$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: UpUKcMI+odYWSUhDXg6/bj/euCTnsiGlgfob7AxD9MQ= Subject key identifier: 55:BF:A7:36:DC:25:31:06:CB:29:71:4D:53:E4:86:E0:EB:66:A5:85 Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0CA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0C77 Signing time: Wed 02 Jul 2025 18:34:34 +0000 Manifest this update: Wed 02 Jul 2025 18:34:34 +0000 Manifest next update: Wed 09 Jul 2025 18:34:34 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: WhEtw1NgSqVJb63QDHGRabtegmy6PhuXDlI04Jkgu+8=) 2: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +t2OsFQRgFf0c7jNBR5fu1U2IpPKMIuwM5iZNaY//qo=) 3: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: coEgjngsR/Ce6vFWSBZaZ5rCfdvEVYlwbgZyFrxHv0s=) 4: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: amqBd7Gmw280SNEgcUdjWQQGaKazRNP/HiWRn2dZkzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: Jul 2 18:34:34 2025 GMT Not After : Jul 9 18:34:34 2025 GMT Subject: CN=68657bba-133d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:99:4e:b4:dd:73:0c:0c:64:45:7b:d2:57:91: 40:29:df:23:3e:14:71:0e:c5:c1:e4:30:61:68:1e: 05:4a:24:18:53:73:7e:ed:15:b0:da:ef:1e:e2:06: 63:63:73:89:07:ea:61:7d:fb:f2:67:c2:64:e1:14: 93:88:ec:f9:c6:cd:a6:45:c0:77:89:a7:75:85:f8: 38:49:5d:73:39:3b:9e:5c:52:ed:92:5e:84:cb:b3: 4f:e4:d6:3e:c7:0f:ae:bc:4a:d2:4a:2a:ea:93:73: 60:dd:8e:fa:9b:b2:06:c9:50:08:e2:9d:93:7c:ba: 44:84:06:2f:0c:99:90:5e:24:31:aa:a9:6d:99:20: 4c:8c:66:1e:75:fb:57:11:a7:49:02:1f:8d:67:4f: 49:4d:51:d9:c7:8b:f2:29:4f:0f:dc:0e:41:ea:9f: 60:45:bd:2f:fd:48:b6:08:22:36:c7:18:d9:0f:72: 01:38:75:94:46:a0:c7:05:17:22:ca:af:84:b4:17: b7:e9:e5:74:d6:f5:a8:b8:b0:73:e2:66:09:21:9d: a1:d0:f8:9f:e5:66:2b:b8:19:cc:73:5f:02:71:c3: 9a:b5:c5:79:9f:6a:c9:79:d0:2a:5a:37:8c:cf:cb: 8d:6a:77:3b:87:d1:be:a5:73:4c:03:21:c8:73:82: 38:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BF:A7:36:DC:25:31:06:CB:29:71:4D:53:E4:86:E0:EB:66:A5:85 X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:4a:92:3e:56:90:06:e7:7b:77:9c:54:99:7e:d8:0a:54:47: b2:14:1e:d8:4e:a8:c3:e8:bb:4d:c9:be:78:7c:6c:6c:e2:67: 2b:34:cf:79:b9:25:eb:b1:b6:c6:08:5a:35:be:cc:0a:4d:31: 1a:9f:ee:31:a7:c9:f1:42:2b:92:1e:06:d1:d8:2b:be:30:fe: 03:1b:24:5d:96:01:5c:4c:7b:5c:e9:44:a2:4e:2c:00:f7:4f: 33:9e:46:97:3d:df:ab:90:bb:ea:b6:5c:ac:f8:65:24:66:bf: 13:ec:93:0c:35:47:6d:2a:13:3f:0a:88:1b:eb:32:1f:bc:b5: ea:49:dc:8a:a3:2b:09:3c:08:ca:2f:f3:bb:e5:42:33:e8:00: c4:f1:4b:40:7c:00:4c:60:4d:a1:48:aa:81:47:96:1b:c7:a6: cb:f0:b0:f5:01:3a:dc:08:8f:e5:d9:49:9a:fe:93:98:39:9f: fd:c9:2d:56:a3:59:7d:f0:19:e7:05:c2:e2:41:22:1b:7e:d7: 9b:50:ce:cb:0a:9c:e0:ae:61:b2:7e:94:18:b6:09:55:e5:d1: 9d:35:93:74:7e:c4:97:b8:11:7d:b4:08:95:24:9c:0d:b4:37: f5:47:99:9c:3c:f5:cb:6a:1a:83:49:ab:31:c9:37:23:07:cf: c1:6c:e3:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjUwNzAyMTgzNDM0WhcNMjUwNzA5MTgzNDM0WjAYMRYwFAYD VQQDEw02ODY1N2JiYS0xMzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsplOtN1zDAxkRXvSV5FAKd8jPhRxDsXB5DBhaB4FSiQYU3N+7RWw2u8e4gZj Y3OJB+phffvyZ8Jk4RSTiOz5xs2mRcB3iad1hfg4SV1zOTueXFLtkl6Ey7NP5NY+ xw+uvErSSirqk3Ng3Y76m7IGyVAI4p2TfLpEhAYvDJmQXiQxqqltmSBMjGYedftX EadJAh+NZ09JTVHZx4vyKU8P3A5B6p9gRb0v/Ui2CCI2xxjZD3IBOHWURqDHBRci yq+EtBe36eV01vWouLBz4mYJIZ2h0Pif5WYruBnMc18CccOatcV5n2rJedAqWjeM z8uNanc7h9G+pXNMAyHIc4I4fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFW/pzbc JTEGyylxTVPkhuDrZqWFMB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVSpI+VpAG53t3nFSZftgKVEeyFB7YTqjD6LtNyb54fGxs4mcrNM95 uSXrsbbGCFo1vswKTTEan+4xp8nxQiuSHgbR2Cu+MP4DGyRdlgFcTHtc6USiTiwA 908znkaXPd+rkLvqtlys+GUkZr8T7JMMNUdtKhM/Cogb6zIfvLXqSdyKoysJPAjK L/O75UIz6ADE8UtAfABMYE2hSKqBR5Ybx6bL8LD1ATrcCI/l2Uma/pOYOZ/9yS1W o1l98BnnBcLiQSIbftebUM7LCpzgrmGyfpQYtglV5dGdNZN0fsSXuBF9tAiVJJwN tDf1R5mcPPXLahqDSasxyTcjB8/BbONh -----END CERTIFICATE-----Generated at Fri Jul 4 00:19:09 2025 by rpki-client