$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft File: Wr7NjqrTfqV665OfLAsUKXSEH4o.mft (raw, json) Hash identifier: k1dn3AIlxzbPhTVau1cGRa18YlruTl5VeVcrfR55mAo= Subject key identifier: EA:6D:58:6A:7F:27:F9:15:AB:5F:E4:9D:11:1F:29:2F:5C:E7:24:56 Authority key identifier: 5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A Certificate issuer: /CN=A91A5A82/serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft Manifest number: 34 Signing time: Thu 03 Jul 2025 07:53:06 +0000 Manifest this update: Thu 03 Jul 2025 07:53:05 +0000 Manifest next update: Thu 10 Jul 2025 07:53:05 +0000 Files and hashes: 1: Wr7NjqrTfqV665OfLAsUKXSEH4o.crl (hash: 1kM34AE2VC/ceFoAj7PRWjAO1qKXuyu0b7IiXhHmol0=) 2: D0B32912090911F0A5348F26C4F9AE02.roa (hash: uW1VF7Kvr3qqb0xY8fd0nDeotf3CK4ccwfdt9+YehUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A82, serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Validity Not Before: Jul 3 07:53:05 2025 GMT Not After : Jul 10 07:53:05 2025 GMT Subject: CN=686636e1-9147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ca:99:cc:0c:ea:a7:08:4a:dd:b8:0a:06:7d: 80:9b:83:c4:2c:6e:cb:e1:59:eb:51:01:bc:e7:75: 1c:d5:a7:f1:29:dd:cb:cf:c0:b5:c5:47:3c:1e:7a: 84:8e:b1:3d:72:f6:85:42:71:5e:7c:66:74:93:6b: 06:84:51:e6:9b:61:6c:26:5d:7f:59:66:3c:76:0d: 13:7a:f6:ac:50:59:46:3d:57:db:af:52:74:3e:d0: aa:82:78:93:55:57:3c:9f:0c:b8:a6:4c:e7:63:4f: da:b3:b4:a4:08:9f:29:96:71:14:b2:d3:e7:d1:f6: 64:b4:23:67:b1:e0:12:25:3e:a8:fb:95:95:15:d6: ad:a7:cb:0a:29:db:7b:22:f3:61:07:d2:03:53:be: e6:9c:52:3f:3e:c7:86:a6:78:8c:ac:62:0f:fc:29: 8c:eb:2f:1e:01:2d:e8:82:2b:1f:de:0c:ed:54:8d: d0:10:6f:c3:f5:4c:89:7d:db:e8:99:d8:98:0e:c6: 70:64:f5:09:c9:04:31:7c:ab:96:99:97:68:75:d9: 70:0e:97:b8:da:08:db:7a:3b:91:78:0b:1e:a9:c9: 1e:05:fa:07:0f:1f:e4:4c:30:b3:f0:10:8a:99:d0: 42:39:81:ef:db:5f:cd:67:41:d4:49:db:fd:37:06: e5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:6D:58:6A:7F:27:F9:15:AB:5F:E4:9D:11:1F:29:2F:5C:E7:24:56 X509v3 Authority Key Identifier: keyid:5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:8f:e0:e9:48:e8:35:56:f5:83:84:02:bf:94:69:df:3f:fc: 65:bc:3d:fe:a8:bb:2d:b2:47:77:3e:cb:ad:0e:99:66:ca:46: 09:b6:42:a9:01:47:ba:94:38:6f:b6:e4:6e:5a:47:56:37:0a: fb:94:b2:0e:1f:13:01:25:bd:44:fe:e3:d3:b7:71:78:9a:ab: 15:e6:de:31:b9:b5:96:0f:3c:d9:e9:94:0a:f6:cc:09:b2:35: f6:94:bd:4e:c3:ab:77:79:75:34:83:2f:05:b4:74:85:56:80: aa:da:4e:bc:29:5b:7f:a0:7f:68:1d:fd:94:0d:99:f8:80:02: 5c:74:fb:5e:7c:f2:cf:1e:c3:64:46:fe:ee:0f:64:7a:c9:3c: 94:5b:8c:34:4d:2b:25:27:b5:aa:65:b5:c9:f9:0b:f1:49:20: 86:0d:59:e7:58:a1:f8:0e:d2:f8:0f:0c:7c:3a:a4:89:4f:46: ea:5a:59:08:e9:76:e4:61:f6:02:56:8d:84:93:ba:59:6a:3c: 59:af:a3:b3:53:fd:f8:39:20:00:e7:eb:13:c0:57:13:d0:a1: a5:67:62:f4:1d:a3:13:b5:48:3d:88:1a:97:5d:e8:53:c5:bd: 51:60:7e:d3:e2:8f:46:87:6f:dd:7d:68:cb:30:42:a8:f4:23: eb:a4:41:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE4MjExMC8GA1UEBRMoNUFCRUNEOEVBQUQzN0VBNTdBRUI5MzlGMkMwQjE0Mjk3 NDg0MUY4QTAeFw0yNTA3MDMwNzUzMDVaFw0yNTA3MTAwNzUzMDVaMBgxFjAUBgNV BAMTDTY4NjYzNmUxLTkxNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOypnMDOqnCErduAoGfYCbg8QsbsvhWetRAbzndRzVp/Ep3cvPwLXFRzweeoSO sT1y9oVCcV58ZnSTawaEUeabYWwmXX9ZZjx2DRN69qxQWUY9V9uvUnQ+0KqCeJNV VzyfDLimTOdjT9qztKQInymWcRSy0+fR9mS0I2ex4BIlPqj7lZUV1q2nywop23si 82EH0gNTvuacUj8+x4ameIysYg/8KYzrLx4BLeiCKx/eDO1UjdAQb8P1TIl92+iZ 2JgOxnBk9QnJBDF8q5aZl2h12XAOl7jaCNt6O5F4Cx6pyR4F+gcPH+RMMLPwEIqZ 0EI5ge/bX81nQdRJ2/03BuUHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6m1Yan8n +RWrX+SdER8pL1znJFYwHwYDVR0jBBgwFoAUWr7NjqrTfqV665OfLAsUKXSEH4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTgyL0JCOThBNDVFMDkw ODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFWNjY1T2ZMQXNVS1hTRUg0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3I3TmpxclRmcVY2NjVPZkxBc1VLWFNFSDRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTgyL0JCOThBNDVFMDkwODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFW NjY1T2ZMQXNVS1hTRUg0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWP4OlI6DVW9YOEAr+Uad8//GW8Pf6ouy2yR3c+y60OmWbKRgm2QqkB R7qUOG+25G5aR1Y3CvuUsg4fEwElvUT+49O3cXiaqxXm3jG5tZYPPNnplAr2zAmy NfaUvU7Dq3d5dTSDLwW0dIVWgKraTrwpW3+gf2gd/ZQNmfiAAlx0+1588s8ew2RG /u4PZHrJPJRbjDRNKyUntapltcn5C/FJIIYNWedYofgO0vgPDHw6pIlPRupaWQjp duRh9gJWjYSTullqPFmvo7NT/fg5IADn6xPAVxPQoaVnYvQdoxO1SD2IGpdd6FPF vVFgftPij0aHb919aMswQqj0I+ukQcY= -----END CERTIFICATE-----Generated at Thu Jul 3 11:29:33 2025 by rpki-client