$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: B7nqayweaxNhfVmYI5M5o1CH8HHZC/dY1AaOx+7q6bw= Subject key identifier: BC:3E:E1:6D:F0:25:E6:F1:91:56:3F:3E:02:A8:AB:03:2E:03:51:62 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 9F Signing time: Thu 03 Jul 2025 06:26:57 +0000 Manifest this update: Thu 03 Jul 2025 06:26:57 +0000 Manifest next update: Thu 10 Jul 2025 06:26:57 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: mGoNL4p+/gwLSmq/wvheKqd5rqtf3skYFv3ChG+yObo=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Jul 3 06:26:57 2025 GMT Not After : Jul 10 06:26:57 2025 GMT Subject: CN=686622b1-a8f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3e:ea:97:e1:66:ac:b2:6e:8e:f5:fd:b8:a6: c4:f8:4f:49:f2:58:7a:08:6f:56:50:1b:ed:47:d2: 08:68:57:64:7a:ed:3d:cd:84:e5:64:c9:fb:f6:30: 35:6f:3f:9e:a0:04:db:07:41:6e:9f:13:a6:48:a2: e5:08:38:59:5e:10:77:8a:fa:da:cf:92:98:db:f1: 8e:79:8a:af:ac:a6:53:74:01:71:78:de:94:ff:5b: 33:73:70:ed:ae:a9:d9:38:b9:6e:00:49:6e:61:90: 66:28:8f:d2:d2:65:6a:bf:3a:bf:5d:68:22:9d:56: d5:1a:f1:1e:19:14:a0:10:da:3d:20:c1:d7:00:72: ad:73:6e:1b:e1:15:06:da:96:c5:d4:34:33:84:1c: 8b:84:fd:f9:5f:84:ff:99:46:82:28:ea:29:54:b1: 3f:90:83:2c:0f:c4:2f:64:a3:c0:9a:c7:0f:93:89: 77:ba:2f:09:c6:59:73:69:b3:92:08:91:9e:9b:37: f1:17:65:77:2b:32:2d:31:07:b0:81:7f:95:a6:ae: 68:f2:04:d3:f3:63:68:c0:86:83:72:73:0d:28:86: a5:93:50:7f:ed:4a:11:25:12:bf:35:8f:92:0e:78: 20:ad:0e:8f:fb:05:99:eb:e5:51:61:c5:69:08:b1: 75:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3E:E1:6D:F0:25:E6:F1:91:56:3F:3E:02:A8:AB:03:2E:03:51:62 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:08:b8:91:8c:88:fe:98:3b:e8:f7:b1:6b:b9:a3:a7:40:25: 3f:6d:5b:4f:6d:3a:59:5b:d4:5e:e3:12:90:97:49:75:f3:77: 0d:c5:de:f0:49:8c:e1:4f:b3:9f:a3:0b:8b:0a:d8:03:b4:79: f6:4e:01:6b:41:07:fe:13:36:4e:ea:ef:f6:e4:9f:5b:c4:bc: b0:ed:cb:ce:95:4f:8e:14:75:a1:48:7b:81:f4:df:23:e0:35: ef:db:9c:b5:13:84:4a:84:54:fd:b2:f9:bd:42:e9:80:0d:84: b6:6a:7b:6e:b9:5b:64:64:ab:c5:cc:8d:24:c9:97:4f:36:d3: 5f:c9:16:7b:38:1f:c8:82:9f:3f:ef:cd:5d:4a:43:40:d8:e8: 38:29:24:bc:81:ca:71:ba:7a:ce:db:0e:33:d6:c8:c5:e1:4a: a2:46:6a:5f:fb:45:6a:b1:48:ef:21:3b:c3:0e:25:9f:ef:a9: e4:ff:50:6f:d7:d8:50:75:aa:34:82:aa:65:99:87:1a:33:10: 8a:b5:e4:20:71:08:3b:4f:23:d5:40:9b:ae:f5:ac:32:73:f8: bc:a3:ac:33:37:07:db:2f:d2:fb:5f:cc:e2:e6:6e:ea:b4:9c: 69:81:de:98:0e:33:1f:c6:0e:78:b0:50:64:63:61:67:64:61: 2b:88:c7:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwNzAzMDYyNjU3WhcNMjUwNzEwMDYyNjU3WjAYMRYwFAYD VQQDEw02ODY2MjJiMS1hOGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz7ql+FmrLJujvX9uKbE+E9J8lh6CG9WUBvtR9IIaFdkeu09zYTlZMn79jA1 bz+eoATbB0FunxOmSKLlCDhZXhB3ivraz5KY2/GOeYqvrKZTdAFxeN6U/1szc3Dt rqnZOLluAEluYZBmKI/S0mVqvzq/XWginVbVGvEeGRSgENo9IMHXAHKtc24b4RUG 2pbF1DQzhByLhP35X4T/mUaCKOopVLE/kIMsD8QvZKPAmscPk4l3ui8JxllzabOS CJGemzfxF2V3KzItMQewgX+Vpq5o8gTT82NowIaDcnMNKIalk1B/7UoRJRK/NY+S DnggrQ6P+wWZ6+VRYcVpCLF1qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLw+4W3w JebxkVY/PgKoqwMuA1FiMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMCLiRjIj+mDvo97FruaOnQCU/bVtPbTpZW9Re4xKQl0l183cNxd7w SYzhT7OfowuLCtgDtHn2TgFrQQf+EzZO6u/25J9bxLyw7cvOlU+OFHWhSHuB9N8j 4DXv25y1E4RKhFT9svm9QumADYS2antuuVtkZKvFzI0kyZdPNtNfyRZ7OB/Igp8/ 781dSkNA2Og4KSS8gcpxunrO2w4z1sjF4UqiRmpf+0VqsUjvITvDDiWf76nk/1Bv 19hQdao0gqplmYcaMxCKteQgcQg7TyPVQJuu9awyc/i8o6wzNwfbL9L7X8zi5m7q tJxpgd6YDjMfxg54sFBkY2FnZGEriMdJ -----END CERTIFICATE-----Generated at Fri Jul 4 07:51:02 2025 by rpki-client