$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: BZ7zXZMlY1L3y9nZwIS7oLE4UlvTfnBX+DP16Uh2x7k= Subject key identifier: F1:44:48:BA:C8:1E:9A:C4:00:8C:8F:98:84:03:C5:60:EC:6A:6C:78 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BD3 Signing time: Wed 02 Jul 2025 19:12:16 +0000 Manifest this update: Wed 02 Jul 2025 19:12:16 +0000 Manifest next update: Wed 09 Jul 2025 19:12:16 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: 6XWMl1lfGjJFZDU2XGRr+VnOV2C93qC+Dw/fuLpuoIs=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 4: 7AE827E23F7A11F0A578F07EC4F9AE02.roa (hash: SyWJnh2tMCMuAi4XGLRYS5EljsEKsnsqLuGITsEdS7U=) 5: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: bYDuNI3W6+4EZSV4cW7DNvBB9NpXjXY4h4lfRb3nwhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Jul 2 19:12:16 2025 GMT Not After : Jul 9 19:12:16 2025 GMT Subject: CN=68658490-aa37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e3:3f:27:9b:9d:5c:8a:90:b1:66:92:04:f5: ac:19:70:7a:80:75:0a:3f:bb:a0:25:d8:c6:54:f0: ee:ed:e3:ab:7a:bf:9b:2c:8a:d5:44:5c:7e:a1:15: 93:f3:e4:9b:fc:cc:98:d9:92:66:a6:ee:c1:f3:58: 0b:b9:06:c7:2e:87:60:b0:dd:90:82:1e:fd:4e:ed: 71:f1:64:f6:c3:83:b7:2c:19:80:ab:75:48:fa:19: e2:79:cf:bd:47:e5:4e:9f:02:31:46:f5:f2:8d:35: 41:bc:05:0e:0b:d4:c5:a7:24:17:45:ad:2f:f8:31: a9:e9:86:18:91:6e:8e:c8:0d:54:d6:fc:bb:5f:4a: d7:68:e0:66:b4:1c:16:da:60:7e:45:c1:b4:ca:91: 99:45:a4:d8:21:cf:7e:92:e9:ed:b8:79:a2:bd:e1: 93:cf:56:70:ac:7d:27:7f:25:0b:cf:63:8e:33:fa: 01:61:64:14:ba:bb:7f:9e:6e:c2:5d:2e:e2:61:ee: aa:49:cc:91:54:c8:aa:e7:db:f6:8e:d0:71:40:97: 5a:01:d6:ef:d4:91:c2:27:46:23:d7:b5:c1:be:a4: ca:f7:15:c2:f2:09:b6:87:e4:81:18:e3:a9:db:38: 88:ba:2a:5e:fb:b4:0b:5a:21:76:d0:f0:2b:1a:5a: 22:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:44:48:BA:C8:1E:9A:C4:00:8C:8F:98:84:03:C5:60:EC:6A:6C:78 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:85:12:62:5c:bf:c2:db:a9:28:35:50:f7:a4:fb:18:e7:f7: 6c:0d:63:ca:2d:d1:15:e8:16:3a:ae:6e:bc:47:4b:16:9c:32: 4f:b8:eb:45:06:5b:71:82:33:f5:69:10:8f:92:63:ac:64:f8: 86:0f:09:46:1e:8b:4c:46:04:92:74:60:f8:a5:79:77:cb:a3: 7e:74:2e:f0:52:9f:b7:43:2e:89:12:3d:fd:f6:ff:5c:46:18: 18:ec:5a:44:93:92:d0:57:c5:3e:d4:c4:b7:c8:bf:97:48:f0: 28:b0:71:2b:82:c2:eb:33:5d:63:44:72:d8:8a:7a:f2:a0:b5: 11:cc:12:8c:35:fa:33:49:af:1b:a5:34:98:38:d3:51:51:7e: ff:a6:54:8d:7a:f4:13:e1:bd:53:5e:01:84:bb:9b:d8:e6:7a: 64:2c:a6:22:52:ce:db:28:18:e1:95:0e:90:a6:7b:4a:90:8c: 68:af:a7:d3:82:79:7c:1a:6a:7f:9c:5d:4c:53:73:c2:7a:bd: 3c:bc:92:ca:94:51:64:c7:59:13:65:a5:ce:a2:05:28:79:53: e4:8e:bc:2f:87:13:e1:1a:83:00:52:31:11:ca:26:5c:ec:29: 83:d9:f7:5c:b7:a6:c8:98:ce:e5:81:65:e3:74:30:da:8f:57: 11:58:29:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNzAyMTkxMjE2WhcNMjUwNzA5MTkxMjE2WjAYMRYwFAYD VQQDEw02ODY1ODQ5MC1hYTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuM/J5udXIqQsWaSBPWsGXB6gHUKP7ugJdjGVPDu7eOrer+bLIrVRFx+oRWT 8+Sb/MyY2ZJmpu7B81gLuQbHLodgsN2Qgh79Tu1x8WT2w4O3LBmAq3VI+hniec+9 R+VOnwIxRvXyjTVBvAUOC9TFpyQXRa0v+DGp6YYYkW6OyA1U1vy7X0rXaOBmtBwW 2mB+RcG0ypGZRaTYIc9+kuntuHmiveGTz1ZwrH0nfyULz2OOM/oBYWQUurt/nm7C XS7iYe6qScyRVMiq59v2jtBxQJdaAdbv1JHCJ0Yj17XBvqTK9xXC8gm2h+SBGOOp 2ziIuipe+7QLWiF20PArGloiSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFESLrI HprEAIyPmIQDxWDsamx4MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADhRJiXL/C26koNVD3pPsY5/dsDWPKLdEV6BY6rm68R0sWnDJPuOtF BltxgjP1aRCPkmOsZPiGDwlGHotMRgSSdGD4pXl3y6N+dC7wUp+3Qy6JEj399v9c RhgY7FpEk5LQV8U+1MS3yL+XSPAosHErgsLrM11jRHLYinryoLURzBKMNfozSa8b pTSYONNRUX7/plSNevQT4b1TXgGEu5vY5npkLKYiUs7bKBjhlQ6QpntKkIxor6fT gnl8Gmp/nF1MU3PCer08vJLKlFFkx1kTZaXOogUoeVPkjrwvhxPhGoMAUjERyiZc 7CmD2fdct6bImM7lgWXjdDDaj1cRWClR -----END CERTIFICATE-----Generated at Wed Jul 2 20:57:03 2025 by rpki-client