$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: dNvPK+itLaF/C57N5+9RMDDUjePuBt6GuFRXIAdttWo= Subject key identifier: 48:11:72:5C:F8:71:64:7C:73:92:24:1B:8E:56:DA:D3:26:FF:F6:C1 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0F72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F37 Signing time: Wed 02 Jul 2025 17:51:07 +0000 Manifest this update: Wed 02 Jul 2025 17:51:07 +0000 Manifest next update: Wed 09 Jul 2025 17:51:07 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: lCbTDeBiTTypNWTfy0noUr4GI1idvoaDlre1hjE1jyE=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3954 (0xf72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Jul 2 17:51:07 2025 GMT Not After : Jul 9 17:51:07 2025 GMT Subject: CN=6865718b-8baf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1c:42:88:86:18:0e:b8:db:94:9e:df:fb:bc: a8:ee:df:0c:58:7a:d5:90:6f:4c:b5:b4:67:3a:6a: 5c:c9:f1:0d:f5:bf:64:99:9f:49:1a:ed:fe:d5:5c: 96:32:d0:70:5b:4b:ff:c2:3b:6b:62:c9:61:0e:c5: 3d:7d:f2:e7:e5:5b:4f:01:28:55:6e:8a:e7:47:e0: 87:54:c3:b4:df:2f:a3:81:95:66:a9:17:f9:f5:c3: 56:9f:45:58:c9:7f:8d:0e:14:62:4e:3e:56:ed:41: 91:ea:40:24:6c:bc:2c:90:b2:d9:c4:6a:fb:e2:7d: 1d:42:46:c0:90:92:67:1a:dd:21:d4:e1:d2:aa:29: 70:e1:1c:64:53:bd:26:f4:a1:e8:32:06:af:28:17: ad:8d:76:7b:1b:07:a0:6a:fd:c2:94:ab:4d:4d:6b: 60:ec:c2:96:9b:a3:1e:4d:58:e7:61:b2:2d:e3:53: 90:5b:e4:50:14:38:ee:d0:b1:0b:af:0e:ff:ae:e5: dc:43:6a:25:18:55:15:39:cd:c0:c9:f4:4c:94:52: 21:77:b4:b3:14:7d:ef:67:59:ef:3d:ca:0c:ce:de: 41:96:f0:52:0e:6e:c5:aa:75:f3:75:ec:4d:c3:96: 68:a7:97:1a:4e:e5:a9:f5:4d:00:76:fa:81:fd:17: 7c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:11:72:5C:F8:71:64:7C:73:92:24:1B:8E:56:DA:D3:26:FF:F6:C1 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:de:21:66:be:44:b0:c7:16:8b:c9:c2:05:65:d1:cf:5f:fb: 19:a9:80:f9:5a:70:33:32:a7:f6:60:0f:cb:33:7c:a1:9c:2d: 59:af:55:b2:3d:aa:33:80:37:b0:24:ee:1b:dd:3d:32:de:b5: 55:32:57:49:4a:40:fd:0b:de:de:8a:51:ea:cc:78:52:f0:f5: db:f6:19:f2:7b:45:62:39:9d:d2:31:94:88:5c:4b:85:ab:82: eb:8e:0d:c4:9c:ec:f3:93:91:51:38:6f:b3:7b:0a:ad:20:33: da:cb:7e:65:0e:19:d0:ae:f2:66:ca:e8:54:59:5a:e8:85:db: 57:63:24:2d:a7:dd:d5:89:07:4d:7d:0d:80:13:f5:10:1c:16: ee:a0:c7:ac:4b:b5:82:66:7a:54:80:17:f7:fd:69:60:ec:a5: 91:ca:79:6c:af:92:6a:31:4c:19:0f:a4:42:78:46:0b:52:51: d9:c0:89:dc:ea:e2:13:6c:30:f8:18:f4:73:21:96:6b:bf:cc: 87:1e:b8:73:1f:a9:e1:ef:18:ee:5a:07:8f:1d:30:8c:c0:37: 76:a1:15:be:23:c6:aa:d4:e5:ba:d6:f8:ac:a8:bb:8e:77:71: ba:71:51:38:6d:02:a1:6b:30:54:51:19:c2:8e:8a:eb:d3:ad: d1:f0:5f:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUwNzAyMTc1MTA3WhcNMjUwNzA5MTc1MTA3WjAYMRYwFAYD VQQDEw02ODY1NzE4Yi04YmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BxCiIYYDrjblJ7f+7yo7t8MWHrVkG9MtbRnOmpcyfEN9b9kmZ9JGu3+1VyW MtBwW0v/wjtrYslhDsU9ffLn5VtPAShVbornR+CHVMO03y+jgZVmqRf59cNWn0VY yX+NDhRiTj5W7UGR6kAkbLwskLLZxGr74n0dQkbAkJJnGt0h1OHSqilw4RxkU70m 9KHoMgavKBetjXZ7Gwegav3ClKtNTWtg7MKWm6MeTVjnYbIt41OQW+RQFDju0LEL rw7/ruXcQ2olGFUVOc3AyfRMlFIhd7SzFH3vZ1nvPcoMzt5BlvBSDm7FqnXzdexN w5Zop5caTuWp9U0AdvqB/Rd84wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgRclz4 cWR8c5IkG45W2tMm//bBMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC33iFmvkSwxxaLycIFZdHPX/sZqYD5WnAzMqf2YA/LM3yhnC1Zr1Wy PaozgDewJO4b3T0y3rVVMldJSkD9C97eilHqzHhS8PXb9hnye0ViOZ3SMZSIXEuF q4Lrjg3EnOzzk5FROG+zewqtIDPay35lDhnQrvJmyuhUWVrohdtXYyQtp93ViQdN fQ2AE/UQHBbuoMesS7WCZnpUgBf3/Wlg7KWRynlsr5JqMUwZD6RCeEYLUlHZwInc 6uITbDD4GPRzIZZrv8yHHrhzH6nh7xjuWgePHTCMwDd2oRW+I8aq1OW61visqLuO d3G6cVE4bQKhazBUURnCjorr063R8F/d -----END CERTIFICATE-----Generated at Wed Jul 2 23:23:43 2025 by rpki-client