$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: NC1kyx8r7t7Mc1WMUGyfqf730LPQ/N/1yeFHVkUyhmY= Subject key identifier: F5:A4:0E:5D:89:C9:2B:86:11:D5:37:DE:6B:4B:3D:13:81:F6:30:3E Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 03EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 03E6 Signing time: Tue 01 Jul 2025 01:08:40 +0000 Manifest this update: Tue 01 Jul 2025 01:08:39 +0000 Manifest next update: Tue 08 Jul 2025 01:08:39 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: 9h4yWXFxUC0evAYkFJXy0FyksgZ/zOPdrfC0XRm26M8=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1006 (0x3ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: Jul 1 01:08:39 2025 GMT Not After : Jul 8 01:08:39 2025 GMT Subject: CN=68633518-c42f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5e:d9:5d:a5:5c:b3:d3:f7:04:81:a7:d4:75: 84:c9:b5:50:8e:2f:f8:5b:0a:7e:d1:18:0a:fd:09: 37:6c:52:0a:ec:42:52:ef:07:eb:a8:3b:97:2f:59: 9b:76:9b:17:e5:36:3e:fe:19:2d:ff:31:98:5b:9d: 16:b4:e3:03:7a:48:57:5e:c0:c3:f7:7c:ae:ca:80: 78:90:0b:9a:62:38:ac:c3:e4:30:85:32:34:45:ae: d3:51:56:a4:94:b3:bd:69:23:9f:33:70:8e:00:0c: 6b:32:40:cf:73:fc:0e:04:1c:b5:b7:63:ce:9e:91: 0e:b5:fe:ac:81:44:d1:af:38:12:88:94:d9:d0:d2: db:07:19:49:c0:88:a3:f7:6c:b8:28:6b:6d:08:e8: 03:ab:ac:2e:d4:5a:c2:65:c8:70:db:0d:b9:92:78: 63:d0:bc:9e:29:eb:14:96:56:3f:8e:8b:97:95:a7: 35:20:77:f9:f6:38:4b:cf:e7:53:d1:2e:9d:91:4e: dd:37:7f:55:6e:6d:af:a4:37:f8:4d:86:2c:22:d9: 11:ca:7c:56:e1:55:d3:e0:7f:0c:04:58:3f:40:83: 6c:08:ad:f0:bf:40:66:6b:ba:29:37:a6:52:42:a6: ab:31:94:1d:cf:18:94:fa:d9:ea:74:af:94:14:d0: 8a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A4:0E:5D:89:C9:2B:86:11:D5:37:DE:6B:4B:3D:13:81:F6:30:3E X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:42:4e:b7:e8:50:dc:72:84:d8:42:7e:2b:03:13:25:56:5c: 61:f6:f8:2c:17:21:7b:78:3b:36:b3:52:3f:89:57:b3:b6:ed: fb:7d:bf:47:cb:69:6d:7c:f6:78:bb:16:41:b1:f6:c4:3e:93: 2c:43:21:5a:f2:90:fd:ef:3c:7c:18:25:5d:4b:48:ae:4c:74: 40:ab:c3:ab:a3:7c:0b:9b:31:bc:9e:b0:3c:a4:69:e4:f3:eb: 22:b0:16:5c:0b:58:1f:3c:f5:85:4c:2a:24:22:40:d0:d8:46: 82:ce:a3:33:5e:ae:9e:6e:82:84:bf:c1:a3:b5:52:aa:51:fe: aa:0b:cb:9b:99:31:bb:77:f0:9b:aa:70:b4:a0:83:16:d5:72: 97:09:fb:89:e4:f7:26:3d:4e:7c:35:f6:d5:75:fc:26:17:eb: cb:cb:8d:f9:35:04:2b:c6:7f:03:a5:45:6b:16:2c:67:5c:b4: 8f:11:60:60:be:6f:dd:de:92:ba:27:a0:ed:b7:d4:5c:f2:5a: 62:fe:38:72:06:04:38:f8:52:62:16:24:6f:c6:45:96:69:a1: fe:b2:d7:91:76:e5:56:43:95:03:a9:8b:e1:12:62:03:51:ab: c8:a5:79:b8:25:f7:26:2e:f5:a2:66:e6:33:8b:64:a1:aa:ea: d4:fb:a7:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUwNzAxMDEwODM5WhcNMjUwNzA4MDEwODM5WjAYMRYwFAYD VQQDEw02ODYzMzUxOC1jNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu17ZXaVcs9P3BIGn1HWEybVQji/4Wwp+0RgK/Qk3bFIK7EJS7wfrqDuXL1mb dpsX5TY+/hkt/zGYW50WtOMDekhXXsDD93yuyoB4kAuaYjisw+QwhTI0Ra7TUVak lLO9aSOfM3COAAxrMkDPc/wOBBy1t2POnpEOtf6sgUTRrzgSiJTZ0NLbBxlJwIij 92y4KGttCOgDq6wu1FrCZchw2w25knhj0LyeKesUllY/jouXlac1IHf59jhLz+dT 0S6dkU7dN39Vbm2vpDf4TYYsItkRynxW4VXT4H8MBFg/QINsCK3wv0Bma7opN6ZS QqarMZQdzxiU+tnqdK+UFNCKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWkDl2J ySuGEdU33mtLPROB9jA+MB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Qk636FDccoTYQn4rAxMlVlxh9vgsFyF7eDs2s1I/iVeztu37fb9H y2ltfPZ4uxZBsfbEPpMsQyFa8pD97zx8GCVdS0iuTHRAq8Oro3wLmzG8nrA8pGnk 8+sisBZcC1gfPPWFTCokIkDQ2EaCzqMzXq6eboKEv8GjtVKqUf6qC8ubmTG7d/Cb qnC0oIMW1XKXCfuJ5PcmPU58NfbVdfwmF+vLy435NQQrxn8DpUVrFixnXLSPEWBg vm/d3pK6J6Dtt9Rc8lpi/jhyBgQ4+FJiFiRvxkWWaaH+steRduVWQ5UDqYvhEmID UavIpXm4JfcmLvWiZuYzi2ShqurU+6fh -----END CERTIFICATE-----Generated at Wed Jul 2 20:04:05 2025 by rpki-client