$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: TK+qhUge2ydFQhp4oq7dnRFVBa7mR/2cd/vvDGTZ6zI= Subject key identifier: E5:3C:AE:35:20:50:C5:3D:5B:3F:BD:CE:D8:F9:34:A4:DD:51:E4:45 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 5B Signing time: Thu 03 Jul 2025 07:21:17 +0000 Manifest this update: Thu 03 Jul 2025 07:21:16 +0000 Manifest next update: Thu 10 Jul 2025 07:21:16 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: r0I3NtI0xMRKZrjh0aUdH70IIdYjibXs4mYoe9DXZTQ=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Jul 3 07:21:16 2025 GMT Not After : Jul 10 07:21:16 2025 GMT Subject: CN=68662f6d-d1bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:49:a9:c9:76:48:14:43:42:e7:3d:e2:b4: 11:23:48:e8:7b:84:91:fa:8b:33:a1:0c:e5:21:77: 08:a7:5a:0a:f1:c5:cd:7e:f2:05:f5:66:c3:b7:01: 13:2d:08:8e:b9:2d:8c:ac:2f:77:61:94:8f:c5:3a: d8:3e:3a:28:c9:99:d2:52:65:bc:af:1b:08:fb:c6: 74:87:46:72:42:d1:2a:8b:06:57:1a:fd:ab:9a:bb: 82:ba:6f:6e:71:bf:bb:b5:de:85:d7:a0:f8:bf:1d: 77:dd:5f:59:86:78:71:64:bf:79:44:87:ac:5a:01: 7f:e1:3e:ec:51:bf:55:9d:69:80:99:ca:d7:36:fb: 3f:39:ef:43:65:a0:a7:d2:50:78:86:5a:8b:98:49: e1:4a:fd:c9:9f:74:3e:5e:2c:71:76:7f:a0:cc:f4: 76:80:a4:d8:50:1e:13:50:c2:5d:e6:3b:07:ec:62: de:b2:85:a4:30:79:1a:30:7d:52:cb:e8:13:06:21: 69:23:51:54:95:be:34:a6:cb:81:7c:86:a9:e0:d1: cb:0c:f8:aa:ed:f2:48:db:57:fd:c4:c0:2b:6e:b6: 83:b0:30:54:64:24:28:5c:f7:65:8f:46:c2:51:e8: a3:1a:bf:22:9b:29:21:ab:26:0e:77:e0:e5:c8:0e: d4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3C:AE:35:20:50:C5:3D:5B:3F:BD:CE:D8:F9:34:A4:DD:51:E4:45 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:8a:32:49:05:f2:7c:5b:e3:f3:97:10:d4:05:e0:29:d7:4f: 56:16:8f:1b:d1:0a:d3:16:fa:c5:6f:64:97:c8:f3:d6:c9:f4: da:68:9b:03:b1:07:b6:cc:0f:e0:b2:cb:6e:d8:1e:69:d2:19: 58:0e:3b:46:c2:b3:ac:ab:6a:44:5c:55:3f:0c:bf:26:05:1e: b8:67:b8:6d:2f:bd:f0:e9:0b:b5:51:17:4d:45:50:77:b1:54: 46:21:04:15:64:0b:c4:97:2b:95:dc:c5:5a:ad:0d:79:cf:b2: 04:54:2c:1c:60:33:41:58:a3:7f:a8:eb:98:42:f5:d0:cb:88: ed:5b:fb:a5:4e:28:90:f9:62:e1:c3:dd:23:d2:0b:f8:48:d1: f2:89:0e:15:c0:38:97:a1:75:9b:37:72:60:b1:d1:8f:e5:87: 6a:01:aa:ca:4c:da:d5:e8:0b:7f:14:1d:c2:61:53:25:db:b8: fc:aa:6e:df:72:56:42:19:d5:61:67:56:6a:13:c8:8b:25:7e: 6b:5e:8a:ba:6d:4c:9d:97:c0:98:9f:07:22:d6:6d:0a:14:81: 30:da:3d:0f:6a:c6:95:17:cd:31:7f:b7:19:3f:34:88:1d:33: 23:a9:a5:62:53:cb:1d:d7:26:5c:c8:d6:e8:90:2b:20:a0:fa: 84:d8:fc:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA3MDMwNzIxMTZaFw0yNTA3MTAwNzIxMTZaMBgxFjAUBgNV BAMTDTY4NjYyZjZkLWQxYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw/kmpyXZIFENC5z3itBEjSOh7hJH6izOhDOUhdwinWgrxxc1+8gX1ZsO3ARMt CI65LYysL3dhlI/FOtg+OijJmdJSZbyvGwj7xnSHRnJC0SqLBlca/auau4K6b25x v7u13oXXoPi/HXfdX1mGeHFkv3lEh6xaAX/hPuxRv1WdaYCZytc2+z8570NloKfS UHiGWouYSeFK/cmfdD5eLHF2f6DM9HaApNhQHhNQwl3mOwfsYt6yhaQweRowfVLL 6BMGIWkjUVSVvjSmy4F8hqng0csM+Krt8kjbV/3EwCtutoOwMFRkJChc92WPRsJR 6KMavyKbKSGrJg534OXIDtRzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5TyuNSBQ xT1bP73O2Pk0pN1R5EUwHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMWKMkkF8nxb4/OXENQF4CnXT1YWjxvRCtMW+sVvZJfI89bJ9NpomwOx B7bMD+Cyy27YHmnSGVgOO0bCs6yrakRcVT8MvyYFHrhnuG0vvfDpC7VRF01FUHex VEYhBBVkC8SXK5XcxVqtDXnPsgRULBxgM0FYo3+o65hC9dDLiO1b+6VOKJD5YuHD 3SPSC/hI0fKJDhXAOJehdZs3cmCx0Y/lh2oBqspM2tXoC38UHcJhUyXbuPyqbt9y VkIZ1WFnVmoTyIslfmteirptTJ2XwJifByLWbQoUgTDaPQ9qxpUXzTF/txk/NIgd MyOppWJTyx3XJlzI1uiQKyCg+oTY/Eo= -----END CERTIFICATE-----Generated at Thu Jul 3 21:09:55 2025 by rpki-client