$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft File: loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft (raw, json) Hash identifier: FQUX+jayzKH5H+qnCWVO6e8L7sAyVGyuKqMasU7oZ24= Subject key identifier: 39:B8:F9:3B:31:51:48:46:C3:76:39:DC:E1:A6:CC:F6:60:AA:EC:D1 Authority key identifier: 96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 Certificate issuer: /CN=A91534B8/serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Certificate serial: 02A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft Manifest number: 02A2 Signing time: Tue 01 Jul 2025 02:16:09 +0000 Manifest this update: Tue 01 Jul 2025 02:16:08 +0000 Manifest next update: Tue 08 Jul 2025 02:16:08 +0000 Files and hashes: 1: loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl (hash: 71FJvNIcp9qOB+6iWQj1R4wIiRoST+39yIxSjNiVUNM=) 2: E52CB968094711EDA5B20C0AC4F9AE02.roa (hash: +DAM4u0XWzGXzujdBmpBOJBuyDMu2NVi0XXcoENn480=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Validity Not Before: Jul 1 02:16:08 2025 GMT Not After : Jul 8 02:16:08 2025 GMT Subject: CN=686344e8-c520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e6:85:ec:a5:56:65:c3:93:ba:fe:a8:ab:6e: 8e:c6:64:c1:e9:cd:15:e3:19:41:2a:67:42:99:d2: f0:bc:03:fc:a4:f7:b4:ca:d7:a2:84:66:dc:81:b7: eb:f1:cc:99:22:a7:a4:3c:15:16:08:2e:40:c7:8b: 57:f9:9c:57:07:6a:1b:49:60:57:39:6d:39:66:67: f9:7a:a2:a0:fe:cb:38:5a:87:48:86:e7:95:8f:43: 5f:62:ee:ab:6c:69:2b:5e:e7:39:0a:4f:57:39:63: 43:ef:06:d3:91:17:13:1f:19:2d:aa:1f:2f:45:74: cc:3a:04:df:15:ee:b8:da:ef:4e:72:43:bd:2b:cd: 54:8a:38:65:8d:1f:c9:72:41:4d:90:f1:f6:cb:3a: 0b:19:88:3c:80:58:2b:48:63:47:66:cc:cd:72:c9: d8:6f:f7:5d:4b:a8:0c:b4:41:8b:ac:44:40:a5:b2: 95:a7:f2:b6:60:20:3b:f6:14:0e:d5:b7:cb:dd:c2: 5c:f4:00:75:b6:95:a3:8b:42:cb:6f:bb:dd:13:e5: 4c:d7:30:0d:1f:5d:bc:46:fc:14:c3:1e:8c:dd:79: e5:46:b5:48:8d:f6:e4:23:f3:55:1f:c9:b9:42:5b: 8e:fc:d1:82:a4:bd:50:e7:66:96:1e:15:19:36:34: 89:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B8:F9:3B:31:51:48:46:C3:76:39:DC:E1:A6:CC:F6:60:AA:EC:D1 X509v3 Authority Key Identifier: keyid:96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:bd:4a:d5:2e:15:a6:7a:e8:32:26:15:dc:3b:6d:24:a4:79: 61:e0:08:b8:12:06:cf:d0:13:fb:a7:83:1e:1d:82:44:a3:61: e2:0b:21:7a:81:19:69:eb:69:ba:98:a9:29:53:28:7b:5b:cc: a1:57:34:9a:e6:19:9c:72:c5:54:ad:fe:48:d1:5e:66:ba:52: bd:01:a5:7d:3a:6e:10:ab:73:37:ad:76:13:7d:4c:a2:41:17: 7f:aa:d0:e8:3b:34:76:3b:77:53:19:9d:38:ce:6c:0a:db:df: 53:4b:74:2b:c1:fe:51:85:df:7e:5a:41:d6:f9:f1:ff:a0:49: 5e:81:50:96:c0:55:93:df:1a:14:cc:c2:37:cf:34:5b:b4:35: dc:1d:53:3d:38:43:3e:80:51:41:44:52:79:22:14:c9:b5:72: ba:ad:b2:0d:ff:b8:d2:62:b4:8e:9e:6e:c9:70:e3:be:2e:37: 13:9b:7e:f5:96:ea:19:fc:9d:c2:21:b1:0a:f6:ac:88:2f:06: 32:e5:da:02:45:df:0f:e1:5b:51:2e:50:f7:9f:c4:27:df:8c: 60:21:c5:1b:67:d4:b1:f9:03:33:31:9d:b0:35:66:8e:df:91: c5:d6:0a:59:65:1c:87:e8:4c:9d:56:73:a6:e4:65:4c:98:40: e3:90:72:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKDk2ODAwNTczMDE4QzdDMkZCNUEwMDgxRTYzQzYzRjRE QTQ0MDNDQjYwHhcNMjUwNzAxMDIxNjA4WhcNMjUwNzA4MDIxNjA4WjAYMRYwFAYD VQQDEw02ODYzNDRlOC1jNTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+aF7KVWZcOTuv6oq26OxmTB6c0V4xlBKmdCmdLwvAP8pPe0yteihGbcgbfr 8cyZIqekPBUWCC5Ax4tX+ZxXB2obSWBXOW05Zmf5eqKg/ss4WodIhueVj0NfYu6r bGkrXuc5Ck9XOWND7wbTkRcTHxktqh8vRXTMOgTfFe642u9OckO9K81UijhljR/J ckFNkPH2yzoLGYg8gFgrSGNHZszNcsnYb/ddS6gMtEGLrERApbKVp/K2YCA79hQO 1bfL3cJc9AB1tpWji0LLb7vdE+VM1zANH128RvwUwx6M3XnlRrVIjfbkI/NVH8m5 QluO/NGCpL1Q52aWHhUZNjSJtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm4+Tsx UUhGw3Y53OGmzPZgquzRMB8GA1UdIwQYMBaAFJaABXMBjHwvtaAIHmPGP02kQDy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC9BODZCMzc1QTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZDLTFvQWdlWThZX1RhUkFQ TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvQUZjd0dNZkMtMW9BZ2VZOFlfVGFSQVBMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC9BODZCMzc1QTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZD LTFvQWdlWThZX1RhUkFQTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCvUrVLhWmeugyJhXcO20kpHlh4Ai4EgbP0BP7p4MeHYJEo2HiCyF6 gRlp62m6mKkpUyh7W8yhVzSa5hmccsVUrf5I0V5mulK9AaV9Om4Qq3M3rXYTfUyi QRd/qtDoOzR2O3dTGZ04zmwK299TS3Qrwf5Rhd9+WkHW+fH/oElegVCWwFWT3xoU zMI3zzRbtDXcHVM9OEM+gFFBRFJ5IhTJtXK6rbIN/7jSYrSOnm7JcOO+LjcTm371 luoZ/J3CIbEK9qyILwYy5doCRd8P4VtRLlD3n8Qn34xgIcUbZ9Sx+QMzMZ2wNWaO 35HF1gpZZRyH6EydVnOm5GVMmEDjkHLX -----END CERTIFICATE-----Generated at Tue Jul 1 11:29:10 2025 by rpki-client