$ rpki-client -vvf rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft File: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft (raw, json) Hash identifier: XjWNczFNtjJCybi4aZM5mwNg/OqVs1wCXFBFZn8irtI= Subject key identifier: 06:B1:CB:2D:FB:B3:49:2A:8B:D8:E6:7C:0D:50:8C:85:42:F8:6B:B8 Authority key identifier: F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 Certificate issuer: /CN=A91B268A/serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Certificate serial: 1253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft Manifest number: 123D Signing time: Mon 30 Jun 2025 17:19:33 +0000 Manifest this update: Mon 30 Jun 2025 17:19:32 +0000 Manifest next update: Mon 07 Jul 2025 17:19:32 +0000 Files and hashes: 1: -O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl (hash: QW9mPUw6riFw4sy+eJjbm/1Y8pdHoVx6xbPaIJk05wY=) 2: 0AF12B12DDA411E88E25E96FC4F9AE02.roa (hash: VilJgVER7BycZHaWd4URO4KYACwZnY/x/nNDEK5obqE=) 3: 801B5CA0D49711EFBF7D3414C4F9AE02.roa (hash: OeaX4Y36BcWO+hpCFTJVXRa1o/dq7PQS00iGf5uCP9s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 17:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4691 (0x1253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B268A, serialNumber=F8EECE7D3C0CF5922EA3D803553638823FAEEA08 Validity Not Before: Jun 30 17:19:32 2025 GMT Not After : Jul 7 17:19:32 2025 GMT Subject: CN=6862c724-bd4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c9:e9:2c:79:6c:35:9b:4e:d5:0b:c7:a5:5b: 31:92:4c:72:69:f0:25:27:df:49:b1:4e:86:62:6c: 04:9a:5f:e3:51:a8:35:39:48:88:b6:09:17:36:26: d6:ba:b6:23:aa:3d:c1:60:b6:28:1f:70:36:5b:ee: 29:33:14:04:d4:6d:41:f9:25:aa:4a:bc:76:c4:3d: 92:f7:bb:ed:37:a4:94:52:87:97:20:f0:34:42:36: a5:58:38:6a:84:f7:10:22:36:fa:4d:42:a6:d9:f2: 78:4e:d4:c2:51:31:55:6a:e0:9c:c0:fd:88:fc:0e: e7:33:4a:92:66:3c:c9:60:5c:ac:84:39:5c:b4:8d: bb:cc:52:ae:b0:af:7b:2c:6d:f5:a9:d7:c5:07:14: f3:34:d9:31:4b:8e:01:cc:ba:30:e7:ae:cb:2c:1a: b1:55:4f:ab:69:fd:27:ca:29:d5:9c:04:8b:3e:dd: 1e:40:84:4c:2b:06:2d:f0:00:4f:c5:57:17:32:9c: b8:87:a7:35:3e:b5:38:d3:b4:0e:e3:0b:07:62:7b: 3d:fe:67:c0:d0:05:0d:2f:42:96:ef:47:83:20:52: 35:b8:49:f5:1e:25:aa:58:a7:81:53:89:69:53:0a: 41:33:cf:2d:3b:43:60:9c:d2:29:99:1d:0d:13:eb: b2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B1:CB:2D:FB:B3:49:2A:8B:D8:E6:7C:0D:50:8C:85:42:F8:6B:B8 X509v3 Authority Key Identifier: keyid:F8:EE:CE:7D:3C:0C:F5:92:2E:A3:D8:03:55:36:38:82:3F:AE:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B268A/84FB4C9CDDA111E8A2E78A69C4F9AE02/-O7OfTwM9ZIuo9gDVTY4gj-u6gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:3f:94:90:02:30:c9:5d:61:82:dc:35:93:b4:18:16:37:e9: 46:cb:9e:86:b3:9e:c7:1d:60:5a:88:fc:28:64:17:09:ee:c3: 39:27:91:cd:1f:50:c4:41:30:14:a1:ce:36:5c:ed:9c:58:d6: 30:e9:f8:b0:c0:35:17:62:e9:3b:55:fb:7b:49:1a:0c:09:ca: e4:ed:fb:84:f5:0e:55:5c:a5:12:5c:67:99:24:a0:56:e6:49: 77:f2:4d:37:54:2f:ce:42:4e:92:10:60:4f:06:ec:f8:06:1b: 6e:c4:cc:98:64:ad:3c:4f:77:10:14:51:87:3a:0d:c8:cb:11: c1:d0:ed:d6:77:e4:43:f2:bd:b7:ab:a3:2c:b1:71:e0:e9:59: 91:41:00:ee:07:f8:e9:25:af:64:22:7a:ad:07:a5:9a:8f:34: ff:93:c0:ac:45:ea:9a:78:d9:9c:5c:90:37:2f:c7:5a:26:82: 20:39:82:10:bf:5f:db:a1:66:d1:4d:fe:21:d0:54:09:58:f7: 69:98:51:74:80:f5:b6:e7:5b:d7:f4:73:cb:8d:7c:89:f5:8c: 69:cc:f9:a6:d0:11:09:9a:5f:91:ad:e7:aa:61:14:c8:0d:f0: 80:b8:7f:c5:1b:83:2a:e1:0f:7f:d8:af:3f:1c:15:09:ba:5b: ee:b4:9d:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICElMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI2OEExMTAvBgNVBAUTKEY4RUVDRTdEM0MwQ0Y1OTIyRUEzRDgwMzU1MzYzODgy M0ZBRUVBMDgwHhcNMjUwNjMwMTcxOTMyWhcNMjUwNzA3MTcxOTMyWjAYMRYwFAYD VQQDEw02ODYyYzcyNC1iZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0snpLHlsNZtO1QvHpVsxkkxyafAlJ99JsU6GYmwEml/jUag1OUiItgkXNibW urYjqj3BYLYoH3A2W+4pMxQE1G1B+SWqSrx2xD2S97vtN6SUUoeXIPA0QjalWDhq hPcQIjb6TUKm2fJ4TtTCUTFVauCcwP2I/A7nM0qSZjzJYFyshDlctI27zFKusK97 LG31qdfFBxTzNNkxS44BzLow567LLBqxVU+raf0nyinVnASLPt0eQIRMKwYt8ABP xVcXMpy4h6c1PrU407QO4wsHYns9/mfA0AUNL0KW70eDIFI1uEn1HiWqWKeBU4lp UwpBM88tO0NgnNIpmR0NE+uy0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaxyy37 s0kqi9jmfA1QjIVC+Gu4MB8GA1UdIwQYMBaAFPjuzn08DPWSLqPYA1U2OII/ruoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjY4QS84NEZCNEM5Q0RE QTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTlaSXVvOWdEVlRZNGdqLXU2 Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1PN09mVHdNOVpJdW85Z0RWVFk0Z2otdTZnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjY4QS84NEZCNEM5Q0REQTExMUU4QTJFNzhBNjlDNEY5QUUwMi8tTzdPZlR3TTla SXVvOWdEVlRZNGdqLXU2Z2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKP5SQAjDJXWGC3DWTtBgWN+lGy56Gs57HHWBaiPwoZBcJ7sM5J5HN H1DEQTAUoc42XO2cWNYw6fiwwDUXYuk7Vft7SRoMCcrk7fuE9Q5VXKUSXGeZJKBW 5kl38k03VC/OQk6SEGBPBuz4BhtuxMyYZK08T3cQFFGHOg3IyxHB0O3Wd+RD8r23 q6MssXHg6VmRQQDuB/jpJa9kInqtB6WajzT/k8CsReqaeNmcXJA3L8daJoIgOYIQ v1/boWbRTf4h0FQJWPdpmFF0gPW251vX9HPLjXyJ9YxpzPmm0BEJml+RreeqYRTI DfCAuH/FG4Mq4Q9/2K8/HBUJulvutJ2r -----END CERTIFICATE-----Generated at Tue Jul 1 14:44:08 2025 by rpki-client