$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft File: F2vOFchi1HunYKH2ZTj4HVxJO4E.mft (raw, json) Hash identifier: 9NKLgohcdRsanIBf30J41L9FTJmSVoe/scWHiwUYOGY= Subject key identifier: CD:48:B4:A9:FC:0E:1C:7C:56:C2:79:D4:17:60:12:80:40:17:48:40 Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft Manifest number: 74 Signing time: Thu 03 Jul 2025 07:02:45 +0000 Manifest this update: Thu 03 Jul 2025 07:02:45 +0000 Manifest next update: Thu 10 Jul 2025 07:02:45 +0000 Files and hashes: 1: F2vOFchi1HunYKH2ZTj4HVxJO4E.crl (hash: ZJjAbYCZpb7y91cMio8Ne1ovtDA8iNUSXC13wnIobRQ=) 2: 2CE10886A68511EFB0CF9981C4F9AE02.roa (hash: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: Jul 3 07:02:45 2025 GMT Not After : Jul 10 07:02:45 2025 GMT Subject: CN=68662b15-abb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f4:77:f4:de:f9:f2:19:96:60:d1:9f:8e:58: 5f:62:e3:6f:be:51:eb:45:c0:af:7a:fd:9e:9d:49: 91:cd:78:9f:4a:e8:2d:ad:91:39:85:f8:db:9c:4b: bd:e2:1b:15:cb:4a:28:7c:90:83:4b:f7:19:58:3a: f4:49:55:3d:d6:06:e5:c4:c3:cb:a3:26:ff:b3:fe: 36:e7:01:55:97:d2:b5:72:5d:98:d0:50:b1:87:cf: cb:77:b2:98:39:57:92:85:cc:65:ba:72:a9:b8:83: 9e:07:f4:ad:de:23:5c:a2:6b:41:df:b6:de:15:46: fa:44:80:76:14:9f:b9:c2:c1:1b:b4:9d:9e:db:f7: 9b:b7:16:d3:38:25:5f:4b:77:46:a8:41:57:31:df: 49:fd:76:97:91:66:8a:99:3a:13:1f:3f:0b:71:d8: f5:28:f9:f6:6f:ac:09:33:91:3f:e1:a7:6b:08:a8: bd:8a:10:9a:f9:7d:9d:ba:d9:41:d1:78:f6:d0:4d: 86:45:6b:1c:38:07:bc:ca:e0:5f:0e:f1:f8:21:55: 9d:75:75:91:8a:36:69:b5:af:2d:84:1c:d2:ee:2f: 8f:f4:e8:42:02:96:62:66:01:9f:a3:29:16:10:50: f1:31:04:1f:a1:c1:1c:a4:9b:d2:2e:ac:b8:b6:94: aa:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:48:B4:A9:FC:0E:1C:7C:56:C2:79:D4:17:60:12:80:40:17:48:40 X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:24:35:5d:40:38:7a:8a:4b:80:68:2c:b0:e4:b8:8b:1a:da: 1b:a5:9a:b3:a7:76:66:73:b9:e8:9b:e7:68:b4:b7:dc:d9:08: 0d:b1:dc:ba:14:81:89:5d:fd:e2:64:44:9a:75:6b:22:0b:b4: db:18:c9:98:df:10:53:9c:b3:4e:12:76:a1:15:93:1d:32:0b: 27:c1:91:7b:fe:d0:c0:f5:4a:9d:e6:cf:cd:19:10:18:ff:59: 06:06:c0:96:4a:80:ae:a8:62:51:01:fa:f1:f3:f9:c3:91:c2: a3:e2:26:b5:59:e7:77:6f:d0:42:a6:8c:c3:dc:ba:1b:1e:0d: 4f:e3:61:ad:a7:a1:25:f0:dd:5c:15:25:c0:30:87:be:49:5a: 3d:38:9d:b6:07:75:47:5c:10:8d:3c:e2:22:d2:3a:d3:ec:7a: d4:80:19:e5:de:c2:b5:e5:30:f7:f8:2e:3d:7a:bf:94:d4:51: 14:fa:18:e9:8e:58:e6:c4:21:f7:fb:63:c0:60:84:a3:0f:94: e9:65:53:60:98:77:3f:08:d3:fc:5f:c7:a1:8d:2d:90:8a:ce: 4c:b5:a6:f3:e0:63:8b:75:10:bb:1e:35:8e:0d:f1:1d:09:7b: e4:01:28:b4:36:dc:e6:1a:da:2c:91:47:66:40:c0:b1:e3:aa: 36:18:69:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZFNDExMC8GA1UEBRMoMTc2QkNFMTVDODYyRDQ3QkE3NjBBMUY2NjUzOEY4MUQ1 QzQ5M0I4MTAeFw0yNTA3MDMwNzAyNDVaFw0yNTA3MTAwNzAyNDVaMBgxFjAUBgNV BAMTDTY4NjYyYjE1LWFiYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDs9Hf03vnyGZZg0Z+OWF9i42++UetFwK96/Z6dSZHNeJ9K6C2tkTmF+NucS73i GxXLSih8kINL9xlYOvRJVT3WBuXEw8ujJv+z/jbnAVWX0rVyXZjQULGHz8t3spg5 V5KFzGW6cqm4g54H9K3eI1yia0Hftt4VRvpEgHYUn7nCwRu0nZ7b95u3FtM4JV9L d0aoQVcx30n9dpeRZoqZOhMfPwtx2PUo+fZvrAkzkT/hp2sIqL2KEJr5fZ262UHR ePbQTYZFaxw4B7zK4F8O8fghVZ11dZGKNmm1ry2EHNLuL4/06EIClmJmAZ+jKRYQ UPExBB+hwRykm9IurLi2lKqdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzUi0qfwO HHxWwnnUF2ASgEAXSEAwHwYDVR0jBBgwFoAUF2vOFchi1HunYKH2ZTj4HVxJO4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkU0LzMyRTk5M0MwQTY4 NDExRUY4RjVFRDM3RkM0RjlBRTAyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjJ2T0ZjaGkxSHVuWUtIMlpUajRIVnhKTzRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw NkU0LzMyRTk5M0MwQTY4NDExRUY4RjVFRDM3RkM0RjlBRTAyL0Yydk9GY2hpMUh1 bllLSDJaVGo0SFZ4Sk80RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA0kNV1AOHqKS4BoLLDkuIsa2hulmrOndmZzueib52i0t9zZCA2x3LoU gYld/eJkRJp1ayILtNsYyZjfEFOcs04SdqEVkx0yCyfBkXv+0MD1Sp3mz80ZEBj/ WQYGwJZKgK6oYlEB+vHz+cORwqPiJrVZ53dv0EKmjMPcuhseDU/jYa2noSXw3VwV JcAwh75JWj04nbYHdUdcEI084iLSOtPsetSAGeXewrXlMPf4Lj16v5TUURT6GOmO WObEIff7Y8BghKMPlOllU2CYdz8I0/xfx6GNLZCKzky1pvPgY4t1ELseNY4N8R0J e+QBKLQ23OYa2iyRR2ZAwLHjqjYYado= -----END CERTIFICATE-----Generated at Thu Jul 3 19:47:16 2025 by rpki-client