$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft File: 41zkTnGXKXWROY2C8z0RhhdN6Do.mft (raw, json) Hash identifier: Ayu1BLVG8WNi0WBquK3gOHQ9yxWeWctDPyvHJyKadhE= Subject key identifier: 0E:1A:95:9E:90:67:84:F9:6A:85:92:B3:E6:82:72:72:3F:07:3D:1A Authority key identifier: E3:5C:E4:4E:71:97:29:75:91:39:8D:82:F3:3D:11:86:17:4D:E8:3A Certificate issuer: /CN=A91A9E55/serialNumber=E35CE44E7197297591398D82F33D1186174DE83A Certificate serial: 07A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/41zkTnGXKXWROY2C8z0RhhdN6Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft Manifest number: 07A0 Signing time: Mon 30 Jun 2025 21:33:37 +0000 Manifest this update: Mon 30 Jun 2025 21:33:36 +0000 Manifest next update: Mon 07 Jul 2025 21:33:36 +0000 Files and hashes: 1: 41zkTnGXKXWROY2C8z0RhhdN6Do.crl (hash: mdcDAitmKnTVX8KQJ0pOwWY5FIIknJcJUO8y50LJWn8=) 2: 6D7F22A60DF511EBA2098D67C4F9AE02.roa (hash: 6t5gjK6uSlTdUUyjqaA8L4ugjjxcnRzK8+qoE0d23h4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.crl rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/41zkTnGXKXWROY2C8z0RhhdN6Do.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1961 (0x7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E55, serialNumber=E35CE44E7197297591398D82F33D1186174DE83A Validity Not Before: Jun 30 21:33:36 2025 GMT Not After : Jul 7 21:33:36 2025 GMT Subject: CN=686302b1-a54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:49:e6:a9:57:44:80:16:c1:eb:fb:f7:8c:f3: 72:9f:90:6d:a9:b9:52:3c:3f:1c:0c:f8:48:99:c6: fc:14:82:27:f2:84:32:38:e4:c9:ae:68:c8:2d:9e: ab:82:d0:ec:e8:2d:db:d2:8f:95:60:c7:02:a8:b6: de:2f:72:c5:4c:71:fb:5d:85:07:19:5c:c7:82:9d: b0:51:94:87:6b:1b:60:d6:f3:b3:96:1e:29:b6:2e: ec:87:f5:d8:64:35:e1:15:c5:74:83:76:e1:e2:8a: b6:1f:62:7e:4b:63:ec:98:5b:22:f0:1e:1b:8e:ea: 5f:ad:70:b3:f3:60:52:16:f4:37:62:67:7f:50:ca: c6:bf:5f:63:9f:26:bc:27:bc:24:ce:aa:40:71:7d: 69:82:50:f8:ab:aa:bb:f4:ff:04:a8:2e:0c:71:0b: 0a:ff:a0:27:6f:50:b8:94:ec:58:53:7b:33:e8:37: 5b:8d:d3:bc:87:3d:2b:6b:8e:a0:ce:97:91:36:5b: 0f:b5:ba:3f:d4:f0:71:11:5b:eb:a1:48:ec:74:0a: 61:cd:f3:58:ec:78:c2:2a:d9:4b:a8:78:85:fe:3e: 53:53:7f:2b:ab:38:29:de:c7:be:e3:e2:e4:66:7c: b7:b6:70:cb:9d:02:f2:81:22:17:bb:24:36:af:fe: 13:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1A:95:9E:90:67:84:F9:6A:85:92:B3:E6:82:72:72:3F:07:3D:1A X509v3 Authority Key Identifier: keyid:E3:5C:E4:4E:71:97:29:75:91:39:8D:82:F3:3D:11:86:17:4D:E8:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/41zkTnGXKXWROY2C8z0RhhdN6Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E55/D95176840DF311EB93076F65C4F9AE02/41zkTnGXKXWROY2C8z0RhhdN6Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:dc:f4:91:b0:38:91:42:16:2c:bf:dd:7b:3e:9d:93:16:6b: 92:e3:66:a9:b0:83:6e:2a:8c:0c:fd:40:f3:e4:63:d8:a7:b8: 29:a2:fa:ad:28:81:48:29:b2:b2:f7:fe:eb:8c:b9:26:db:dc: 53:64:7f:b9:1d:4a:40:86:09:44:ee:67:68:7e:3e:30:10:96: 72:69:39:2e:fd:0f:9d:19:29:f2:85:b3:42:77:92:f4:78:d1: 14:76:4b:da:92:e1:43:17:33:9e:06:e5:ee:f7:4b:8e:b7:62: db:00:87:de:54:42:b8:2c:d8:a4:1a:ae:89:fc:c4:19:3c:f1: 7b:4d:46:10:df:31:db:51:32:26:7b:3e:75:6b:e8:bc:bb:a8: b7:bf:4a:6f:e0:ce:a1:f2:af:ef:8a:04:14:bc:53:2c:48:78: b4:d5:5a:02:3a:c3:88:fb:2f:38:24:fc:5a:24:9e:20:d7:d5: 64:de:e8:1b:e8:6e:1f:b7:cd:1f:58:8d:70:9c:89:3b:5c:fe: 42:40:06:b5:33:c7:21:99:11:8a:1c:d9:cd:a4:e9:d4:46:29: c2:61:68:08:81:6d:af:c3:5f:b1:ab:5f:5f:17:94:b9:17:79: 9d:85:9f:ac:71:ef:19:7f:f6:ca:00:e0:9a:cd:4c:bd:1c:a5: 82:a5:0a:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFNTUxMTAvBgNVBAUTKEUzNUNFNDRFNzE5NzI5NzU5MTM5OEQ4MkYzM0QxMTg2 MTc0REU4M0EwHhcNMjUwNjMwMjEzMzM2WhcNMjUwNzA3MjEzMzM2WjAYMRYwFAYD VQQDEw02ODYzMDJiMS1hNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUnmqVdEgBbB6/v3jPNyn5BtqblSPD8cDPhImcb8FIIn8oQyOOTJrmjILZ6r gtDs6C3b0o+VYMcCqLbeL3LFTHH7XYUHGVzHgp2wUZSHaxtg1vOzlh4pti7sh/XY ZDXhFcV0g3bh4oq2H2J+S2PsmFsi8B4bjupfrXCz82BSFvQ3Ymd/UMrGv19jnya8 J7wkzqpAcX1pglD4q6q79P8EqC4McQsK/6Anb1C4lOxYU3sz6DdbjdO8hz0ra46g zpeRNlsPtbo/1PBxEVvroUjsdAphzfNY7HjCKtlLqHiF/j5TU38rqzgp3se+4+Lk Zny3tnDLnQLygSIXuyQ2r/4TcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4alZ6Q Z4T5aoWSs+aCcnI/Bz0aMB8GA1UdIwQYMBaAFONc5E5xlyl1kTmNgvM9EYYXTeg6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUU1NS9EOTUxNzY4NDBE RjMxMUVCOTMwNzZGNjVDNEY5QUUwMi80MXprVG5HWEtYV1JPWTJDOHowUmhoZE42 RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQxemtUbkdYS1hXUk9ZMkM4ejBSaGhkTjZEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUU1NS9EOTUxNzY4NDBERjMxMUVCOTMwNzZGNjVDNEY5QUUwMi80MXprVG5HWEtY V1JPWTJDOHowUmhoZE42RG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF3PSRsDiRQhYsv917Pp2TFmuS42apsINuKowM/UDz5GPYp7gpovqt KIFIKbKy9/7rjLkm29xTZH+5HUpAhglE7mdofj4wEJZyaTku/Q+dGSnyhbNCd5L0 eNEUdkvakuFDFzOeBuXu90uOt2LbAIfeVEK4LNikGq6J/MQZPPF7TUYQ3zHbUTIm ez51a+i8u6i3v0pv4M6h8q/vigQUvFMsSHi01VoCOsOI+y84JPxaJJ4g19Vk3ugb 6G4ft80fWI1wnIk7XP5CQAa1M8chmRGKHNnNpOnURinCYWgIgW2vw1+xq19fF5S5 F3mdhZ+sce8Zf/bKAOCazUy9HKWCpQpt -----END CERTIFICATE-----Generated at Tue Jul 1 17:19:00 2025 by rpki-client