$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft File: r9CVWn3X-bDsKkShHZNyB8J1SmM.mft (raw, json) Hash identifier: SyIP0lCRRPf36gm5fZ1GWjOW1aMSIC8j0yD7jH5W+2w= Subject key identifier: 6A:82:1D:59:CE:F4:88:E4:7B:3E:00:30:21:C8:04:2D:13:E0:26:6D Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 0402 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft Manifest number: 03ED Signing time: Tue 01 Jul 2025 01:11:11 +0000 Manifest this update: Tue 01 Jul 2025 01:11:11 +0000 Manifest next update: Tue 08 Jul 2025 01:11:11 +0000 Files and hashes: 1: r9CVWn3X-bDsKkShHZNyB8J1SmM.crl (hash: cnPoTEm1md7heE2TgStYr+gZXyuVDt3IpmuDvDXHacE=) 2: E69ABF78033911EFBE28FC1FC4F9AE02.roa (hash: Rg7/HWvbLuN8QkYRlBgqkedDJt7Lv8j0nbDNMsIVYIo=) 3: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (hash: IBTL0V7J1tBYqG7NDXusQxEwJubmZUah6ZmQZ+9P3Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:11:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1026 (0x402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Jul 1 01:11:11 2025 GMT Not After : Jul 8 01:11:11 2025 GMT Subject: CN=686335af-174e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0e:18:41:ca:a4:a4:21:d8:ea:f2:60:b6:b7: 18:f0:5e:31:c3:6b:9f:f6:d1:2e:f3:f6:a7:df:4e: 45:1b:72:b3:3d:68:c5:25:44:44:e1:20:dc:b1:82: 93:68:66:f2:4a:7b:6b:ff:0b:b0:06:6b:29:c6:2b: 26:67:72:1f:99:f0:70:6a:cf:e0:36:f6:a6:43:da: 76:99:50:70:eb:53:32:48:02:80:6a:c9:e7:a1:dd: 5d:ee:44:42:b6:73:27:d1:af:92:26:72:dd:83:47: eb:2c:7f:98:97:41:2e:58:46:b9:11:c5:59:48:d5: 42:61:aa:12:f0:13:f2:cb:5b:5f:ce:f5:ce:9d:bc: 5e:59:33:fd:79:23:3f:9a:fa:ec:a3:be:bf:4d:84: d9:90:c1:e9:01:6a:9e:6e:05:9c:9f:1e:ee:f1:77: bc:3c:fb:fc:17:f8:c5:79:79:75:47:90:b6:e3:24: 96:e0:41:de:5b:f3:60:94:32:96:04:20:b6:6e:d4: 08:78:00:c5:60:78:de:76:d8:c0:c9:44:49:8a:e0: 40:a3:9a:56:3b:c9:f5:ec:27:2c:05:36:32:b6:33: cc:9b:6e:0d:86:e9:88:07:77:82:93:f4:69:d0:3a: ff:f1:ca:73:27:81:10:09:dc:09:ae:ba:90:ec:56: 55:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:82:1D:59:CE:F4:88:E4:7B:3E:00:30:21:C8:04:2D:13:E0:26:6D X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:13:a5:5d:68:fa:75:25:aa:ec:ef:5b:d2:01:2c:57:99:a0: dc:eb:9b:00:a2:03:00:5c:77:9e:6e:3e:14:f5:22:26:c0:29: 46:e7:67:aa:2a:2c:e1:52:d8:0a:dd:ba:20:8e:e3:2c:2f:ec: 32:10:65:24:50:ee:6f:4f:02:de:cf:2d:c2:a4:ac:64:31:27: 09:6b:d2:12:10:ad:d5:c8:1b:b1:63:a6:a6:54:a7:f2:58:e4: d7:f4:32:99:24:7e:cc:89:fe:0e:77:d4:33:37:3c:b1:6a:a0: a3:19:50:96:26:86:11:67:54:c0:59:dc:21:bc:db:f5:d6:75: f6:2c:78:eb:d9:74:a9:8a:15:46:0d:82:ac:66:d3:5f:c8:5d: 91:20:a4:79:2e:ba:50:c0:25:cd:0d:01:48:61:b2:d7:f7:88: 6f:29:af:61:be:7b:4e:e8:55:de:17:6d:2b:e6:26:68:4f:92: c2:a3:9f:66:c5:ee:f5:d5:10:ef:a5:de:85:c1:ae:bc:67:12: 6f:fb:00:ec:6c:01:2d:5c:61:c6:95:ac:cb:6b:9e:a0:56:60: 96:12:06:d0:24:7c:56:06:bd:19:05:dd:28:47:46:2e:6d:7c: 56:11:ac:38:97:aa:db:a7:f8:20:f8:c4:fb:37:c8:7d:46:e4: ef:c2:a8:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjUwNzAxMDExMTExWhcNMjUwNzA4MDExMTExWjAYMRYwFAYD VQQDEw02ODYzMzVhZi0xNzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlg4YQcqkpCHY6vJgtrcY8F4xw2uf9tEu8/an305FG3KzPWjFJURE4SDcsYKT aGbySntr/wuwBmspxismZ3IfmfBwas/gNvamQ9p2mVBw61MySAKAasnnod1d7kRC tnMn0a+SJnLdg0frLH+Yl0EuWEa5EcVZSNVCYaoS8BPyy1tfzvXOnbxeWTP9eSM/ mvrso76/TYTZkMHpAWqebgWcnx7u8Xe8PPv8F/jFeXl1R5C24ySW4EHeW/NglDKW BCC2btQIeADFYHjedtjAyURJiuBAo5pWO8n17CcsBTYytjPMm24NhumIB3eCk/Rp 0Dr/8cpzJ4EQCdwJrrqQ7FZVxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqCHVnO 9Ijkez4AMCHIBC0T4CZtMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTAxOC84ODM2RkE2MDhENEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1i RHNLa1NoSFpOeUI4SjFTbU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfE6VdaPp1Jars71vSASxXmaDc65sAogMAXHeebj4U9SImwClG52eq KizhUtgK3bogjuMsL+wyEGUkUO5vTwLezy3CpKxkMScJa9ISEK3VyBuxY6amVKfy WOTX9DKZJH7Mif4Od9QzNzyxaqCjGVCWJoYRZ1TAWdwhvNv11nX2LHjr2XSpihVG DYKsZtNfyF2RIKR5LrpQwCXNDQFIYbLX94hvKa9hvntO6FXeF20r5iZoT5LCo59m xe711RDvpd6Fwa68ZxJv+wDsbAEtXGHGlazLa56gVmCWEgbQJHxWBr0ZBd0oR0Yu bXxWEaw4l6rbp/gg+MT7N8h9RuTvwqjl -----END CERTIFICATE-----Generated at Wed Jul 2 16:18:04 2025 by rpki-client