$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft File: f7FuQPo8p3_OJMTJpGRWg8OeihE.mft (raw, json) Hash identifier: bbefwzclqEkCrJcyNg0NkaBcFa2a297JA4L1WNFUUTw= Subject key identifier: 9E:2F:B5:43:9A:21:CD:A3:3D:F7:00:03:F2:B1:A6:97:F0:0E:E3:36 Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft Manifest number: 01AB Signing time: Tue 01 Jul 2025 03:36:27 +0000 Manifest this update: Tue 01 Jul 2025 03:36:27 +0000 Manifest next update: Tue 08 Jul 2025 03:36:27 +0000 Files and hashes: 1: f7FuQPo8p3_OJMTJpGRWg8OeihE.crl (hash: D28FYFpvVsmPvNiTHPw65QcwarYfmoBAiLs5QLylT+Y=) 2: AB3814CEC85411EDAE5D9322C4F9AE02.roa (hash: hP+l6tFfGRtL/s3PVotLK1C45PriZjz7pB5mLcbuaqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D, serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: Jul 1 03:36:27 2025 GMT Not After : Jul 8 03:36:27 2025 GMT Subject: CN=686357bb-0307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:56:07:d0:89:0b:be:0e:0f:fa:59:3f:17:6f: 2d:6a:2f:ee:5e:3a:3f:87:db:4e:89:a9:34:18:80: a3:71:63:ab:3c:4d:84:04:24:1d:62:48:08:df:5f: 4a:7f:c6:11:2a:6f:9f:fe:33:fb:e0:ec:e1:45:47: c2:ac:5b:f0:c9:da:f8:38:a3:09:e4:13:8a:5b:0d: 80:b7:2a:a4:88:25:c4:c1:c8:d2:82:20:4a:f2:0e: 93:a7:2b:72:8f:87:80:32:4f:7e:f6:60:16:10:30: 65:d7:d0:e2:de:b5:83:c9:71:10:24:b8:eb:11:57: ac:a1:50:e2:34:9c:55:e8:eb:7d:57:61:b2:70:38: 63:fe:b8:e0:d2:2e:31:c5:9e:24:cb:08:d5:ca:ce: ab:77:2c:e8:d7:69:34:7f:05:1c:f3:1e:f6:d5:cf: 21:2f:0b:ea:bd:53:6d:c7:55:8e:ca:bf:5a:47:97: 56:43:dd:99:4b:d1:5f:03:92:ee:7a:9d:51:48:f8: cb:fc:fe:bf:3b:6c:df:b7:09:6b:e1:7c:e2:48:f2: af:13:36:86:1e:84:3f:09:9c:38:87:dc:b0:56:1a: d0:ff:84:ad:c9:84:b2:60:17:64:0b:fe:e3:12:c4: 47:7a:96:43:2f:80:f6:eb:87:14:9c:98:5f:5d:a9: 28:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2F:B5:43:9A:21:CD:A3:3D:F7:00:03:F2:B1:A6:97:F0:0E:E3:36 X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:03:b8:ca:69:96:ae:a3:61:c4:d7:ad:e8:ef:7c:a6:e0:b9: a3:7d:29:de:88:60:50:b1:99:fc:08:3e:d4:d2:d0:01:e5:2d: 4c:9b:40:65:e7:95:dc:55:cc:ab:f5:52:bf:15:9c:e5:87:eb: 1f:28:35:a3:18:77:d9:f1:11:78:4a:d1:5c:4e:29:a8:61:9f: 3b:b9:6d:0e:84:74:7c:b2:ed:fb:16:59:f0:fa:57:2c:27:c9: d4:a6:be:2d:c0:00:4d:7d:fc:69:dd:ed:dd:a7:93:65:90:a6: 08:2e:c8:26:e7:8b:ca:99:26:f6:40:34:2b:4b:96:00:f3:0a: 54:2e:79:9e:fd:08:83:11:a3:b6:70:d3:fd:c3:99:66:5a:a0: 82:5a:39:a6:44:b9:6c:71:15:eb:a1:c1:54:6e:22:c6:c2:48: 20:a8:e2:28:32:8c:79:65:27:45:b9:80:ac:82:6c:c0:74:5e: 7c:a9:57:da:ba:4a:13:08:e2:a6:f4:e3:f8:d6:a7:fb:a3:58: bb:da:bf:a0:ad:f0:f4:06:19:a1:ff:33:dc:92:92:d1:4c:1c: 07:6a:74:20:cf:b9:e6:7f:ca:ab:c9:6b:0c:5b:a9:d7:fa:81: 71:cc:af:f9:d9:5c:7f:fb:6c:6d:61:5c:34:52:29:65:fc:8f: 80:1b:3c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjUwNzAxMDMzNjI3WhcNMjUwNzA4MDMzNjI3WjAYMRYwFAYD VQQDEw02ODYzNTdiYi0wMzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01YH0IkLvg4P+lk/F28tai/uXjo/h9tOiak0GICjcWOrPE2EBCQdYkgI319K f8YRKm+f/jP74OzhRUfCrFvwydr4OKMJ5BOKWw2AtyqkiCXEwcjSgiBK8g6Tpyty j4eAMk9+9mAWEDBl19Di3rWDyXEQJLjrEVesoVDiNJxV6Ot9V2GycDhj/rjg0i4x xZ4kywjVys6rdyzo12k0fwUc8x721c8hLwvqvVNtx1WOyr9aR5dWQ92ZS9FfA5Lu ep1RSPjL/P6/O2zftwlr4XziSPKvEzaGHoQ/CZw4h9ywVhrQ/4StyYSyYBdkC/7j EsRHepZDL4D264cUnJhfXako6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4vtUOa Ic2jPfcAA/KxppfwDuM2MB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjgzRC9BM0Q1MkZCOEM4NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAz X09KTVRKcEdSV2c4T2VpaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRA7jKaZauo2HE163o73ym4LmjfSneiGBQsZn8CD7U0tAB5S1Mm0Bl 55XcVcyr9VK/FZzlh+sfKDWjGHfZ8RF4StFcTimoYZ87uW0OhHR8su37Flnw+lcs J8nUpr4twABNffxp3e3dp5NlkKYILsgm54vKmSb2QDQrS5YA8wpULnme/QiDEaO2 cNP9w5lmWqCCWjmmRLlscRXrocFUbiLGwkggqOIoMox5ZSdFuYCsgmzAdF58qVfa ukoTCOKm9OP41qf7o1i72r+grfD0Bhmh/zPckpLRTBwHanQgz7nmf8qryWsMW6nX +oFxzK/52Vx/+2xtYVw0Uill/I+AGzzj -----END CERTIFICATE-----Generated at Tue Jul 1 12:49:59 2025 by rpki-client