$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: GP1x/AEv9BpolPjKv3QrisJTqIPuoqbovPd1FHbWh/Y= Subject key identifier: C8:C0:95:9F:81:6E:08:57:9F:15:5D:61:33:4B:E3:F8:31:E9:77:F0 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 352B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 34D9 Signing time: Wed 02 Jul 2025 14:17:32 +0000 Manifest this update: Wed 02 Jul 2025 14:17:31 +0000 Manifest next update: Wed 09 Jul 2025 14:17:31 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: 3gC9ywjXZvz+dNCsQjT8Q7MWlNWX6//MNPMQW0ASbO8=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 13:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13611 (0x352b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Jul 2 14:17:31 2025 GMT Not After : Jul 9 14:17:31 2025 GMT Subject: CN=68653f7b-7397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d5:53:57:01:94:5f:28:23:ea:b8:6b:27:89: 69:2d:d4:3d:e3:2e:4d:fd:31:d4:ce:b3:2a:fa:06: 37:de:00:86:09:f7:73:d6:ae:b2:c7:ce:89:0b:79: 41:58:a1:68:03:55:75:86:99:0b:2e:1f:44:b2:d2: 43:d2:1e:66:bf:d4:fb:9a:38:e8:26:20:f4:7c:0a: 17:89:1b:ca:ae:c9:fa:97:6d:e7:07:37:f7:15:52: 37:76:03:b3:5b:5e:ff:d6:8a:4d:5d:03:a5:3f:e7: c4:2a:55:34:06:fb:76:5d:75:84:d3:68:6e:59:dd: a0:da:67:4f:86:71:78:36:ba:37:ab:b2:3a:d1:64: 20:d3:65:8a:0b:ff:9c:eb:d7:fa:05:c2:10:7f:e7: e6:3c:37:e4:cc:f7:1c:2b:98:c8:cf:c5:c5:b4:fc: 8b:d2:85:ba:8d:f1:7e:77:ef:d5:c2:6a:9a:55:25: 6b:8a:00:df:08:69:51:94:6f:7c:05:ca:78:8d:d5: 2d:a7:58:54:69:a1:d1:b2:fb:e9:8a:5d:3b:5c:6f: 77:79:f6:e6:42:96:4b:fb:25:62:dc:83:5b:09:f0: 04:3f:b8:0d:37:95:24:9e:e1:4f:d9:a1:6a:6b:5b: cd:84:15:c8:16:3c:12:90:9e:1d:5a:4a:f5:ae:a8: 70:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C0:95:9F:81:6E:08:57:9F:15:5D:61:33:4B:E3:F8:31:E9:77:F0 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:76:16:93:9a:b0:7e:98:da:ea:6f:60:a5:2d:f8:49:3c:44: 5a:27:86:03:3e:a0:ec:91:67:9f:4b:6f:2c:95:9d:7b:ba:5c: 62:98:6e:6c:e2:eb:cd:3c:63:23:7b:14:d6:44:23:8a:7f:61: a2:79:42:22:d0:46:10:e6:c6:2f:6d:47:e1:7a:89:5e:34:e6: b2:5d:59:64:80:37:09:05:d4:e0:cf:63:15:7d:9c:f0:ad:bd: 47:31:df:74:8e:f5:40:bc:0a:05:a3:e1:31:ec:1f:00:d9:90: 70:fd:69:1d:56:08:1f:a3:ec:e6:1c:9f:42:81:a9:0b:12:8a: aa:0b:a6:83:b8:de:35:4c:09:2d:a9:cc:96:c2:6b:9c:2b:13: e8:da:18:7f:1a:78:23:da:ca:85:90:c1:03:2f:00:87:7f:de: 4b:af:c1:c8:6a:9d:26:f7:37:36:8a:96:44:0c:7b:ac:b4:98: 57:6c:4b:85:f6:50:a7:91:08:c9:23:12:87:17:ed:77:92:9d: f1:f4:df:98:aa:f2:48:31:ed:0d:77:39:5a:34:71:32:f6:23: 79:85:b5:05:cc:6f:44:7d:ac:48:dd:0e:81:c7:15:fe:d2:dc: d6:95:0b:ba:d1:54:a4:7d:b0:be:69:75:c1:dc:6f:0d:44:12: 3a:83:98:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUwNzAyMTQxNzMxWhcNMjUwNzA5MTQxNzMxWjAYMRYwFAYD VQQDEw02ODY1M2Y3Yi03Mzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tVTVwGUXygj6rhrJ4lpLdQ94y5N/THUzrMq+gY33gCGCfdz1q6yx86JC3lB WKFoA1V1hpkLLh9EstJD0h5mv9T7mjjoJiD0fAoXiRvKrsn6l23nBzf3FVI3dgOz W17/1opNXQOlP+fEKlU0Bvt2XXWE02huWd2g2mdPhnF4Nro3q7I60WQg02WKC/+c 69f6BcIQf+fmPDfkzPccK5jIz8XFtPyL0oW6jfF+d+/VwmqaVSVrigDfCGlRlG98 Bcp4jdUtp1hUaaHRsvvpil07XG93efbmQpZL+yVi3INbCfAEP7gNN5UknuFP2aFq a1vNhBXIFjwSkJ4dWkr1rqhwHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjAlZ+B bghXnxVdYTNL4/gx6XfwMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTdhaTmrB+mNrqb2ClLfhJPERaJ4YDPqDskWefS28slZ17ulximG5s 4uvNPGMjexTWRCOKf2GieUIi0EYQ5sYvbUfheoleNOayXVlkgDcJBdTgz2MVfZzw rb1HMd90jvVAvAoFo+Ex7B8A2ZBw/WkdVggfo+zmHJ9CgakLEoqqC6aDuN41TAkt qcyWwmucKxPo2hh/Gngj2sqFkMEDLwCHf95Lr8HIap0m9zc2ipZEDHustJhXbEuF 9lCnkQjJIxKHF+13kp3x9N+YqvJIMe0NdzlaNHEy9iN5hbUFzG9EfaxI3Q6BxxX+ 0tzWlQu60VSkfbC+aXXB3G8NRBI6g5hd -----END CERTIFICATE-----Generated at Wed Jul 2 15:35:25 2025 by rpki-client