$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft File: loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft (raw, json) Hash identifier: rgtI+T+bn5F38AqtHbE37IOldmP1WutigP9RHafF8zg= Subject key identifier: 7C:3F:DA:24:A2:6E:31:00:60:8F:36:A3:DC:F7:B8:53:74:58:7F:85 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft Manifest number: 0551 Signing time: Wed 02 Jul 2025 23:47:24 +0000 Manifest this update: Wed 02 Jul 2025 23:47:23 +0000 Manifest next update: Wed 09 Jul 2025 23:47:23 +0000 Files and hashes: 1: loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl (hash: +GLQx8jhg7dob9mTs+/sMtPPBHL4gXmp2WfKIoaIghQ=) 2: AF0A3F14178911EC876F5F50C4F9AE02.roa (hash: IVU27JRYWuBmIt6QcWFMqPFM6vDpf9nhIJBTc75GYY0=) 3: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (hash: iDEEL9U9FxQCZ93LBYj286NgN76ygoYjLl0M4z8SPpI=) 4: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (hash: U7esX+0iuEFV+x7WiXgxLOpS83nYnKPDWOfbwdSRies=) 5: AE8BB766178911EC876F5F50C4F9AE02.roa (hash: OD4QLqvF0E7NjniUYIqO9yXt+jiElu9IZS+rh6A1NUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Jul 2 23:47:23 2025 GMT Not After : Jul 9 23:47:23 2025 GMT Subject: CN=6865c50b-ef98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:eb:ed:09:b0:f2:2b:fe:99:18:0a:19:72:83: d5:8a:70:c0:68:c6:16:a3:e1:a2:28:b9:7d:d9:fa: 2a:4e:0f:49:ba:cc:8a:9c:fe:24:f3:b1:fb:b1:63: f2:31:a2:ff:66:24:87:6b:20:17:6e:85:b7:2a:ed: d9:8a:22:e9:06:32:68:f3:bf:a1:f9:1a:a7:95:f6: c8:db:fa:ba:ad:a7:b1:b9:69:41:8e:11:fc:c4:52: 29:41:c6:50:2a:4f:7f:a9:39:f4:90:ea:7e:bd:6c: 95:7e:b2:3c:c1:4f:a3:93:a4:00:6b:48:a6:ae:3f: d4:88:a7:11:e6:d8:41:d4:eb:fe:7c:dc:dc:4e:7e: 14:eb:42:55:c0:94:23:be:b8:a7:80:db:0b:ba:39: 19:b2:b1:79:fd:b9:8b:7a:06:64:a3:ce:37:98:6c: bf:52:4d:0d:8e:ac:19:76:3b:c5:bc:cf:e6:76:92: 7e:dd:0b:15:b7:5c:14:b4:04:64:70:c5:f0:cc:1a: c1:b6:47:d6:b1:1e:6a:a1:91:bf:24:07:e1:9e:4a: 50:b7:66:ad:78:5d:b3:8a:bc:18:f3:f0:64:fb:9b: 30:c3:a3:75:be:1f:4a:32:cd:fa:eb:20:d6:4c:87: 63:dd:4a:f7:b2:85:9b:05:e3:9d:95:4e:98:fb:c7: 7f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:3F:DA:24:A2:6E:31:00:60:8F:36:A3:DC:F7:B8:53:74:58:7F:85 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:49:b5:31:27:5b:e2:ab:0c:d3:c1:a3:fd:17:a7:4f:c7:7d: 17:84:8e:5a:74:7c:95:3d:17:dc:d7:e1:b8:d2:1f:45:40:9c: c2:9b:ea:27:2e:b2:c2:6d:e6:6a:22:54:c0:62:59:ef:ad:7f: 1b:56:5c:06:e5:eb:08:ba:68:84:a2:9a:48:00:3a:35:7b:fd: 5c:0f:c5:28:b6:66:41:e8:cb:de:48:23:1b:d8:3d:97:bd:41: b0:76:19:7f:2c:b0:3e:30:85:e1:4b:04:41:6f:96:16:c1:fc: 1d:d9:9f:da:12:70:df:bb:c6:e6:03:d1:c1:37:0c:7f:72:71: 47:09:4d:06:5a:95:9b:8d:f4:86:8b:5f:5a:d8:30:36:81:db: 72:4d:58:3c:4b:ce:40:16:85:b1:91:85:83:31:c6:9c:ab:2f: 7e:71:4e:75:61:fa:e4:8a:9b:41:21:b7:9d:47:f6:83:00:16: 96:af:c0:4c:34:d1:de:8f:83:5f:5a:7a:95:96:8a:a0:d1:cb: 39:df:ed:f4:96:bb:a8:15:0d:af:cd:eb:38:f6:df:6b:23:5a: b8:3a:20:95:90:72:ed:51:d5:3f:0f:6e:4e:5b:ae:1e:43:30: 14:be:07:2d:d2:7c:fe:b0:17:f5:1a:4b:8b:89:71:90:e3:d2: a0:53:ab:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwNzAyMjM0NzIzWhcNMjUwNzA5MjM0NzIzWjAYMRYwFAYD VQQDEw02ODY1YzUwYi1lZjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+vtCbDyK/6ZGAoZcoPVinDAaMYWo+GiKLl92foqTg9JusyKnP4k87H7sWPy MaL/ZiSHayAXboW3Ku3ZiiLpBjJo87+h+RqnlfbI2/q6raexuWlBjhH8xFIpQcZQ Kk9/qTn0kOp+vWyVfrI8wU+jk6QAa0imrj/UiKcR5thB1Ov+fNzcTn4U60JVwJQj vringNsLujkZsrF5/bmLegZko843mGy/Uk0NjqwZdjvFvM/mdpJ+3QsVt1wUtARk cMXwzBrBtkfWsR5qoZG/JAfhnkpQt2ateF2zirwY8/Bk+5sww6N1vh9KMs366yDW TIdj3Ur3soWbBeOdlU6Y+8d/bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw/2iSi bjEAYI82o9z3uFN0WH+FMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTRCMS83QTg4NjRBQ0ZCRTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkx Z0hkckhRNG5YU19TMXBmclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+SbUxJ1viqwzTwaP9F6dPx30XhI5adHyVPRfc1+G40h9FQJzCm+on LrLCbeZqIlTAYlnvrX8bVlwG5esIumiEoppIADo1e/1cD8UotmZB6MveSCMb2D2X vUGwdhl/LLA+MIXhSwRBb5YWwfwd2Z/aEnDfu8bmA9HBNwx/cnFHCU0GWpWbjfSG i19a2DA2gdtyTVg8S85AFoWxkYWDMcacqy9+cU51YfrkiptBIbedR/aDABaWr8BM NNHej4NfWnqVloqg0cs53+30lruoFQ2vzes49t9rI1q4OiCVkHLtUdU/D25OW64e QzAUvgct0nz+sBf1GkuLiXGQ49KgU6tG -----END CERTIFICATE-----Generated at Thu Jul 3 17:52:36 2025 by rpki-client