$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: YH3gTDg8ueTWoLMiRYYCWRBDqkrozwNp2oEAEAdrIVE= Subject key identifier: 38:DB:9B:3C:59:C2:DF:47:C4:17:8A:08:F2:38:A8:97:A9:9C:72:66 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07BD Signing time: Fri 04 Jul 2025 21:30:49 +0000 Manifest this update: Fri 04 Jul 2025 21:30:48 +0000 Manifest next update: Fri 11 Jul 2025 21:30:48 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: Oel+Eo3evpmhvbpwvXP8IRJCkPeum/hyvEt+fThlwEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1981 (0x7bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Jul 4 21:30:48 2025 GMT Not After : Jul 11 21:30:48 2025 GMT Subject: CN=68684809-f7b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0e:d4:e0:f3:74:9b:a2:ee:16:d2:2f:9e:de: ea:4f:c8:d5:36:48:70:9b:16:fe:cb:15:46:1e:d0: b3:cc:1b:69:d5:08:1c:59:18:1d:a3:dd:9e:4a:e6: 3c:41:31:3e:5e:ed:ed:50:30:dd:04:17:5a:c6:c0: 54:dc:8e:e2:86:b3:6b:73:e2:5b:9e:f0:f0:39:5c: 58:de:d9:d2:fa:fc:a1:53:fd:52:82:bb:19:93:9b: 18:22:21:80:33:32:0d:dc:ea:3a:4e:3f:12:1d:34: b2:6b:b1:4a:8c:14:2f:bf:75:99:6e:de:15:94:39: fb:ed:64:33:52:d5:81:29:78:22:65:33:2f:3a:f5: c8:33:c9:fb:ff:a4:5a:8a:0a:25:8a:38:2a:ad:57: 00:fe:65:75:f2:36:4d:0e:49:2f:ad:51:80:19:77: a8:da:c5:c3:8d:7a:c8:8a:80:68:30:2b:89:76:49: 1d:48:09:88:84:3b:a3:9f:a1:fe:ea:12:6f:cb:6e: 24:eb:96:0a:a0:c8:26:8e:d5:b8:21:d0:ff:75:01: f4:1d:6a:e5:bf:d7:9c:b3:16:7a:cd:d5:fd:ab:ae: d7:94:5a:53:41:4e:ef:0f:fe:c0:2a:a6:4f:78:d1: ac:d6:3f:cf:8d:9b:2d:1d:3d:41:9d:de:c6:9a:14: e8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DB:9B:3C:59:C2:DF:47:C4:17:8A:08:F2:38:A8:97:A9:9C:72:66 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:17:90:95:8b:3a:f5:cc:be:b5:35:8c:4f:7f:9e:29:29:60: 9a:85:4d:11:31:3b:f1:60:cf:4c:9f:96:b2:7c:fe:3f:dd:aa: 4a:80:4b:2e:c0:b2:ab:c7:4a:14:71:8a:c4:b5:db:88:e8:b9: b7:45:34:fe:ce:30:f8:31:03:b0:37:75:b4:bd:06:3a:0c:8a: 68:24:82:da:bd:e9:4a:3e:09:8e:ad:ca:5d:2a:96:d5:10:37: 04:8c:ee:65:d3:6c:9b:ca:e7:fd:88:d1:ab:94:2f:d5:45:84: a3:88:54:0e:d3:c8:c0:e9:75:ef:9e:66:56:a0:8a:29:a3:35: a4:88:7a:60:52:06:9d:07:ed:f0:69:89:b0:d2:1a:f0:8e:2d: 29:de:e2:a6:be:de:bc:f7:1e:3e:74:8e:93:76:86:af:f0:ae: a8:27:6b:73:2f:86:68:61:9a:07:c4:c5:65:04:b1:51:d1:0a: 99:48:12:c9:5e:fa:d7:7c:7e:23:d8:46:d0:a4:c7:6f:aa:18: 92:fb:d2:47:1c:13:21:22:a5:00:fe:d4:a7:d2:13:3b:b3:82: 12:0e:ec:39:22:11:dc:8e:95:b7:33:9d:28:b6:14:c5:ed:4d: bd:6b:b4:2c:3b:fa:75:a3:fb:ae:6d:90:4a:5d:a0:b3:97:f4: 01:8c:82:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUwNzA0MjEzMDQ4WhcNMjUwNzExMjEzMDQ4WjAYMRYwFAYD VQQDEw02ODY4NDgwOS1mN2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ7U4PN0m6LuFtIvnt7qT8jVNkhwmxb+yxVGHtCzzBtp1QgcWRgdo92eSuY8 QTE+Xu3tUDDdBBdaxsBU3I7ihrNrc+JbnvDwOVxY3tnS+vyhU/1SgrsZk5sYIiGA MzIN3Oo6Tj8SHTSya7FKjBQvv3WZbt4VlDn77WQzUtWBKXgiZTMvOvXIM8n7/6Ra igolijgqrVcA/mV18jZNDkkvrVGAGXeo2sXDjXrIioBoMCuJdkkdSAmIhDujn6H+ 6hJvy24k65YKoMgmjtW4IdD/dQH0HWrlv9ecsxZ6zdX9q67XlFpTQU7vD/7AKqZP eNGs1j/PjZstHT1Bnd7GmhTo1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjbmzxZ wt9HxBeKCPI4qJepnHJmMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQF5CVizr1zL61NYxPf54pKWCahU0RMTvxYM9Mn5ayfP4/3apKgEsu wLKrx0oUcYrEtduI6Lm3RTT+zjD4MQOwN3W0vQY6DIpoJILavelKPgmOrcpdKpbV EDcEjO5l02ybyuf9iNGrlC/VRYSjiFQO08jA6XXvnmZWoIopozWkiHpgUgadB+3w aYmw0hrwji0p3uKmvt689x4+dI6Tdoav8K6oJ2tzL4ZoYZoHxMVlBLFR0QqZSBLJ XvrXfH4j2EbQpMdvqhiS+9JHHBMhIqUA/tSn0hM7s4ISDuw5IhHcjpW3M50othTF 7U29a7QsO/p1o/uubZBKXaCzl/QBjILZ -----END CERTIFICATE-----Generated at Sat Jul 5 08:18:50 2025 by rpki-client