$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: NSOjxhPR3sQ5LR6zMYXCnvJyJ7t2hmJZeFHy9p9waUw= Subject key identifier: 1E:DE:0C:F3:02:D1:88:E6:08:F8:A4:F9:5F:60:AD:57:64:D0:B2:FE Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D56 Signing time: Wed 02 Jul 2025 18:12:04 +0000 Manifest this update: Wed 02 Jul 2025 18:12:03 +0000 Manifest next update: Wed 09 Jul 2025 18:12:03 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: nNtqyam+3ado7o+SQh1uc97l2E+TgoIxoZqpQokPRRI=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: 7fCnTjBep84sk9XgkMrT6eykdpGaMDHQzEZtybjm0AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Jul 2 18:12:03 2025 GMT Not After : Jul 9 18:12:03 2025 GMT Subject: CN=68657674-dfa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b5:54:33:91:0d:cf:aa:55:03:4b:ab:41:43: de:14:c6:49:57:04:38:f7:59:45:ae:45:88:5b:c1: 13:24:01:21:d2:37:08:a0:e7:2c:41:8a:5b:06:4e: 69:41:00:b5:4f:a4:98:7e:e6:8b:45:aa:b6:a1:50: e3:94:f7:74:e9:6c:e9:97:e8:a8:4a:c1:84:90:1d: 72:26:10:81:bd:13:2c:8e:f4:a3:d8:05:61:32:73: 70:c7:ec:43:a9:b8:dc:e4:97:da:a1:d8:e1:9c:98: eb:56:da:22:90:b6:34:85:f5:54:5d:fd:da:0e:cc: 3a:9c:96:be:57:2f:29:b2:ba:68:6c:22:c1:3d:8f: 48:87:06:6e:4a:6c:36:ca:1e:0b:0d:3c:16:88:0b: 5e:4b:fa:c9:2b:86:1c:f5:7b:5d:6e:ca:f0:0e:b6: 2d:8e:3d:af:2e:5c:62:27:34:6b:a5:84:ba:db:79: e3:ce:7d:33:9e:4c:ae:19:6b:9e:e8:58:74:06:7a: 1e:df:1b:bf:f6:3f:3f:93:e2:65:3e:da:c9:f5:14: 8c:4a:d8:ab:8d:57:8e:f7:7f:10:6a:67:73:5d:0e: 14:3b:7e:e1:ab:3e:e0:08:f7:c5:1c:1d:66:0d:7a: 6e:f8:55:2f:37:ff:99:e3:c8:1d:e5:48:40:75:35: c5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DE:0C:F3:02:D1:88:E6:08:F8:A4:F9:5F:60:AD:57:64:D0:B2:FE X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:82:24:14:ae:90:fc:f4:92:93:49:3a:05:b4:2d:4b:76:33: 0e:81:c2:e4:ef:a1:ef:b9:1a:43:21:9a:35:fc:e0:40:c0:59: 8e:75:95:6c:31:54:f0:56:54:55:80:da:0f:80:ca:6a:62:d7: 16:f7:8b:0f:89:25:da:41:2b:92:ad:87:c2:45:18:fa:92:bd: b3:da:c5:ae:20:c7:c3:46:86:85:c3:7c:3f:92:cf:88:30:62: db:6a:98:25:b8:de:48:a4:0f:39:da:c9:0d:fe:0f:22:21:25: 0b:b9:91:52:09:8c:bb:7b:c1:df:3c:84:f8:06:68:e3:9a:57: 16:f7:9f:85:26:4f:2b:3f:3e:59:c0:29:d4:c1:6e:31:6c:29: 9a:3d:83:5c:db:47:60:cc:29:2f:f8:b5:28:55:2a:50:19:f8: 72:b4:47:d6:e7:ea:46:e0:49:43:81:27:cd:34:14:b1:64:42: ca:45:28:40:69:87:27:ae:04:17:e2:33:eb:02:9a:d6:ab:ce: 95:3d:93:46:76:de:16:e4:ec:22:fc:ce:86:0e:9f:cc:96:da: dd:7a:a9:e9:5e:64:4c:24:52:08:f5:2c:e0:59:2c:2c:23:04: 69:b7:d5:fe:d6:d4:ec:84:e8:3a:cd:94:c0:b1:2a:69:71:5f: 84:cd:9f:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUwNzAyMTgxMjAzWhcNMjUwNzA5MTgxMjAzWjAYMRYwFAYD VQQDEw02ODY1NzY3NC1kZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLVUM5ENz6pVA0urQUPeFMZJVwQ491lFrkWIW8ETJAEh0jcIoOcsQYpbBk5p QQC1T6SYfuaLRaq2oVDjlPd06Wzpl+ioSsGEkB1yJhCBvRMsjvSj2AVhMnNwx+xD qbjc5JfaodjhnJjrVtoikLY0hfVUXf3aDsw6nJa+Vy8psrpobCLBPY9IhwZuSmw2 yh4LDTwWiAteS/rJK4Yc9XtdbsrwDrYtjj2vLlxiJzRrpYS623njzn0znkyuGWue 6Fh0Bnoe3xu/9j8/k+JlPtrJ9RSMStirjVeO938QamdzXQ4UO37hqz7gCPfFHB1m DXpu+FUvN/+Z48gd5UhAdTXFRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7eDPMC 0YjmCPik+V9grVdk0LL+MB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlgiQUrpD89JKTSToFtC1LdjMOgcLk76HvuRpDIZo1/OBAwFmOdZVs MVTwVlRVgNoPgMpqYtcW94sPiSXaQSuSrYfCRRj6kr2z2sWuIMfDRoaFw3w/ks+I MGLbapgluN5IpA852skN/g8iISULuZFSCYy7e8HfPIT4BmjjmlcW95+FJk8rPz5Z wCnUwW4xbCmaPYNc20dgzCkv+LUoVSpQGfhytEfW5+pG4ElDgSfNNBSxZELKRShA aYcnrgQX4jPrAprWq86VPZNGdt4W5Owi/M6GDp/MltrdeqnpXmRMJFII9SzgWSws IwRpt9X+1tTshOg6zZTAsSppcV+EzZ9X -----END CERTIFICATE-----Generated at Fri Jul 4 13:44:38 2025 by rpki-client