$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: x/OLLqUUfntOJ2HYqgFemp4lBohtrTkGG0AvxcmBPUE= Subject key identifier: 30:11:63:F9:2C:B0:EE:3D:C2:71:EE:69:97:18:F5:1F:5E:D2:20:C6 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 086F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 0855 Signing time: Wed 02 Jul 2025 21:00:15 +0000 Manifest this update: Wed 02 Jul 2025 21:00:15 +0000 Manifest next update: Wed 09 Jul 2025 21:00:15 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: gt+Bz8JojPsmFxgFibxEOGpgHujbtlAyVuL7Oa0g1is=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2159 (0x86f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Jul 2 21:00:15 2025 GMT Not After : Jul 9 21:00:15 2025 GMT Subject: CN=68659ddf-b898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f3:d4:75:2d:1d:3d:60:f1:5a:6e:cb:27:b6: 6f:4c:8b:4a:4b:42:15:9f:a8:3c:06:66:e8:f3:56: 91:45:d4:a3:8c:e8:21:d0:46:1b:48:cb:d3:89:79: 8e:0d:fa:4e:3d:79:e2:80:c5:d6:d8:8e:2c:e5:f3: d6:a5:b5:e8:89:a1:1d:fa:86:03:4f:f7:42:5f:e4: 78:e2:81:2e:87:65:c5:e4:f8:35:d7:55:da:dc:5b: fa:30:64:b2:b9:b5:2b:ee:78:5e:ec:51:0d:22:87: c4:c8:ce:d3:e7:cd:ad:49:82:77:66:51:6c:31:75: 10:04:a7:75:a2:5e:e4:6d:3f:7b:c5:43:96:de:12: 4c:1e:b4:66:ec:bf:cb:56:f3:9e:ad:ff:44:9a:64: 21:43:db:12:53:73:88:13:ce:aa:04:fa:0c:a0:d0: ee:85:73:27:29:ea:95:d7:02:8c:07:77:58:22:e1: aa:9d:38:e9:14:e2:14:c3:89:93:29:d5:a7:f0:2f: fb:12:86:3a:78:e0:dc:2c:3c:06:61:5f:89:7c:8b: ba:7b:37:b1:7d:83:c7:b4:ca:4a:56:fe:65:50:17: aa:e4:46:0b:f8:73:fc:1c:85:6f:78:49:80:54:43: da:94:6e:2c:46:1d:56:39:7b:b4:ce:e6:fb:f7:e8: 2c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:11:63:F9:2C:B0:EE:3D:C2:71:EE:69:97:18:F5:1F:5E:D2:20:C6 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:b9:e7:7f:47:b8:46:ee:d6:a6:87:c3:2a:19:2b:8d:b4:2f: 65:67:4d:58:ac:43:47:0e:22:a8:e6:7b:77:ee:cb:d9:44:ab: 91:6f:f2:eb:6c:48:78:88:90:63:8f:24:dd:17:f6:6b:81:1b: d7:30:2a:f3:d8:f6:99:bc:1e:7f:4f:ea:0e:9f:dc:11:6d:58: 06:d4:77:4c:49:d1:64:c6:93:07:a7:2b:48:eb:da:a2:c7:cb: ea:ab:33:c6:87:2a:21:98:b7:26:0a:ee:6e:fc:50:54:6d:5b: fc:1d:52:c3:19:ca:1f:98:f9:88:06:48:d4:6c:74:7f:af:ce: 06:ee:6c:57:1e:1e:79:58:6c:e0:7c:74:be:32:6d:4b:c5:cf: 9e:4c:03:83:36:38:28:ea:e2:0c:29:53:cd:e5:a0:c6:5e:05: 80:40:f3:f1:e7:a1:17:25:66:b5:a6:cf:e5:58:e3:0c:8b:77: 1c:ad:9f:56:15:3a:aa:ef:5a:1f:47:3d:ec:cf:fb:13:cf:b1: 19:46:cf:30:b6:7e:e1:1d:e8:ae:a9:bf:2d:16:8a:6e:91:3e: fa:26:45:56:43:98:55:c1:6f:ce:0a:74:50:28:9d:7c:0b:d0: 46:51:30:96:a0:5c:60:b6:cd:11:e6:aa:a5:60:2d:90:52:87: c8:98:a1:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNzAyMjEwMDE1WhcNMjUwNzA5MjEwMDE1WjAYMRYwFAYD VQQDEw02ODY1OWRkZi1iODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfPUdS0dPWDxWm7LJ7ZvTItKS0IVn6g8Bmbo81aRRdSjjOgh0EYbSMvTiXmO DfpOPXnigMXW2I4s5fPWpbXoiaEd+oYDT/dCX+R44oEuh2XF5Pg111Xa3Fv6MGSy ubUr7nhe7FENIofEyM7T582tSYJ3ZlFsMXUQBKd1ol7kbT97xUOW3hJMHrRm7L/L VvOerf9EmmQhQ9sSU3OIE86qBPoMoNDuhXMnKeqV1wKMB3dYIuGqnTjpFOIUw4mT KdWn8C/7EoY6eODcLDwGYV+JfIu6ezexfYPHtMpKVv5lUBeq5EYL+HP8HIVveEmA VEPalG4sRh1WOXu0zub79+gsgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDARY/ks sO49wnHuaZcY9R9e0iDGMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByued/R7hG7tamh8MqGSuNtC9lZ01YrENHDiKo5nt37svZRKuRb/Lr bEh4iJBjjyTdF/ZrgRvXMCrz2PaZvB5/T+oOn9wRbVgG1HdMSdFkxpMHpytI69qi x8vqqzPGhyohmLcmCu5u/FBUbVv8HVLDGcofmPmIBkjUbHR/r84G7mxXHh55WGzg fHS+Mm1Lxc+eTAODNjgo6uIMKVPN5aDGXgWAQPPx56EXJWa1ps/lWOMMi3ccrZ9W FTqq71ofRz3sz/sTz7EZRs8wtn7hHeiuqb8tFopukT76JkVWQ5hVwW/OCnRQKJ18 C9BGUTCWoFxgts0R5qqlYC2QUofImKE9 -----END CERTIFICATE-----Generated at Thu Jul 3 10:08:59 2025 by rpki-client