$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft File: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft (raw, json) Hash identifier: KblpD/DAiC5AoMZRs1Xbn4psoXrFkaDwm6Wm1NwI1rY= Subject key identifier: 24:1E:9A:D4:DA:A8:1C:A0:AF:C5:29:CB:D1:82:FB:2C:79:45:05:D5 Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft Manifest number: 0104 Signing time: Thu 03 Jul 2025 05:15:08 +0000 Manifest this update: Thu 03 Jul 2025 05:15:08 +0000 Manifest next update: Thu 10 Jul 2025 05:15:08 +0000 Files and hashes: 1: 7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl (hash: nEOPXMNmXUEDSpfwwUwsQKRB7Ez0lceJnQ+BLxuOID8=) 2: 9DDCAB1AC9EC11EE9644540FC4F9AE02.roa (hash: u6J6SPSNjElCImZDre2hX9rdBiRV9plYfnlpPbtxhQc=) 3: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (hash: hR3HemTX8sPR//njNhfSediG0DqzFMWVKhRmgOL4nRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9, serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Jul 3 05:15:08 2025 GMT Not After : Jul 10 05:15:08 2025 GMT Subject: CN=686611dc-bc6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:62:70:22:b0:ef:b9:d9:5a:f8:b6:24:13:44: 1b:24:13:77:46:9c:46:a4:5a:0c:3f:c3:46:b2:4e: b1:d1:47:9a:3e:59:22:9b:bc:5b:77:86:10:02:f5: 41:34:5e:a3:eb:30:0b:37:70:9e:ef:e4:ce:34:8d: 77:3e:18:9d:ef:a6:dc:c0:f0:ee:2e:0b:ac:80:7f: 46:f7:3b:8d:88:09:b8:3e:01:39:98:0d:ce:7b:72: f9:97:e3:2e:28:50:58:45:6a:28:a4:d2:07:b4:6f: 95:67:2d:8e:e6:4f:a1:74:f9:fe:15:9f:84:6b:c6: 96:9c:62:06:26:1e:98:c4:01:6e:32:91:65:49:36: ff:69:04:42:45:3f:99:d6:7b:13:02:12:35:d1:79: c7:4e:82:37:1d:0e:4c:87:5a:4e:1c:35:7a:ac:f5: 38:88:8f:96:2c:0f:9c:ab:a9:e3:5e:f2:73:f3:98: 46:23:33:6b:bf:50:7f:1a:7a:ed:58:74:db:6b:b8: a9:70:e6:bc:72:21:cb:5b:16:b0:de:a5:8d:fd:3e: 8e:de:c0:da:80:00:c8:8a:78:8c:c9:94:38:9f:f0: b5:8b:37:37:d1:f2:6a:2e:8f:f0:78:c3:0d:99:bb: e2:35:8d:94:be:39:7b:ea:65:f5:a1:41:ee:63:06: 42:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1E:9A:D4:DA:A8:1C:A0:AF:C5:29:CB:D1:82:FB:2C:79:45:05:D5 X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:1b:eb:e3:11:3f:a1:b0:7c:b8:79:d7:b9:4d:e8:00:6f:73: 1d:5c:dd:7e:66:87:35:46:65:98:d4:99:87:b4:39:a0:b0:41: 75:71:f6:6c:bd:44:dd:bd:78:29:09:90:00:a0:3a:de:dc:ee: 2d:e7:22:98:51:d7:bf:28:ea:1e:eb:5a:dd:cd:11:62:47:fd: 08:3d:98:11:a3:24:24:d2:66:03:11:10:d0:91:ad:cc:f9:9b: d3:f4:85:e9:8f:e6:ef:be:91:ec:9a:61:f0:93:a8:ca:dd:09: fd:2d:4b:b5:8a:9a:91:8e:80:b8:50:13:cf:b4:50:15:67:cd: bf:95:96:6a:d3:a6:32:0e:bc:a9:d1:6e:5a:5e:25:75:ff:3b: db:4a:5b:10:5c:0a:8a:e8:ff:df:35:cc:51:69:5e:f0:59:57: f6:28:86:24:79:60:e0:ce:8d:6b:e8:71:87:a7:3b:ae:ff:5c: 43:40:c3:cd:56:a0:1a:3d:d4:27:aa:f1:d7:be:d8:12:b9:29: 9e:ed:a3:28:cb:08:35:6c:94:71:5c:8d:83:29:2b:37:d0:b8: ca:2d:fd:b1:fb:50:92:6a:94:c9:65:7e:23:41:75:ca:04:3e: 5f:47:18:7e:d4:ed:b8:2a:6a:31:a8:f8:ba:e3:25:01:1c:a4: 69:60:77:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwNzAzMDUxNTA4WhcNMjUwNzEwMDUxNTA4WjAYMRYwFAYD VQQDEw02ODY2MTFkYy1iYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2JwIrDvudla+LYkE0QbJBN3RpxGpFoMP8NGsk6x0UeaPlkim7xbd4YQAvVB NF6j6zALN3Ce7+TONI13Phid76bcwPDuLgusgH9G9zuNiAm4PgE5mA3Oe3L5l+Mu KFBYRWoopNIHtG+VZy2O5k+hdPn+FZ+Ea8aWnGIGJh6YxAFuMpFlSTb/aQRCRT+Z 1nsTAhI10XnHToI3HQ5Mh1pOHDV6rPU4iI+WLA+cq6njXvJz85hGIzNrv1B/Gnrt WHTba7ipcOa8ciHLWxaw3qWN/T6O3sDagADIiniMyZQ4n/C1izc30fJqLo/weMMN mbviNY2Uvjl76mX1oUHuYwZC+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQemtTa qBygr8Upy9GC+yx5RQXVMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTVDOS83RTJGMTI2OEM5RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1E blptS0Q4NWNucmRmX0laejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHG+vjET+hsHy4ede5TegAb3MdXN1+Zoc1RmWY1JmHtDmgsEF1cfZs vUTdvXgpCZAAoDre3O4t5yKYUde/KOoe61rdzRFiR/0IPZgRoyQk0mYDERDQka3M +ZvT9IXpj+bvvpHsmmHwk6jK3Qn9LUu1ipqRjoC4UBPPtFAVZ82/lZZq06YyDryp 0W5aXiV1/zvbSlsQXAqK6P/fNcxRaV7wWVf2KIYkeWDgzo1r6HGHpzuu/1xDQMPN VqAaPdQnqvHXvtgSuSme7aMoywg1bJRxXI2DKSs30LjKLf2x+1CSapTJZX4jQXXK BD5fRxh+1O24KmoxqPi64yUBHKRpYHcc -----END CERTIFICATE-----Generated at Thu Jul 3 22:48:50 2025 by rpki-client