$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: b2etPIlqb7OWLt4E4JgrZlPLo/NIXoz/nMYwCqGr2DI= Subject key identifier: 96:5F:81:1F:F7:18:F6:D5:E5:F7:77:88:70:E9:31:6E:66:B1:48:23 Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 0286 Signing time: Thu 03 Jul 2025 02:03:51 +0000 Manifest this update: Thu 03 Jul 2025 02:03:51 +0000 Manifest next update: Thu 10 Jul 2025 02:03:51 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: 2h5YHOVcylI3lSZNkospJTbqdygxKtke81SiZvRrcaA=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Jul 3 02:03:51 2025 GMT Not After : Jul 10 02:03:51 2025 GMT Subject: CN=6865e507-bf0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:33:69:58:80:cd:c0:f8:ee:61:8e:6b:a9:7e: f2:b5:a2:8b:14:0f:48:50:61:46:98:af:68:ab:8d: 82:ff:dc:62:c6:11:d2:e5:04:4d:82:eb:39:95:ea: 74:94:b1:c9:ed:84:4b:a8:75:3a:e9:ad:9b:0e:b4: c3:ba:1f:da:eb:b3:46:be:ff:cf:57:8a:60:03:b6: 42:fc:7f:c7:4f:5d:d3:42:ca:fe:9a:3d:f4:b8:db: ed:db:32:3f:88:4c:7d:30:aa:26:a2:90:5e:56:23: 6c:83:49:b9:bd:db:c8:8c:f5:88:93:da:85:70:1b: f2:fc:0a:b3:47:26:0b:06:3a:63:76:49:ed:49:3b: dd:00:82:c9:d8:8d:d6:97:bc:d4:ca:2c:2a:89:8f: 07:64:2b:9b:72:36:e6:fd:f1:8d:89:aa:65:e3:26: 64:61:89:b3:52:04:57:f2:3e:0c:14:76:c7:37:df: 3d:3e:1d:e2:c5:dd:ce:2c:40:d9:d5:da:08:d6:81: 9e:d2:93:9f:55:f6:a4:7c:5b:69:9c:2b:b3:18:4f: e7:ec:1f:5b:1b:a2:cf:38:17:5c:2b:db:f8:64:5a: 0a:1d:33:72:5f:c5:67:40:af:dc:21:ef:74:b9:a9: 31:94:8e:cc:51:c2:be:a0:12:f5:d0:f7:1d:3b:1d: 21:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5F:81:1F:F7:18:F6:D5:E5:F7:77:88:70:E9:31:6E:66:B1:48:23 X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c7:e7:59:90:75:81:57:f2:7f:9d:08:e7:57:6f:f4:ab:39: 81:b0:0a:50:08:49:23:d0:8c:57:33:6e:90:56:d6:63:3b:57: 87:ba:be:a0:77:46:b5:8c:5c:3d:99:68:4f:6d:41:ac:b1:38: 1a:59:5d:33:71:37:8b:c4:d7:86:55:42:0b:6f:73:ab:1f:70: 2a:62:09:11:89:fa:29:63:8a:04:41:82:fb:23:a8:53:71:47: 56:c3:a0:6d:cd:71:a4:ce:ad:ab:c1:4c:66:30:26:92:56:b8: 7e:57:51:83:a1:1d:2b:5e:00:64:4e:73:bc:6f:fa:77:f1:8d: e1:70:95:b3:da:18:ff:17:42:08:93:dd:40:4c:8f:d8:43:66: 4e:0a:24:20:fa:81:ba:14:93:5d:42:77:98:35:aa:ca:ae:2f: a5:e1:84:ae:84:e7:7c:49:99:a5:0e:fd:48:76:96:0c:05:24: 90:ab:bf:e6:cd:b2:d8:0f:b4:02:54:f1:38:cb:a5:9a:d5:32: 4a:ec:90:13:33:11:ce:0c:ee:d2:a7:d2:08:6f:50:bb:09:b5: c7:fa:b5:c2:b4:00:a0:9f:30:a2:87:be:cf:be:51:3f:53:3f: 91:22:93:76:c4:fb:ad:86:61:8b:49:82:77:b2:a0:28:42:6d: d2:77:73:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUwNzAzMDIwMzUxWhcNMjUwNzEwMDIwMzUxWjAYMRYwFAYD VQQDEw02ODY1ZTUwNy1iZjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozNpWIDNwPjuYY5rqX7ytaKLFA9IUGFGmK9oq42C/9xixhHS5QRNgus5lep0 lLHJ7YRLqHU66a2bDrTDuh/a67NGvv/PV4pgA7ZC/H/HT13TQsr+mj30uNvt2zI/ iEx9MKomopBeViNsg0m5vdvIjPWIk9qFcBvy/AqzRyYLBjpjdkntSTvdAILJ2I3W l7zUyiwqiY8HZCubcjbm/fGNiapl4yZkYYmzUgRX8j4MFHbHN989Ph3ixd3OLEDZ 1doI1oGe0pOfVfakfFtpnCuzGE/n7B9bG6LPOBdcK9v4ZFoKHTNyX8VnQK/cIe90 uakxlI7MUcK+oBL10PcdOx0h1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZfgR/3 GPbV5fd3iHDpMW5msUgjMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0x+dZkHWBV/J/nQjnV2/0qzmBsApQCEkj0IxXM26QVtZjO1eHur6g d0a1jFw9mWhPbUGssTgaWV0zcTeLxNeGVUILb3OrH3AqYgkRifopY4oEQYL7I6hT cUdWw6BtzXGkzq2rwUxmMCaSVrh+V1GDoR0rXgBkTnO8b/p38Y3hcJWz2hj/F0II k91ATI/YQ2ZOCiQg+oG6FJNdQneYNarKri+l4YSuhOd8SZmlDv1IdpYMBSSQq7/m zbLYD7QCVPE4y6Wa1TJK7JATMxHODO7Sp9IIb1C7CbXH+rXCtACgnzCih77PvlE/ Uz+RIpN2xPuthmGLSYJ3sqAoQm3Sd3OC -----END CERTIFICATE-----Generated at Thu Jul 3 06:01:18 2025 by rpki-client