$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: jZRw+6At/Ff1dn54eVuPoM+yDbrAxR4x9j248aFyWDY= Subject key identifier: F6:41:75:DF:BB:5A:E0:5E:02:72:BD:AC:6F:22:AE:2C:55:4D:76:5B Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 089C Signing time: Wed 02 Jul 2025 20:50:08 +0000 Manifest this update: Wed 02 Jul 2025 20:50:08 +0000 Manifest next update: Wed 09 Jul 2025 20:50:08 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: AuAvBqZuSnFtQuwDV2DwRlvw54c3Srl7Nvpf2XjuHxw=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: z3K04y8FAXseRSAao3Z4/OGvZnmija66bg8pyXugrIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2214 (0x8a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Jul 2 20:50:08 2025 GMT Not After : Jul 9 20:50:08 2025 GMT Subject: CN=68659b80-c9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7b:cf:3a:e5:68:2a:09:32:dd:97:a0:c3:56: a8:81:3f:15:b8:5e:02:62:76:12:85:29:f6:ae:f3: 74:c1:01:d9:99:d2:18:1e:95:8a:1a:64:c0:f0:70: 99:fc:b8:0a:94:17:3c:2e:14:8d:3e:43:94:07:af: 7c:c6:a9:63:c4:78:68:1f:73:0b:3c:09:fb:64:50: 45:4a:c6:5d:01:f1:8f:46:6b:c0:40:99:91:02:fe: 48:f4:07:29:8c:53:df:35:f0:4b:9f:be:39:8e:b8: 4a:e4:e4:7e:ad:fb:ac:60:81:c2:4c:60:06:8d:d4: ff:0e:35:54:bc:f1:f5:c9:3d:64:cb:09:74:0f:79: 86:97:51:68:ff:5a:5b:b4:15:77:38:24:4c:a6:b0: ab:13:03:d7:74:d7:8d:bf:b9:49:c6:c3:c4:6c:ad: 36:4c:d8:b4:03:38:d0:15:19:60:69:5e:95:c1:ae: 3c:2f:0b:f1:bf:6d:59:f3:08:3c:56:bd:94:cc:2e: 91:16:ab:aa:45:91:8c:e5:85:1a:9c:cf:83:f7:11: ab:fb:1b:56:fd:11:20:42:3d:f0:fa:c6:88:c7:be: 76:24:9e:fa:e7:6f:ec:7a:6f:8f:f5:a9:b2:c3:68: e4:4d:da:02:1c:ba:64:ca:46:51:50:d6:a8:5b:d8: ee:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:41:75:DF:BB:5A:E0:5E:02:72:BD:AC:6F:22:AE:2C:55:4D:76:5B X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:82:a6:e9:ce:74:24:5f:a4:34:f9:9a:64:1b:80:9e:52:f6: 30:8d:df:74:10:67:f1:f4:22:c6:d0:9e:6c:4b:53:d0:9e:a2: 46:29:05:09:f5:47:67:43:52:f2:94:89:64:0c:52:07:5d:9b: d5:14:cb:64:e9:e7:0e:43:50:05:04:e2:41:dd:26:58:ff:ee: 9c:d7:d7:e8:6a:14:35:85:e2:2b:c1:11:b4:d1:6e:81:d9:ac: a5:9d:43:5e:07:6d:c2:ae:0f:ee:62:62:24:86:2c:62:31:49: 36:9a:dc:ea:0e:a1:dc:bc:79:8b:51:0e:83:c0:9d:4a:b3:84: a4:e7:85:26:97:90:ba:a6:a3:e9:3c:24:2e:92:79:65:c7:54: 14:a6:dc:1f:ed:f9:ee:f8:3b:ed:ca:42:0a:95:b1:e2:e5:82: 6d:00:9a:ca:7f:8d:64:ea:43:86:94:9b:de:0c:18:cc:69:b8: 5e:44:ee:5c:fe:1f:19:31:e2:71:d6:c0:39:ed:88:ae:01:23: 4f:4e:a2:09:7a:21:7e:2c:6e:08:63:d0:2f:cf:56:7e:a3:13: 94:89:fb:1a:ff:23:0b:59:24:2f:7b:f0:ef:00:d9:bc:e3:0a: 92:e2:26:6b:7a:b7:22:4b:83:1e:d4:9d:05:38:9d:15:dc:e9: b8:cb:db:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUwNzAyMjA1MDA4WhcNMjUwNzA5MjA1MDA4WjAYMRYwFAYD VQQDEw02ODY1OWI4MC1jOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nvPOuVoKgky3Zegw1aogT8VuF4CYnYShSn2rvN0wQHZmdIYHpWKGmTA8HCZ /LgKlBc8LhSNPkOUB698xqljxHhoH3MLPAn7ZFBFSsZdAfGPRmvAQJmRAv5I9Acp jFPfNfBLn745jrhK5OR+rfusYIHCTGAGjdT/DjVUvPH1yT1kywl0D3mGl1Fo/1pb tBV3OCRMprCrEwPXdNeNv7lJxsPEbK02TNi0AzjQFRlgaV6Vwa48Lwvxv21Z8wg8 Vr2UzC6RFquqRZGM5YUanM+D9xGr+xtW/REgQj3w+saIx752JJ7652/sem+P9amy w2jkTdoCHLpkykZRUNaoW9ju1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZBdd+7 WuBeAnK9rG8irixVTXZbMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWgqbpznQkX6Q0+ZpkG4CeUvYwjd90EGfx9CLG0J5sS1PQnqJGKQUJ 9UdnQ1LylIlkDFIHXZvVFMtk6ecOQ1AFBOJB3SZY/+6c19foahQ1heIrwRG00W6B 2aylnUNeB23Crg/uYmIkhixiMUk2mtzqDqHcvHmLUQ6DwJ1Ks4Sk54Uml5C6pqPp PCQuknllx1QUptwf7fnu+DvtykIKlbHi5YJtAJrKf41k6kOGlJveDBjMabheRO5c /h8ZMeJx1sA57YiuASNPTqIJeiF+LG4IY9Avz1Z+oxOUifsa/yMLWSQve/DvANm8 4wqS4iZrerciS4Me1J0FOJ0V3Om4y9tb -----END CERTIFICATE-----Generated at Thu Jul 3 18:30:02 2025 by rpki-client