$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft File: oC73fAXKEwwiKYXNdK6TjaeaT78.mft (raw, json) Hash identifier: /UTx99RYCpPszZ+AmJ1IjzYkevFF7vmk8/I05DU1OYY= Subject key identifier: 40:B4:B2:25:26:B7:17:77:25:A2:2E:D7:EE:3C:7D:00:15:53:79:0C Authority key identifier: A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF Certificate issuer: /CN=A91398E5/serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Certificate serial: 094D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft Manifest number: 206D Signing time: Wed 02 Jul 2025 16:45:17 +0000 Manifest this update: Wed 02 Jul 2025 16:45:17 +0000 Manifest next update: Wed 09 Jul 2025 16:45:17 +0000 Files and hashes: 1: oC73fAXKEwwiKYXNdK6TjaeaT78.crl (hash: gsrAXLW0pOjo06MXu2MpolgQn6soX4jL/GNrDhN0Ff4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2381 (0x94d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Validity Not Before: Jul 2 16:45:17 2025 GMT Not After : Jul 9 16:45:17 2025 GMT Subject: CN=6865621d-efb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d9:e0:1b:c4:63:e8:fd:51:1e:fc:b1:48:50: 84:6b:22:46:76:a2:97:fb:6e:51:8f:bc:b9:a8:58: 05:64:f7:4b:b5:2b:4b:bf:1b:58:c7:c4:f5:14:96: 86:32:ab:08:09:3e:3a:ac:b3:37:ee:c5:ad:a0:bc: 92:34:fc:0f:17:33:83:65:43:3c:e9:b0:cd:e2:5a: b7:a3:9a:85:3b:2e:27:4c:02:33:2c:56:23:63:a3: 5f:85:f9:12:be:fe:2f:83:51:8c:80:25:ef:08:57: c3:66:41:72:00:34:1e:97:83:8c:79:30:70:7a:61: 81:1a:be:a7:7d:89:05:44:38:69:e4:cf:9d:84:f5: c3:78:cf:e6:28:28:d2:09:d6:98:e6:f6:ae:df:70: ac:71:8e:27:e5:01:2e:a7:f9:62:28:7b:03:a0:75: 10:a0:5c:9f:48:74:f1:95:f7:04:35:8c:03:15:d7: 9b:b5:b6:f8:b1:63:84:f1:a3:6c:a1:66:06:28:6d: 03:9b:40:be:59:e2:0b:aa:f8:e5:c7:ff:a7:ab:25: 08:6e:5a:43:30:61:5d:5c:1a:7e:0c:69:b6:b5:96: 55:12:60:cc:30:c0:6d:e0:66:03:a8:a0:50:37:2a: 54:07:f4:a1:3a:31:c7:14:23:49:ab:1b:86:d5:66: ec:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B4:B2:25:26:B7:17:77:25:A2:2E:D7:EE:3C:7D:00:15:53:79:0C X509v3 Authority Key Identifier: keyid:A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:fa:44:b1:da:93:80:8b:ce:19:59:1c:74:fb:b3:02:f8:40: f4:cb:e5:68:ed:c5:6d:b2:dd:cf:21:7e:fc:20:e9:31:93:c4: 70:aa:24:4f:f4:8b:a1:aa:5e:63:c3:ba:b9:d8:59:47:f5:4a: d2:05:3d:cd:29:69:03:a4:4d:e1:3c:88:3f:9b:1b:94:29:34: a4:ae:bb:61:a9:00:4a:f8:40:9e:71:7e:9d:dd:8f:b0:30:56: 24:df:ec:13:c4:81:4e:a2:9c:ad:11:1f:f8:fe:0f:16:c6:c0: a4:bb:fb:61:1d:c2:49:f3:e4:74:04:eb:21:46:9c:3a:d3:4b: e7:5d:ca:c6:6d:db:0e:04:c0:48:48:91:57:0d:8e:c8:50:75: cc:6f:a9:74:a3:fc:0d:84:ce:37:aa:e1:de:88:56:05:11:0f: df:11:0d:24:bd:5d:d6:0a:e0:61:bc:d2:59:41:fd:9d:0f:e8: 3b:a7:c2:e6:c6:6d:41:1a:2b:b1:d8:34:8e:52:08:4e:60:ed: 55:7d:4d:7a:aa:ff:e7:42:c5:ce:57:ba:84:4a:37:37:5e:80: 43:fb:cd:d6:cf:55:db:5e:b3:45:ab:0c:df:f6:64:67:08:43: df:d6:43:70:47:21:23:50:8a:e6:3b:3b:1f:1c:a4:96:f4:f6: b6:c2:14:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKEEwMkVGNzdDMDVDQTEzMEMyMjI5ODVDRDc0QUU5MzhE QTc5QTRGQkYwHhcNMjUwNzAyMTY0NTE3WhcNMjUwNzA5MTY0NTE3WjAYMRYwFAYD VQQDEw02ODY1NjIxZC1lZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudngG8Rj6P1RHvyxSFCEayJGdqKX+25Rj7y5qFgFZPdLtStLvxtYx8T1FJaG MqsICT46rLM37sWtoLySNPwPFzODZUM86bDN4lq3o5qFOy4nTAIzLFYjY6NfhfkS vv4vg1GMgCXvCFfDZkFyADQel4OMeTBwemGBGr6nfYkFRDhp5M+dhPXDeM/mKCjS CdaY5vau33CscY4n5QEup/liKHsDoHUQoFyfSHTxlfcENYwDFdebtbb4sWOE8aNs oWYGKG0Dm0C+WeILqvjlx/+nqyUIblpDMGFdXBp+DGm2tZZVEmDMMMBt4GYDqKBQ NypUB/ShOjHHFCNJqxuG1WbsOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC0siUm txd3JaIu1+48fQAVU3kMMB8GA1UdIwQYMBaAFKAu93wFyhMMIimFzXSuk42nmk+/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3d2lLWVhOZEs2VGphZWFU NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29DNzNmQVhLRXd3aUtZWE5kSzZUamFlYVQ3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3 d2lLWVhOZEs2VGphZWFUNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/+kSx2pOAi84ZWRx0+7MC+ED0y+Vo7cVtst3PIX78IOkxk8RwqiRP 9Iuhql5jw7q52FlH9UrSBT3NKWkDpE3hPIg/mxuUKTSkrrthqQBK+ECecX6d3Y+w MFYk3+wTxIFOopytER/4/g8WxsCku/thHcJJ8+R0BOshRpw600vnXcrGbdsOBMBI SJFXDY7IUHXMb6l0o/wNhM43quHeiFYFEQ/fEQ0kvV3WCuBhvNJZQf2dD+g7p8Lm xm1BGiux2DSOUghOYO1VfU16qv/nQsXOV7qESjc3XoBD+83Wz1XbXrNFqwzf9mRn CEPf1kNwRyEjUIrmOzsfHKSW9Pa2whQZ -----END CERTIFICATE-----Generated at Thu Jul 3 20:51:26 2025 by rpki-client