$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: fGndqMonAT/rjiWYrZK/h9MopQciK6Mv78Kex5i0uoQ= Subject key identifier: 03:D1:70:2A:20:21:B0:4D:F5:35:5E:C5:52:06:AE:42:36:CF:78:94 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 206C Signing time: Wed 02 Jul 2025 16:45:15 +0000 Manifest this update: Wed 02 Jul 2025 16:45:15 +0000 Manifest next update: Wed 09 Jul 2025 16:45:15 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: xV7iRBxSzvudjN5tN2XJJ+80K6hFejRYlAR9wsbqGwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5921 (0x1721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Jul 2 16:45:15 2025 GMT Not After : Jul 9 16:45:15 2025 GMT Subject: CN=6865621b-1150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:88:a9:97:c7:1f:07:98:91:52:d5:5d:88:35: 0a:4d:47:3f:3b:58:fd:0f:3f:fd:b8:ea:b3:3d:ab: 01:23:98:56:9f:29:88:dc:3e:da:4e:fa:37:79:87: 94:0a:e5:6d:8a:ab:27:37:3b:77:76:fe:d1:86:69: 0f:4d:5a:62:df:14:59:d1:08:be:22:e6:69:b4:4e: da:60:32:a8:46:5d:c1:50:ba:f6:42:e5:48:e4:3e: 52:43:18:b2:ef:0e:15:78:7d:2b:25:32:e1:55:ca: 2d:e3:bf:27:9f:8b:41:5d:0c:6a:38:c8:23:32:a6: 3b:d0:04:db:15:83:c0:73:65:74:81:2b:26:0f:ad: 75:16:e4:d6:bb:26:03:ca:b1:6e:8f:2d:03:ef:39: 60:a2:75:25:33:d4:db:a2:d9:06:46:7e:53:69:ba: ea:51:f4:d6:e1:c9:ef:78:cd:1c:cd:8b:e5:74:e4: fa:75:d0:70:dc:26:32:57:14:cc:91:d4:51:a6:dc: e5:d4:2e:00:21:9a:ff:18:8d:43:ac:1b:d6:7c:3a: bd:53:ba:33:b7:45:e6:15:d6:50:97:4c:b0:d1:71: 78:39:d5:25:9b:5b:8d:66:89:69:37:51:8b:94:36: ad:41:57:b5:47:42:1a:50:0b:fb:7b:73:40:91:d8: 71:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D1:70:2A:20:21:B0:4D:F5:35:5E:C5:52:06:AE:42:36:CF:78:94 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c0:68:9e:75:ab:be:45:23:28:12:97:72:5c:12:4b:b5:08: ac:79:e3:05:da:e5:fc:31:f3:c6:8e:fc:a4:fb:7d:b2:cc:48: a5:b5:b0:d4:bf:2f:55:a4:91:88:1f:7c:af:31:5b:ad:86:f1: 34:c5:93:b6:9f:2c:25:41:d8:3c:83:1e:15:09:3d:f3:75:83: 47:a2:f7:6e:83:90:23:b6:f0:12:43:38:c8:1e:1d:e3:73:97: 9d:3b:52:2b:68:74:64:f1:09:b3:ae:2a:8a:62:04:c4:ee:de: fe:8f:a6:92:bc:b5:96:ae:25:69:ac:ae:3d:ea:72:da:17:30: d3:8b:bc:83:b9:4b:6a:14:94:11:13:f7:39:27:a9:f0:50:35: 92:f6:88:48:a0:12:20:73:3b:1e:6e:79:3f:9e:ae:7b:fc:e8: 99:0c:3e:a3:3c:10:f4:55:52:c0:85:1c:19:99:bd:93:e2:41: 88:cc:1a:c9:e9:cc:fd:37:28:9e:26:ac:ec:19:49:fb:18:f5: fe:42:88:5c:67:c3:dc:19:97:cb:f2:56:fc:cb:27:92:ea:4b: 71:dd:69:fe:96:03:3d:24:0d:ba:66:87:71:b2:4b:2c:ff:63: 15:86:cc:36:44:65:2e:89:75:b6:65:3b:82:05:d1:df:1b:aa: 68:65:a6:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwNzAyMTY0NTE1WhcNMjUwNzA5MTY0NTE1WjAYMRYwFAYD VQQDEw02ODY1NjIxYi0xMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIipl8cfB5iRUtVdiDUKTUc/O1j9Dz/9uOqzPasBI5hWnymI3D7aTvo3eYeU CuVtiqsnNzt3dv7RhmkPTVpi3xRZ0Qi+IuZptE7aYDKoRl3BULr2QuVI5D5SQxiy 7w4VeH0rJTLhVcot478nn4tBXQxqOMgjMqY70ATbFYPAc2V0gSsmD611FuTWuyYD yrFujy0D7zlgonUlM9TbotkGRn5TabrqUfTW4cnveM0czYvldOT6ddBw3CYyVxTM kdRRptzl1C4AIZr/GI1DrBvWfDq9U7ozt0XmFdZQl0yw0XF4OdUlm1uNZolpN1GL lDatQVe1R0IaUAv7e3NAkdhx4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPRcCog IbBN9TVexVIGrkI2z3iUMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkwGiedau+RSMoEpdyXBJLtQiseeMF2uX8MfPGjvyk+32yzEiltbDU vy9VpJGIH3yvMVuthvE0xZO2nywlQdg8gx4VCT3zdYNHovdug5AjtvASQzjIHh3j c5edO1IraHRk8QmzriqKYgTE7t7+j6aSvLWWriVprK496nLaFzDTi7yDuUtqFJQR E/c5J6nwUDWS9ohIoBIgczsebnk/nq57/OiZDD6jPBD0VVLAhRwZmb2T4kGIzBrJ 6cz9NyieJqzsGUn7GPX+QohcZ8PcGZfL8lb8yyeS6ktx3Wn+lgM9JA26Zodxskss /2MVhsw2RGUuiXW2ZTuCBdHfG6poZaYY -----END CERTIFICATE-----Generated at Fri Jul 4 00:10:52 2025 by rpki-client