$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft File: rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft (raw, json) Hash identifier: xb7jAvliBIEtSVfwpYmrQ4+oA57F7evsG7rYlbHYY8s= Subject key identifier: 4E:3E:3A:35:82:64:37:6D:01:37:06:5E:EF:77:F9:B1:D2:7A:EF:34 Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 0403 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft Manifest number: 03F7 Signing time: Tue 01 Jul 2025 17:09:46 +0000 Manifest this update: Tue 01 Jul 2025 17:09:46 +0000 Manifest next update: Tue 08 Jul 2025 17:09:46 +0000 Files and hashes: 1: rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl (hash: LyX9FG1xCU1lu93S+jCkXFVcUzYIxIDdkTtn3RKW3z4=) 2: A98BD3DE91F211ECA28ADD36C4F9AE02.roa (hash: aC9p2yyQTb3Yh1HdZsc4PLjnJ/5VSg4x8HrvxdVV15Y=) 3: 2E82E686569E11F08015BC34C4F9AE02.roa (hash: X3/rru4+xefljKYMl46GF/bGOSAjEtyI1VDuB5H54Oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 17:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Jul 1 17:09:46 2025 GMT Not After : Jul 8 17:09:46 2025 GMT Subject: CN=6864165a-7a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:a7:79:07:f0:6b:06:20:57:02:b8:6f:ec: c2:3a:e9:8a:59:2b:ad:0d:b0:3d:95:75:26:63:e6: 85:51:a2:91:b5:5f:a2:7a:21:41:2e:e9:4b:9f:4b: 91:af:ca:16:04:13:c0:40:af:47:31:61:e9:2f:76: af:ad:a1:8a:13:da:9b:24:7c:30:e1:a7:f6:44:7e: a8:86:6c:49:b1:15:9c:52:da:38:77:e3:2e:94:cb: 32:40:d1:23:6a:a1:09:50:31:97:10:99:6d:5e:f9: 1e:e1:bd:8c:bd:96:d5:3f:a1:70:37:cd:e5:98:fb: 70:36:47:4a:61:dc:77:f4:ae:04:7b:81:29:15:8c: 50:79:b1:85:d4:1e:fb:9b:9e:cf:30:e9:62:6e:cc: bb:a2:8e:f1:36:f5:b8:56:c0:a3:12:53:7a:4d:db: 4b:9b:1f:9c:ea:f3:74:35:8b:b1:3b:ee:ea:64:4f: 50:5c:ad:52:21:17:92:d4:9d:8f:fa:ae:b5:38:42: ae:f3:f2:43:6c:0b:29:ba:b0:80:ad:96:49:42:b9: 3a:0a:5a:b8:6e:4d:2a:07:ab:fe:e0:a7:ba:13:ac: 04:22:2a:31:67:31:6f:0a:41:76:02:1c:21:1b:f0: af:7c:02:7c:b0:2d:93:1a:4e:a6:43:2c:3e:0a:f1: 45:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:3E:3A:35:82:64:37:6D:01:37:06:5E:EF:77:F9:B1:D2:7A:EF:34 X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:66:fc:c1:53:ba:ac:e4:94:fb:03:05:dd:30:ae:23:f5:b1: 1a:ce:78:0c:41:19:a0:15:0c:90:3b:bb:0c:40:15:61:f2:98: 31:da:cf:ff:34:87:ae:0b:bb:9b:fd:d8:1c:bc:be:02:c2:7b: f7:ba:c7:d1:fe:f2:67:e7:86:f9:4d:cc:af:4c:5d:f1:38:5f: 95:ec:64:19:5f:9d:3a:af:e4:01:54:65:b4:57:c9:1f:c1:9d: 84:89:40:1a:aa:86:ce:c5:93:41:4a:cb:3a:d5:9d:70:45:8a: 2f:50:db:e2:5a:19:99:bd:4f:18:8e:4d:59:ea:38:d5:19:a7: c2:6d:4a:7b:57:39:e0:b5:97:d0:b2:0c:19:f2:4b:e6:81:12: 06:01:58:10:76:c5:de:bf:84:92:f5:0e:31:4d:9d:84:ec:cd: 46:17:8c:1a:16:39:32:19:4c:6f:c7:7a:f6:46:ac:36:a2:08: 4e:11:3d:ab:2a:b4:4b:a2:8c:43:dd:40:dd:81:31:e7:a0:81: c5:d4:6b:10:12:de:6e:b6:51:2d:a8:d8:5f:cc:19:5e:7f:eb: f4:ce:78:bb:dc:6c:5d:c7:e4:7f:83:f6:d7:78:48:0d:22:3f: f2:5e:26:20:2e:a3:ff:a1:6f:c5:91:e9:9c:0e:68:57:f4:85: f9:e7:7c:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjUwNzAxMTcwOTQ2WhcNMjUwNzA4MTcwOTQ2WjAYMRYwFAYD VQQDEw02ODY0MTY1YS03YTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFWneQfwawYgVwK4b+zCOumKWSutDbA9lXUmY+aFUaKRtV+ieiFBLulLn0uR r8oWBBPAQK9HMWHpL3avraGKE9qbJHww4af2RH6ohmxJsRWcUto4d+MulMsyQNEj aqEJUDGXEJltXvke4b2MvZbVP6FwN83lmPtwNkdKYdx39K4Ee4EpFYxQebGF1B77 m57PMOlibsy7oo7xNvW4VsCjElN6TdtLmx+c6vN0NYuxO+7qZE9QXK1SIReS1J2P +q61OEKu8/JDbAspurCArZZJQrk6Clq4bk0qB6v+4Ke6E6wEIioxZzFvCkF2Ahwh G/CvfAJ8sC2TGk6mQyw+CvFFdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4+OjWC ZDdtATcGXu93+bHSeu80MB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODNCNC9FNzlFRDQ5MDgzRjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5 bUtlZzJwQlR2Q2NtOG1rRTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWZvzBU7qs5JT7AwXdMK4j9bEazngMQRmgFQyQO7sMQBVh8pgx2s// NIeuC7ub/dgcvL4Cwnv3usfR/vJn54b5TcyvTF3xOF+V7GQZX506r+QBVGW0V8kf wZ2EiUAaqobOxZNBSss61Z1wRYovUNviWhmZvU8Yjk1Z6jjVGafCbUp7VzngtZfQ sgwZ8kvmgRIGAVgQdsXev4SS9Q4xTZ2E7M1GF4waFjkyGUxvx3r2Rqw2oghOET2r KrRLooxD3UDdgTHnoIHF1GsQEt5utlEtqNhfzBlef+v0zni73Gxdx+R/g/bXeEgN Ij/yXiYgLqP/oW/FkemcDmhX9IX553yH -----END CERTIFICATE-----Generated at Wed Jul 2 20:15:09 2025 by rpki-client