$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft File: iWZCPuKkFWMfevMU5NiEAHqEaLY.mft (raw, json) Hash identifier: 3mhxdBPu31MQRwK02OC95oez3qkNBNwFnzR8yRmsy+s= Subject key identifier: F9:AB:4D:99:56:B5:D3:96:A7:C4:24:CA:74:B3:62:14:D8:7D:AF:CE Authority key identifier: 89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 Certificate issuer: /CN=A91A91CB/serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft Manifest number: 48 Signing time: Thu 03 Jul 2025 07:36:22 +0000 Manifest this update: Thu 03 Jul 2025 07:36:22 +0000 Manifest next update: Thu 10 Jul 2025 07:36:22 +0000 Files and hashes: 1: iWZCPuKkFWMfevMU5NiEAHqEaLY.crl (hash: ZdlRSXifuwBNWRbcEK9z+mPS18xAf+35gj3BxXNHXyo=) 2: 0EB302DCEA5B11EFABB07C6DC4F9AE02.roa (hash: gvmSDCYZSC63LrY5JrPQoisd5tgDkXkEX0SCy3pFzuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=8966423EE2A415631F7AF314E4D884007A8468B6 Validity Not Before: Jul 3 07:36:22 2025 GMT Not After : Jul 10 07:36:22 2025 GMT Subject: CN=686632f6-c9fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d1:f4:a6:0b:4e:b9:0c:7b:ef:c1:18:70:97: 82:6f:bf:b4:7e:84:54:fd:d2:eb:e3:5f:a7:09:f9: 6e:df:6e:44:c6:17:70:51:52:3b:8e:ec:6e:69:81: e1:66:a2:4c:8a:31:43:b4:e6:6c:a5:c2:6d:9a:eb: 3a:e7:72:87:41:ed:91:3d:ce:05:79:d1:93:50:1d: 8e:e5:fb:0d:ae:e6:d0:c7:4a:08:45:b4:09:d3:c7: 6e:19:38:32:00:97:96:3d:e1:dc:5a:d1:59:b3:21: 8e:7a:53:60:a3:81:6b:9a:a5:17:d9:a4:1c:29:0b: 18:97:ad:a6:8c:fa:5d:89:0a:60:86:74:a4:e7:8c: 71:c2:e8:5e:d6:25:74:ed:de:f3:0b:e1:6c:8c:04: 96:f8:29:20:76:08:32:04:f5:71:ea:f6:10:17:d9: f1:37:dc:e7:c5:4d:df:85:b7:dd:dc:af:ad:e0:df: 27:d1:0b:37:57:cb:29:8d:d3:cf:83:aa:4b:fc:ef: 11:02:f6:d4:d4:c8:2b:bb:91:3e:15:f8:32:e7:c8: b7:a1:c7:3b:ad:84:c9:1a:f1:b4:9e:89:31:c1:36: 6d:47:af:76:95:c1:63:39:7d:99:53:8e:b4:cc:7d: f1:4c:74:35:b8:b4:de:83:bd:20:78:b3:38:48:2b: b2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AB:4D:99:56:B5:D3:96:A7:C4:24:CA:74:B3:62:14:D8:7D:AF:CE X509v3 Authority Key Identifier: keyid:89:66:42:3E:E2:A4:15:63:1F:7A:F3:14:E4:D8:84:00:7A:84:68:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iWZCPuKkFWMfevMU5NiEAHqEaLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/650E600AEA5A11EFB84AE468C4F9AE02/iWZCPuKkFWMfevMU5NiEAHqEaLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:6f:0a:0e:90:c8:16:8b:e8:12:b1:13:42:9b:60:8b:31:5f: 19:01:9e:38:b5:08:27:c1:bf:49:a3:7c:68:a2:5f:79:36:a5: 56:5d:78:22:94:45:0c:fa:f8:29:97:87:28:9f:5b:58:66:6f: e8:56:cf:35:61:d5:f6:ff:c5:63:09:c6:9c:75:82:1c:16:c8: 7a:8b:e1:57:26:7b:ae:9a:70:64:bd:5a:04:01:e1:77:8c:84: 9f:35:2f:e2:55:ae:70:da:7c:de:28:b3:d5:13:c4:a8:de:b7: 07:cd:65:6b:28:2b:aa:3e:26:aa:00:0f:91:8a:61:c8:87:0c: 24:54:42:a1:9e:56:bb:23:d6:eb:d0:d3:a6:de:66:ef:b3:f1: 89:9e:af:d7:b3:b5:05:16:c4:15:d0:95:a9:13:44:6b:e6:a3: ee:ba:63:be:d8:39:7e:38:c2:62:7a:7e:97:b8:da:ea:84:5a: cd:c0:12:be:05:ab:a5:a9:40:69:fc:9e:7e:81:d5:f6:47:6e: 79:f5:67:70:f9:6b:6f:31:df:29:d0:ff:43:b9:69:70:c1:71: 84:e4:7c:77:a1:ff:04:28:8d:32:df:fb:ad:12:21:34:6d:43: 36:7a:23:03:60:0b:65:de:ce:8e:16:6a:2a:33:e8:ed:57:3b: f5:13:ad:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoODk2NjQyM0VFMkE0MTU2MzFGN0FGMzE0RTREODg0MDA3 QTg0NjhCNjAeFw0yNTA3MDMwNzM2MjJaFw0yNTA3MTAwNzM2MjJaMBgxFjAUBgNV BAMTDTY4NjYzMmY2LWM5ZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDA0fSmC065DHvvwRhwl4Jvv7R+hFT90uvjX6cJ+W7fbkTGF3BRUjuO7G5pgeFm okyKMUO05mylwm2a6zrncodB7ZE9zgV50ZNQHY7l+w2u5tDHSghFtAnTx24ZODIA l5Y94dxa0VmzIY56U2CjgWuapRfZpBwpCxiXraaM+l2JCmCGdKTnjHHC6F7WJXTt 3vML4WyMBJb4KSB2CDIE9XHq9hAX2fE33OfFTd+Ft93cr63g3yfRCzdXyymN08+D qkv87xEC9tTUyCu7kT4V+DLnyLehxzuthMka8bSeiTHBNm1Hr3aVwWM5fZlTjrTM ffFMdDW4tN6DvSB4szhIK7KlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+atNmVa1 05anxCTKdLNiFNh9r84wHwYDVR0jBBgwFoAUiWZCPuKkFWMfevMU5NiEAHqEaLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzY1MEU2MDBBRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldNZmV2TVU1TmlFQUhxRWFM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVdaQ1B1S2tGV01mZXZNVTVOaUVBSHFFYUxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzY1MEU2MDBBRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL2lXWkNQdUtrRldN ZmV2TVU1TmlFQUhxRWFMWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKZvCg6QyBaL6BKxE0KbYIsxXxkBnji1CCfBv0mjfGiiX3k2pVZdeCKU RQz6+CmXhyifW1hmb+hWzzVh1fb/xWMJxpx1ghwWyHqL4Vcme66acGS9WgQB4XeM hJ81L+JVrnDafN4os9UTxKjetwfNZWsoK6o+JqoAD5GKYciHDCRUQqGeVrsj1uvQ 06beZu+z8Ymer9eztQUWxBXQlakTRGvmo+66Y77YOX44wmJ6fpe42uqEWs3AEr4F q6WpQGn8nn6B1fZHbnn1Z3D5a28x3ynQ/0O5aXDBcYTkfHeh/wQojTLf+60SITRt QzZ6IwNgC2Xezo4Waioz6O1XO/UTraU= -----END CERTIFICATE-----Generated at Sat Jul 5 05:46:06 2025 by rpki-client