$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: wrmwgmd/Qaz8RjHYp9Y9V0u0KPzjxg9LBkVuiG2YIJ8= Subject key identifier: E9:7B:67:BE:63:6C:EC:55:02:5E:3E:4A:B4:D7:C5:93:EE:C9:AE:53 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1081 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 1078 Signing time: Wed 02 Jul 2025 17:33:51 +0000 Manifest this update: Wed 02 Jul 2025 17:33:50 +0000 Manifest next update: Wed 09 Jul 2025 17:33:50 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: EHBdJnSDZgH358jA/F1/prUez+4S70OCpqRa7YiROzQ=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: E3ZTe2bEAycjBIVFstyPiPS8lw3hN6h/g285ab56Ew4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4225 (0x1081) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jul 2 17:33:50 2025 GMT Not After : Jul 9 17:33:50 2025 GMT Subject: CN=68656d7f-1473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:28:b9:25:07:15:59:58:c6:c0:87:10:b2: d7:73:00:7c:81:0b:76:b4:9d:da:90:1b:13:9a:cb: a5:33:55:98:93:e2:ee:05:7c:32:93:43:70:41:30: 78:d5:4d:1a:ba:50:d0:ae:4d:c9:76:52:de:ff:e6: 53:10:f8:bb:24:ae:15:15:0b:9a:d0:28:a1:26:ec: e6:3a:ce:ac:c0:57:7a:d2:c4:e8:66:bf:86:e4:3b: 03:3a:28:94:4b:02:60:9a:27:fd:ce:52:38:79:68: 14:68:54:d9:eb:19:18:01:dc:fb:c6:4a:c5:67:07: 14:a2:0b:3f:6d:d4:1d:67:5d:01:94:9f:5b:fa:8f: f2:f4:f0:42:52:3a:f5:17:0b:8f:47:33:85:7a:f4: 6f:83:95:2f:f7:b3:0c:73:18:1a:5f:0c:e0:9c:84: f0:03:17:1f:f5:22:ac:d0:41:be:03:2f:08:e9:58: 35:78:50:43:02:a0:76:aa:f8:f7:ae:c9:79:9a:e7: 5f:8e:8a:ee:4f:ef:33:eb:7d:f7:1f:6b:ff:c5:06: 41:ea:51:c7:a2:b7:1b:b4:af:6f:3e:f2:9c:3e:c1: 6b:81:35:5c:df:11:90:90:19:0d:8e:02:97:d5:6c: 70:a9:c3:0b:de:9a:d1:5f:c6:ec:f2:7b:53:28:36: 07:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7B:67:BE:63:6C:EC:55:02:5E:3E:4A:B4:D7:C5:93:EE:C9:AE:53 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:36:8f:63:45:c9:e2:34:ef:bd:c9:22:50:bd:cc:d4:89:78: fd:ca:a7:a6:91:12:58:ee:a2:50:aa:d5:33:f0:e8:ef:4e:dc: 1f:a5:a9:62:8b:41:29:48:ff:fd:32:81:6e:99:5a:48:54:35: db:71:a2:0a:a8:1a:27:53:9d:66:e8:85:a7:42:9b:5b:fc:a4: b8:13:88:08:0d:64:5f:95:68:b6:50:cf:75:b4:8b:45:c5:a3: fe:1f:b9:c9:42:cd:2a:46:82:10:2a:21:59:57:9b:66:46:62: 60:6f:0c:d6:74:fd:44:69:e4:13:b7:52:e1:84:e2:29:d5:df: be:66:6f:18:e6:c1:3f:1f:cb:35:7f:67:54:c3:48:a4:0a:9b: 68:28:b7:e3:2d:ee:b3:6b:76:f5:06:58:76:8d:5a:e7:5d:e3: 3c:2a:dd:e5:da:9c:6b:1a:6d:67:5f:1b:ab:61:5f:f7:35:94: de:8f:6c:57:8c:c2:1c:80:c6:56:92:10:39:47:32:8f:7c:03: f7:ec:d4:62:c0:ad:2e:a1:13:d0:25:9b:fc:85:b0:9c:81:db: 8d:60:9e:50:c5:87:d1:79:91:fa:d5:6c:28:07:23:1d:a2:b4: 97:a3:22:16:a7:38:2b:61:02:b2:df:0f:78:48:71:83:9c:35: 1e:e1:39:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNzAyMTczMzUwWhcNMjUwNzA5MTczMzUwWjAYMRYwFAYD VQQDEw02ODY1NmQ3Zi0xNDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKQouSUHFVlYxsCHELLXcwB8gQt2tJ3akBsTmsulM1WYk+LuBXwyk0NwQTB4 1U0aulDQrk3JdlLe/+ZTEPi7JK4VFQua0CihJuzmOs6swFd60sToZr+G5DsDOiiU SwJgmif9zlI4eWgUaFTZ6xkYAdz7xkrFZwcUogs/bdQdZ10BlJ9b+o/y9PBCUjr1 FwuPRzOFevRvg5Uv97MMcxgaXwzgnITwAxcf9SKs0EG+Ay8I6Vg1eFBDAqB2qvj3 rsl5mudfjoruT+8z6333H2v/xQZB6lHHorcbtK9vPvKcPsFrgTVc3xGQkBkNjgKX 1WxwqcML3prRX8bs8ntTKDYHXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOl7Z75j bOxVAl4+SrTXxZPuya5TMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhNo9jRcniNO+9ySJQvczUiXj9yqemkRJY7qJQqtUz8OjvTtwfpali i0EpSP/9MoFumVpIVDXbcaIKqBonU51m6IWnQptb/KS4E4gIDWRflWi2UM91tItF xaP+H7nJQs0qRoIQKiFZV5tmRmJgbwzWdP1EaeQTt1LhhOIp1d++Zm8Y5sE/H8s1 f2dUw0ikCptoKLfjLe6za3b1Blh2jVrnXeM8Kt3l2pxrGm1nXxurYV/3NZTej2xX jMIcgMZWkhA5RzKPfAP37NRiwK0uoRPQJZv8hbCcgduNYJ5QxYfReZH61WwoByMd orSXoyIWpzgrYQKy3w94SHGDnDUe4TlL -----END CERTIFICATE-----Generated at Wed Jul 2 23:09:19 2025 by rpki-client