$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: 3uyPm3RxSUwlguhS/MkfNB66MthMCzTil3hNZPzdpF0= Subject key identifier: B9:A8:1D:EB:2D:2F:F6:AC:86:1E:60:0F:10:6F:7F:7C:F0:66:FC:B6 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 03A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 03A0 Signing time: Thu 03 Jul 2025 01:07:52 +0000 Manifest this update: Thu 03 Jul 2025 01:07:52 +0000 Manifest next update: Thu 10 Jul 2025 01:07:52 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: vM2vRsMW9EZnK7aZzIHqwyivUVFDfxpqUlBL2/q17Hg=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: KeGUlxiblyObJWylXKCmQlAzDIkOWbFTSQRBaia1TDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 932 (0x3a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Jul 3 01:07:52 2025 GMT Not After : Jul 10 01:07:52 2025 GMT Subject: CN=6865d7e8-9323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:83:39:bd:92:b1:03:d8:06:17:9d:de:0b:43: 4a:23:4c:58:dd:23:16:24:53:aa:a4:9c:5e:7c:ce: 98:ac:81:6b:33:d6:fc:6d:c2:e6:9e:03:11:ff:c8: 41:60:15:52:a0:96:62:d9:c8:a0:1d:97:ee:7d:3f: 25:72:a0:0f:e5:7f:95:64:f0:61:6f:47:75:81:d3: c4:82:5b:0e:c9:1c:99:22:29:c7:0c:c3:57:1b:3b: b0:04:62:73:38:b0:78:f3:e4:c6:ed:9c:e9:ab:fb: 22:7a:c9:22:af:47:47:8e:bd:9d:8c:fd:cf:9d:5d: 1c:59:c9:e0:de:94:fd:44:43:6e:98:38:9d:2b:b5: 83:6b:81:26:74:7f:8d:27:76:af:04:2f:6c:62:0c: 60:99:67:a8:5d:14:81:c4:2b:a8:dc:5d:d8:8c:4d: 8b:ba:ab:c2:89:52:48:2a:7d:aa:15:41:08:86:f7: ea:a2:00:b9:c7:ac:e3:5b:ff:e1:27:63:51:cc:7f: f4:35:72:d3:87:d7:30:2e:88:6f:18:e2:0d:6f:cc: f0:29:97:cd:1e:9b:52:e8:e0:ed:77:cb:af:26:1e: d3:99:f7:16:cd:ee:3a:fb:0f:94:74:1b:4e:fe:ec: e3:8f:e7:2c:31:2f:ce:5c:a8:0f:06:1f:71:02:e6: e9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A8:1D:EB:2D:2F:F6:AC:86:1E:60:0F:10:6F:7F:7C:F0:66:FC:B6 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:59:ed:f1:e4:92:53:66:2c:1e:db:30:0d:a9:ea:9e:32:a6: 2f:71:f8:f8:28:be:50:e8:9d:81:d2:f3:b0:9c:22:23:73:84: d1:f5:d4:86:a3:d8:64:b8:eb:c4:dd:45:df:70:24:55:3a:9a: 80:c9:f0:e3:78:de:e9:55:25:09:83:76:d5:f2:41:49:c7:81: c9:42:11:4d:a5:f0:61:cf:5e:8c:c3:f8:76:0c:c2:df:82:69: a9:2c:73:64:f2:3e:68:89:96:e9:fb:76:bf:0b:b5:99:58:b3: 4c:16:da:3f:97:82:97:dc:db:12:0c:ce:5d:0a:42:35:e1:36: 99:f8:d2:b7:10:d6:2e:91:5a:fc:0a:d2:12:45:26:cc:96:d1: 03:43:32:cd:b6:6f:1a:e4:d3:92:fb:21:90:bb:c4:4d:d5:9f: 3a:cc:59:e7:91:79:31:af:07:aa:f1:fc:b5:34:b2:04:ad:fd: 34:d9:7a:b5:38:98:c8:e7:86:53:33:23:6b:14:e8:19:9e:11: db:2e:7a:f4:30:6c:ce:80:55:20:bd:06:4c:0c:b5:3c:a4:a9: a7:5c:cd:bd:6d:27:ed:4b:d3:67:09:da:64:70:39:23:bb:ce: 12:57:56:fd:cf:11:f8:fb:fd:26:15:7a:d1:cf:61:fc:9c:9f: b0:ff:78:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwNzAzMDEwNzUyWhcNMjUwNzEwMDEwNzUyWjAYMRYwFAYD VQQDEw02ODY1ZDdlOC05MzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoM5vZKxA9gGF53eC0NKI0xY3SMWJFOqpJxefM6YrIFrM9b8bcLmngMR/8hB YBVSoJZi2cigHZfufT8lcqAP5X+VZPBhb0d1gdPEglsOyRyZIinHDMNXGzuwBGJz OLB48+TG7Zzpq/sieskir0dHjr2djP3PnV0cWcng3pT9RENumDidK7WDa4EmdH+N J3avBC9sYgxgmWeoXRSBxCuo3F3YjE2LuqvCiVJIKn2qFUEIhvfqogC5x6zjW//h J2NRzH/0NXLTh9cwLohvGOINb8zwKZfNHptS6ODtd8uvJh7TmfcWze46+w+UdBtO /uzjj+csMS/OXKgPBh9xAubppwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmoHest L/ashh5gDxBvf3zwZvy2MB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2We3x5JJTZiwe2zANqeqeMqYvcfj4KL5Q6J2B0vOwnCIjc4TR9dSG o9hkuOvE3UXfcCRVOpqAyfDjeN7pVSUJg3bV8kFJx4HJQhFNpfBhz16Mw/h2DMLf gmmpLHNk8j5oiZbp+3a/C7WZWLNMFto/l4KX3NsSDM5dCkI14TaZ+NK3ENYukVr8 CtISRSbMltEDQzLNtm8a5NOS+yGQu8RN1Z86zFnnkXkxrweq8fy1NLIErf002Xq1 OJjI54ZTMyNrFOgZnhHbLnr0MGzOgFUgvQZMDLU8pKmnXM29bSftS9NnCdpkcDkj u84SV1b9zxH4+/0mFXrRz2H8nJ+w/3gH -----END CERTIFICATE-----Generated at Thu Jul 3 08:14:01 2025 by rpki-client