$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: poLEMuU+ZkSrzK/eRVJgS7rhfk/KLqRWCajDSxAVw1o= Subject key identifier: 81:C5:B1:E5:EA:76:6B:74:E7:99:20:47:AB:5A:D7:76:D1:D8:A9:67 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 01B2 Signing time: Thu 03 Jul 2025 03:15:30 +0000 Manifest this update: Thu 03 Jul 2025 03:15:29 +0000 Manifest next update: Thu 10 Jul 2025 03:15:29 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: ELq0sS6qzsZrFKo8ZLKA59eE2PcTwIjdfo8K3TTUJBY=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Jul 3 03:15:29 2025 GMT Not After : Jul 10 03:15:29 2025 GMT Subject: CN=6865f5d1-5be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c3:e6:b7:fa:35:ac:bf:f1:5b:9e:c2:c8:78: e5:62:6b:2c:e3:64:a9:39:14:fc:c3:3f:8f:8c:b4: 66:10:f7:8a:ab:53:37:96:88:bd:9c:7c:51:ce:11: 70:5a:2c:be:ac:1e:85:0a:90:bf:65:e2:e1:8a:27: c5:d7:e7:72:82:4b:0c:b0:65:97:98:26:c1:0c:f8: 0f:79:4e:5b:37:13:85:22:b9:ac:d4:0e:d0:62:a6: 61:3d:e6:26:bc:27:e7:99:89:fb:bd:cc:ce:73:8e: b2:b1:f7:c9:fe:36:4e:b3:37:71:8c:a8:e0:e9:5d: b7:44:cf:71:78:54:a6:5c:fc:12:b6:a6:1b:2e:d4: 5e:c4:3a:ff:d9:86:67:5f:9f:9e:78:cd:78:9c:ff: 4d:4f:5c:71:16:f5:67:1b:05:f8:1d:1d:5a:47:57: a4:6d:84:6a:a6:62:f7:7e:25:41:0d:b4:a3:9f:f5: eb:41:c5:86:8a:2d:b5:ff:bf:88:d6:4b:59:ea:3b: fc:de:bc:8c:fa:6d:18:f1:64:0f:f4:2d:e2:39:ec: f5:31:e7:28:70:22:2b:bd:05:b9:21:94:85:16:20: e1:71:71:41:bf:17:e1:bd:f3:77:4c:ba:53:b4:56: 46:e6:c0:7a:57:24:0b:1f:f9:f1:a7:05:36:04:95: c9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C5:B1:E5:EA:76:6B:74:E7:99:20:47:AB:5A:D7:76:D1:D8:A9:67 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6c:76:08:18:d3:18:bf:9c:05:0c:4c:72:5f:e3:17:ae:a6: 44:a9:60:3e:f8:7e:dd:01:d6:78:fc:2d:17:99:a0:fd:70:f3: 69:b5:9f:46:24:c3:36:a3:55:95:14:1f:64:b6:7a:4b:2d:50: b4:27:b4:a6:0a:f9:e0:b2:e6:68:fe:f0:1a:2e:f2:d8:f2:0c: ce:fd:16:58:3d:f3:0b:0c:ba:c0:9b:9e:6f:16:80:76:36:b5: 8f:80:88:af:aa:74:d1:a8:0e:01:36:fc:d8:d3:1f:73:51:52: ce:93:11:52:61:ed:86:e9:a6:49:f9:15:3e:83:1e:dc:1b:25: 29:f9:f0:b1:a8:0f:75:f2:a6:79:e5:4a:65:7f:be:24:94:71: 0d:7d:17:0a:bc:d0:7c:fb:63:f8:14:d8:52:f7:84:f4:6b:97: f3:f9:f7:98:fe:8e:22:9e:a4:94:84:bf:24:d5:44:eb:f4:ef: 41:41:38:26:a0:ef:b6:cf:92:77:5b:4a:1a:c4:bb:dc:cb:0a: ef:db:56:73:1c:2c:4e:f9:95:64:92:eb:41:3e:d7:2e:e8:ff: b3:69:0a:36:14:0a:2a:19:50:ae:10:f1:7f:90:68:f8:83:0b: 3d:84:c2:02:e2:e5:a8:5c:2c:ea:66:63:e0:ac:f1:1d:92:ac: 78:d5:bf:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUwNzAzMDMxNTI5WhcNMjUwNzEwMDMxNTI5WjAYMRYwFAYD VQQDEw02ODY1ZjVkMS01YmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18Pmt/o1rL/xW57CyHjlYmss42SpORT8wz+PjLRmEPeKq1M3loi9nHxRzhFw Wiy+rB6FCpC/ZeLhiifF1+dygksMsGWXmCbBDPgPeU5bNxOFIrms1A7QYqZhPeYm vCfnmYn7vczOc46ysffJ/jZOszdxjKjg6V23RM9xeFSmXPwStqYbLtRexDr/2YZn X5+eeM14nP9NT1xxFvVnGwX4HR1aR1ekbYRqpmL3fiVBDbSjn/XrQcWGii21/7+I 1ktZ6jv83ryM+m0Y8WQP9C3iOez1MecocCIrvQW5IZSFFiDhcXFBvxfhvfN3TLpT tFZG5sB6VyQLH/nxpwU2BJXJ9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHFseXq dmt055kgR6ta13bR2KlnMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGbHYIGNMYv5wFDExyX+MXrqZEqWA++H7dAdZ4/C0XmaD9cPNptZ9G JMM2o1WVFB9ktnpLLVC0J7SmCvngsuZo/vAaLvLY8gzO/RZYPfMLDLrAm55vFoB2 NrWPgIivqnTRqA4BNvzY0x9zUVLOkxFSYe2G6aZJ+RU+gx7cGyUp+fCxqA918qZ5 5Uplf74klHENfRcKvNB8+2P4FNhS94T0a5fz+feY/o4inqSUhL8k1UTr9O9BQTgm oO+2z5J3W0oaxLvcywrv21ZzHCxO+ZVkkutBPtcu6P+zaQo2FAoqGVCuEPF/kGj4 gws9hMIC4uWoXCzqZmPgrPEdkqx41b/M -----END CERTIFICATE-----Generated at Fri Jul 4 02:19:26 2025 by rpki-client