$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: lUXPiKSas0bfdBQPJTZGRxtp2X6/ND7h6WBj8nSadE4= Subject key identifier: EC:33:04:2F:89:10:B8:13:DF:F4:46:C0:6D:E5:75:14:AF:21:DB:DA Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 079A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 0794 Signing time: Mon 30 Jun 2025 21:36:30 +0000 Manifest this update: Mon 30 Jun 2025 21:36:30 +0000 Manifest next update: Mon 07 Jul 2025 21:36:30 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: iBuyg1ir63Q+4QRmAxSMZydeQNrdad2eHJaJhF8Qiu8=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Jun 30 21:36:30 2025 GMT Not After : Jul 7 21:36:30 2025 GMT Subject: CN=6863035e-4763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5d:92:42:24:03:43:46:51:1d:17:b5:81:4b: 73:1a:70:1e:e1:4f:43:76:a3:2f:44:5e:f0:60:f9: 10:e9:f6:79:ca:7d:c4:30:2c:8f:0d:11:7d:e5:c6: 96:3c:6a:07:9e:3f:a4:1f:7e:ee:95:02:67:b1:c0: de:74:68:30:89:26:8e:94:35:9b:b1:5f:88:9a:e9: 28:5a:f3:44:98:cd:a3:20:a6:c5:9e:92:37:8f:2c: c5:6e:59:06:c7:d7:70:ae:cf:7a:42:25:ee:66:88: 6a:5c:a8:c9:ce:ae:72:69:96:b6:e7:c4:82:6f:47: 6f:84:f7:19:94:c9:4d:d2:a8:e1:cf:b6:4e:f4:f8: 42:f6:16:c4:a1:a9:a4:01:14:dd:4d:ff:72:b2:d7: 10:28:ef:2a:7a:ee:4f:0f:71:ee:3c:b4:b1:8c:a9: 9d:c6:f9:c0:a5:34:f0:6b:30:5c:61:0c:29:64:41: a3:d5:3a:d6:74:a4:b8:46:c6:fa:29:8e:22:eb:fd: 15:70:96:c8:8f:4f:ac:61:ac:af:2e:12:d0:5f:a3: 4b:b0:f9:08:bc:04:c2:b0:d3:53:33:43:9e:85:9b: 72:bc:6e:28:ba:f5:7c:33:8d:45:5f:14:e8:74:ae: d7:ed:68:d5:f1:59:05:9a:16:96:96:9a:6e:66:5f: 37:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:33:04:2F:89:10:B8:13:DF:F4:46:C0:6D:E5:75:14:AF:21:DB:DA X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:08:d4:1f:2e:5e:46:86:78:64:6f:7d:2b:ff:1b:54:ab:18: 76:11:a1:70:5a:82:20:9e:aa:db:b0:92:b1:44:a0:45:5e:ef: 60:16:6c:ce:8c:66:c3:e9:37:19:ae:0d:40:4d:16:52:5c:f9: 0e:6c:e7:e5:a2:da:b6:9d:74:2e:cf:8d:e3:93:77:aa:5f:44: 4b:04:4a:3e:ca:42:ac:6f:f8:0f:87:3d:bf:84:5d:dc:e2:9a: 9f:95:df:aa:23:e5:a4:bc:8e:f4:2e:ba:4b:1d:37:ad:73:07: 7b:34:4d:c7:12:ee:33:df:ea:1f:ab:b2:8c:b7:38:75:4f:8c: 84:b4:04:81:1a:57:89:f7:26:79:ce:38:4d:35:aa:f6:02:d4: e0:21:40:40:a4:8b:0d:ae:aa:57:c6:7c:fc:91:20:f6:06:af: 05:87:3d:4f:a4:60:9f:d2:b9:eb:a5:04:da:b3:5b:eb:9f:09: 30:3d:7b:b3:f2:76:df:55:b6:88:de:32:22:80:ae:ba:40:bd: a1:fd:3f:04:5e:ef:a1:36:08:47:8b:90:2a:1a:3c:d3:41:04: a4:e4:83:99:e4:ed:01:42:51:f6:55:c8:c3:76:ab:15:55:a8: ff:f7:33:5e:5b:ef:d4:15:d7:51:cf:60:d4:22:a5:bd:2d:02: 47:6d:c8:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwNjMwMjEzNjMwWhcNMjUwNzA3MjEzNjMwWjAYMRYwFAYD VQQDEw02ODYzMDM1ZS00NzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV2SQiQDQ0ZRHRe1gUtzGnAe4U9DdqMvRF7wYPkQ6fZ5yn3EMCyPDRF95caW PGoHnj+kH37ulQJnscDedGgwiSaOlDWbsV+ImukoWvNEmM2jIKbFnpI3jyzFblkG x9dwrs96QiXuZohqXKjJzq5yaZa258SCb0dvhPcZlMlN0qjhz7ZO9PhC9hbEoamk ARTdTf9ystcQKO8qeu5PD3HuPLSxjKmdxvnApTTwazBcYQwpZEGj1TrWdKS4Rsb6 KY4i6/0VcJbIj0+sYayvLhLQX6NLsPkIvATCsNNTM0OehZtyvG4ouvV8M41FXxTo dK7X7WjV8VkFmhaWlppuZl83UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwzBC+J ELgT3/RGwG3ldRSvIdvaMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5CNQfLl5Ghnhkb30r/xtUqxh2EaFwWoIgnqrbsJKxRKBFXu9gFmzO jGbD6TcZrg1ATRZSXPkObOflotq2nXQuz43jk3eqX0RLBEo+ykKsb/gPhz2/hF3c 4pqfld+qI+WkvI70LrpLHTetcwd7NE3HEu4z3+ofq7KMtzh1T4yEtASBGleJ9yZ5 zjhNNar2AtTgIUBApIsNrqpXxnz8kSD2Bq8Fhz1PpGCf0rnrpQTas1vrnwkwPXuz 8nbfVbaI3jIigK66QL2h/T8EXu+hNghHi5AqGjzTQQSk5IOZ5O0BQlH2VcjDdqsV Vaj/9zNeW+/UFddRz2DUIqW9LQJHbchm -----END CERTIFICATE-----Generated at Wed Jul 2 01:34:29 2025 by rpki-client