$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: bCaSr5rvaiJvkUDukaN/EVkcPrtfxWsBLwJAZf5O5Ks= Subject key identifier: 7E:B9:A0:93:07:A1:A3:01:D6:EA:97:D9:15:82:9B:87:DF:BC:CC:1C Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 066A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 0665 Signing time: Mon 30 Jun 2025 22:47:38 +0000 Manifest this update: Mon 30 Jun 2025 22:47:37 +0000 Manifest next update: Mon 07 Jul 2025 22:47:37 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: 09IYVkwacq0o9EPxSnaGNGtUlcNelfTuHGLn5DL5NUE=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Jun 30 22:47:37 2025 GMT Not After : Jul 7 22:47:37 2025 GMT Subject: CN=6863140a-9491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:34:3f:d0:c1:3c:5d:26:42:08:af:1c:c1: 55:91:59:44:dc:0e:e9:43:79:16:32:2e:3c:a3:28: 47:fd:c9:c4:29:6e:cf:79:0c:88:a2:4a:c2:91:83: 4e:4f:e6:71:32:e5:58:f0:31:2a:7c:b3:3d:31:4a: f1:f2:43:27:6d:e6:ca:71:06:7c:0a:c8:37:bf:7b: 8a:fc:dc:9b:58:5d:49:db:6d:bc:7d:13:54:83:db: af:4e:21:7e:c6:65:9b:f6:98:40:1b:6f:e3:4a:51: fd:2e:f4:2d:65:83:ca:bf:5b:bf:b5:13:8c:68:2a: 47:05:4c:42:bc:ec:60:7e:b0:8f:51:ed:52:3b:cb: 7b:4c:47:9b:cc:7b:96:37:cd:55:f0:a5:e9:57:c3: 94:8c:2e:cd:9a:39:66:ac:ce:7d:43:c6:5a:0a:19: cb:21:39:9c:7a:b6:3a:d0:11:74:e8:7a:df:a6:01: 29:9f:65:e0:89:75:dc:a4:c2:10:42:a6:34:1c:7b: 5b:2d:14:a3:c3:a1:15:4f:b1:50:18:a5:49:f7:77: 59:ae:e1:33:b3:43:20:35:ff:c7:1b:2e:80:13:cc: e6:c1:de:e2:86:b6:79:e2:ec:f5:01:2a:6a:b6:5e: e6:47:ed:00:6e:4c:72:b5:5b:01:86:c2:da:41:9d: eb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B9:A0:93:07:A1:A3:01:D6:EA:97:D9:15:82:9B:87:DF:BC:CC:1C X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:50:61:f0:43:2b:ba:50:eb:77:2c:2e:55:10:ca:37:b0:dc: 45:bc:3e:ef:d3:15:06:8b:7d:f5:22:71:13:6f:0f:ac:3e:d4: 0b:af:66:a1:ca:41:0b:be:18:6c:e6:63:ab:cc:5b:f5:96:b9: 64:92:02:ae:a8:f0:92:01:c0:34:e3:70:de:a4:a3:bb:7b:c7: 8b:a1:0d:b1:9a:e5:02:eb:b2:a9:3a:ac:0f:4d:e2:6e:dc:e9: 9f:c8:03:5e:52:ce:a1:d3:7c:9b:d4:31:fb:af:51:e6:80:21: 45:d2:9a:95:f0:96:0f:16:13:bc:25:b8:21:b9:6f:6e:8a:55: 46:ad:fd:e1:b7:97:b1:eb:cc:e9:ba:04:7c:d1:04:c3:37:86: bf:54:1b:18:13:e8:a1:b3:12:1c:53:12:7c:3e:fa:12:9f:aa: 7f:ef:c5:92:3c:3b:07:0f:33:e6:2a:22:b3:c9:36:a2:55:69: 68:6d:6c:e0:53:ce:56:de:72:ec:cd:6a:c4:f4:84:88:52:28: f2:18:56:94:36:4a:01:1c:54:69:82:7c:15:c2:33:1a:ef:31: 09:e5:ac:2c:08:3b:80:c7:b2:dc:ef:90:d8:7f:10:7f:15:1f: 94:33:e6:40:05:78:68:26:74:0a:49:9c:e0:98:02:22:06:fc: 50:d3:d8:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUwNjMwMjI0NzM3WhcNMjUwNzA3MjI0NzM3WjAYMRYwFAYD VQQDEw02ODYzMTQwYS05NDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG40P9DBPF0mQgivHMFVkVlE3A7pQ3kWMi48oyhH/cnEKW7PeQyIokrCkYNO T+ZxMuVY8DEqfLM9MUrx8kMnbebKcQZ8Csg3v3uK/NybWF1J2228fRNUg9uvTiF+ xmWb9phAG2/jSlH9LvQtZYPKv1u/tROMaCpHBUxCvOxgfrCPUe1SO8t7TEebzHuW N81V8KXpV8OUjC7NmjlmrM59Q8ZaChnLITmcerY60BF06HrfpgEpn2XgiXXcpMIQ QqY0HHtbLRSjw6EVT7FQGKVJ93dZruEzs0MgNf/HGy6AE8zmwd7ihrZ54uz1ASpq tl7mR+0AbkxytVsBhsLaQZ3rEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH65oJMH oaMB1uqX2RWCm4ffvMwcMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATUGHwQyu6UOt3LC5VEMo3sNxFvD7v0xUGi331InETbw+sPtQLr2ah ykELvhhs5mOrzFv1lrlkkgKuqPCSAcA043DepKO7e8eLoQ2xmuUC67KpOqwPTeJu 3OmfyANeUs6h03yb1DH7r1HmgCFF0pqV8JYPFhO8JbghuW9uilVGrf3ht5ex68zp ugR80QTDN4a/VBsYE+ihsxIcUxJ8PvoSn6p/78WSPDsHDzPmKiKzyTaiVWlobWzg U85W3nLszWrE9ISIUijyGFaUNkoBHFRpgnwVwjMa7zEJ5awsCDuAx7Lc75DYfxB/ FR+UM+ZABXhoJnQKSZzgmAIiBvxQ09hu -----END CERTIFICATE-----Generated at Wed Jul 2 15:17:02 2025 by rpki-client