$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: ztlsMSmF6j9T6qzpsIGyryJpXj/2nFXyR67M8Tod91g= Subject key identifier: 15:D3:8B:74:A7:18:10:03:0A:2D:78:F8:ED:27:F9:5E:65:68:16:32 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 0192 Signing time: Tue 01 Jul 2025 03:51:51 +0000 Manifest this update: Tue 01 Jul 2025 03:51:50 +0000 Manifest next update: Tue 08 Jul 2025 03:51:50 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: t0EkQh8fc53UfwKddqwAvH1MSl+ZYCSATCC+e59UY18=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Jul 1 03:51:50 2025 GMT Not After : Jul 8 03:51:50 2025 GMT Subject: CN=68635b57-6f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a9:fb:bf:07:c1:0f:07:15:92:82:ca:8c:6a: 0e:16:ce:79:64:cf:04:2a:4b:c6:a0:60:61:4d:e0: cf:be:cc:9c:da:6c:15:b8:16:d7:e3:e7:8d:51:9a: 13:25:da:1e:1f:5e:73:63:4f:2b:2a:28:68:87:44: dd:64:fa:cf:1a:5b:1c:ba:8b:f7:73:64:88:36:7f: 46:ad:9d:55:5f:7c:b3:40:38:49:7b:12:5c:67:f8: 0a:31:a2:93:e1:c8:c9:57:0d:60:f9:a4:e4:b1:32: 52:4b:7d:c3:b6:4e:49:30:7e:cc:1a:c6:ba:61:e0: 22:f8:3c:a1:be:b4:2b:5f:f1:7a:da:77:7d:41:34: b8:c2:df:17:04:d7:4f:07:46:55:11:d6:26:a8:3d: 4c:f9:01:63:8b:fe:78:90:6d:e2:c9:4c:cf:e2:f3: 39:55:66:5d:7a:2f:ed:09:95:bb:5d:4f:d5:ac:bb: 2c:d1:38:0d:6e:8c:3c:41:fe:05:f8:80:58:2f:cb: e2:34:c1:c1:3e:fa:4b:39:12:0b:bc:5b:94:97:91: a2:78:0c:c2:23:46:98:5d:d2:a8:6a:37:4c:b1:be: 30:f0:3f:84:ff:41:34:98:a7:44:7c:4b:d2:70:dd: aa:1b:d6:d7:80:6f:46:5a:e2:55:12:5a:eb:d8:3b: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D3:8B:74:A7:18:10:03:0A:2D:78:F8:ED:27:F9:5E:65:68:16:32 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:44:11:d9:1b:2c:22:d5:27:c2:c1:07:f1:ab:ad:d1:52:7a: ba:69:be:0d:11:b9:27:c2:32:cb:db:f7:43:6c:5e:09:d7:ff: 04:fb:21:fe:3a:e4:21:de:6b:a1:71:1d:41:99:11:c4:12:74: 90:61:f5:b4:be:a4:01:81:0a:3a:8e:39:66:82:4f:eb:14:e3: ad:fb:83:6b:69:a3:2b:9f:e8:f2:6e:05:9d:25:f1:cd:15:1e: 58:f2:f6:d4:65:2d:9d:3f:31:1f:04:ff:40:39:df:05:2e:18: b6:c1:54:8f:95:c3:ab:c9:01:4f:86:dc:7a:1d:66:f3:2d:e9: c5:87:5b:6e:77:66:8e:38:e4:00:10:a0:6c:7a:d4:3c:f4:c9: 60:e7:a1:47:8f:73:c7:a2:86:89:bf:d1:e7:b3:a7:20:0b:0b: 61:ce:d7:47:a9:9a:77:c4:6d:da:1a:18:57:0d:c6:46:07:8d: 92:b8:bd:6f:b2:b2:74:e5:3b:29:43:db:35:14:1a:20:95:d8: e3:23:bb:65:28:32:ae:bd:b9:95:ab:d4:77:71:c9:04:f1:70: ee:30:91:e9:fd:ee:96:c7:0f:c7:34:aa:98:72:91:1f:d2:98: ec:d5:4a:c8:ae:f0:1e:06:6f:bd:3d:f3:69:63:01:81:4a:dd: ec:36:7a:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwNzAxMDM1MTUwWhcNMjUwNzA4MDM1MTUwWjAYMRYwFAYD VQQDEw02ODYzNWI1Ny02ZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqn7vwfBDwcVkoLKjGoOFs55ZM8EKkvGoGBhTeDPvsyc2mwVuBbX4+eNUZoT JdoeH15zY08rKihoh0TdZPrPGlscuov3c2SINn9GrZ1VX3yzQDhJexJcZ/gKMaKT 4cjJVw1g+aTksTJSS33Dtk5JMH7MGsa6YeAi+DyhvrQrX/F62nd9QTS4wt8XBNdP B0ZVEdYmqD1M+QFji/54kG3iyUzP4vM5VWZdei/tCZW7XU/VrLss0TgNbow8Qf4F +IBYL8viNMHBPvpLORILvFuUl5GieAzCI0aYXdKoajdMsb4w8D+E/0E0mKdEfEvS cN2qG9bXgG9GWuJVElrr2Du+SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXTi3Sn GBADCi14+O0n+V5laBYyMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrRBHZGywi1SfCwQfxq63RUnq6ab4NEbknwjLL2/dDbF4J1/8E+yH+ OuQh3muhcR1BmRHEEnSQYfW0vqQBgQo6jjlmgk/rFOOt+4NraaMrn+jybgWdJfHN FR5Y8vbUZS2dPzEfBP9AOd8FLhi2wVSPlcOryQFPhtx6HWbzLenFh1tud2aOOOQA EKBsetQ89Mlg56FHj3PHooaJv9Hns6cgCwthztdHqZp3xG3aGhhXDcZGB42SuL1v srJ05TspQ9s1FBogldjjI7tlKDKuvbmVq9R3cckE8XDuMJHp/e6Wxw/HNKqYcpEf 0pjs1UrIrvAeBm+9PfNpYwGBSt3sNnpX -----END CERTIFICATE-----Generated at Wed Jul 2 20:40:50 2025 by rpki-client