$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: lcc5frkt+uv+rRhZ159T7ig+X1uuSDm9nIKEIA+iBw4= Subject key identifier: A8:9E:74:61:12:D4:B9:6A:04:AE:BC:30:DF:7C:9D:9D:2C:88:05:ED Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 07E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 07DA Signing time: Wed 02 Jul 2025 21:19:57 +0000 Manifest this update: Wed 02 Jul 2025 21:19:56 +0000 Manifest next update: Wed 09 Jul 2025 21:19:56 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: xwCOYksbxD98iB8xyvqwaIDph8kL4HzqWtA0p1J2fvI=) 2: 727EECD2678811EF99602F53C4F9AE02.roa (hash: WvAkrs/LiVkRHkVog2xW2/ey9F5S8FH9WKoT4JG9/2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252, serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: Jul 2 21:19:56 2025 GMT Not After : Jul 9 21:19:56 2025 GMT Subject: CN=6865a27d-329d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c1:d3:3d:4d:8c:4c:be:6b:f6:07:53:d7:83: f5:3b:99:85:a6:9a:50:fc:3d:8d:82:62:e6:3c:f6: 34:d7:28:37:75:cf:8d:a7:fb:54:ef:89:3d:fe:01: 38:af:88:6c:bb:19:9d:2e:4a:2e:91:5c:8c:59:66: 45:51:39:b1:5d:6e:75:cb:46:5e:c9:50:91:48:84: 62:d5:7f:66:51:75:dc:b2:0a:a0:00:1b:a1:68:f7: e9:b8:dd:a9:f9:22:3f:aa:be:ba:e7:fb:14:20:f9: c1:ce:eb:ac:5e:53:e2:90:97:b9:73:4c:b1:7e:d9: 48:ea:40:90:f4:11:51:31:a7:d2:fd:74:8b:00:86: 16:ed:97:f4:c0:5f:39:db:d4:1a:5c:24:1f:90:34: 0e:6c:af:5c:d2:f5:4a:2b:73:bc:15:8b:21:0b:a9: f0:cf:c5:e6:7a:09:89:19:c9:66:ea:cf:a7:d3:c6: 4b:f8:05:66:2d:f6:dc:2b:23:db:8a:bf:09:3e:5b: 93:44:d2:5e:ff:4e:7b:e9:e3:bb:a2:6f:fa:85:50: 1a:91:0c:c2:cb:a8:4f:7a:4d:66:ce:7a:77:d3:b4: ee:c5:41:09:53:54:18:0a:c0:2e:28:82:b5:3f:cc: 2d:53:8e:d7:ad:25:92:0f:8f:54:55:01:a1:50:9a: f1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9E:74:61:12:D4:B9:6A:04:AE:BC:30:DF:7C:9D:9D:2C:88:05:ED X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:75:d8:e5:ab:db:8b:89:9a:4f:d0:af:b9:d4:d6:44:33:e8: e8:86:51:83:0f:da:27:09:0a:96:93:20:8d:b5:82:6f:e7:4a: 30:df:90:12:06:85:61:72:08:ad:42:75:ac:24:a0:5b:aa:13: 69:4b:be:f5:20:2f:3e:9d:21:eb:ac:e4:c1:50:76:73:51:58: 7c:f4:08:74:7e:9d:ef:b9:49:84:81:05:56:5b:70:7d:a3:2c: 37:80:cb:cd:d8:13:f7:8e:93:b0:ce:c8:8c:e4:21:0b:4a:67: 2b:22:ea:c3:a7:f2:3c:50:62:e3:36:6a:32:9f:e5:70:12:4c: 72:d6:42:f3:9e:a1:03:f3:72:d9:98:a5:fb:da:ee:b5:db:09: 1d:67:69:9a:90:e7:c8:6c:c4:f3:3c:07:0d:42:0e:37:c6:f2: 9a:86:c1:67:1e:13:46:38:fd:52:c2:78:eb:b1:0a:63:2d:15: c1:39:99:7d:11:4f:09:14:cc:57:d5:d8:b8:a5:3e:fb:a9:fa: 34:ec:ff:b2:35:a5:c2:63:a4:65:ef:01:e9:23:10:07:d1:9e: ce:6f:7a:e3:a9:8a:a7:2f:8d:a7:e7:dd:46:ac:d8:21:98:e5: be:77:72:b0:f3:b1:73:85:83:32:50:bd:d0:71:36:8d:6e:06: d3:ae:19:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjUwNzAyMjExOTU2WhcNMjUwNzA5MjExOTU2WjAYMRYwFAYD VQQDEw02ODY1YTI3ZC0zMjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sHTPU2MTL5r9gdT14P1O5mFpppQ/D2NgmLmPPY01yg3dc+Np/tU74k9/gE4 r4hsuxmdLkoukVyMWWZFUTmxXW51y0ZeyVCRSIRi1X9mUXXcsgqgABuhaPfpuN2p +SI/qr665/sUIPnBzuusXlPikJe5c0yxftlI6kCQ9BFRMafS/XSLAIYW7Zf0wF85 29QaXCQfkDQObK9c0vVKK3O8FYshC6nwz8XmegmJGclm6s+n08ZL+AVmLfbcKyPb ir8JPluTRNJe/0576eO7om/6hVAakQzCy6hPek1mznp307TuxUEJU1QYCsAuKIK1 P8wtU47XrSWSD49UVQGhUJrx1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiedGES 1LlqBK68MN98nZ0siAXtMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATddjlq9uLiZpP0K+51NZEM+johlGDD9onCQqWkyCNtYJv50ow35AS BoVhcgitQnWsJKBbqhNpS771IC8+nSHrrOTBUHZzUVh89Ah0fp3vuUmEgQVWW3B9 oyw3gMvN2BP3jpOwzsiM5CELSmcrIurDp/I8UGLjNmoyn+VwEkxy1kLznqED83LZ mKX72u612wkdZ2makOfIbMTzPAcNQg43xvKahsFnHhNGOP1SwnjrsQpjLRXBOZl9 EU8JFMxX1di4pT77qfo07P+yNaXCY6Rl7wHpIxAH0Z7Ob3rjqYqnL42n591GrNgh mOW+d3Kw87FzhYMyUL3QcTaNbgbTrhne -----END CERTIFICATE-----Generated at Fri Jul 4 10:53:31 2025 by rpki-client