$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft File: t3KDxTMROjkeMdlFJxhqz4OZol8.mft (raw, json) Hash identifier: 4/a1tgCQ2/MpH5a2xW+AI3YgOOptm6fVKqU1cFOaNvU= Subject key identifier: 9E:1F:FB:2D:34:CC:10:97:EC:15:AC:C6:93:0D:2F:5C:AB:02:A6:38 Authority key identifier: B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F Certificate issuer: /CN=A91AEE4B/serialNumber=B77283C533113A391E31D94527186ACF8399A25F Certificate serial: 0B12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft Manifest number: 0B09 Signing time: Wed 02 Jul 2025 19:33:00 +0000 Manifest this update: Wed 02 Jul 2025 19:32:59 +0000 Manifest next update: Wed 09 Jul 2025 19:32:59 +0000 Files and hashes: 1: t3KDxTMROjkeMdlFJxhqz4OZol8.crl (hash: cyOwmSzXj7iVbp5FvmeT3b9B9flKBJN6ghI57E2j/fg=) 2: 02F1850E45A611EA81CD145AC4F9AE02.roa (hash: +dnFv6At/j+rB10C6K34OqDt094wwEbkgdTC71u4hkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE4B, serialNumber=B77283C533113A391E31D94527186ACF8399A25F Validity Not Before: Jul 2 19:32:59 2025 GMT Not After : Jul 9 19:32:59 2025 GMT Subject: CN=6865896b-1d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:98:1f:b5:74:09:88:a1:10:71:0e:d6:e8:58: 60:6e:aa:3e:07:8e:03:f0:b7:48:1c:96:11:66:e3: de:c0:25:79:0d:30:79:21:c3:91:66:7d:87:ad:75: 5d:91:0e:dc:72:c7:8b:7b:86:84:7e:82:09:0c:85: 74:13:bf:49:4d:d0:b6:25:8e:00:54:d6:31:0b:ed: 39:83:9f:16:46:93:ff:a9:ed:02:02:09:36:a0:6b: e5:72:dc:78:5d:d8:c9:b6:59:b3:ba:48:e3:2f:a2: f6:e9:c6:76:98:0b:3e:5d:d4:da:74:73:da:ad:ee: cb:c5:85:83:5e:58:8c:30:d5:21:f7:f3:d5:b3:fd: 2c:27:81:c8:e4:af:c9:37:7e:b8:db:47:9a:d8:a7: aa:63:b7:c0:d0:f5:ea:7a:fc:2b:e7:1e:27:5f:e8: 64:f6:73:67:49:11:55:c2:be:6e:cb:44:09:91:84: 0e:ba:54:d0:2b:1e:b7:9f:c8:88:da:5c:4e:e9:d0: 62:ee:fc:4e:f2:f1:a4:b3:51:69:a0:02:ed:7a:0d: 06:8f:e9:9e:47:f2:1d:f9:75:aa:01:3d:b9:4b:75: 52:77:b9:bc:46:3a:7f:e8:9d:fd:58:db:ee:7d:9a: 5f:a5:c6:f1:b2:91:c4:8f:f8:98:87:4c:e8:2a:b2: 65:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1F:FB:2D:34:CC:10:97:EC:15:AC:C6:93:0D:2F:5C:AB:02:A6:38 X509v3 Authority Key Identifier: keyid:B7:72:83:C5:33:11:3A:39:1E:31:D9:45:27:18:6A:CF:83:99:A2:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t3KDxTMROjkeMdlFJxhqz4OZol8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE4B/63DFF80245A411EA942E0957C4F9AE02/t3KDxTMROjkeMdlFJxhqz4OZol8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:ad:2b:a8:72:7a:51:e2:7e:54:e2:82:e9:50:53:a5:f6:40: 45:7d:33:ab:75:c7:5d:dd:27:31:9e:24:df:48:8b:d5:34:5f: 75:d9:33:1a:b0:84:ba:40:f5:3f:37:24:b6:b8:a4:b4:93:2d: c1:a6:44:9f:5b:1a:76:79:a8:c3:74:8b:9e:52:29:b2:17:54: 98:6a:e3:23:62:16:2b:19:20:8d:22:d1:40:f9:49:cc:85:09: 98:13:e2:46:49:9c:a6:0e:dd:08:30:b0:3d:c7:a7:dd:6f:25: 4c:98:d0:72:a9:d4:95:a6:c1:ec:7a:27:1d:b2:ea:e5:15:fd: 69:ef:f6:25:21:70:47:aa:42:ce:a4:0f:f2:48:f9:ff:e6:61: 12:d5:07:d8:75:41:fa:75:36:18:cc:80:4c:dc:e9:62:97:9b: 84:54:7b:f7:6e:43:4d:34:2e:44:94:14:35:75:a9:d4:50:58: 3a:58:51:6f:8f:47:61:01:80:28:f4:73:e6:c6:34:66:e0:77: c7:aa:37:05:a6:53:97:30:d2:63:6a:4b:43:0a:57:72:cc:1b: da:a7:2f:19:81:6a:09:b0:6f:ce:e9:76:5a:d1:f1:31:53:8c: 1d:be:ae:df:18:49:a4:00:96:bf:16:16:c4:e1:32:72:3f:2d: 28:a0:02:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFNEIxMTAvBgNVBAUTKEI3NzI4M0M1MzMxMTNBMzkxRTMxRDk0NTI3MTg2QUNG ODM5OUEyNUYwHhcNMjUwNzAyMTkzMjU5WhcNMjUwNzA5MTkzMjU5WjAYMRYwFAYD VQQDEw02ODY1ODk2Yi0xZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpgftXQJiKEQcQ7W6Fhgbqo+B44D8LdIHJYRZuPewCV5DTB5IcORZn2HrXVd kQ7ccseLe4aEfoIJDIV0E79JTdC2JY4AVNYxC+05g58WRpP/qe0CAgk2oGvlctx4 XdjJtlmzukjjL6L26cZ2mAs+XdTadHPare7LxYWDXliMMNUh9/PVs/0sJ4HI5K/J N36420ea2KeqY7fA0PXqevwr5x4nX+hk9nNnSRFVwr5uy0QJkYQOulTQKx63n8iI 2lxO6dBi7vxO8vGks1FpoALteg0Gj+meR/Id+XWqAT25S3VSd7m8Rjp/6J39WNvu fZpfpcbxspHEj/iYh0zoKrJl0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4f+y00 zBCX7BWsxpMNL1yrAqY4MB8GA1UdIwQYMBaAFLdyg8UzETo5HjHZRScYas+DmaJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUU0Qi82M0RGRjgwMjQ1 QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9qa2VNZGxGSnhocXo0T1pv bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3QzS0R4VE1ST2prZU1kbEZKeGhxejRPWm9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUU0Qi82M0RGRjgwMjQ1QTQxMUVBOTQyRTA5NTdDNEY5QUUwMi90M0tEeFRNUk9q a2VNZGxGSnhocXo0T1pvbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFrSuocnpR4n5U4oLpUFOl9kBFfTOrdcdd3ScxniTfSIvVNF912TMa sIS6QPU/NyS2uKS0ky3BpkSfWxp2eajDdIueUimyF1SYauMjYhYrGSCNItFA+UnM hQmYE+JGSZymDt0IMLA9x6fdbyVMmNByqdSVpsHseicdsurlFf1p7/YlIXBHqkLO pA/ySPn/5mES1QfYdUH6dTYYzIBM3Olil5uEVHv3bkNNNC5ElBQ1danUUFg6WFFv j0dhAYAo9HPmxjRm4HfHqjcFplOXMNJjaktDCldyzBvapy8ZgWoJsG/O6XZa0fEx U4wdvq7fGEmkAJa/FhbE4TJyPy0ooAKi -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:00 2025 by rpki-client