$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft File: sejBHBQOD6dR6L-mWlnHFd1-HFM.mft (raw, json) Hash identifier: kBU7Kjwi3wu785mCC1Tk6zwV+h74OyhoDSstec/hSds= Subject key identifier: 71:E0:96:C6:0F:20:86:64:F9:47:D2:DB:53:C0:FA:FA:A6:B8:55:F3 Authority key identifier: B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 Certificate issuer: /CN=A91AE9F6/serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft Manifest number: CE Signing time: Tue 01 Jul 2025 06:14:56 +0000 Manifest this update: Tue 01 Jul 2025 06:14:55 +0000 Manifest next update: Tue 08 Jul 2025 06:14:55 +0000 Files and hashes: 1: sejBHBQOD6dR6L-mWlnHFd1-HFM.crl (hash: 5SfrJ99ma7txsQ9HSyPDH9KscAr7EdOed1Wu1PC5L6Q=) 2: 4D45F08C1E3B11EFB02B0184C4F9AE02.roa (hash: +50v3mlEKF+ZCfC1CHUDd+fzqudaC4LTsu2ANTG7KU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:14:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F6, serialNumber=B1E8C11C140E0FA751E8BFA65A59C715DD7E1C53 Validity Not Before: Jul 1 06:14:55 2025 GMT Not After : Jul 8 06:14:55 2025 GMT Subject: CN=68637cdf-0e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c0:a6:5b:c9:59:ee:4e:90:ae:00:1c:49:d5: 50:44:33:2d:2f:54:00:57:fa:bb:89:1f:64:b8:5e: cc:3f:ab:2a:6a:18:6a:ee:40:b4:38:33:3f:7e:94: 23:40:bc:2a:73:d0:2e:b2:07:24:bb:91:e1:a1:71: 84:71:fd:46:cb:47:ef:f3:f4:31:7a:e8:b1:8a:19: 9d:0e:69:4d:8b:e4:ee:a4:a9:dd:2b:f8:61:d6:9d: 6e:52:50:1e:d8:0a:54:14:28:aa:be:9f:9a:15:93: 03:64:60:07:e8:2f:08:63:df:e0:90:9c:58:dd:b4: 45:d1:9e:1f:94:6d:30:ac:50:20:b0:f8:13:e7:96: ad:70:32:44:db:06:db:87:3d:49:c6:2d:a7:02:65: f0:d6:0a:2f:a2:5b:4a:20:98:53:c0:b6:e1:87:6c: d5:09:bc:b2:b4:cc:85:ea:31:6a:e5:f9:b0:e3:36: 08:83:4d:44:23:9e:1f:27:6b:4b:94:e0:28:78:da: bf:20:b8:2e:8e:22:87:80:3d:6b:1e:17:ef:3a:87: 7b:cd:62:7e:52:1f:9e:d6:c0:f3:f7:3e:80:7f:12: c7:60:7c:b5:92:5b:a8:8b:48:79:9a:4d:cd:70:13: cf:e8:dc:fc:5c:ae:40:f4:ed:2f:01:80:24:0a:8f: 8d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E0:96:C6:0F:20:86:64:F9:47:D2:DB:53:C0:FA:FA:A6:B8:55:F3 X509v3 Authority Key Identifier: keyid:B1:E8:C1:1C:14:0E:0F:A7:51:E8:BF:A6:5A:59:C7:15:DD:7E:1C:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sejBHBQOD6dR6L-mWlnHFd1-HFM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F6/8F23CE841D5F11EFB8374D3DC4F9AE02/sejBHBQOD6dR6L-mWlnHFd1-HFM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:cf:bf:b1:ff:13:9e:ca:ab:79:c0:50:b3:ce:15:4f:4b:00: a5:a3:0d:8f:bb:5c:c6:c5:3e:bf:60:f9:29:42:9f:9b:f7:65: aa:ea:95:19:7b:58:be:82:2c:21:f1:03:71:ed:5b:8e:6b:c9: 38:ba:d4:e5:a0:f6:5e:c3:8c:c2:de:5f:c3:6e:bf:e1:a4:9c: 08:81:9a:9c:8a:b3:4e:a8:67:61:45:27:d7:ea:1f:23:1f:9a: ae:15:47:40:24:7e:20:6b:a5:d9:df:d7:2c:05:06:82:d7:18: 7f:e6:8e:a9:59:33:71:83:85:66:f6:84:74:1a:b9:31:ba:df: 6a:64:28:ff:3d:9d:86:47:f4:38:8d:b5:a0:4e:ce:87:52:f1: f1:6d:a9:35:03:c6:d2:33:91:20:7c:6b:4a:f3:2b:a6:98:2f: f1:59:e3:60:c4:e8:39:9e:05:7c:96:d2:52:fd:33:00:a6:ba: cd:67:f5:17:48:40:d5:e6:86:89:ec:3b:76:fe:bf:6a:aa:84: 6b:d2:cd:d0:8d:dc:56:b4:91:65:c4:fe:20:d8:f2:31:1a:a0: 86:4a:33:27:38:c7:67:73:c1:02:e2:12:3c:7b:9e:7c:f3:a3: 0e:a9:96:ec:5f:e4:21:47:bb:7b:56:78:97:bc:55:22:1e:8c: 1e:c6:cf:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjYxMTAvBgNVBAUTKEIxRThDMTFDMTQwRTBGQTc1MUU4QkZBNjVBNTlDNzE1 REQ3RTFDNTMwHhcNMjUwNzAxMDYxNDU1WhcNMjUwNzA4MDYxNDU1WjAYMRYwFAYD VQQDEw02ODYzN2NkZi0wZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsCmW8lZ7k6QrgAcSdVQRDMtL1QAV/q7iR9kuF7MP6sqahhq7kC0ODM/fpQj QLwqc9Ausgcku5HhoXGEcf1Gy0fv8/QxeuixihmdDmlNi+TupKndK/hh1p1uUlAe 2ApUFCiqvp+aFZMDZGAH6C8IY9/gkJxY3bRF0Z4flG0wrFAgsPgT55atcDJE2wbb hz1Jxi2nAmXw1govoltKIJhTwLbhh2zVCbyytMyF6jFq5fmw4zYIg01EI54fJ2tL lOAoeNq/ILgujiKHgD1rHhfvOod7zWJ+Uh+e1sDz9z6AfxLHYHy1kluoi0h5mk3N cBPP6Nz8XK5A9O0vAYAkCo+NTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHglsYP IIZk+UfS21PA+vqmuFXzMB8GA1UdIwQYMBaAFLHowRwUDg+nUei/plpZxxXdfhxT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNi84RjIzQ0U4NDFE NUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2ZFI2TC1tV2xuSEZkMS1I Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlakJIQlFPRDZkUjZMLW1XbG5IRmQxLUhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlGNi84RjIzQ0U4NDFENUYxMUVGQjgzNzREM0RDNEY5QUUwMi9zZWpCSEJRT0Q2 ZFI2TC1tV2xuSEZkMS1IRk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmz7+x/xOeyqt5wFCzzhVPSwClow2Pu1zGxT6/YPkpQp+b92Wq6pUZ e1i+giwh8QNx7VuOa8k4utTloPZew4zC3l/Dbr/hpJwIgZqcirNOqGdhRSfX6h8j H5quFUdAJH4ga6XZ39csBQaC1xh/5o6pWTNxg4Vm9oR0Grkxut9qZCj/PZ2GR/Q4 jbWgTs6HUvHxbak1A8bSM5EgfGtK8yummC/xWeNgxOg5ngV8ltJS/TMAprrNZ/UX SEDV5oaJ7Dt2/r9qqoRr0s3QjdxWtJFlxP4g2PIxGqCGSjMnOMdnc8EC4hI8e558 86MOqZbsX+QhR7t7VniXvFUiHowexs+q -----END CERTIFICATE-----Generated at Tue Jul 1 12:31:54 2025 by rpki-client