$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: EVGZIg8jttYh8gCIUmT8kmmGLSkVGOZuu7n1odHmpk0= Subject key identifier: E1:5F:53:34:C1:A5:09:65:7C:25:AB:A5:13:4D:CE:28:32:67:8C:80 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0B8D Signing time: Sat 28 Jun 2025 18:44:48 +0000 Manifest this update: Sat 28 Jun 2025 18:44:48 +0000 Manifest next update: Sat 05 Jul 2025 18:44:48 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: tavqUBamZNAN7HjZd1EfEFJvoboBK8kjggv5h6oVGv8=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Jun 28 18:44:48 2025 GMT Not After : Jul 5 18:44:48 2025 GMT Subject: CN=68603820-fa29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f1:c2:50:16:de:f2:bd:70:bd:d0:eb:e5:91: 50:1c:5b:9d:7b:f9:ea:05:2c:9b:0b:9f:89:23:bd: 8f:4c:22:7c:39:27:14:e0:57:2a:ec:0f:6e:9a:26: 33:c2:da:1a:73:2c:08:0b:b5:7f:40:42:08:b5:59: f6:93:67:f4:68:9f:b4:61:d6:52:f8:c1:45:95:4a: ae:10:35:ce:22:cc:95:af:75:d2:ef:12:a5:aa:ca: 23:98:80:1b:c3:15:0b:e2:fb:8c:bb:e1:57:5b:57: 17:43:d0:c9:8c:8a:89:b4:41:44:aa:0d:e5:62:1a: 7d:b7:08:90:d9:7d:33:ec:07:18:6b:37:7e:2e:8f: bb:f6:79:b3:e8:41:3b:bf:32:22:58:cc:9c:29:d4: bc:82:21:fd:5e:8e:b9:c6:1a:85:26:fe:c5:c6:52: 7c:35:b2:11:51:39:bb:f7:21:1e:e2:bd:7c:f2:45: c6:01:85:07:fb:68:67:39:8f:b3:71:5c:5d:13:f6: 77:c2:cf:2b:c8:72:b4:49:36:1a:86:74:01:97:05: 09:4e:8e:81:28:a6:88:e8:eb:48:82:e0:2e:a9:80: 74:47:f4:40:74:d2:7a:bb:a7:39:72:4b:67:42:0a: c7:2e:3e:c2:4a:8f:2d:e1:60:f5:a0:a9:f8:8a:ad: b5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:5F:53:34:C1:A5:09:65:7C:25:AB:A5:13:4D:CE:28:32:67:8C:80 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:53:4e:d8:60:1f:63:11:f3:3b:5b:ae:8e:f8:5c:a4:3a:4c: 41:85:d1:38:a4:ee:be:ca:a5:75:a1:94:f9:6a:a2:f0:82:6e: 3d:e5:ac:8f:60:4b:eb:df:c1:1f:6f:c9:6e:bb:44:d7:e9:e4: e7:92:e3:b9:4b:b7:b7:4e:4d:bf:39:a4:e8:6d:9e:f6:73:2b: c7:2b:2f:25:67:c5:70:a1:9e:6b:cd:21:76:ef:db:1c:b9:e0: dd:2a:4e:2e:00:ac:75:28:58:6b:1b:6d:cd:54:e4:58:a5:1a: f5:28:25:23:93:86:f0:e0:e8:1d:27:da:d0:24:a7:68:2c:eb: 8b:db:51:1f:47:52:63:5b:e8:50:9a:b2:01:df:30:63:fe:a4: 62:21:aa:c7:ac:2b:ab:33:1b:04:7f:88:92:a6:15:f3:80:c4: ee:b4:46:37:6d:cf:0b:1a:16:50:4f:e4:08:59:a6:6d:94:69: 6d:cc:fe:29:4b:20:60:1e:31:36:77:2c:01:22:65:95:e2:9e: 6d:63:2a:22:b4:96:ce:5b:19:99:3a:9e:25:e0:79:db:4e:21: b5:02:ba:fe:44:e2:0b:a5:b6:3d:15:c6:68:9c:78:93:97:22: d4:f5:c0:f9:10:ec:e2:86:7c:a5:95:be:46:c7:38:39:8a:fd: a8:b4:03:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUwNjI4MTg0NDQ4WhcNMjUwNzA1MTg0NDQ4WjAYMRYwFAYD VQQDEw02ODYwMzgyMC1mYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvHCUBbe8r1wvdDr5ZFQHFude/nqBSybC5+JI72PTCJ8OScU4Fcq7A9umiYz wtoacywIC7V/QEIItVn2k2f0aJ+0YdZS+MFFlUquEDXOIsyVr3XS7xKlqsojmIAb wxUL4vuMu+FXW1cXQ9DJjIqJtEFEqg3lYhp9twiQ2X0z7AcYazd+Lo+79nmz6EE7 vzIiWMycKdS8giH9Xo65xhqFJv7FxlJ8NbIRUTm79yEe4r188kXGAYUH+2hnOY+z cVxdE/Z3ws8ryHK0STYahnQBlwUJTo6BKKaI6OtIguAuqYB0R/RAdNJ6u6c5cktn QgrHLj7CSo8t4WD1oKn4iq21rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFfUzTB pQllfCWrpRNNzigyZ4yAMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNU07YYB9jEfM7W66O+FykOkxBhdE4pO6+yqV1oZT5aqLwgm495ayP YEvr38Efb8luu0TX6eTnkuO5S7e3Tk2/OaTobZ72cyvHKy8lZ8VwoZ5rzSF279sc ueDdKk4uAKx1KFhrG23NVORYpRr1KCUjk4bw4OgdJ9rQJKdoLOuL21EfR1JjW+hQ mrIB3zBj/qRiIarHrCurMxsEf4iSphXzgMTutEY3bc8LGhZQT+QIWaZtlGltzP4p SyBgHjE2dywBImWV4p5tYyoitJbOWxmZOp4l4HnbTiG1Arr+ROILpbY9FcZonHiT lyLU9cD5EOzihnyllb5Gxzg5iv2otAO5 -----END CERTIFICATE-----Generated at Mon Jun 30 19:24:22 2025 by rpki-client