$ rpki-client -vvf rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft File: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft (raw, json) Hash identifier: MkVYcJDg4zSNYlHKhABQNr8tTQSDBtTFucnVwrprFxA= Subject key identifier: 1B:64:87:81:72:05:73:5A:61:16:8E:B1:C5:F1:6E:F0:1E:E0:B0:CB Authority key identifier: A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 Certificate issuer: /CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Certificate serial: 05F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft Manifest number: 05ED Signing time: Wed 02 Jul 2025 23:14:45 +0000 Manifest this update: Wed 02 Jul 2025 23:14:45 +0000 Manifest next update: Wed 09 Jul 2025 23:14:45 +0000 Files and hashes: 1: o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl (hash: 4NjNtvhTPNYkjU5G9N87UU6uQ2WACuTCLCMICg+EVOs=) 2: F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa (hash: AxnCXioU+pzcVhOQczSiGNqFZn1BtxYji3/Mt/svcQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:14:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A36A7, serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Validity Not Before: Jul 2 23:14:45 2025 GMT Not After : Jul 9 23:14:45 2025 GMT Subject: CN=6865bd65-655e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:af:c1:90:bd:f7:e7:66:10:43:82:29:aa: c9:6f:39:26:bc:d0:3f:06:a9:f8:e7:91:82:5d:9e: 42:c5:01:fb:67:af:1e:07:bb:65:89:20:96:eb:46: 16:23:54:60:07:46:3e:7f:4a:54:d9:3f:03:2d:d6: dc:63:36:8f:62:61:ae:70:33:0c:06:b8:61:0a:12: ff:95:49:21:ec:09:4b:64:90:6e:e0:d6:16:5e:3a: cf:f7:06:60:c9:06:07:f3:0f:13:59:f2:0b:24:c5: 81:25:68:0b:d2:e9:40:e0:5e:9c:ed:16:58:dd:98: de:1c:66:d2:50:a4:c1:9a:12:ae:62:7b:e4:e2:a7: cb:e7:4e:dd:53:a5:9f:47:6b:cc:cb:90:71:85:a2: da:a7:53:9a:cd:bc:5f:59:d9:97:43:29:80:12:05: 8d:c3:2c:55:f6:16:0c:5c:92:a7:4a:b5:48:b3:cb: 6b:96:01:cd:b1:7e:85:b2:32:0b:b5:e4:b2:84:eb: 0f:65:2c:03:8b:aa:97:6e:58:6e:1e:73:a3:8d:6c: 91:ad:2c:c9:4a:96:c2:1f:a2:00:ef:e2:e0:68:16: 65:fd:43:83:51:19:c7:bb:58:49:b1:cd:e2:c6:17: 4b:62:c9:67:60:bb:1e:d1:57:d1:b5:a3:3d:0b:65: e0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:64:87:81:72:05:73:5A:61:16:8E:B1:C5:F1:6E:F0:1E:E0:B0:CB X509v3 Authority Key Identifier: keyid:A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:6e:1b:bd:7b:73:cb:b2:2e:9e:99:33:2a:8d:5d:07:5d:56: 72:69:31:69:80:4c:18:d9:85:03:d4:76:9d:2b:35:4b:dc:51: c5:12:33:40:0a:09:6a:8d:6c:72:1d:9e:29:42:fb:d4:2d:5f: 71:d5:69:3b:00:6f:1c:25:5b:d8:eb:71:32:1b:c8:08:ef:b2: 19:b4:59:a0:e7:96:a6:a4:ca:3c:78:50:67:97:75:75:d3:5c: 84:aa:11:13:ef:39:3b:26:ba:2d:00:95:91:69:20:54:a5:62: fd:af:82:10:03:ac:8a:b5:ef:5a:54:1e:1e:3c:d0:50:51:2a: 46:aa:41:fc:c7:8f:40:0b:33:cc:99:9f:74:a3:a1:fb:44:89: 39:61:02:22:4e:6c:1d:7b:ab:ec:86:73:89:2e:07:a4:2c:9a: fa:03:d8:9e:dc:87:8c:72:84:82:74:86:a1:98:ec:f8:b2:c9: 5f:6d:a5:61:4a:b1:2c:c2:4e:f4:eb:9f:8a:27:d1:7b:3a:c1: 3e:b1:54:a4:28:74:82:31:e4:9a:cd:9e:7c:23:06:46:43:f8: 22:46:1a:24:50:ba:11:3d:b7:f7:bf:f0:b9:7d:fc:c1:f9:80: e5:50:e9:ed:76:78:82:0a:d4:b6:49:06:7f:1b:36:86:e2:78: 5a:ca:60:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM2QTcxMTAvBgNVBAUTKEEzNjUyRDlFNTRFOTY0NjhCMjMwNDc5MzczMTdGQTRF Q0Q3QjM2NDgwHhcNMjUwNzAyMjMxNDQ1WhcNMjUwNzA5MjMxNDQ1WjAYMRYwFAYD VQQDEw02ODY1YmQ2NS02NTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5uvwZC99+dmEEOCKarJbzkmvNA/Bqn455GCXZ5CxQH7Z68eB7tliSCW60YW I1RgB0Y+f0pU2T8DLdbcYzaPYmGucDMMBrhhChL/lUkh7AlLZJBu4NYWXjrP9wZg yQYH8w8TWfILJMWBJWgL0ulA4F6c7RZY3ZjeHGbSUKTBmhKuYnvk4qfL507dU6Wf R2vMy5BxhaLap1OazbxfWdmXQymAEgWNwyxV9hYMXJKnSrVIs8trlgHNsX6FsjIL teSyhOsPZSwDi6qXblhuHnOjjWyRrSzJSpbCH6IA7+LgaBZl/UODURnHu1hJsc3i xhdLYslnYLse0VfRtaM9C2XgMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtkh4Fy BXNaYRaOscXxbvAe4LDLMB8GA1UdIwQYMBaAFKNlLZ5U6WRosjBHk3MX+k7NezZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzZBNy84QUE2NUFGQ0I5 NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpHaXlNRWVUY3hmNlRzMTdO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yVXRubFRwWkdpeU1FZVRjeGY2VHMxN05rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzZBNy84QUE2NUFGQ0I5NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpH aXlNRWVUY3hmNlRzMTdOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzbhu9e3PLsi6emTMqjV0HXVZyaTFpgEwY2YUD1HadKzVL3FHFEjNA CglqjWxyHZ4pQvvULV9x1Wk7AG8cJVvY63EyG8gI77IZtFmg55ampMo8eFBnl3V1 01yEqhET7zk7JrotAJWRaSBUpWL9r4IQA6yKte9aVB4ePNBQUSpGqkH8x49ACzPM mZ90o6H7RIk5YQIiTmwde6vshnOJLgekLJr6A9ie3IeMcoSCdIahmOz4sslfbaVh SrEswk7065+KJ9F7OsE+sVSkKHSCMeSazZ58IwZGQ/giRhokULoRPbf3v/C5ffzB +YDlUOntdniCCtS2SQZ/GzaG4nhaymCo -----END CERTIFICATE-----Generated at Thu Jul 3 08:50:21 2025 by rpki-client