$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft File: aTn8BA2lwwt2bceU-cpML0Gsruo.mft (raw, json) Hash identifier: VJfS1LVG9FaRWk23eDzFcvEjOivNaj8UNL0Y2mSQP5I= Subject key identifier: FC:D6:F1:5E:36:5F:34:8C:AF:D8:7E:8D:95:CB:0C:07:9E:8F:A0:EC Authority key identifier: 69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA Certificate issuer: /CN=A91A2A1F/serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Certificate serial: 0467 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft Manifest number: 044E Signing time: Tue 01 Jul 2025 00:51:19 +0000 Manifest this update: Tue 01 Jul 2025 00:51:19 +0000 Manifest next update: Tue 08 Jul 2025 00:51:19 +0000 Files and hashes: 1: aTn8BA2lwwt2bceU-cpML0Gsruo.crl (hash: j7602Z69zIORqtqXZYbkUF4CDMczpJKpecX52aGPdeU=) 2: 17ABE41ACAF611EE894A2D50C4F9AE02.roa (hash: 7f1bmEuDQ5Sbosdy6FQn3ysHUO4D+FPE7x81aIvfa7s=) 3: 27E42824621B11ECB96F443FC4F9AE02.roa (hash: 0VIXrT5lkbzWq5yzVw+gOO/11yudXxUHr9urUbsKFX0=) 4: 63E8739003C111EEB2272068C4F9AE02.roa (hash: AjzVSaaH9fWXVN9n877r+FmZlcwm85Oz5kawF/sl3R0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:51:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2A1F, serialNumber=6939FC040DA5C30B766DC794F9CA4C2F41ACAEEA Validity Not Before: Jul 1 00:51:19 2025 GMT Not After : Jul 8 00:51:19 2025 GMT Subject: CN=68633107-0502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:51:b5:c3:46:eb:68:94:37:47:b9:d2:3c:0f: f2:8a:87:60:45:1f:4e:b9:bd:96:1c:46:12:f8:74: 23:50:71:9e:a7:6e:33:2b:8b:28:cc:07:aa:f1:e7: d1:a0:f0:ee:f9:35:04:b8:75:d6:bb:b3:27:bd:c9: 47:6d:47:6b:55:29:39:c0:0f:33:e7:0c:33:c0:a3: 19:40:20:97:f3:71:e2:d0:2b:39:82:33:c1:f4:5e: 38:b1:bc:0c:36:f8:00:dc:07:53:61:75:9c:ac:3c: 70:78:1c:55:b7:ce:1a:12:86:e5:b4:a8:23:dc:32: 50:ca:42:6b:cd:8b:dc:7d:57:c9:53:09:30:4e:10: 4e:68:d3:bf:a4:43:0f:2f:5d:c0:49:36:79:c8:4f: 1a:93:df:62:fc:93:0e:80:2d:f4:d8:3b:89:03:b9: 41:e9:e3:31:0a:5a:48:3d:5a:8b:e4:ff:05:92:02: cc:7c:e8:1f:b3:44:84:7c:91:53:b9:eb:49:48:4b: 47:15:2c:f8:54:aa:c8:2a:06:44:0b:8e:27:fa:3c: 78:e9:d9:af:9e:55:c6:ee:75:97:2f:d9:5e:3d:17: f6:4e:20:d9:c0:30:af:71:2d:4c:f7:67:76:91:b2: 7e:e1:4b:24:b9:c7:3c:d5:93:ce:e0:6c:6a:bc:92: 07:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D6:F1:5E:36:5F:34:8C:AF:D8:7E:8D:95:CB:0C:07:9E:8F:A0:EC X509v3 Authority Key Identifier: keyid:69:39:FC:04:0D:A5:C3:0B:76:6D:C7:94:F9:CA:4C:2F:41:AC:AE:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTn8BA2lwwt2bceU-cpML0Gsruo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2A1F/1ECFFC4C621911EC99A55F3EC4F9AE02/aTn8BA2lwwt2bceU-cpML0Gsruo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f2:ee:82:29:ea:d1:93:76:4c:4c:ef:04:9c:65:bd:8d:e4: b1:76:bb:2b:1f:ae:45:76:a3:a6:52:55:2d:29:0d:f2:d6:f9: 04:cd:4a:24:09:c7:4e:21:2c:bb:d5:2d:f9:c1:5a:05:a8:39: d6:5f:ee:bf:81:9c:dc:86:76:46:fc:e6:98:b2:af:e0:91:23: b9:e5:19:1b:e9:e4:08:41:83:7a:de:0f:4a:09:41:06:36:a1: b0:81:ef:c4:ed:ca:a7:0f:f0:80:00:48:9f:d7:e4:6f:28:dd: b3:1b:c2:84:ab:34:8c:70:e1:e0:f5:b7:a6:2f:15:4b:01:d8: b1:ed:cb:56:52:95:f2:9b:2b:5b:89:b4:41:e9:49:db:81:8b: e6:ef:5e:0f:73:fe:01:51:dd:df:2a:7c:4d:0b:e2:54:d7:0e: c1:ec:ba:57:da:3b:2c:50:1d:a6:07:95:73:d5:64:22:dd:82: 65:e5:05:64:f8:aa:87:54:59:d0:f2:4d:c7:30:b7:e2:90:b8: 5d:eb:22:2e:f5:83:d2:31:94:7d:45:4c:b2:31:65:80:b5:a7: 34:ae:4e:63:15:5b:3f:d9:60:7c:58:2f:2a:4f:d4:ee:fb:f9: 4d:6d:b1:b7:f0:a8:b9:b2:e9:18:20:65:cb:7e:2c:00:1f:a1: 69:5a:e1:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJBMUYxMTAvBgNVBAUTKDY5MzlGQzA0MERBNUMzMEI3NjZEQzc5NEY5Q0E0QzJG NDFBQ0FFRUEwHhcNMjUwNzAxMDA1MTE5WhcNMjUwNzA4MDA1MTE5WjAYMRYwFAYD VQQDEw02ODYzMzEwNy0wNTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmVG1w0braJQ3R7nSPA/yiodgRR9Oub2WHEYS+HQjUHGep24zK4sozAeq8efR oPDu+TUEuHXWu7MnvclHbUdrVSk5wA8z5wwzwKMZQCCX83Hi0Cs5gjPB9F44sbwM NvgA3AdTYXWcrDxweBxVt84aEobltKgj3DJQykJrzYvcfVfJUwkwThBOaNO/pEMP L13ASTZ5yE8ak99i/JMOgC302DuJA7lB6eMxClpIPVqL5P8FkgLMfOgfs0SEfJFT uetJSEtHFSz4VKrIKgZEC44n+jx46dmvnlXG7nWXL9lePRf2TiDZwDCvcS1M92d2 kbJ+4Uskucc81ZPO4GxqvJIHqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzW8V42 XzSMr9h+jZXLDAeej6DsMB8GA1UdIwQYMBaAFGk5/AQNpcMLdm3HlPnKTC9BrK7q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkExRi8xRUNGRkM0QzYy MTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3dDJiY2VVLWNwTUwwR3Ny dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUbjhCQTJsd3d0MmJjZVUtY3BNTDBHc3J1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkExRi8xRUNGRkM0QzYyMTkxMUVDOTlBNTVGM0VDNEY5QUUwMi9hVG44QkEybHd3 dDJiY2VVLWNwTUwwR3NydW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv8u6CKerRk3ZMTO8EnGW9jeSxdrsrH65FdqOmUlUtKQ3y1vkEzUok CcdOISy71S35wVoFqDnWX+6/gZzchnZG/OaYsq/gkSO55Rkb6eQIQYN63g9KCUEG NqGwge/E7cqnD/CAAEif1+RvKN2zG8KEqzSMcOHg9bemLxVLAdix7ctWUpXymytb ibRB6UnbgYvm714Pc/4BUd3fKnxNC+JU1w7B7LpX2jssUB2mB5Vz1WQi3YJl5QVk +KqHVFnQ8k3HMLfikLhd6yIu9YPSMZR9RUyyMWWAtac0rk5jFVs/2WB8WC8qT9Tu +/lNbbG38Ki5sukYIGXLfiwAH6FpWuEY -----END CERTIFICATE-----Generated at Tue Jul 1 19:37:37 2025 by rpki-client