$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: eO2iCH4TdahG5ZXMNO52IQUFDWARaqDqSUUEnS0zcow= Subject key identifier: ED:CE:22:60:C2:DA:42:32:5E:D2:67:6A:DC:EA:0E:D5:3D:96:B0:10 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: B5 Signing time: Thu 03 Jul 2025 06:11:52 +0000 Manifest this update: Thu 03 Jul 2025 06:11:52 +0000 Manifest next update: Thu 10 Jul 2025 06:11:52 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: 5tHnwJyUfpsLLzjt+VTuDOojGyGec27Kzi8I0UvC9VI=) 2: DD76C09AB16711EFBD483568C4F9AE02.roa (hash: lZ2oQ4wvz4evXveDE7LNoYJmc6E6jg/A59sR/rYBi6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B, serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Jul 3 06:11:52 2025 GMT Not After : Jul 10 06:11:52 2025 GMT Subject: CN=68661f28-9421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d1:0e:44:e2:c3:36:65:43:27:e5:95:11:26: d4:84:08:4c:8a:42:2e:db:71:cd:e1:b8:b0:f1:e9: b2:1d:7e:90:b0:58:70:61:c4:6b:18:0b:f4:38:f7: 0b:6e:38:5e:30:fb:27:82:70:78:30:48:59:6c:2f: 2b:16:f9:5b:8d:d0:08:e0:82:f3:06:93:f2:ed:b4: 5b:e6:0e:34:71:4d:84:8b:9b:0e:3e:11:ac:3b:d7: 7f:db:12:8b:d3:72:87:78:c6:d8:36:03:62:cb:b2: da:dd:25:e4:65:c3:bd:59:46:b7:fe:c0:b9:a2:40: 9f:f5:35:38:fd:01:51:a6:19:c8:63:ff:1a:00:ef: 9a:d5:b7:87:a4:3f:1d:f5:18:aa:43:6b:72:91:c9: 4e:69:c4:90:34:c4:46:c1:42:31:00:6c:ec:5e:1b: 7e:e6:0a:43:db:a6:3e:fc:a2:4b:be:be:ac:b9:d4: 0a:a3:19:7b:94:07:cb:45:f2:a5:91:ec:0a:94:74: 2d:3f:4a:77:3a:5a:36:cb:5d:26:09:1b:37:c0:c0: 9a:c1:18:ef:57:88:c3:3e:9b:b5:72:90:6d:8c:b2: 77:bd:98:bf:f0:80:9c:eb:87:f2:51:1b:65:a9:a0: c4:b8:d2:52:6b:a3:13:84:f4:68:dc:b7:9a:e2:7d: a2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:CE:22:60:C2:DA:42:32:5E:D2:67:6A:DC:EA:0E:D5:3D:96:B0:10 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:13:39:e9:b0:30:fb:8c:b4:05:60:93:93:47:9e:6e:d6:b8: 89:7d:b8:ee:68:9d:63:4d:d9:f0:87:b9:ae:4b:f2:02:b1:a8: 0f:be:9d:b9:a7:00:18:39:01:c5:c4:82:2d:b1:20:84:ba:e9: a0:a6:c4:55:65:f0:85:c1:5c:35:08:02:92:0f:ff:b9:bb:5b: b0:a5:46:0c:9e:b6:27:aa:67:c9:11:49:d9:43:26:00:a6:a9: 7b:bd:1b:63:f2:c8:91:22:5d:9d:da:a6:9c:4a:43:c1:3d:ee: 85:4f:fd:cd:4d:da:20:88:2c:4e:54:4f:44:53:d3:7b:c1:ef: d0:95:00:d9:28:3d:5c:5a:bd:a1:71:bd:b9:4e:3d:f3:b3:97: 0f:24:0d:af:8d:bc:3d:b4:4d:ec:d8:14:9f:7f:5f:99:b7:89: 9a:c8:07:b5:68:c8:5c:5a:fb:f4:a4:68:e7:88:3a:c3:54:22: 19:00:d8:56:8a:7f:0c:64:c6:51:e5:23:3b:98:83:40:e3:48: 09:97:07:85:b4:ad:86:81:44:3c:f1:39:c2:65:de:94:c9:0b: ef:57:81:ee:70:09:6c:09:54:a8:54:b3:e0:90:fb:87:74:3f: 36:f6:ec:cf:67:e8:7f:65:38:fd:5b:5b:e4:90:4a:76:c8:4d: 33:d7:3e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFFOEIxMTAvBgNVBAUTKDlEM0MzM0FDQjExMDNFNzFGQTFGRjNFNjAxM0U5REMz MTEyMjY5RkMwHhcNMjUwNzAzMDYxMTUyWhcNMjUwNzEwMDYxMTUyWjAYMRYwFAYD VQQDEw02ODY2MWYyOC05NDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09EOROLDNmVDJ+WVESbUhAhMikIu23HN4biw8emyHX6QsFhwYcRrGAv0OPcL bjheMPsngnB4MEhZbC8rFvlbjdAI4ILzBpPy7bRb5g40cU2Ei5sOPhGsO9d/2xKL 03KHeMbYNgNiy7La3SXkZcO9WUa3/sC5okCf9TU4/QFRphnIY/8aAO+a1beHpD8d 9RiqQ2tykclOacSQNMRGwUIxAGzsXht+5gpD26Y+/KJLvr6sudQKoxl7lAfLRfKl kewKlHQtP0p3Olo2y10mCRs3wMCawRjvV4jDPpu1cpBtjLJ3vZi/8ICc64fyURtl qaDEuNJSa6MThPRo3Lea4n2ilQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO3OImDC 2kIyXtJnatzqDtU9lrAQMB8GA1UdIwQYMBaAFJ08M6yxED5x+h/z5gE+ncMRImn8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUU4Qi82MjkxNzY0NDQ1 QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBuSDZIX1BtQVQ2ZHd4RWlh ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUU4Qi82MjkxNzY0NDQ1QjYxMUVGOEFCMzBBMzFDNEY5QUUwMi9uVHd6ckxFUVBu SDZIX1BtQVQ2ZHd4RWlhZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpEznpsDD7jLQFYJOTR55u1riJfbjuaJ1jTdnwh7muS/ICsagPvp25 pwAYOQHFxIItsSCEuumgpsRVZfCFwVw1CAKSD/+5u1uwpUYMnrYnqmfJEUnZQyYA pql7vRtj8siRIl2d2qacSkPBPe6FT/3NTdogiCxOVE9EU9N7we/QlQDZKD1cWr2h cb25Tj3zs5cPJA2vjbw9tE3s2BSff1+Zt4mayAe1aMhcWvv0pGjniDrDVCIZANhW in8MZMZR5SM7mINA40gJlweFtK2GgUQ88TnCZd6UyQvvV4HucAlsCVSoVLPgkPuH dD829uzPZ+h/ZTj9W1vkkEp2yE0z1z50 -----END CERTIFICATE-----Generated at Fri Jul 4 00:32:21 2025 by rpki-client