$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft File: cJdlx9TTMfTDasa-NH-mah8CNJA.mft (raw, json) Hash identifier: nuIVv6RVNOpRykuJq+C6fgmsjstNuiGNlt6DO+LCPXE= Subject key identifier: BA:95:9F:73:24:C8:EA:D7:05:BC:96:A8:88:AA:28:7C:E5:9C:35:C1 Authority key identifier: 70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 Certificate issuer: /CN=A91AE85E/serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Certificate serial: 34F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft Manifest number: 34C4 Signing time: Wed 02 Jul 2025 14:18:21 +0000 Manifest this update: Wed 02 Jul 2025 14:18:20 +0000 Manifest next update: Wed 09 Jul 2025 14:18:20 +0000 Files and hashes: 1: cJdlx9TTMfTDasa-NH-mah8CNJA.crl (hash: 8FtZMmTWZYe/96fLGeyMjA2dYoZMyyb+NAnXHnpgdm0=) 2: 392987D254F611E79DF7E643C4F9AE02.roa (hash: E8L7EMY++G+/jL4fto/6X8FIxPH0nU/qyOAGKr50fbg=) 3: 09E2DC32B12B11E59337F35AC4F9AE02.roa (hash: cZP7pPe4Y/msfUjF/3Xl+aRlpqp1LPFsqoN3iYA504I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13559 (0x34f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=709765C7D4D331F4C36AC6BE347FA66A1F023490 Validity Not Before: Jul 2 14:18:20 2025 GMT Not After : Jul 9 14:18:20 2025 GMT Subject: CN=68653fac-bcab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e3:3a:41:99:57:27:36:ce:c9:3b:e7:1c:b4: 01:25:28:d7:1d:7c:a7:83:26:51:29:e7:ad:2b:13: d0:55:50:46:d1:52:b7:86:96:41:c7:8d:e8:1c:d7: 22:88:bf:f5:35:d2:a3:52:25:03:49:e6:4c:c4:27: 5b:29:64:ec:5b:40:c1:b4:3a:99:f0:36:d9:2f:27: 42:00:8f:25:7d:d7:0a:da:31:6b:cc:9e:07:4e:60: 74:bc:bc:de:79:a4:86:b0:4b:bf:d1:82:ce:b1:36: 3f:59:89:00:ce:c9:92:02:4d:95:8e:46:11:a8:d0: 78:39:4d:dd:d7:97:dc:46:7e:bc:96:1c:e1:26:ff: 7a:38:ef:aa:a0:20:13:1e:e3:b7:c2:cd:09:a0:78: f6:7c:db:95:de:dc:a2:ef:4a:7f:c6:8b:63:1e:aa: 57:4e:a3:a1:54:83:a6:05:8f:24:43:a6:a6:f3:68: 3f:d2:89:2f:ac:bc:be:c0:91:cc:7a:9e:78:7a:57: d1:e7:df:1d:85:8f:a9:27:36:b4:a3:c8:31:95:dc: 7a:27:b3:42:95:76:1a:17:a7:07:25:06:b5:7e:21: 21:c8:f1:6a:94:43:af:72:56:e0:97:d9:ce:f7:33: a9:ed:6d:ee:3b:28:ca:5f:46:7a:2d:7a:bc:32:82: eb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:95:9F:73:24:C8:EA:D7:05:BC:96:A8:88:AA:28:7C:E5:9C:35:C1 X509v3 Authority Key Identifier: keyid:70:97:65:C7:D4:D3:31:F4:C3:6A:C6:BE:34:7F:A6:6A:1F:02:34:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJdlx9TTMfTDasa-NH-mah8CNJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/0BED35261D6E11E2B04A61AF08B02CD2/cJdlx9TTMfTDasa-NH-mah8CNJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:36:e5:7d:5c:ca:bd:61:cb:46:b6:24:e2:53:43:76:f3:75: 73:07:9d:68:ac:93:86:50:0a:84:3a:1f:15:82:d9:fa:c3:dd: 00:cb:33:9b:7b:10:8d:99:78:aa:a2:85:f5:35:cd:bb:a3:d9: 0a:de:bb:5b:1a:15:b2:17:be:3c:02:4f:0a:f7:a3:4d:81:91: 04:4a:54:72:dc:22:b0:e7:50:af:1a:05:54:24:c1:1e:b6:31: 29:b4:9b:76:59:db:e3:9b:40:3b:8c:27:66:e4:de:8e:ad:74: f5:51:d3:27:62:91:e1:a9:f4:b3:18:4d:c5:c9:65:47:1a:3b: 43:74:16:f1:a3:83:16:96:88:31:8a:86:7d:74:fa:57:3f:b5: 3d:df:da:89:91:de:d7:6b:1a:0f:0e:ed:d2:71:5f:f7:9f:ae: 05:d7:a5:d5:af:94:8d:17:77:b7:2c:06:55:ec:38:18:57:e2: 8e:a7:cb:62:4b:a1:b6:3a:a8:1e:9c:8c:75:92:bd:ab:ed:67: a4:94:de:c5:38:03:ed:e0:73:6e:bf:e4:03:bd:a0:c9:0e:5b: b6:68:68:44:16:3d:7b:bd:70:31:e0:f4:0f:13:3f:fd:38:2b: 38:5b:73:e1:14:a5:6a:4d:e3:52:1a:7c:f5:ee:89:c8:1d:58: d0:6a:34:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDcwOTc2NUM3RDREMzMxRjRDMzZBQzZCRTM0N0ZBNjZB MUYwMjM0OTAwHhcNMjUwNzAyMTQxODIwWhcNMjUwNzA5MTQxODIwWjAYMRYwFAYD VQQDEw02ODY1M2ZhYy1iY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+M6QZlXJzbOyTvnHLQBJSjXHXyngyZRKeetKxPQVVBG0VK3hpZBx43oHNci iL/1NdKjUiUDSeZMxCdbKWTsW0DBtDqZ8DbZLydCAI8lfdcK2jFrzJ4HTmB0vLze eaSGsEu/0YLOsTY/WYkAzsmSAk2VjkYRqNB4OU3d15fcRn68lhzhJv96OO+qoCAT HuO3ws0JoHj2fNuV3tyi70p/xotjHqpXTqOhVIOmBY8kQ6am82g/0okvrLy+wJHM ep54elfR598dhY+pJza0o8gxldx6J7NClXYaF6cHJQa1fiEhyPFqlEOvclbgl9nO 9zOp7W3uOyjKX0Z6LXq8MoLrywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqVn3Mk yOrXBbyWqIiqKHzlnDXBMB8GA1UdIwQYMBaAFHCXZcfU0zH0w2rGvjR/pmofAjSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8wQkVEMzUyNjFE NkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1mVERhc2EtTkgtbWFoOENO SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKZGx4OVRUTWZURGFzYS1OSC1tYWg4Q05KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8wQkVEMzUyNjFENkUxMUUyQjA0QTYxQUYwOEIwMkNEMi9jSmRseDlUVE1m VERhc2EtTkgtbWFoOENOSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjNuV9XMq9YctGtiTiU0N283VzB51orJOGUAqEOh8Vgtn6w90AyzOb exCNmXiqooX1Nc27o9kK3rtbGhWyF748Ak8K96NNgZEESlRy3CKw51CvGgVUJMEe tjEptJt2Wdvjm0A7jCdm5N6OrXT1UdMnYpHhqfSzGE3FyWVHGjtDdBbxo4MWlogx ioZ9dPpXP7U939qJkd7XaxoPDu3ScV/3n64F16XVr5SNF3e3LAZV7DgYV+KOp8ti S6G2OqgenIx1kr2r7WeklN7FOAPt4HNuv+QDvaDJDlu2aGhEFj17vXAx4PQPEz/9 OCs4W3PhFKVqTeNSGnz17onIHVjQajRF -----END CERTIFICATE-----Generated at Thu Jul 3 10:08:14 2025 by rpki-client