$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: Ni0UJ/IpV+re8s8gDgYJGWG1zMrJ2LZTc+yknMoBXRM= Subject key identifier: 01:90:9F:A6:F9:2C:5D:E1:A5:C0:F4:F6:A7:D0:8C:E5:F8:89:C8:EB Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 03A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 03A5 Signing time: Thu 03 Jul 2025 01:06:13 +0000 Manifest this update: Thu 03 Jul 2025 01:06:13 +0000 Manifest next update: Thu 10 Jul 2025 01:06:13 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: FkNHGTmmXxtmMWYYZpRSUp1oOD5jxyQdCs521kIVv1k=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: IKsBlPoiBaV1Y/8FMivKysodYXv24LUe7kGHbrSaUFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 937 (0x3a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A, serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Jul 3 01:06:13 2025 GMT Not After : Jul 10 01:06:13 2025 GMT Subject: CN=6865d785-bd7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3b:f4:ef:76:33:3f:59:98:24:a4:e0:e1:32: 54:dc:37:0b:06:ca:08:9c:52:b8:04:30:b9:9d:69: 29:9d:4d:a4:7a:f0:83:ac:0d:03:25:ea:58:e2:b4: 56:0c:51:c7:ee:79:0f:b4:46:90:20:de:48:2e:e6: 83:a2:db:ea:e9:ae:4c:e8:d1:bf:6e:c1:f2:cb:0e: 0f:f8:a0:74:4a:6a:47:99:45:b0:34:6b:41:17:d3: bb:27:53:3d:e3:3e:73:4c:88:f4:d2:20:5f:8a:e5: ab:eb:f0:2d:35:29:5d:eb:e4:d1:1b:e2:40:a5:1b: ff:27:ee:67:b7:09:f3:8d:a8:21:6c:69:1c:50:b4: 97:89:06:e8:e8:b7:c4:34:93:13:4b:1b:74:76:df: f7:b4:79:4a:12:35:f1:ae:8a:f9:f6:fc:2d:30:0a: 80:ec:69:a2:2d:bd:c1:77:29:7f:e0:d1:a6:38:3e: c5:cc:44:06:32:e9:5d:7c:23:14:7c:b5:ca:86:02: be:40:e7:88:84:5a:a5:32:83:19:a4:6f:e7:bc:bf: f0:30:38:61:f2:cd:5b:07:f1:00:c8:05:dc:d7:52: 85:a8:c8:90:c1:84:ef:24:ef:72:d3:be:75:eb:92: b2:66:66:b3:e2:09:a1:82:45:90:06:be:94:d2:15: 6f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:90:9F:A6:F9:2C:5D:E1:A5:C0:F4:F6:A7:D0:8C:E5:F8:89:C8:EB X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:f1:c5:64:38:e3:c1:12:c6:0c:97:83:53:34:9d:25:dd:1c: c2:43:05:d9:82:c4:3e:d0:bc:3e:06:cf:54:4e:a3:ce:4b:c8: 27:74:c9:d8:88:20:19:63:9d:a5:07:c6:85:bb:85:52:7a:4d: 93:51:fd:58:ea:a4:73:78:71:7d:8b:ce:c5:66:6d:ad:bc:5a: 95:b0:56:35:ec:45:79:22:cc:2a:de:f2:74:c7:f6:7f:90:4b: 1f:09:16:fb:be:7a:66:fa:70:33:12:a3:70:83:c6:f5:48:79: 0a:e1:89:9e:3e:40:c6:ca:27:8b:d5:b8:27:ba:98:48:5a:08: 62:1b:65:11:66:5d:20:61:01:2a:52:4d:94:c3:0f:a8:ab:a4: 0a:31:d2:44:2e:e7:83:44:4e:e7:98:86:5d:af:4d:12:d2:74: 21:40:4b:41:e3:6f:84:6a:25:a8:dc:42:8f:2c:8c:ab:7a:1c: 4c:80:4d:2f:b4:9b:2f:98:a9:4d:64:76:48:93:5c:44:03:b9: 3d:9f:d9:14:66:f5:3e:ce:68:a1:d7:9d:0e:a3:64:d9:4d:28: d1:07:0d:33:65:54:c2:c5:6a:55:39:3f:1d:42:ba:23:0a:ce: 0b:47:87:4a:7b:11:a7:dd:c5:04:fe:70:6e:2a:f2:d6:15:76: 9d:6a:89:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjUwNzAzMDEwNjEzWhcNMjUwNzEwMDEwNjEzWjAYMRYwFAYD VQQDEw02ODY1ZDc4NS1iZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dv073YzP1mYJKTg4TJU3DcLBsoInFK4BDC5nWkpnU2kevCDrA0DJepY4rRW DFHH7nkPtEaQIN5ILuaDotvq6a5M6NG/bsHyyw4P+KB0SmpHmUWwNGtBF9O7J1M9 4z5zTIj00iBfiuWr6/AtNSld6+TRG+JApRv/J+5ntwnzjaghbGkcULSXiQbo6LfE NJMTSxt0dt/3tHlKEjXxror59vwtMAqA7GmiLb3Bdyl/4NGmOD7FzEQGMuldfCMU fLXKhgK+QOeIhFqlMoMZpG/nvL/wMDhh8s1bB/EAyAXc11KFqMiQwYTvJO9y0751 65KyZmaz4gmhgkWQBr6U0hVv3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGQn6b5 LF3hpcD09qfQjOX4icjrMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB58cVkOOPBEsYMl4NTNJ0l3RzCQwXZgsQ+0Lw+Bs9UTqPOS8gndMnY iCAZY52lB8aFu4VSek2TUf1Y6qRzeHF9i87FZm2tvFqVsFY17EV5Iswq3vJ0x/Z/ kEsfCRb7vnpm+nAzEqNwg8b1SHkK4YmePkDGyieL1bgnuphIWghiG2URZl0gYQEq Uk2Uww+oq6QKMdJELueDRE7nmIZdr00S0nQhQEtB42+EaiWo3EKPLIyrehxMgE0v tJsvmKlNZHZIk1xEA7k9n9kUZvU+zmih150Oo2TZTSjRBw0zZVTCxWpVOT8dQroj Cs4LR4dKexGn3cUE/nBuKvLWFXadaolZ -----END CERTIFICATE-----Generated at Thu Jul 3 07:11:07 2025 by rpki-client