$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 6FDtG/R298l2eDPQCXSmQ/Ti1/BtQFrSy0Jzfp1kzlk= Subject key identifier: B4:33:7C:45:87:36:D0:48:60:80:36:44:07:03:37:A2:7C:19:E0:5A Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 368B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 368A Signing time: Fri 04 Jul 2025 14:38:57 +0000 Manifest this update: Fri 04 Jul 2025 14:38:56 +0000 Manifest next update: Fri 11 Jul 2025 14:38:56 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: +4Mz2xFDmnyRkTE+6CZsRnW4S1/CGoxTm4XBJ0ZyN1o=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13963 (0x368b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jul 4 14:38:56 2025 GMT Not After : Jul 11 14:38:56 2025 GMT Subject: CN=6867e781-1598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:02:da:8b:a0:3b:f0:ff:5f:b6:d3:0e:6a:9c: a4:5e:8d:a4:41:4d:bc:45:5d:3c:db:13:84:b8:7d: d8:e0:e1:b0:8a:cf:0b:73:eb:cf:e4:cc:8a:3b:08: 1c:17:d4:b3:1f:61:ee:0b:31:94:3c:01:2c:42:16: a1:a2:29:9e:53:9c:b0:48:f4:3c:00:dd:0b:79:dd: ba:60:a4:8a:8a:d9:c2:40:8c:5d:9e:19:9f:d2:b0: 77:7a:95:95:aa:81:0c:6d:df:1e:67:e5:4d:f5:17: f0:32:8e:bf:d0:55:5a:82:5c:bc:88:9c:d2:ee:39: 3f:cb:0e:1e:58:d6:1d:73:ce:ab:01:1a:84:bb:f6: ac:4c:bc:5c:59:14:e0:75:68:76:12:0c:59:e1:0c: cb:e0:13:e1:36:60:ea:91:0c:e1:4d:ef:b8:d7:a6: aa:35:29:63:cb:53:20:bd:5a:53:f9:ab:db:be:55: e8:57:7e:26:0c:ed:b3:6a:22:b5:eb:f9:80:97:cd: 7d:e1:f6:8f:d9:07:1d:87:f9:45:98:22:37:61:ad: 58:9c:20:be:9c:fc:24:b1:22:89:66:1f:80:2f:1e: fd:3f:ff:77:b4:8e:96:8a:76:0f:75:68:b2:05:b4: 6f:7b:a6:ae:25:97:ef:ac:01:45:f2:fd:52:3a:46: 70:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:33:7C:45:87:36:D0:48:60:80:36:44:07:03:37:A2:7C:19:E0:5A X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e4:3c:1b:46:0c:49:37:25:54:c2:74:ad:80:12:12:48:67: 88:b5:07:18:67:ee:98:ba:13:11:31:6e:f5:ad:5c:26:e2:ce: 12:d0:6f:89:15:ef:2c:48:08:80:64:aa:41:5c:ef:d9:31:68: e5:6c:f4:ed:87:62:86:ef:56:47:3e:48:81:5f:d4:aa:7b:24: 50:b1:0d:95:49:15:81:6c:11:87:af:a2:6d:bf:ff:71:7a:49: 70:39:72:ca:9d:03:00:b5:88:dc:8e:c6:06:47:9f:7a:fb:4c: 98:bf:82:ec:0f:2f:27:b7:cb:1f:33:c8:87:8d:31:da:fe:6c: 0a:9f:72:88:ec:ec:41:ca:b3:15:c7:ac:4c:5b:2d:78:6a:55: c4:97:95:69:72:e6:95:6c:fc:a4:3f:8a:20:11:f2:7e:7c:79: 7a:6a:fc:7c:e1:60:c3:85:60:8f:f4:40:68:ac:e7:45:48:2a: ba:95:a5:f8:79:38:c9:15:0f:c9:ec:cd:10:60:f6:7b:e7:08: 8c:4c:62:af:06:90:db:5d:c6:88:00:fc:ff:2d:50:5b:f0:66: 8a:55:6f:d2:01:92:92:4f:3c:7a:19:e9:1e:6f:e7:dc:0f:62: fc:6c:01:14:cd:11:ca:5d:17:db:7f:68:b3:f2:07:9d:68:4d: 44:e4:d6:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwNzA0MTQzODU2WhcNMjUwNzExMTQzODU2WjAYMRYwFAYD VQQDEw02ODY3ZTc4MS0xNTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwLai6A78P9fttMOapykXo2kQU28RV082xOEuH3Y4OGwis8Lc+vP5MyKOwgc F9SzH2HuCzGUPAEsQhahoimeU5ywSPQ8AN0Led26YKSKitnCQIxdnhmf0rB3epWV qoEMbd8eZ+VN9RfwMo6/0FVagly8iJzS7jk/yw4eWNYdc86rARqEu/asTLxcWRTg dWh2EgxZ4QzL4BPhNmDqkQzhTe+416aqNSljy1MgvVpT+avbvlXoV34mDO2zaiK1 6/mAl8194faP2Qcdh/lFmCI3Ya1YnCC+nPwksSKJZh+ALx79P/93tI6WinYPdWiy BbRve6auJZfvrAFF8v1SOkZwVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQzfEWH NtBIYIA2RAcDN6J8GeBaMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC5DwbRgxJNyVUwnStgBISSGeItQcYZ+6YuhMRMW71rVwm4s4S0G+J Fe8sSAiAZKpBXO/ZMWjlbPTth2KG71ZHPkiBX9SqeyRQsQ2VSRWBbBGHr6Jtv/9x eklwOXLKnQMAtYjcjsYGR596+0yYv4LsDy8nt8sfM8iHjTHa/mwKn3KI7OxByrMV x6xMWy14alXEl5VpcuaVbPykP4ogEfJ+fHl6avx84WDDhWCP9EBorOdFSCq6laX4 eTjJFQ/J7M0QYPZ75wiMTGKvBpDbXcaIAPz/LVBb8GaKVW/SAZKSTzx6Gekeb+fc D2L8bAEUzRHKXRfbf2iz8gedaE1E5NbZ -----END CERTIFICATE-----Generated at Sat Jul 5 05:02:23 2025 by rpki-client