c6:1a:75:22:98:a1:24:5b:8a:fc:7c: 10:51:1b:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUwNzAyMjAyOTQ5WhcNMjUwNzA5MjAyOTQ5WjAYMRYwFAYD VQQDEw02ODY1OTZiZC00ZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4380b/4VGUhcAnhMmlPwpi3wAYHM0ESX+Y6CzM8cg3VnkOy4VnI7rcssm85J GAKr89wzwwb+u/ye6zL/XrPo5DkhLoPoe0e8AvRFm/ObVVEdzLnr5AvSUtpmPgyO +b8uJs+L8/78ZfjgR1pWNPQZQS02935H8Bto7Aj7xiYpCFnGXv+64IfZKD9x1tWk j/3HwyX6LPgL+/HKXT1pgaOAURcsAFqcNHCiHkOqrLifnJO7EYrbsZVISCivOWGh 6gG91zOdSB5lXiwQz2dkDkJdq8WOT4nMFqRWXgadGTKGvinBySOOOJpshzcg4R2x 7B8le2dGrU12LMj7bHV1VQF0kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwcxPia 03LU2R0rO+FVG0um8ZweMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh2r5vqQJcT2kfTR+s7+CIcT8IOJLydWA6NR/O9e42FsXWBO6Z+lzw AFTbiw0ue00qjyGfOMpYupmSGfC1vahCZeB19S/Jr7wijVlF0KeEmpC9goCYKZ/i DgP4UAXoa+WwOBS1ma/mnI4yGXjwY8cmIgxQECQIQkZoaBYZwDRxgMw//P8Xkb4T d4yfLr+saEZGjWOhKuD7MBOwHy3IkBV41NPXmEH3iZJLeedZHCGx9cXSpukJ4pow xx9tI0jeVYHJL4QBMcK/MCwGlKc2ArOTbvBgrhXT+Ljd45W/hB/HobUkpMcIRIl9 hE8S93RWZ5H1xhp1IpihJFuK/HwQURu8 -----END CERTIFICATE-----Generated at Fri Jul 4 03:28:35 2025 by rpki-client