$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: fTWdvuoFNoFhlkJIk9qt3nY0ofSopmDUrzeJ3gq64tw= Subject key identifier: 2B:E1:A1:49:FE:11:DC:C9:93:6D:6D:30:F1:D0:C8:AD:0C:73:80:B0 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 35 Signing time: Thu 03 Jul 2025 07:52:37 +0000 Manifest this update: Thu 03 Jul 2025 07:52:37 +0000 Manifest next update: Thu 10 Jul 2025 07:52:37 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: EX8iNi1d8Dg7pi6BXILUZXInrW+5MWm63GgI6Xmu/mU=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Jul 3 07:52:37 2025 GMT Not After : Jul 10 07:52:37 2025 GMT Subject: CN=686636c5-cc59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:20:00:52:59:51:c0:2d:99:30:68:46:8a:87: 7b:40:d2:c1:dc:b0:95:94:5d:9b:fe:79:38:48:f1: 07:66:ab:12:df:12:7e:61:f5:d8:f7:87:ac:2f:09: 36:44:1d:c6:87:1c:6a:e5:86:9d:e9:f3:68:7a:10: dc:14:ff:63:97:b5:73:71:41:d8:de:32:36:27:58: 41:ee:13:ef:a1:d9:82:f5:f6:5e:35:eb:d2:ca:5a: 4c:28:40:46:48:2d:36:f9:b5:1d:e9:7e:14:f2:cb: 0a:5f:42:a9:25:cb:07:63:1b:05:8c:2d:66:20:bd: 8b:78:b2:d4:a7:88:15:8c:ed:b1:1e:b3:2f:7b:99: e1:a1:cd:6f:f0:21:f8:d2:4f:ec:69:4a:13:8f:8c: 89:4f:f3:49:db:61:e7:52:62:8f:68:7f:13:21:6e: ba:f6:14:21:6f:dd:db:7b:af:74:84:da:99:cc:80: a1:66:b8:bd:49:ef:ce:3d:db:9f:35:36:76:e1:d6: 5c:c3:e4:3d:e6:62:b0:5a:e7:8b:04:72:15:49:ab: 2a:ab:fa:37:5b:ef:b0:19:cd:36:2b:e3:af:7c:36: 88:8d:ff:f6:32:7a:77:48:66:76:f7:0b:2f:bc:2a: d0:24:0d:a9:5f:7d:3f:f5:e2:17:3d:a9:17:e2:01: 3c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E1:A1:49:FE:11:DC:C9:93:6D:6D:30:F1:D0:C8:AD:0C:73:80:B0 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:42:e3:ad:2a:1f:63:9b:82:27:af:28:2b:b9:d1:62:1e:b9: 9d:98:d5:cd:7e:fc:3b:67:e6:2b:4e:f4:8e:14:c1:5d:e3:e7: dd:5b:1e:ff:91:02:61:5b:c7:3e:dd:34:90:1b:e0:86:29:94: 8a:2d:46:bf:9f:12:8d:27:f4:19:b3:15:1a:02:bb:9c:bd:35: 30:f3:b9:79:9d:18:cb:5a:8f:30:ee:49:1c:83:64:e3:e0:3c: cc:1b:71:c9:fb:d5:a5:12:b8:b3:4b:db:51:6b:a0:53:b1:c9: 7d:b7:40:d8:95:cd:90:12:ef:41:74:5b:df:87:88:1f:77:35: 02:79:7f:04:e3:d4:ad:b9:69:5e:ed:80:5e:27:5d:b5:63:71: 17:01:40:13:08:9f:35:09:60:f4:1e:e9:46:11:22:5d:b9:b8: f6:ac:61:92:ef:30:12:d0:20:12:90:af:ca:cf:88:ae:f9:d8: b0:e8:96:a4:98:28:73:76:28:59:29:31:8d:f9:25:88:fc:f6: b0:35:ad:4e:ce:87:48:ce:1c:f8:ce:c8:26:3b:23:b5:00:97: 94:81:ea:4c:18:7e:1c:14:2f:f8:fe:5b:d5:52:00:76:d6:c4: 24:16:0f:af:40:9f:45:7b:d7:91:68:48:9c:1c:de:0f:3e:28: 98:d2:91:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA3MDMwNzUyMzdaFw0yNTA3MTAwNzUyMzdaMBgxFjAUBgNV BAMTDTY4NjYzNmM1LWNjNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJIABSWVHALZkwaEaKh3tA0sHcsJWUXZv+eThI8QdmqxLfEn5h9dj3h6wvCTZE HcaHHGrlhp3p82h6ENwU/2OXtXNxQdjeMjYnWEHuE++h2YL19l4169LKWkwoQEZI LTb5tR3pfhTyywpfQqklywdjGwWMLWYgvYt4stSniBWM7bEesy97meGhzW/wIfjS T+xpShOPjIlP80nbYedSYo9ofxMhbrr2FCFv3dt7r3SE2pnMgKFmuL1J78492581 Nnbh1lzD5D3mYrBa54sEchVJqyqr+jdb77AZzTYr4698NoiN//YyendIZnb3Cy+8 KtAkDalffT/14hc9qRfiATwRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK+GhSf4R 3MmTbW0w8dDIrQxzgLAwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGRC460qH2ObgievKCu50WIeuZ2Y1c1+/Dtn5itO9I4UwV3j591bHv+R AmFbxz7dNJAb4IYplIotRr+fEo0n9BmzFRoCu5y9NTDzuXmdGMtajzDuSRyDZOPg PMwbccn71aUSuLNL21FroFOxyX23QNiVzZAS70F0W9+HiB93NQJ5fwTj1K25aV7t gF4nXbVjcRcBQBMInzUJYPQe6UYRIl25uPasYZLvMBLQIBKQr8rPiK752LDolqSY KHN2KFkpMY35JYj89rA1rU7Oh0jOHPjOyCY7I7UAl5SB6kwYfhwUL/j+W9VSAHbW xCQWD69An0V715FoSJwc3g8+KJjSkUo= -----END CERTIFICATE-----Generated at Thu Jul 3 18:21:11 2025 by rpki-client