$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: ADfGq0/h9nuUSDSuQq42fiVnAp4DvSjfncZbzQpLoeo= Subject key identifier: 33:B3:C0:C8:03:A3:33:62:F6:B2:8A:87:B5:5E:47:31:FF:0C:AD:33 Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 052D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 0527 Signing time: Wed 02 Jul 2025 23:53:55 +0000 Manifest this update: Wed 02 Jul 2025 23:53:54 +0000 Manifest next update: Wed 09 Jul 2025 23:53:54 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: aknmPS6rAApngpdgIbDHCRy7eROHMAq1yY/IXoeMBFQ=) 2: CDFDBE10061C11ECA4633B32C4F9AE02.roa (hash: phE+adBWK7PYAI4KAosAkS6IfQBeyVMqazuKmnqaEwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1325 (0x52d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: Jul 2 23:53:54 2025 GMT Not After : Jul 9 23:53:54 2025 GMT Subject: CN=6865c693-f2a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:73:3f:25:ba:58:42:25:37:44:3b:a1:58:30: 5b:40:e1:d6:67:d3:d6:e4:57:94:99:fc:64:39:66: e8:dd:77:94:2c:0e:1d:66:ea:27:15:99:50:4a:4f: b9:36:00:f2:c7:9a:9e:8a:5e:63:97:11:92:c1:9d: ca:d9:f4:32:27:6b:25:e6:43:d7:47:62:ad:ad:bf: a2:84:f8:2f:2a:1f:02:34:c9:f8:b5:fd:91:f1:78: 41:36:e6:46:af:f2:a0:54:73:ca:83:20:34:29:71: 9c:dd:89:bd:53:ae:a3:85:03:33:80:83:9c:6a:b8: 26:13:1f:4f:06:8b:1e:26:fd:4d:d7:85:5d:ab:7c: 5c:61:46:87:ad:c2:fb:02:b4:0c:73:38:da:b3:ac: 04:ab:ae:07:12:54:43:f1:86:fc:07:72:2d:31:33: 0c:ea:32:04:cd:c6:94:a6:65:60:3b:8d:fd:01:a1: ee:bc:9a:56:df:31:2c:fd:36:d8:e1:cb:61:b1:dd: 6b:05:cf:4f:98:95:ba:47:d3:d2:47:09:84:34:9a: 93:24:c4:71:6a:66:9b:30:52:41:98:fb:5c:6d:08: 1c:0d:b1:6c:ef:b9:f8:f9:1e:59:c8:95:56:1f:54: 8e:0d:5a:f1:35:6e:42:b9:22:22:5c:66:b0:57:89: 7d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B3:C0:C8:03:A3:33:62:F6:B2:8A:87:B5:5E:47:31:FF:0C:AD:33 X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:4c:51:db:68:9b:6e:c3:8d:84:12:b3:bc:3b:2c:ce:b8:5a: f2:7d:30:25:e8:46:09:0f:cf:4f:c5:6f:76:db:6c:64:d5:d9: 2d:0a:32:30:ad:97:09:98:21:d3:f8:03:2f:3d:70:e6:23:04: 8f:0e:cf:66:7d:2b:81:d1:d3:e6:e9:67:80:79:cb:00:f6:88: 3e:78:94:e3:95:d6:23:5a:52:9b:b5:5b:c6:66:75:b1:2a:b2: c5:64:30:3e:70:c9:17:a1:98:65:80:69:06:47:1a:1b:62:8c: 4b:12:0f:5f:0c:8c:7a:43:c3:af:b9:32:22:b2:30:5c:91:a2: 7d:a1:b3:85:bb:8a:82:46:e7:82:32:da:35:be:ea:8e:d5:78: d7:db:6d:74:2e:11:48:a8:1d:ca:4f:b2:b7:5b:5a:f3:34:14: 18:d2:17:f6:a8:da:96:84:09:7b:ae:2e:e2:a2:9d:62:bd:01: cc:c8:ea:47:ff:24:09:85:0f:f0:5f:2f:9e:2a:b2:95:25:ee: 6b:b4:d8:9d:22:8b:e3:dc:b5:2c:11:8e:4a:fe:49:f7:9b:6a: 97:ec:96:13:f0:6b:71:2e:81:f7:51:c4:78:79:41:fd:86:23: 62:27:03:88:05:de:e6:ea:da:54:fe:3b:cf:77:25:d8:d2:6c: 6e:b9:52:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjUwNzAyMjM1MzU0WhcNMjUwNzA5MjM1MzU0WjAYMRYwFAYD VQQDEw02ODY1YzY5My1mMmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nM/JbpYQiU3RDuhWDBbQOHWZ9PW5FeUmfxkOWbo3XeULA4dZuonFZlQSk+5 NgDyx5qeil5jlxGSwZ3K2fQyJ2sl5kPXR2Ktrb+ihPgvKh8CNMn4tf2R8XhBNuZG r/KgVHPKgyA0KXGc3Ym9U66jhQMzgIOcargmEx9PBoseJv1N14Vdq3xcYUaHrcL7 ArQMczjas6wEq64HElRD8Yb8B3ItMTMM6jIEzcaUpmVgO439AaHuvJpW3zEs/TbY 4cthsd1rBc9PmJW6R9PSRwmENJqTJMRxamabMFJBmPtcbQgcDbFs77n4+R5ZyJVW H1SODVrxNW5CuSIiXGawV4l9iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOzwMgD ozNi9rKKh7VeRzH/DK0zMB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqTFHbaJtuw42EErO8OyzOuFryfTAl6EYJD89PxW9222xk1dktCjIw rZcJmCHT+AMvPXDmIwSPDs9mfSuB0dPm6WeAecsA9og+eJTjldYjWlKbtVvGZnWx KrLFZDA+cMkXoZhlgGkGRxobYoxLEg9fDIx6Q8OvuTIisjBckaJ9obOFu4qCRueC Mto1vuqO1XjX2210LhFIqB3KT7K3W1rzNBQY0hf2qNqWhAl7ri7iop1ivQHMyOpH /yQJhQ/wXy+eKrKVJe5rtNidIovj3LUsEY5K/kn3m2qX7JYT8GtxLoH3UcR4eUH9 hiNiJwOIBd7m6tpU/jvPdyXY0mxuuVLl -----END CERTIFICATE-----Generated at Fri Jul 4 07:23:55 2025 by rpki-client