$ rpki-client -vvf rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft File: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft (raw, json) Hash identifier: U2KXfP1V6dN1Wk8EZbsevFS76QAmBlbOyvhJmklCwQM= Subject key identifier: 47:02:94:16:EB:71:97:D2:5D:3B:5D:0D:B7:D8:D3:46:F6:F1:20:23 Authority key identifier: DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 Certificate issuer: /CN=A91A300F/serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Certificate serial: 044F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft Manifest number: 0449 Signing time: Sat 28 Jun 2025 23:50:21 +0000 Manifest this update: Sat 28 Jun 2025 23:50:20 +0000 Manifest next update: Sat 05 Jul 2025 23:50:20 +0000 Files and hashes: 1: 2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl (hash: JKvXLGsX+H49E2WaFF4Lfz5o4GoCz6AiX5yi0K5SzaY=) 2: 90065F424DB511F0A1C8D30DC4F9AE02.roa (hash: wqkVYDxZ6HBCzKePRiH5zEB/9I/WLKOX58mvYx8PpGA=) 3: 9C2DE17A5D9311ECB2ABB63FC4F9AE02.roa (hash: XCMHw1WVIEMLU74HMo1cPz+oPVQmbB2z+VPLna5yZDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 23:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1103 (0x44f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A300F, serialNumber=DBEEEBC25A7A9B9B675A04E2F421EFE46EA72520 Validity Not Before: Jun 28 23:50:20 2025 GMT Not After : Jul 5 23:50:20 2025 GMT Subject: CN=68607fbd-531d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:fc:7b:8f:41:0c:ff:a7:bf:4f:8a:3a:29:82: ab:02:4f:43:a1:55:b1:10:ce:75:16:f6:c5:8b:aa: 36:b7:e6:7b:ec:79:1c:91:36:43:91:60:c2:2f:3b: a0:93:76:cc:1b:9d:bc:d5:5f:ad:cb:0e:03:08:d9: 37:9a:3a:9f:44:4f:26:1b:43:6b:e8:06:8e:30:7a: e2:38:27:7f:1c:8e:e6:7d:e0:c6:2d:10:44:99:9b: f7:d0:3d:16:39:01:8d:d2:95:75:7c:b6:89:76:17: f2:a4:6b:de:62:8b:62:be:7b:89:c9:e4:ec:7c:c3: 41:5d:b9:0e:8b:06:32:9c:05:a2:fa:33:9b:ea:1a: 8f:d6:32:59:cc:0c:44:4d:f7:bd:22:08:65:8c:bc: c1:78:a2:fa:6b:4f:dd:08:4e:44:86:74:62:c2:70: 85:b4:e7:3c:56:c4:db:6a:7f:53:84:95:60:10:c6: 59:7f:fa:8a:53:61:8d:52:b9:c0:67:c0:bc:8d:81: a5:60:eb:cf:f4:a7:af:7d:24:c2:04:a3:2f:77:3d: 8e:3a:f4:28:90:53:87:fc:77:02:a1:be:bb:04:88: 0c:88:f5:3d:b1:68:3e:74:ad:16:db:e9:bf:07:f8: c5:24:08:b7:f9:01:83:ed:3a:34:8c:88:63:f2:f2: bb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:02:94:16:EB:71:97:D2:5D:3B:5D:0D:B7:D8:D3:46:F6:F1:20:23 X509v3 Authority Key Identifier: keyid:DB:EE:EB:C2:5A:7A:9B:9B:67:5A:04:E2:F4:21:EF:E4:6E:A7:25:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-7rwlp6m5tnWgTi9CHv5G6nJSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A300F/1AD5AF745D9111EC9AFB8D3DC4F9AE02/2-7rwlp6m5tnWgTi9CHv5G6nJSA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2d:07:ca:5b:9f:81:c9:9e:d1:f5:62:7a:b0:6d:27:30:ec: 53:a0:5b:4c:b8:85:e3:29:b0:9a:13:a7:35:dd:e0:b7:88:d7: 33:50:ca:6b:ab:4e:a5:13:ee:e2:3a:72:e4:06:c6:d7:50:61: 01:70:04:e6:71:88:af:10:d9:d9:b9:39:9d:3e:ea:3e:1c:12: be:6b:28:11:ce:f8:a5:a8:b5:2c:ee:b9:93:4a:85:db:2b:ec: 4b:14:5a:0f:f5:1a:22:cf:7a:39:f2:2f:61:72:51:5c:89:3a: 59:eb:fe:af:23:0e:4e:38:83:00:45:de:f4:f3:0e:43:d7:c3: 7f:99:b6:03:7b:51:c4:7f:26:56:b1:60:35:07:fc:e8:95:22: 58:d4:7b:53:31:6b:ac:22:af:17:46:7d:4d:5f:fe:41:df:d2: f8:63:00:33:1e:72:d1:21:36:02:fe:0f:70:15:75:d5:e5:69: a0:98:04:31:0b:fe:ef:f3:5f:ff:54:d5:1b:92:5d:fa:82:fc: 7f:66:25:b3:a0:54:2a:4b:0c:e1:bc:f6:28:ed:6f:de:31:7d: 1f:e6:4f:25:75:84:21:f0:a2:e3:50:1f:ef:21:a2:08:d6:1f: 92:86:70:7f:12:c0:23:8a:1c:88:f6:f4:94:7e:ab:7e:22:d3: 5d:e8:a9:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwMEYxMTAvBgNVBAUTKERCRUVFQkMyNUE3QTlCOUI2NzVBMDRFMkY0MjFFRkU0 NkVBNzI1MjAwHhcNMjUwNjI4MjM1MDIwWhcNMjUwNzA1MjM1MDIwWjAYMRYwFAYD VQQDEw02ODYwN2ZiZC01MzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9/x7j0EM/6e/T4o6KYKrAk9DoVWxEM51FvbFi6o2t+Z77HkckTZDkWDCLzug k3bMG5281V+tyw4DCNk3mjqfRE8mG0Nr6AaOMHriOCd/HI7mfeDGLRBEmZv30D0W OQGN0pV1fLaJdhfypGveYotivnuJyeTsfMNBXbkOiwYynAWi+jOb6hqP1jJZzAxE Tfe9IghljLzBeKL6a0/dCE5EhnRiwnCFtOc8VsTban9ThJVgEMZZf/qKU2GNUrnA Z8C8jYGlYOvP9KevfSTCBKMvdz2OOvQokFOH/HcCob67BIgMiPU9sWg+dK0W2+m/ B/jFJAi3+QGD7To0jIhj8vK79QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcClBbr cZfSXTtdDbfY00b28SAjMB8GA1UdIwQYMBaAFNvu68JaepubZ1oE4vQh7+RupyUg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzAwRi8xQUQ1QUY3NDVE OTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01dG5XZ1RpOUNIdjVHNm5K U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItN3J3bHA2bTV0bldnVGk5Q0h2NUc2bkpTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzAwRi8xQUQ1QUY3NDVEOTExMUVDOUFGQjhEM0RDNEY5QUUwMi8yLTdyd2xwNm01 dG5XZ1RpOUNIdjVHNm5KU0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATLQfKW5+ByZ7R9WJ6sG0nMOxToFtMuIXjKbCaE6c13eC3iNczUMpr q06lE+7iOnLkBsbXUGEBcATmcYivENnZuTmdPuo+HBK+aygRzvilqLUs7rmTSoXb K+xLFFoP9Roiz3o58i9hclFciTpZ6/6vIw5OOIMARd708w5D18N/mbYDe1HEfyZW sWA1B/zolSJY1HtTMWusIq8XRn1NX/5B39L4YwAzHnLRITYC/g9wFXXV5WmgmAQx C/7v81//VNUbkl36gvx/ZiWzoFQqSwzhvPYo7W/eMX0f5k8ldYQh8KLjUB/vIaII 1h+ShnB/EsAjihyI9vSUfqt+ItNd6Kny -----END CERTIFICATE-----Generated at Mon Jun 30 02:36:34 2025 by rpki-client