$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft File: A6PIek8tglWUdvcc-u5ST_URNXk.mft (raw, json) Hash identifier: Mm3f5emFWNNkj22zJWbivfzJ/JlcK/EsLCCh5PtA0rU= Subject key identifier: 1D:F5:70:7C:25:2A:D5:95:37:19:1F:3B:1F:D5:16:D5:B3:83:E3:AF Authority key identifier: 03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 Certificate issuer: /CN=A91A4CAD/serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Certificate serial: 0B0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft Manifest number: 0B05 Signing time: Mon 30 Jun 2025 19:29:16 +0000 Manifest this update: Mon 30 Jun 2025 19:29:16 +0000 Manifest next update: Mon 07 Jul 2025 19:29:16 +0000 Files and hashes: 1: A6PIek8tglWUdvcc-u5ST_URNXk.crl (hash: GYnivhtSPYIM0vo41fN3D8uTdpa1EG1eB4Rd6Oa6cFI=) 2: 6553D6106C2B11EA87ED1160C4F9AE02.roa (hash: BZiEWDD0IL9/iTmQj4cpibFzXusaM/aZuvYBDfGJDK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2829 (0xb0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CAD, serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Validity Not Before: Jun 30 19:29:16 2025 GMT Not After : Jul 7 19:29:16 2025 GMT Subject: CN=6862e58c-105b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:42:ac:75:d4:aa:b4:1a:fc:08:45:d3:a6:6a: 84:82:d9:d0:62:53:25:38:7c:59:53:20:da:b6:f5: ee:46:b2:46:5f:5c:f7:83:40:03:0b:f1:df:a7:9c: fe:10:c0:ea:cf:49:8a:cf:aa:28:73:df:6a:00:2b: 31:13:d6:a9:92:23:bd:ba:92:e2:f5:53:e0:b7:c9: 5b:5f:d1:88:ea:ba:83:10:ea:84:38:7c:aa:57:4d: 3b:df:67:dc:02:92:c6:70:d1:ef:39:0d:03:b8:d4: 99:3e:1e:b2:4e:fd:dc:e4:89:b0:1b:69:12:16:3a: 21:20:c9:27:b7:87:24:ff:94:7e:4c:6f:41:8a:86: 4f:d0:96:26:68:a5:00:a8:d6:11:aa:40:ae:47:5b: 70:71:2f:48:9d:fd:43:33:20:21:ae:2c:d4:09:bb: 8f:6b:05:c3:be:28:2e:26:f4:e3:93:55:05:15:be: e2:ed:b5:44:3c:53:1e:21:b4:22:4d:51:41:71:ce: fe:31:c5:0f:4c:8b:ce:02:dd:d7:a2:c4:0f:2e:05: 06:50:6e:55:d2:fa:eb:f4:9f:41:b5:44:d6:24:56: 07:4e:36:01:e2:d6:ee:95:75:98:81:f7:47:6e:e6: 8c:42:1b:a8:e1:95:3b:a2:d0:5d:9f:4a:1c:9c:69: 24:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F5:70:7C:25:2A:D5:95:37:19:1F:3B:1F:D5:16:D5:B3:83:E3:AF X509v3 Authority Key Identifier: keyid:03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:28:de:0a:9b:47:e5:dc:cb:64:41:a1:85:62:ae:c0:4e:b9: 0c:b4:ac:08:32:3f:27:2f:ea:9d:c8:92:23:94:f3:4d:73:20: 84:01:5f:6e:9b:03:88:05:75:e4:9f:ef:4a:c4:b6:71:16:b4: c7:71:9d:95:f9:d1:a8:51:2c:fc:5f:30:28:e9:0b:29:c2:4f: d6:98:b9:96:ff:57:5d:27:9e:d9:33:75:4a:24:0e:fc:eb:ad: 92:7c:b4:e6:35:65:32:73:42:23:b1:98:94:84:29:ad:5d:75: a2:b5:53:ad:49:86:24:98:90:09:26:a1:46:68:24:72:27:d4: 91:e5:22:fd:9b:78:9c:4a:e8:13:c1:6a:9c:ff:e0:32:60:76: 18:e2:b4:fc:45:1c:4d:b1:ea:da:32:a0:23:22:9d:2d:06:7b: 93:7c:8e:81:d8:eb:4c:c9:d7:2a:33:74:81:88:fa:8e:c4:71: 4c:bd:93:3f:30:5a:71:90:9c:2a:c4:fb:d2:c2:56:45:8b:46: 3e:b1:ac:1d:00:64:c8:4c:12:aa:37:fe:9d:e7:d0:e0:e8:32: 1d:44:a5:aa:20:ec:c5:46:ea:d0:eb:1e:fe:57:2a:c3:4c:d1: 53:71:23:21:3a:e0:8c:9a:28:9a:c2:36:bf:97:c3:c4:e4:c2: 50:36:b2:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDQUQxMTAvBgNVBAUTKDAzQTNDODdBNEYyRDgyNTU5NDc2RjcxQ0ZBRUU1MjRG RjUxMTM1NzkwHhcNMjUwNjMwMTkyOTE2WhcNMjUwNzA3MTkyOTE2WjAYMRYwFAYD VQQDEw02ODYyZTU4Yy0xMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kKsddSqtBr8CEXTpmqEgtnQYlMlOHxZUyDatvXuRrJGX1z3g0ADC/Hfp5z+ EMDqz0mKz6ooc99qACsxE9apkiO9upLi9VPgt8lbX9GI6rqDEOqEOHyqV00732fc ApLGcNHvOQ0DuNSZPh6yTv3c5ImwG2kSFjohIMknt4ck/5R+TG9BioZP0JYmaKUA qNYRqkCuR1twcS9Inf1DMyAhrizUCbuPawXDviguJvTjk1UFFb7i7bVEPFMeIbQi TVFBcc7+McUPTIvOAt3XosQPLgUGUG5V0vrr9J9BtUTWJFYHTjYB4tbulXWYgfdH buaMQhuo4ZU7otBdn0ocnGkkOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB31cHwl KtWVNxkfOx/VFtWzg+OvMB8GA1UdIwQYMBaAFAOjyHpPLYJVlHb3HPruUk/1ETV5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNENBRC85RkQ5N0EwODQ1 QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGdsV1VkdmNjLXU1U1RfVVJO WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2UEllazh0Z2xXVWR2Y2MtdTVTVF9VUk5Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NENBRC85RkQ5N0EwODQ1QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGds V1VkdmNjLXU1U1RfVVJOWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALKN4Km0fl3MtkQaGFYq7ATrkMtKwIMj8nL+qdyJIjlPNNcyCEAV9u mwOIBXXkn+9KxLZxFrTHcZ2V+dGoUSz8XzAo6Qspwk/WmLmW/1ddJ57ZM3VKJA78 662SfLTmNWUyc0IjsZiUhCmtXXWitVOtSYYkmJAJJqFGaCRyJ9SR5SL9m3icSugT wWqc/+AyYHYY4rT8RRxNseraMqAjIp0tBnuTfI6B2OtMydcqM3SBiPqOxHFMvZM/ MFpxkJwqxPvSwlZFi0Y+sawdAGTITBKqN/6d59Dg6DIdRKWqIOzFRurQ6x7+VyrD TNFTcSMhOuCMmiiawja/l8PE5MJQNrLF -----END CERTIFICATE-----Generated at Tue Jul 1 18:06:20 2025 by rpki-client