$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: BNhiw/WwXD8MHaqTnKP0CdOPY+vsmkjtbKf6/BRgaj4= Subject key identifier: F0:FD:89:C9:BA:5A:9F:DA:22:78:B5:59:22:92:34:0D:BD:7F:7B:A6 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 43 Signing time: Tue 01 Jul 2025 08:15:08 +0000 Manifest this update: Tue 01 Jul 2025 08:15:08 +0000 Manifest next update: Tue 08 Jul 2025 08:15:08 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: Tc/ytPBTd158hX/3SacDGCIZ32FC0/Lw0n6pBdbdOik=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: Jul 1 08:15:08 2025 GMT Not After : Jul 8 08:15:08 2025 GMT Subject: CN=6863990c-33c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4c:38:6c:b2:5d:20:ff:17:03:d0:c6:cd:cc: df:21:68:2c:d1:47:e7:fc:3c:6e:d7:b2:00:91:0b: c8:2e:18:ad:df:40:8a:a8:27:7f:b1:d6:69:c1:78: 75:00:13:3b:2b:55:cc:39:89:a2:78:02:c1:4d:2e: 60:f6:27:b0:c3:39:c4:19:39:42:4f:b2:6d:12:8a: 99:41:bd:69:85:06:03:63:81:87:60:a6:3f:e9:95: a8:9a:4e:2b:7f:83:c4:5a:57:bb:8d:d3:76:b3:29: 32:16:2a:f2:9a:e2:47:d2:ca:4e:f2:13:77:72:7c: 77:02:cb:d5:78:2e:e2:18:ff:3c:fb:c2:f7:5c:fc: d8:47:9b:71:58:44:d0:08:3a:59:07:58:99:ab:38: bd:be:5d:09:0c:e1:48:ce:6e:97:0a:7c:37:b2:77: 2c:b3:8b:8d:15:96:c8:70:26:45:2b:45:09:34:da: 5b:ba:79:ec:74:2c:81:71:90:3e:cc:03:23:65:23: 05:57:ac:c4:53:83:68:b1:4f:95:c1:08:ef:f5:e9: 1d:82:03:ba:80:db:8c:94:27:67:3e:7e:08:2e:ae: f3:e7:25:72:aa:d6:53:7d:44:dd:7d:8d:af:7f:83: da:e9:ba:0d:47:ef:95:6d:f0:49:11:cf:f2:68:3b: a8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FD:89:C9:BA:5A:9F:DA:22:78:B5:59:22:92:34:0D:BD:7F:7B:A6 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e7:47:ea:e0:e2:71:e2:0a:32:5d:81:bf:b7:52:1b:80:90: 41:09:4c:90:ce:e1:07:f4:a9:a5:f5:f2:ee:4f:c6:10:e6:a4: 8c:79:a6:f0:46:4a:30:11:d6:d9:6e:fe:86:12:fc:fc:1b:71: f8:f7:b6:ae:31:47:e9:e1:24:87:09:a0:4f:73:9f:9c:39:92: 27:ac:18:54:41:80:fe:cc:75:38:6e:b9:e9:9b:a3:3b:96:bb: af:9b:55:6d:5d:84:19:17:01:8c:38:4d:c8:7b:ce:98:31:7b: fe:03:52:c2:a8:4f:3d:07:99:80:98:38:b0:1f:01:53:52:71: 01:a7:1c:b8:4e:bd:48:3e:30:d9:9d:b8:e5:cb:dc:ae:be:5a: 9a:50:64:f3:31:6f:01:91:2a:27:23:31:86:3e:f5:f4:99:b5: 02:7a:f4:91:e8:a4:90:06:31:b2:9f:33:5d:f9:e6:2a:2f:ee: e2:c4:a4:b3:78:6e:90:99:88:85:a5:2c:e8:99:b5:66:b6:d0: 48:32:af:e1:2c:05:ef:7c:3c:c4:50:88:2b:10:ee:03:7f:39: 52:3e:3d:3b:ca:55:69:31:35:20:05:b4:72:1d:ac:f5:45:e5: cf:8e:65:aa:d1:c6:6e:61:ed:49:c6:70:d9:e1:cc:89:d1:ad: af:93:20:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTA3MDEwODE1MDhaFw0yNTA3MDgwODE1MDhaMBgxFjAUBgNV BAMTDTY4NjM5OTBjLTMzYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1TDhssl0g/xcD0MbNzN8haCzRR+f8PG7XsgCRC8guGK3fQIqoJ3+x1mnBeHUA EzsrVcw5iaJ4AsFNLmD2J7DDOcQZOUJPsm0SiplBvWmFBgNjgYdgpj/plaiaTit/ g8RaV7uN03azKTIWKvKa4kfSyk7yE3dyfHcCy9V4LuIY/zz7wvdc/NhHm3FYRNAI OlkHWJmrOL2+XQkM4UjObpcKfDeydyyzi40VlshwJkUrRQk02lu6eex0LIFxkD7M AyNlIwVXrMRTg2ixT5XBCO/16R2CA7qA24yUJ2c+fggurvPnJXKq1lN9RN19ja9/ g9rpug1H75Vt8EkRz/JoO6hZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8P2Jybpa n9oieLVZIpI0Db1/e6YwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJPnR+rg4nHiCjJdgb+3UhuAkEEJTJDO4Qf0qaX18u5PxhDmpIx5pvBG SjAR1tlu/oYS/Pwbcfj3tq4xR+nhJIcJoE9zn5w5kiesGFRBgP7MdThuuembozuW u6+bVW1dhBkXAYw4Tch7zpgxe/4DUsKoTz0HmYCYOLAfAVNScQGnHLhOvUg+MNmd uOXL3K6+WppQZPMxbwGRKicjMYY+9fSZtQJ69JHopJAGMbKfM1355iov7uLEpLN4 bpCZiIWlLOiZtWa20Egyr+EsBe98PMRQiCsQ7gN/OVI+PTvKVWkxNSAFtHIdrPVF 5c+OZarRxm5h7UnGcNnhzInRra+TIL0= -----END CERTIFICATE-----Generated at Tue Jul 1 21:54:39 2025 by rpki-client