$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: hSbK09ClL9aQvHIaP3lGsh4WecWA9HNWM420Kr97Y9M= Subject key identifier: 40:E1:12:F8:02:6E:EC:63:29:E8:3B:8D:08:0B:02:D2:05:34:2B:D6 Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 3B Signing time: Tue 01 Jul 2025 08:23:08 +0000 Manifest this update: Tue 01 Jul 2025 08:23:07 +0000 Manifest next update: Tue 08 Jul 2025 08:23:07 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: eJLLGeRIDSBJEJy4cq5xbSLQEpbO8wNkL1nhMLKGWWs=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Jul 1 08:23:07 2025 GMT Not After : Jul 8 08:23:07 2025 GMT Subject: CN=68639aeb-3588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0c:be:e0:43:ea:d6:04:3e:19:9b:b4:a3:7a: b6:b8:06:eb:df:d8:ca:cc:b5:70:0e:f5:ea:eb:28: 53:98:f1:19:2b:03:ec:e8:f2:9a:f7:44:22:35:c7: 1b:9e:3f:2f:68:94:1e:90:18:7a:46:59:0e:ef:53: 0b:52:37:1f:43:78:d7:25:12:ea:3a:db:47:be:5d: 3c:7b:c0:df:12:a1:79:de:b3:4c:80:76:60:80:5a: fc:63:c7:65:cb:76:1f:36:3d:44:ea:d5:c6:67:b1: 0f:52:61:41:a4:6b:02:44:5e:09:1f:fb:c8:ef:20: 85:7c:0d:81:5b:0c:34:a7:fb:2d:ce:2b:3a:33:68: 9a:90:eb:67:1a:3d:21:ca:0e:80:b1:bc:6c:19:aa: ae:7e:2f:7d:93:e7:bf:cd:52:ef:0d:9d:1a:fe:ea: 72:1d:a1:f3:0b:90:8e:35:03:8d:a8:70:53:2a:05: 91:62:72:3a:c4:ae:c7:93:00:e9:9d:8f:4f:41:df: 97:ae:36:59:3f:10:08:af:29:62:e5:de:23:3b:77: 3c:2a:20:5d:72:68:a6:33:8f:c0:97:f1:e8:70:16: 80:51:67:03:e9:9f:2f:ee:71:39:7c:94:2b:91:4a: 2e:80:53:82:8c:e1:38:9a:17:a8:10:0b:96:cf:b8: 8e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E1:12:F8:02:6E:EC:63:29:E8:3B:8D:08:0B:02:D2:05:34:2B:D6 X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:b4:a2:07:3d:62:13:07:db:99:88:f5:95:13:ca:6c:41:49: c0:f8:75:ca:38:52:2c:b8:98:45:50:48:39:f3:cc:ef:35:44: f4:9a:71:33:57:43:fe:c4:f0:de:f5:86:a1:a6:a7:b6:e2:eb: 9b:9b:cf:9d:7b:fb:d6:ff:a3:c2:e3:e3:45:9e:cb:71:07:6f: 15:69:cb:56:cb:e8:65:f7:fb:ab:db:92:d7:9e:20:b4:f9:f2: 71:81:66:8d:4f:a9:04:d9:33:ea:48:5b:07:ac:55:e7:3c:f5: 96:da:fd:ec:2b:0c:ce:fa:16:57:8d:33:ec:9f:ea:43:24:71: fe:a6:44:8b:51:f5:51:63:a3:35:49:27:c2:5a:03:69:0e:9f: 8c:34:9a:e2:cf:ac:2a:ed:4e:eb:97:80:3a:25:d3:09:a6:1a: be:db:c7:9d:dc:1b:2e:78:38:f6:97:24:82:61:75:a4:8b:4f: e3:68:eb:15:4e:b7:e4:0d:de:65:fb:1f:44:4f:07:0e:26:13: 26:c6:3b:6b:fa:ea:5f:69:46:f6:fb:01:d5:b0:72:a6:ad:8c: 34:ce:3a:6c:5a:2b:d0:de:89:59:6e:72:52:f6:ae:ce:66:24: 2e:b2:a0:72:0c:6d:e7:1d:d9:bd:86:72:cc:f3:86:0f:04:7a: df:f3:6b:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA3MDEwODIzMDdaFw0yNTA3MDgwODIzMDdaMBgxFjAUBgNV BAMTDTY4NjM5YWViLTM1ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgDL7gQ+rWBD4Zm7Sjera4Buvf2MrMtXAO9errKFOY8RkrA+zo8pr3RCI1xxue Py9olB6QGHpGWQ7vUwtSNx9DeNclEuo620e+XTx7wN8SoXnes0yAdmCAWvxjx2XL dh82PUTq1cZnsQ9SYUGkawJEXgkf+8jvIIV8DYFbDDSn+y3OKzozaJqQ62caPSHK DoCxvGwZqq5+L32T57/NUu8NnRr+6nIdofMLkI41A42ocFMqBZFicjrErseTAOmd j09B35euNlk/EAivKWLl3iM7dzwqIF1yaKYzj8CX8ehwFoBRZwPpny/ucTl8lCuR Si6AU4KM4TiaF6gQC5bPuI6/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQOES+AJu 7GMp6DuNCAsC0gU0K9YwHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFi0ogc9YhMH25mI9ZUTymxBScD4dco4Uiy4mEVQSDnzzO81RPSacTNX Q/7E8N71hqGmp7bi65ubz517+9b/o8Lj40Wey3EHbxVpy1bL6GX3+6vbkteeILT5 8nGBZo1PqQTZM+pIWwesVec89Zba/ewrDM76FleNM+yf6kMkcf6mRItR9VFjozVJ J8JaA2kOn4w0muLPrCrtTuuXgDol0wmmGr7bx53cGy54OPaXJIJhdaSLT+No6xVO t+QN3mX7H0RPBw4mEybGO2v66l9pRvb7AdWwcqatjDTOOmxaK9DeiVluclL2rs5m JC6yoHIMbecd2b2Gcszzhg8Eet/zazk= -----END CERTIFICATE-----Generated at Thu Jul 3 03:52:51 2025 by rpki-client