$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft File: r2ctqMXR1sgNUGF4yefLdE9uOOY.mft (raw, json) Hash identifier: rWxI1tvUpDrpvg9qTHlhzUY//3r5B8U1QcfT2Y/1YtI= Subject key identifier: D2:B9:81:78:01:0F:52:CC:69:87:E2:D1:27:94:90:7C:BB:12:C5:17 Authority key identifier: AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 Certificate issuer: /CN=A91A6F2D/serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft Manifest number: 74 Signing time: Wed 02 Jul 2025 23:17:19 +0000 Manifest this update: Wed 02 Jul 2025 23:17:19 +0000 Manifest next update: Wed 09 Jul 2025 23:17:19 +0000 Files and hashes: 1: r2ctqMXR1sgNUGF4yefLdE9uOOY.crl (hash: NVuC3KZaaT40seCR5fUABpmsmwnwp3Fb1B8x6Ghfvyk=) 2: FBE0AB56AC6511EFAEAA8A3CC4F9AE02.roa (hash: 05N/6Qhw5iJe1Qr/JCmwvRl4veGMACl1Zh2wsIyWrXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AF672DA8C5D1D6C80D506178C9E7CB744F6E38E6 Validity Not Before: Jul 2 23:17:19 2025 GMT Not After : Jul 9 23:17:19 2025 GMT Subject: CN=6865bdff-bac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:bc:d6:90:a4:af:a4:e4:87:25:9e:37:17: 5e:cc:a4:0b:9d:bc:b0:f8:0b:ae:f0:ea:4c:3f:eb: c6:1e:1c:32:52:7d:fa:55:ed:c6:2c:8a:ef:a4:ac: 15:c0:85:00:be:b5:ea:15:c6:28:f0:6d:0a:f8:72: ba:a9:89:65:93:fa:a3:5e:ce:f0:2a:6c:a6:c4:95: c1:c3:65:43:4d:40:fa:dc:ed:97:1c:6f:be:7c:22: 0b:6d:6c:85:14:0b:bb:c1:ba:15:83:a9:9c:18:a7: 16:27:6e:e9:73:8e:20:91:ec:fd:25:d7:7f:a7:37: 17:77:f5:cf:35:b1:bf:25:ab:bb:98:c6:4d:ec:58: 1c:4d:5d:5f:0d:63:d5:2f:dc:bf:8a:02:ab:6c:cf: 12:e5:28:f9:97:30:b4:6a:dc:98:c8:f7:51:a3:d1: 43:b0:f4:e2:83:d4:fe:89:a0:d2:9c:c1:1a:51:9a: 88:ed:55:73:a4:5f:97:75:9a:86:0c:11:e1:ef:6e: c1:dc:32:69:ea:6b:31:bc:0f:7d:50:f0:6a:3f:ce: 2e:be:a0:22:a8:05:2e:b0:b8:51:1c:d7:07:5f:06: bb:6b:c5:12:77:94:7a:fe:d2:b5:c1:29:fe:f5:1e: e3:fd:5f:d8:ef:7a:67:9f:fa:54:ce:83:12:b3:b3: ad:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B9:81:78:01:0F:52:CC:69:87:E2:D1:27:94:90:7C:BB:12:C5:17 X509v3 Authority Key Identifier: keyid:AF:67:2D:A8:C5:D1:D6:C8:0D:50:61:78:C9:E7:CB:74:4F:6E:38:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/r2ctqMXR1sgNUGF4yefLdE9uOOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/6F821178AB8811EF80C75A74C4F9AE02/r2ctqMXR1sgNUGF4yefLdE9uOOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:84:0c:33:be:0c:02:48:8a:22:6e:41:15:4c:98:fd:e6:38: de:73:60:83:42:f9:ce:d2:04:f3:fd:ca:d4:e8:f7:d3:80:77: 4d:c0:25:9f:fd:c8:e1:67:8e:05:dc:81:44:3a:28:f5:6b:7f: 71:f3:26:54:9b:dd:08:c3:47:b9:e7:13:2e:c0:53:bb:f6:38: 55:01:f0:93:11:94:d9:6d:25:59:7e:9e:5e:8f:c6:2e:b3:6f: de:3d:b5:a3:63:a4:86:42:b8:4a:9c:34:78:1d:91:6d:12:4d: a5:c9:41:e2:48:b7:fa:00:3e:8e:8b:1e:d4:e8:29:d7:33:b1: 64:52:66:74:40:f9:ad:d6:30:dc:e7:b0:2f:73:37:c5:55:ef: a6:35:c3:5f:dd:ed:ef:76:9e:7c:c7:b5:3a:c9:81:4d:e2:3a: 76:1d:69:2a:9c:97:6b:3e:53:d4:19:cd:03:9a:8c:ae:8f:6a: 05:d2:0a:cc:a2:31:34:91:93:5c:71:ed:a3:ac:4f:27:b1:55: 04:09:b9:a0:4d:e9:57:f4:21:47:e5:03:96:3e:f5:6f:0b:1a: 4b:c1:07:15:6e:ec:97:25:6f:7e:6e:3f:f4:a7:a8:dc:f7:72: f6:2a:02:19:bb:8d:61:d8:a8:4c:bc:d4:7c:bf:93:87:a2:91: cf:cc:fe:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkYyRDExMC8GA1UEBRMoQUY2NzJEQThDNUQxRDZDODBENTA2MTc4QzlFN0NCNzQ0 RjZFMzhFNjAeFw0yNTA3MDIyMzE3MTlaFw0yNTA3MDkyMzE3MTlaMBgxFjAUBgNV BAMTDTY4NjViZGZmLWJhYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCa7zWkKSvpOSHJZ43F17MpAudvLD4C67w6kw/68YeHDJSffpV7cYsiu+krBXA hQC+teoVxijwbQr4crqpiWWT+qNezvAqbKbElcHDZUNNQPrc7Zccb758IgttbIUU C7vBuhWDqZwYpxYnbulzjiCR7P0l13+nNxd39c81sb8lq7uYxk3sWBxNXV8NY9Uv 3L+KAqtszxLlKPmXMLRq3JjI91Gj0UOw9OKD1P6JoNKcwRpRmojtVXOkX5d1moYM EeHvbsHcMmnqazG8D31Q8Go/zi6+oCKoBS6wuFEc1wdfBrtrxRJ3lHr+0rXBKf71 HuP9X9jvemef+lTOgxKzs62vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0rmBeAEP Usxph+LRJ5SQfLsSxRcwHwYDVR0jBBgwFoAUr2ctqMXR1sgNUGF4yefLdE9uOOYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjJELzZGODIxMTc4QUI4 ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNnTlVHRjR5ZWZMZEU5dU9P WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcjJjdHFNWFIxc2dOVUdGNHllZkxkRTl1T09ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjJELzZGODIxMTc4QUI4ODExRUY4MEM3NUE3NEM0RjlBRTAyL3IyY3RxTVhSMXNn TlVHRjR5ZWZMZEU5dU9PWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE2EDDO+DAJIiiJuQRVMmP3mON5zYINC+c7SBPP9ytTo99OAd03AJZ/9 yOFnjgXcgUQ6KPVrf3HzJlSb3QjDR7nnEy7AU7v2OFUB8JMRlNltJVl+nl6Pxi6z b949taNjpIZCuEqcNHgdkW0STaXJQeJIt/oAPo6LHtToKdczsWRSZnRA+a3WMNzn sC9zN8VV76Y1w1/d7e92nnzHtTrJgU3iOnYdaSqcl2s+U9QZzQOajK6PagXSCsyi MTSRk1xx7aOsTyexVQQJuaBN6Vf0IUflA5Y+9W8LGkvBBxVu7Jclb35uP/SnqNz3 cvYqAhm7jWHYqEy81Hy/k4eikc/M/h4= -----END CERTIFICATE-----Generated at Fri Jul 4 00:02:24 2025 by rpki-client