$ rpki-client -vvf rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft File: ROq4zxyb1totteNCtBx0fuOkUF8.mft (raw, json) Hash identifier: YFWLnDdRnjtJMpu041NXqMa1EMNEaIaHKIFwp1A0AkI= Subject key identifier: A3:62:F5:4F:D1:D7:BC:B4:6D:CD:1B:32:AD:E0:D9:ED:79:47:A4:55 Authority key identifier: 44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F Certificate issuer: /CN=A91B00B6/serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Certificate serial: 0A1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft Manifest number: 0A14 Signing time: Fri 04 Jul 2025 20:10:39 +0000 Manifest this update: Fri 04 Jul 2025 20:10:39 +0000 Manifest next update: Fri 11 Jul 2025 20:10:38 +0000 Files and hashes: 1: ROq4zxyb1totteNCtBx0fuOkUF8.crl (hash: NpdjRgWMvzVFxoP3cRqZgoAvZsx4ISXagrYJJWw3DC4=) 2: 800EC4AE756F11EAAA2E0F6CC4F9AE02.roa (hash: yZGCclZoBxnBhfhgaEtvdMtpamiVGJaHMeM0i3edazA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2586 (0xa1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B00B6, serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Validity Not Before: Jul 4 20:10:39 2025 GMT Not After : Jul 11 20:10:38 2025 GMT Subject: CN=6868353f-8673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:92:d2:6a:d9:d4:f9:0e:63:a4:13:20:88:3a: d3:7c:cd:cf:04:13:3e:a0:f6:3a:78:b4:97:50:14: b6:ac:84:21:f8:03:15:f7:b5:48:89:ae:49:b8:e2: e4:e2:02:97:80:9e:2a:b1:df:31:90:b0:43:ca:c1: b1:b4:ae:66:74:e4:91:49:eb:78:75:c7:6f:8f:07: ca:de:7f:fd:c7:c8:30:95:5e:16:2b:14:3c:32:9a: a9:c3:b4:0e:6d:1f:14:f6:12:47:a1:ed:8a:c9:d7: 8f:f0:47:e5:4b:08:e8:28:5a:2d:c1:01:4d:e6:85: 3d:ad:cd:68:2b:5a:13:dd:7a:d8:b2:9b:73:e9:73: c0:7c:b5:50:ed:98:46:cd:3e:b8:c7:9b:73:db:cb: 44:b0:bc:54:c1:a8:63:11:a0:11:49:a6:ca:56:08: c6:62:5f:b7:fa:ff:0d:42:ec:b5:02:98:64:69:56: 0d:97:0f:80:75:7c:ce:3f:28:05:1a:7d:51:eb:8f: b3:24:01:93:74:f4:2c:03:f7:a9:9d:1e:89:2f:a4: 49:a3:fa:b1:9c:56:7b:62:e9:7c:f5:2a:67:a5:e9: d2:11:1e:8f:9b:09:e2:89:af:27:3c:d7:d6:af:7f: 93:84:bd:a0:d7:b1:96:0c:bd:62:42:f9:ac:3b:52: b1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:62:F5:4F:D1:D7:BC:B4:6D:CD:1B:32:AD:E0:D9:ED:79:47:A4:55 X509v3 Authority Key Identifier: keyid:44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ef:12:86:bd:89:ad:3b:55:9b:ea:12:b4:ec:3e:11:48:d4: 13:12:f3:de:a8:c5:31:0b:82:6c:61:cc:79:b5:c2:d0:49:4e: 41:4e:bc:24:58:47:bd:ef:52:3a:ae:92:c0:2b:c8:21:be:f6: 6c:41:d7:c7:1d:93:78:27:2d:f7:2b:32:a4:1d:49:8a:f6:18: 45:ac:a0:b5:dd:44:bd:68:d6:fd:b1:5c:52:7d:f0:da:2c:51: 42:21:cb:a7:bd:e3:71:fe:53:08:0f:4b:ed:1c:d4:7d:f7:70: c3:ee:b3:40:94:c6:70:fd:6b:02:78:a9:3c:5f:f0:89:8b:92: 15:c1:9d:ef:5a:0e:40:44:37:53:91:41:2c:70:80:f4:8f:f3: 6a:8f:55:21:44:ee:bf:83:1a:d1:e5:0c:50:41:ae:e7:06:53: e1:26:c3:76:31:7c:0b:a7:d0:db:38:c3:26:8b:09:cc:d8:8d: 74:43:e2:fe:d8:24:6e:a2:cc:8f:44:de:56:16:ac:f8:06:6f: 2b:b7:f7:1e:16:05:27:73:9b:42:07:1a:42:df:5e:39:e8:56: b2:c1:a8:34:24:aa:b7:a8:d2:cb:1c:e8:45:c5:17:1e:6b:11: 4f:02:70:3b:12:88:a2:b0:a1:dc:3a:04:12:71:fb:df:1d:3b: bd:34:fd:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwQjYxMTAvBgNVBAUTKDQ0RUFCOENGMUM5QkQ2REEyREI1RTM0MkI0MUM3NDdF RTNBNDUwNUYwHhcNMjUwNzA0MjAxMDM5WhcNMjUwNzExMjAxMDM4WjAYMRYwFAYD VQQDEw02ODY4MzUzZi04NjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpLSatnU+Q5jpBMgiDrTfM3PBBM+oPY6eLSXUBS2rIQh+AMV97VIia5JuOLk 4gKXgJ4qsd8xkLBDysGxtK5mdOSRSet4dcdvjwfK3n/9x8gwlV4WKxQ8Mpqpw7QO bR8U9hJHoe2KydeP8EflSwjoKFotwQFN5oU9rc1oK1oT3XrYsptz6XPAfLVQ7ZhG zT64x5tz28tEsLxUwahjEaARSabKVgjGYl+3+v8NQuy1AphkaVYNlw+AdXzOPygF Gn1R64+zJAGTdPQsA/epnR6JL6RJo/qxnFZ7Yul89SpnpenSER6Pmwniia8nPNfW r3+ThL2g17GWDL1iQvmsO1KxsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNi9U/R 17y0bc0bMq3g2e15R6RVMB8GA1UdIwQYMBaAFETquM8cm9baLbXjQrQcdH7jpFBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDBCNi85RjlBRjdBODc1 NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0b3R0ZU5DdEJ4MGZ1T2tV RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JPcTR6eHliMXRvdHRlTkN0QngwZnVPa1VGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDBCNi85RjlBRjdBODc1NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0 b3R0ZU5DdEJ4MGZ1T2tVRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC7xKGvYmtO1Wb6hK07D4RSNQTEvPeqMUxC4JsYcx5tcLQSU5BTrwk WEe971I6rpLAK8ghvvZsQdfHHZN4Jy33KzKkHUmK9hhFrKC13US9aNb9sVxSffDa LFFCIcunveNx/lMID0vtHNR993DD7rNAlMZw/WsCeKk8X/CJi5IVwZ3vWg5ARDdT kUEscID0j/Nqj1UhRO6/gxrR5QxQQa7nBlPhJsN2MXwLp9DbOMMmiwnM2I10Q+L+ 2CRuosyPRN5WFqz4Bm8rt/ceFgUnc5tCBxpC31456Faywag0JKq3qNLLHOhFxRce axFPAnA7EoiisKHcOgQScfvfHTu9NP31 -----END CERTIFICATE-----Generated at Sat Jul 5 02:02:17 2025 by rpki-client