$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: aXdQ7wfaxu4DedniqUsWfQ4p+eOFdjCrxMS9W+0mVvQ= Subject key identifier: 12:19:29:A6:95:B1:FC:F8:07:23:CD:8F:7D:B9:1E:37:FC:A3:CC:B4 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 0102 Signing time: Thu 03 Jul 2025 05:16:19 +0000 Manifest this update: Thu 03 Jul 2025 05:16:18 +0000 Manifest next update: Thu 10 Jul 2025 05:16:18 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: SrDvUTsBhfBgyGf9N7HFY5PWg4DwEZIEvgANSbA8Xxw=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Jul 3 05:16:18 2025 GMT Not After : Jul 10 05:16:18 2025 GMT Subject: CN=68661222-359b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:29:a4:e7:62:83:17:6d:18:78:0e:2d:c2: 91:a3:27:30:7f:6e:24:d1:c5:4d:37:4d:6f:aa:af: 77:c1:18:c9:e1:70:8a:93:96:a0:b0:c6:5e:64:03: 2f:25:c8:ec:a9:9b:93:82:d9:ab:f3:66:7d:40:41: 77:40:06:1b:20:f0:0c:f7:84:e5:8d:ca:56:e8:30: 97:7b:93:f6:9f:0c:f8:3c:7d:54:d4:e6:a4:e4:b1: ac:c4:b6:b1:36:ae:b3:c7:f9:0a:15:6f:3d:37:27: 90:80:d6:a4:cc:34:e9:74:9b:c8:5b:f1:aa:26:13: 99:ee:05:ab:81:a4:42:c3:ba:b5:63:91:b8:33:ef: 0b:67:b4:d2:cf:22:1b:c0:83:a0:81:f4:20:f7:d9: 0f:a6:a2:d5:a9:73:89:31:9d:71:ac:63:f6:86:42: d2:a5:f6:23:73:ee:c1:ca:15:d5:a4:40:49:0b:85: b9:67:17:60:f9:b9:49:e6:91:2a:82:60:9c:f7:de: a8:db:cc:8b:05:da:c8:0b:17:2a:fb:08:45:e0:cd: 9b:37:c7:fc:b5:89:45:2d:49:4b:c2:81:95:4f:1d: ab:ea:2c:db:24:21:9b:d1:2d:84:d5:e5:e4:7c:46: 44:da:8a:ef:ba:64:96:c6:5e:db:60:fe:53:e4:34: ad:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:19:29:A6:95:B1:FC:F8:07:23:CD:8F:7D:B9:1E:37:FC:A3:CC:B4 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:04:7d:4d:25:bf:3f:44:74:ea:55:de:f3:56:fb:44:76:ce: 51:ac:e9:4b:b9:0c:0d:df:aa:f6:be:b3:d1:16:da:eb:66:67: 15:62:ce:ff:71:0c:ff:b4:43:3d:f4:9a:a8:3d:24:e2:dc:9a: 9e:31:b4:e9:37:38:72:17:d7:8a:92:24:44:33:e3:54:9b:57: b4:74:74:26:44:d8:d5:20:8d:54:82:32:5f:64:a6:e1:a0:45: ce:57:04:6d:aa:a7:83:6c:15:38:10:d3:b0:49:d1:55:f1:19: 1c:0b:0a:30:c4:bf:d2:2f:eb:fa:dc:2c:33:ac:79:79:1e:09: e9:bb:69:0a:e6:2b:0f:d9:5e:e1:a1:6f:7b:83:e4:10:31:93: e7:86:50:13:87:72:be:77:5b:20:69:2e:fc:c7:3c:1e:be:b2: 55:87:4a:a9:d0:37:3d:a6:62:a2:26:85:32:bc:2b:d3:fd:93: 5e:c6:39:4e:eb:e5:4e:f0:61:8b:0d:ff:7c:cd:33:0e:38:b7: dc:72:6c:b9:dc:7b:1d:19:fc:f2:f4:1f:d6:90:df:a9:5a:2d: 68:fa:83:41:5f:db:e7:95:a2:98:bf:f0:36:57:2d:3f:23:75: d3:d8:65:ac:d5:6d:6b:35:90:7d:c3:0e:ed:98:ff:14:90:87: 46:7d:a6:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUwNzAzMDUxNjE4WhcNMjUwNzEwMDUxNjE4WjAYMRYwFAYD VQQDEw02ODY2MTIyMi0zNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWgppOdigxdtGHgOLcKRoycwf24k0cVNN01vqq93wRjJ4XCKk5agsMZeZAMv JcjsqZuTgtmr82Z9QEF3QAYbIPAM94TljcpW6DCXe5P2nwz4PH1U1Oak5LGsxLax Nq6zx/kKFW89NyeQgNakzDTpdJvIW/GqJhOZ7gWrgaRCw7q1Y5G4M+8LZ7TSzyIb wIOggfQg99kPpqLVqXOJMZ1xrGP2hkLSpfYjc+7ByhXVpEBJC4W5Zxdg+blJ5pEq gmCc996o28yLBdrICxcq+whF4M2bN8f8tYlFLUlLwoGVTx2r6izbJCGb0S2E1eXk fEZE2orvumSWxl7bYP5T5DStdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIZKaaV sfz4ByPNj325Hjf8o8y0MB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeBH1NJb8/RHTqVd7zVvtEds5RrOlLuQwN36r2vrPRFtrrZmcVYs7/ cQz/tEM99JqoPSTi3JqeMbTpNzhyF9eKkiREM+NUm1e0dHQmRNjVII1UgjJfZKbh oEXOVwRtqqeDbBU4ENOwSdFV8RkcCwowxL/SL+v63CwzrHl5Hgnpu2kK5isP2V7h oW97g+QQMZPnhlATh3K+d1sgaS78xzwevrJVh0qp0Dc9pmKiJoUyvCvT/ZNexjlO 6+VO8GGLDf98zTMOOLfccmy53HsdGfzy9B/WkN+pWi1o+oNBX9vnlaKYv/A2Vy0/ I3XT2GWs1W1rNZB9ww7tmP8UkIdGfaZ/ -----END CERTIFICATE-----Generated at Fri Jul 4 14:43:53 2025 by rpki-client