$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: VkT/Ys7gGmP+7zYj0rcLEv83PX1Gtnaj0A6dJNUD9Rg= Subject key identifier: 67:C4:65:6E:D6:14:7B:43:28:FE:CD:CB:39:1A:6D:08:D9:89:02:41 Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 177C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1B8E Signing time: Wed 02 Jul 2025 16:42:58 +0000 Manifest this update: Wed 02 Jul 2025 16:42:58 +0000 Manifest next update: Wed 09 Jul 2025 16:42:58 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: iqDc1kytk6vOCnIPNgNlQIpwdmkmQGjn1aeDw+vDTnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6012 (0x177c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Jul 2 16:42:58 2025 GMT Not After : Jul 9 16:42:58 2025 GMT Subject: CN=68656192-ebe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:83:70:b9:66:0b:db:30:81:05:8d:3c:d9: ab:9f:d6:8c:18:a2:de:2d:c3:6c:2d:b7:65:68:c3: 1b:b3:53:28:db:da:4f:74:a6:f1:dc:d3:2b:25:a5: f2:c9:5a:19:88:3c:18:15:85:6d:09:3a:7b:f1:10: d3:6f:38:7a:32:56:10:e3:2c:5c:e6:3b:25:58:c2: 61:b2:a4:d4:df:e7:d7:a0:8d:5f:6d:9b:b6:a5:46: 06:44:1c:4f:56:a9:57:a7:f2:c4:22:82:fc:c8:d2: 4c:c7:d1:83:c8:fa:c6:4b:0e:b8:36:e7:3d:f7:f4: 2d:de:40:60:9a:f9:fb:43:de:e2:99:db:00:64:95: bd:c4:0b:b3:28:50:d5:e5:d7:99:4e:c6:da:05:e1: 01:ae:57:5a:db:61:7f:a0:41:e5:9e:71:65:54:f4: c5:87:68:73:de:41:e5:b0:17:e0:ac:ac:08:65:89: 09:49:6a:06:cd:27:6f:42:c8:46:9a:4b:25:d3:45: 7a:a0:64:0b:8e:3e:33:23:8b:f7:8e:35:99:42:35: 54:63:f4:16:2d:4d:a3:fa:f3:7c:bc:56:28:15:db: e9:fb:ff:27:41:c1:b8:11:b4:38:14:0d:3a:80:09: 08:f1:cf:76:85:d9:ef:e8:b6:50:72:a1:b0:e1:6e: 7e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C4:65:6E:D6:14:7B:43:28:FE:CD:CB:39:1A:6D:08:D9:89:02:41 X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:09:dd:23:6f:2e:1f:a1:4f:e3:9b:1f:0d:59:cd:dc:e4:7c: 45:f9:01:c3:f0:2e:5a:cb:3e:4c:66:71:aa:4f:33:30:45:e2: 21:98:91:e7:81:f6:43:2c:a4:5a:de:a0:42:2f:0e:24:21:f9: 3a:3c:8d:55:93:8d:b3:f7:60:f7:b4:80:ed:e2:da:3d:e4:8b: 98:2d:15:b9:ee:50:1c:c6:f6:46:89:e3:33:9f:dd:aa:a7:f3: fc:4a:83:3d:6b:c2:1d:13:07:04:d1:8a:ae:5d:40:23:c6:86: d3:67:72:83:a6:c2:ad:3e:d4:c6:6e:fe:7e:93:3a:05:f2:18: c4:a6:e2:a1:cb:01:d3:8f:10:0e:92:83:c2:ce:b4:6f:b3:f9: 22:d2:d2:c0:12:60:b0:db:9e:f3:bf:47:c5:00:28:74:3d:90: d6:24:85:3b:16:42:ec:93:aa:3a:6e:d5:eb:72:33:bb:3a:78: 38:f6:e4:43:9c:b4:1f:68:ae:7e:ab:eb:23:60:27:70:73:21: 60:07:48:86:6c:79:04:ca:63:55:f3:d7:95:f0:a5:ab:7e:54: d6:37:ab:68:50:5b:41:5b:4f:30:a1:28:cf:58:b0:eb:6b:e9: 93:e1:15:1b:75:f8:93:84:5b:43:ea:77:11:07:43:84:a2:ce: df:b0:71:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUwNzAyMTY0MjU4WhcNMjUwNzA5MTY0MjU4WjAYMRYwFAYD VQQDEw02ODY1NjE5Mi1lYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7WDcLlmC9swgQWNPNmrn9aMGKLeLcNsLbdlaMMbs1Mo29pPdKbx3NMrJaXy yVoZiDwYFYVtCTp78RDTbzh6MlYQ4yxc5jslWMJhsqTU3+fXoI1fbZu2pUYGRBxP VqlXp/LEIoL8yNJMx9GDyPrGSw64Nuc99/Qt3kBgmvn7Q97imdsAZJW9xAuzKFDV 5deZTsbaBeEBrlda22F/oEHlnnFlVPTFh2hz3kHlsBfgrKwIZYkJSWoGzSdvQshG mksl00V6oGQLjj4zI4v3jjWZQjVUY/QWLU2j+vN8vFYoFdvp+/8nQcG4EbQ4FA06 gAkI8c92hdnv6LZQcqGw4W5+LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfEZW7W FHtDKP7NyzkabQjZiQJBMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqCd0jby4foU/jmx8NWc3c5HxF+QHD8C5ayz5MZnGqTzMwReIhmJHn gfZDLKRa3qBCLw4kIfk6PI1Vk42z92D3tIDt4to95IuYLRW57lAcxvZGieMzn92q p/P8SoM9a8IdEwcE0YquXUAjxobTZ3KDpsKtPtTGbv5+kzoF8hjEpuKhywHTjxAO koPCzrRvs/ki0tLAEmCw257zv0fFACh0PZDWJIU7FkLsk6o6btXrcjO7Ong49uRD nLQfaK5+q+sjYCdwcyFgB0iGbHkEymNV89eV8KWrflTWN6toUFtBW08woSjPWLDr a+mT4RUbdfiThFtD6ncRB0OEos7fsHFt -----END CERTIFICATE-----Generated at Thu Jul 3 01:15:07 2025 by rpki-client