$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: DAN3gzUL3lj9f3aMY0W5AqCC+NQQtfwRoOt/9SMHBLA= Subject key identifier: 12:B0:2B:C3:2A:7E:60:3A:6A:15:87:D3:81:F6:E1:96:60:7F:3D:43 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: 61 Signing time: Tue 01 Jul 2025 07:48:48 +0000 Manifest this update: Tue 01 Jul 2025 07:48:47 +0000 Manifest next update: Tue 08 Jul 2025 07:48:47 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: aQbuJWbrG3bd+RqPRxFx70HmqsPhLTX6M1s/O0BlOI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Jul 1 07:48:47 2025 GMT Not After : Jul 8 07:48:47 2025 GMT Subject: CN=686392df-3ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:81:ff:d3:f0:16:c5:25:b0:5f:42:1c:5c:7d: 7f:ed:6b:bb:cc:ca:8f:20:b9:da:50:9d:58:fe:80: 3c:01:ca:bb:4e:33:4b:bb:75:34:d9:95:6d:1c:f3: 77:88:d2:ee:be:07:ec:f7:ad:72:c2:62:6b:55:cd: 19:b4:d9:38:4a:08:de:db:c1:52:32:61:fc:96:1c: 52:03:fe:53:3b:f2:19:44:b7:6d:a7:57:46:e1:90: 75:b6:4f:d1:83:4f:40:1a:11:37:6a:05:03:1c:b7: 0f:79:48:55:30:85:64:1b:48:c9:2f:83:72:89:d7: 92:bb:a1:ce:74:b4:53:74:ce:14:34:48:60:ca:83: 10:02:bd:e4:f6:f7:3f:7f:28:50:fc:f9:19:71:9c: c7:dd:c6:83:4d:5b:17:6b:4f:6e:9b:4f:65:c0:5f: 93:45:e0:0f:40:15:ed:95:f2:a9:98:ca:4f:6c:3e: 0a:76:a9:4d:68:5e:71:d7:3c:5e:7c:87:5a:80:1c: 72:9d:03:a4:c4:56:b1:0c:36:db:53:2a:6c:e4:9f: ec:c7:a4:22:3b:89:c5:bd:81:cc:8a:e6:5c:71:0d: 93:5f:43:02:6e:73:5a:be:1e:2d:9a:01:a4:72:62: 46:50:66:59:d1:26:df:34:75:96:79:39:bc:54:18: 41:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B0:2B:C3:2A:7E:60:3A:6A:15:87:D3:81:F6:E1:96:60:7F:3D:43 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b4:56:e7:40:06:8f:26:f1:d1:cd:8e:ce:f0:ae:c3:4e:40: d6:18:2f:c5:09:75:0b:88:af:6a:ea:eb:ea:1d:57:0d:ce:4b: 17:5e:bb:93:be:8a:31:53:f5:16:f8:ed:a5:ff:34:74:aa:32: 29:ab:ec:77:52:ba:4d:8f:04:c0:f8:b4:00:e7:91:23:cc:62: 53:00:4a:5f:d6:f9:94:9a:26:72:97:d3:a2:39:77:1f:79:52: 6f:95:d4:d7:f8:b0:f8:83:60:20:14:85:98:2a:7f:c3:0b:44: dd:82:24:3a:f1:4e:19:99:1a:09:52:f9:32:07:48:bd:5f:c4: b5:8f:ca:62:c4:09:23:17:9f:8d:c3:b1:2d:fd:72:c8:86:80: 44:dd:ee:cd:3d:71:cc:f6:d5:c7:84:80:eb:d6:cf:53:58:0a: f6:f1:a3:20:06:d7:f2:2c:0e:66:6e:95:cd:b7:ff:40:00:0b: 80:bc:77:72:de:12:4c:7a:5e:ce:8f:cb:19:ff:1d:96:bf:af: 69:6d:da:10:e3:82:62:fd:52:14:8b:1e:46:e6:6a:78:a5:f4: 3d:eb:3e:33:5c:85:c1:94:dd:45:b5:ca:3c:86:5c:dc:cc:13: 44:9c:65:58:de:e5:ba:df:b1:be:7e:9d:40:46:42:24:40:84: 39:f2:f8:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjIwNzExMC8GA1UEBRMoNzc3REI4OTc0NTcwRTlCNkMwNEUyNjU3RTZEMEE1MDM3 QzcxODg2QjAeFw0yNTA3MDEwNzQ4NDdaFw0yNTA3MDgwNzQ4NDdaMBgxFjAUBgNV BAMTDTY4NjM5MmRmLTNlYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOgf/T8BbFJbBfQhxcfX/ta7vMyo8gudpQnVj+gDwByrtOM0u7dTTZlW0c83eI 0u6+B+z3rXLCYmtVzRm02ThKCN7bwVIyYfyWHFID/lM78hlEt22nV0bhkHW2T9GD T0AaETdqBQMctw95SFUwhWQbSMkvg3KJ15K7oc50tFN0zhQ0SGDKgxACveT29z9/ KFD8+RlxnMfdxoNNWxdrT26bT2XAX5NF4A9AFe2V8qmYyk9sPgp2qU1oXnHXPF58 h1qAHHKdA6TEVrEMNttTKmzkn+zHpCI7icW9gcyK5lxxDZNfQwJuc1q+Hi2aAaRy YkZQZlnRJt80dZZ5ObxUGEFxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUErArwyp+ YDpqFYfTgfbhlmB/PUMwHwYDVR0jBBgwFoAUd324l0Vw6bbATiZX5tClA3xxiGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGMjA3L0I0ODg2MUM2QzIy ODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMyNGwwVnc2YmJBVGlaWDV0Q2xBM3h4aUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG MjA3L0I0ODg2MUM2QzIyODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJi QVRpWlg1dENsQTN4eGlHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFy0VudABo8m8dHNjs7wrsNOQNYYL8UJdQuIr2rq6+odVw3OSxdeu5O+ ijFT9Rb47aX/NHSqMimr7HdSuk2PBMD4tADnkSPMYlMASl/W+ZSaJnKX06I5dx95 Um+V1Nf4sPiDYCAUhZgqf8MLRN2CJDrxThmZGglS+TIHSL1fxLWPymLECSMXn43D sS39csiGgETd7s09ccz21ceEgOvWz1NYCvbxoyAG1/IsDmZulc23/0AAC4C8d3Le Ekx6Xs6Pyxn/HZa/r2lt2hDjgmL9UhSLHkbmanil9D3rPjNchcGU3UW1yjyGXNzM E0ScZVje5brfsb5+nUBGQiRAhDny+Jc= -----END CERTIFICATE-----Generated at Thu Jul 3 00:17:58 2025 by rpki-client