$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft File: d31UDhYfpnH7JFijP_5L8z1qcBU.mft (raw, json) Hash identifier: E67xDXu2GkLW8P+gDtjYH6NUSAdhh+dh12gYw2qC8Q8= Subject key identifier: 92:4D:46:7F:09:3A:D1:AB:D3:82:19:E2:C2:0D:97:4E:70:AE:C9:67 Authority key identifier: 77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 Certificate issuer: /CN=A913BA27/serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft Manifest number: 0F Signing time: Thu 03 Jul 2025 08:21:27 +0000 Manifest this update: Thu 03 Jul 2025 08:21:26 +0000 Manifest next update: Thu 10 Jul 2025 08:21:26 +0000 Files and hashes: 1: d31UDhYfpnH7JFijP_5L8z1qcBU.crl (hash: 4lfEKh61S/DMOPi514nxG4QDUA4l11OZblKwDWhpah4=) 2: 71B7688645AB11F0949A471EC4F9AE02.roa (hash: yl2cL3cHIW46lNiv/5lOmjEF6XN4CiYiCi/4pbPGnEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA27, serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Validity Not Before: Jul 3 08:21:26 2025 GMT Not After : Jul 10 08:21:26 2025 GMT Subject: CN=68663d87-5219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cb:0a:4b:2c:eb:05:65:1e:22:59:87:2d:15: 13:b1:c8:55:8d:90:40:b2:9f:78:b7:72:d1:67:74: 6a:07:3c:4a:49:b4:90:32:50:a2:c6:94:f0:f1:ad: 89:27:2c:6f:64:49:e3:48:84:13:f4:e6:c6:57:3a: 32:04:66:13:a6:8a:f1:a4:18:b8:bd:34:63:43:82: 17:db:ca:7c:34:ba:06:bf:c1:7e:7f:5a:b9:ac:85: 30:33:b2:47:51:6b:d7:a7:7a:50:37:60:f0:55:70: 1e:6e:06:76:0c:d9:7f:e2:24:26:98:57:46:71:3a: d8:29:43:72:fa:84:86:37:27:8c:56:fa:ff:f1:6e: cd:30:1f:45:10:cc:13:7a:ec:40:3e:d4:af:a6:0e: 59:59:9b:ea:8d:71:c0:f0:82:0d:f5:ff:01:d6:19: cf:55:3c:d1:39:11:c6:ef:4c:9e:40:6f:13:82:70: 07:1b:92:fa:6a:68:d6:a9:fe:24:8d:71:3a:fd:93: aa:5d:e5:06:9e:33:cc:51:7f:70:e4:12:39:16:25: 7e:76:18:b7:f1:b8:e5:4b:9a:29:27:24:00:a3:31: 0e:91:82:f9:6c:73:48:df:39:dc:64:cd:91:a3:88: 3e:61:66:03:85:cb:24:06:b8:5a:af:2d:19:30:7a: 87:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4D:46:7F:09:3A:D1:AB:D3:82:19:E2:C2:0D:97:4E:70:AE:C9:67 X509v3 Authority Key Identifier: keyid:77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:c1:3b:cd:d9:6e:82:07:26:44:44:c2:c2:45:33:b8:f8:05: 69:89:45:bc:0c:17:33:3d:c3:a6:12:f3:5b:c9:9c:db:11:25: d8:b6:50:67:70:da:74:df:4b:a1:31:da:bc:4a:ff:93:a5:ae: 53:98:5b:3a:df:54:28:b9:0c:bd:de:23:75:19:a7:fa:b2:bd: 26:ed:c5:e7:d5:6e:25:ae:64:4a:ee:4d:1d:6b:a4:1a:74:e6: 02:cf:9b:de:77:c0:1c:c4:ad:81:38:f4:89:5d:b3:8b:aa:8e: b6:4a:61:90:15:96:80:cb:1d:25:d3:98:a0:c2:b9:04:34:ce: 50:ef:de:62:60:9d:ab:07:d0:e9:1d:08:eb:c2:40:ac:b2:ed: 78:fd:f5:59:45:8f:0c:64:c1:ce:93:31:f6:41:06:0f:ba:4f: cb:b4:2f:b3:06:d1:9c:96:a8:e5:f5:15:eb:e4:b4:01:b6:60: 9f:ce:e3:85:0e:e9:b8:8f:8c:ca:7c:2b:cb:2c:8c:59:88:18: e6:2a:37:36:9e:42:4c:58:a7:4b:49:74:4d:07:0e:47:bb:41: 59:4c:66:5a:80:7b:67:f8:37:96:6b:9b:14:81:3b:79:25:4e: d3:48:7d:c2:a7:9e:c6:f5:c8:a0:2e:8a:66:78:9b:4b:a9:d1: e1:0a:3a:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QkEyNzExMC8GA1UEBRMoNzc3RDU0MEUxNjFGQTY3MUZCMjQ1OEEzM0ZGRTRCRjMz RDZBNzAxNTAeFw0yNTA3MDMwODIxMjZaFw0yNTA3MTAwODIxMjZaMBgxFjAUBgNV BAMTDTY4NjYzZDg3LTUyMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvywpLLOsFZR4iWYctFROxyFWNkECyn3i3ctFndGoHPEpJtJAyUKLGlPDxrYkn LG9kSeNIhBP05sZXOjIEZhOmivGkGLi9NGNDghfbynw0uga/wX5/WrmshTAzskdR a9enelA3YPBVcB5uBnYM2X/iJCaYV0ZxOtgpQ3L6hIY3J4xW+v/xbs0wH0UQzBN6 7EA+1K+mDllZm+qNccDwgg31/wHWGc9VPNE5EcbvTJ5AbxOCcAcbkvpqaNap/iSN cTr9k6pd5QaeM8xRf3DkEjkWJX52GLfxuOVLmiknJACjMQ6Rgvlsc0jfOdxkzZGj iD5hZgOFyyQGuFqvLRkweochAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkk1Gfwk6 0avTghniwg2XTnCuyWcwHwYDVR0jBBgwFoAUd31UDhYfpnH7JFijP/5L8z1qcBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCQTI3L0VBNEU2NjlDNDU4 QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5IN0pGaWpQXzVMOHoxcWNC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMxVURoWWZwbkg3SkZpalBfNUw4ejFxY0JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC QTI3L0VBNEU2NjlDNDU4QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5I N0pGaWpQXzVMOHoxcWNCVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKnBO83ZboIHJkREwsJFM7j4BWmJRbwMFzM9w6YS81vJnNsRJdi2UGdw 2nTfS6Ex2rxK/5OlrlOYWzrfVCi5DL3eI3UZp/qyvSbtxefVbiWuZEruTR1rpBp0 5gLPm953wBzErYE49Ilds4uqjrZKYZAVloDLHSXTmKDCuQQ0zlDv3mJgnasH0Okd COvCQKyy7Xj99VlFjwxkwc6TMfZBBg+6T8u0L7MG0ZyWqOX1FevktAG2YJ/O44UO 6biPjMp8K8ssjFmIGOYqNzaeQkxYp0tJdE0HDke7QVlMZlqAe2f4N5ZrmxSBO3kl TtNIfcKnnsb1yKAuimZ4m0up0eEKOlw= -----END CERTIFICATE-----Generated at Fri Jul 4 11:25:03 2025 by rpki-client