$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft File: M_iOrx5M4PGhh31J75fA5_7cA5o.mft (raw, json) Hash identifier: gXWd2gEcM3vh7BxpTeqSodfmwpkb608/hetBxiyme/g= Subject key identifier: 32:CF:85:51:D9:01:D0:DC:DC:01:F6:2F:17:1E:13:20:FA:0B:65:AB Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft Manifest number: 0494 Signing time: Wed 02 Jul 2025 21:06:08 +0000 Manifest this update: Wed 02 Jul 2025 21:06:08 +0000 Manifest next update: Wed 09 Jul 2025 21:06:08 +0000 Files and hashes: 1: M_iOrx5M4PGhh31J75fA5_7cA5o.crl (hash: Wb0BDOV7vP8iYbbnu+Ze65LHcrn1cf9BOpga7mijRZs=) 2: E763AA76A3E811EC8665D621C4F9AE02.roa (hash: Ao2xYTosLdprmQ1iWk+n5IxTYfK7aKOeNtfro7ROk4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: Jul 2 21:06:08 2025 GMT Not After : Jul 9 21:06:08 2025 GMT Subject: CN=68659f40-cb9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6f:34:80:f7:7e:d9:39:21:05:6a:08:79:3c: 30:40:f2:4f:c3:a8:e2:c1:dd:ee:c2:8c:da:37:81: a6:ec:4e:d4:86:0e:51:1e:bd:b6:46:6e:a3:6e:f0: a4:d7:a8:60:3d:85:e5:4c:c1:ca:c2:02:b4:2c:7f: ef:bb:49:cf:c7:1e:18:9d:39:45:2b:f8:66:ac:85: 90:b7:75:f0:73:b7:0a:86:67:2f:17:8b:be:64:cb: ff:ab:e3:c3:f7:7c:1b:39:ff:64:99:00:49:e3:c4: 58:28:ec:e8:3a:e8:be:1c:fa:1d:9f:bc:06:c7:c6: 40:e5:1c:92:6c:1a:1a:78:9b:42:d4:c6:1c:95:62: 32:7a:15:ec:2e:7c:64:40:4e:10:fd:d4:36:8f:0e: 81:8a:65:f5:76:fd:78:d4:c8:9b:6d:e6:67:50:5f: 29:fa:07:10:f2:32:5a:3a:e2:a9:f6:df:13:6f:e9: 17:dc:f1:d8:7a:d8:e6:18:76:30:bd:11:1c:1d:23: 30:8b:35:b5:14:cf:c2:76:06:41:04:ba:25:86:d8: 68:e2:99:0c:7a:76:a3:f7:11:e5:0f:56:5d:bf:b0: bf:a0:c1:04:04:c6:0a:e8:b7:01:67:db:6c:7d:95: 00:e9:f7:8c:51:d4:00:33:02:50:68:23:94:35:83: d9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CF:85:51:D9:01:D0:DC:DC:01:F6:2F:17:1E:13:20:FA:0B:65:AB X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:86:89:b3:ff:92:6f:f5:5a:de:63:4c:a4:5b:9a:7c:17:dd: f7:90:aa:37:0e:5a:15:3a:84:be:60:4d:e6:31:77:c9:de:b3: 93:e8:1f:bf:a0:f1:ac:03:77:e2:62:a5:3d:cd:b7:fd:be:d0: 82:46:f7:c1:dd:eb:64:fb:ae:23:07:47:fd:33:0e:35:59:24: a0:b3:e7:f2:9e:92:f1:5b:b6:93:d7:6e:41:bc:bb:9f:c9:cd: b5:cd:f5:34:a9:79:5d:a3:05:c4:3e:e7:1c:3d:ba:c2:88:07: 02:17:0f:5f:ad:42:fc:72:0b:f4:56:79:fe:82:61:a4:66:f7: 6c:4e:c2:5d:c3:98:86:11:ff:0d:77:73:fe:32:44:e5:7c:70: 38:6a:9c:c7:01:79:81:6c:33:60:cd:3b:92:06:2d:eb:47:7f: d7:e0:ad:61:6b:51:bf:70:2a:e4:f9:9c:5e:a0:ca:c8:71:22: f3:dc:08:85:af:dd:4b:79:fc:60:32:3c:76:5f:e8:63:b0:cf: 2a:91:0f:13:52:82:47:a5:36:8c:a8:82:6c:ce:7f:72:3f:92: 5c:38:9f:f5:26:e4:ca:1f:53:6a:81:ed:aa:45:da:a7:7f:e9: ab:4d:b7:42:de:d9:05:ea:a9:dd:e7:ed:5e:ae:77:ea:d1:ef: 8a:dd:a7:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjUwNzAyMjEwNjA4WhcNMjUwNzA5MjEwNjA4WjAYMRYwFAYD VQQDEw02ODY1OWY0MC1jYjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp280gPd+2TkhBWoIeTwwQPJPw6jiwd3uwozaN4Gm7E7Uhg5RHr22Rm6jbvCk 16hgPYXlTMHKwgK0LH/vu0nPxx4YnTlFK/hmrIWQt3Xwc7cKhmcvF4u+ZMv/q+PD 93wbOf9kmQBJ48RYKOzoOui+HPodn7wGx8ZA5RySbBoaeJtC1MYclWIyehXsLnxk QE4Q/dQ2jw6BimX1dv141MibbeZnUF8p+gcQ8jJaOuKp9t8Tb+kX3PHYetjmGHYw vREcHSMwizW1FM/CdgZBBLolhtho4pkMenaj9xHlD1Zdv7C/oMEEBMYK6LcBZ9ts fZUA6feMUdQAMwJQaCOUNYPZtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLPhVHZ AdDc3AH2LxceEyD6C2WrMB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThERi84NjczNjA4MDQ3RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQ R2hoMzFKNzVmQTVfN2NBNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChhomz/5Jv9VreY0ykW5p8F933kKo3DloVOoS+YE3mMXfJ3rOT6B+/ oPGsA3fiYqU9zbf9vtCCRvfB3etk+64jB0f9Mw41WSSgs+fynpLxW7aT125BvLuf yc21zfU0qXldowXEPuccPbrCiAcCFw9frUL8cgv0Vnn+gmGkZvdsTsJdw5iGEf8N d3P+MkTlfHA4apzHAXmBbDNgzTuSBi3rR3/X4K1ha1G/cCrk+ZxeoMrIcSLz3AiF r91LefxgMjx2X+hjsM8qkQ8TUoJHpTaMqIJszn9yP5JcOJ/1JuTKH1Nqge2qRdqn f+mrTbdC3tkF6qnd5+1ernfq0e+K3adt -----END CERTIFICATE-----Generated at Thu Jul 3 23:04:31 2025 by rpki-client