$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: pP9IZcoWro5fpTjYot8hlJALpd2UqMyVPo0aInBEPDM= Subject key identifier: 3D:A3:76:03:23:58:2E:B3:21:B3:B9:D8:CC:E6:1A:27:33:62:1B:F5 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 016D Signing time: Tue 01 Jul 2025 04:26:15 +0000 Manifest this update: Tue 01 Jul 2025 04:26:14 +0000 Manifest next update: Tue 08 Jul 2025 04:26:14 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: F+wfdsb4UVOeequhPWgd5QDckvSDOJEpupDC7mcTUwA=) 2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: ed3VnRz1sRChg/cFQmGXFi6QslMtcDU5X1xXHCQiW6k=) 3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Jul 1 04:26:14 2025 GMT Not After : Jul 8 04:26:14 2025 GMT Subject: CN=68636367-7607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:01:c4:21:2f:ee:42:49:e5:93:9b:a9:76:56: 20:d1:3c:2b:f5:bb:69:78:d0:5f:8a:0c:a7:6e:a4: 8c:14:33:e7:47:51:2b:9f:78:1d:58:b1:d1:84:18: 4a:1a:3f:32:d2:a9:15:0b:d5:4a:ea:25:f3:39:1a: 74:bd:90:df:7e:c5:4a:e0:f0:88:3c:3b:a5:9c:03: d1:e6:c3:ef:ab:0b:d2:ae:ea:7e:ca:97:6e:c9:5a: a1:13:ca:a1:48:c4:91:25:5a:6a:09:9d:14:6e:cd: ac:78:c7:9d:7d:06:66:38:27:40:11:b8:20:13:d5: e2:b5:f9:c0:69:ac:92:51:da:2c:84:1e:08:dd:39: 81:b7:7c:f6:52:12:4b:b5:6f:b4:4a:c6:bc:af:0b: fa:57:07:b2:94:da:7e:65:5b:5c:09:de:cb:57:6e: e1:05:89:aa:02:d8:21:4b:ef:4a:31:d3:3b:e0:ea: a8:b8:a0:a6:7d:d4:1c:47:48:00:bb:c4:7b:ca:95: b8:11:1f:d3:5d:08:93:64:08:37:01:17:77:09:b2: 41:2c:fe:37:6a:4b:28:9c:94:74:af:39:28:4e:dc: 4f:9b:b1:48:0d:d5:23:1e:f4:77:ba:f0:83:d4:4c: 60:ee:fc:23:a5:b3:e4:5f:96:97:ba:1d:49:3a:ca: 22:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A3:76:03:23:58:2E:B3:21:B3:B9:D8:CC:E6:1A:27:33:62:1B:F5 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:6b:db:4c:b4:71:9c:19:87:0f:85:45:2a:28:0e:12:1b:0e: 92:4d:8b:1d:e6:f0:c5:21:7e:52:ed:60:af:8f:5b:0c:31:55: 2f:93:28:ff:61:9a:9d:c7:e3:cd:35:6e:b7:8e:ea:ab:08:f1: fe:a8:5f:fb:cb:85:85:c0:ba:b2:cf:5e:4c:fc:29:0b:e0:f8: 3c:a8:ee:af:5f:be:52:6b:34:17:a4:c9:ef:fe:09:d9:bd:19: de:87:6f:c6:d8:36:1d:99:22:f8:3e:d0:b4:19:f7:bb:02:f1: c6:3f:df:82:31:5e:6e:55:5e:81:5f:8e:70:db:cb:cb:6f:b1: 7f:a5:4d:40:ff:10:b1:e9:b4:a4:99:6c:cb:48:e8:01:0e:b5: d6:a4:41:87:7f:2d:17:da:7e:45:71:75:1d:c8:2a:37:42:68: 12:cd:54:f8:3b:c1:72:52:02:d3:34:ac:17:81:e5:1e:8c:e0: a9:ae:0f:4a:0b:43:fe:72:d0:ed:66:cc:e6:c2:e6:d3:86:3a: 39:41:dc:91:c8:06:1d:d3:89:b5:e4:11:37:2b:3e:af:3b:d9: c6:d7:4d:9b:68:8f:77:7a:c3:5a:52:1f:1b:6e:54:e2:6e:18: 2e:1b:40:4b:a9:82:3f:d7:fc:8e:f0:a6:fa:d3:19:dd:bd:a7: 33:10:18:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUwNzAxMDQyNjE0WhcNMjUwNzA4MDQyNjE0WjAYMRYwFAYD VQQDEw02ODYzNjM2Ny03NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAHEIS/uQknlk5updlYg0Twr9btpeNBfigynbqSMFDPnR1Ern3gdWLHRhBhK Gj8y0qkVC9VK6iXzORp0vZDffsVK4PCIPDulnAPR5sPvqwvSrup+ypduyVqhE8qh SMSRJVpqCZ0Ubs2seMedfQZmOCdAEbggE9XitfnAaaySUdoshB4I3TmBt3z2UhJL tW+0Ssa8rwv6VweylNp+ZVtcCd7LV27hBYmqAtghS+9KMdM74OqouKCmfdQcR0gA u8R7ypW4ER/TXQiTZAg3ARd3CbJBLP43aksonJR0rzkoTtxPm7FIDdUjHvR3uvCD 1Exg7vwjpbPkX5aXuh1JOsoi9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2jdgMj WC6zIbO52MzmGiczYhv1MB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEa9tMtHGcGYcPhUUqKA4SGw6STYsd5vDFIX5S7WCvj1sMMVUvkyj/ YZqdx+PNNW63juqrCPH+qF/7y4WFwLqyz15M/CkL4Pg8qO6vX75SazQXpMnv/gnZ vRneh2/G2DYdmSL4PtC0Gfe7AvHGP9+CMV5uVV6BX45w28vLb7F/pU1A/xCx6bSk mWzLSOgBDrXWpEGHfy0X2n5FcXUdyCo3QmgSzVT4O8FyUgLTNKwXgeUejOCprg9K C0P+ctDtZszmwubThjo5QdyRyAYd04m15BE3Kz6vO9nG102baI93esNaUh8bblTi bhguG0BLqYI/1/yO8Kb60xndvaczEBjk -----END CERTIFICATE-----Generated at Wed Jul 2 16:38:36 2025 by rpki-client