$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft File: 7w5JMvxot1LjQokiqT5mq-MfNDE.mft (raw, json) Hash identifier: JbRXH1qjdNp4S536qdy+hUPFl8Bi1ksehIwjnaCHZhQ= Subject key identifier: 10:97:50:F1:74:F4:20:42:B0:C4:43:29:61:DC:F6:A9:21:B6:DF:C0 Authority key identifier: EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 Certificate issuer: /CN=A91B4B33/serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft Manifest number: CB Signing time: Thu 03 Jul 2025 05:53:22 +0000 Manifest this update: Thu 03 Jul 2025 05:53:21 +0000 Manifest next update: Thu 10 Jul 2025 05:53:21 +0000 Files and hashes: 1: 7w5JMvxot1LjQokiqT5mq-MfNDE.crl (hash: c1l1kILsTgMO6q0hrtdiu1gxH1Yy3hlosMTDvKufKcs=) 2: 80741B04221F11EF92A42E1AC4F9AE02.roa (hash: tCXmsiS2pZhfyBR2w7/CD7l4+Sf7uzGB1XazUIv4/b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=EF0E4932FC68B752E3428922A93E66ABE31F3431 Validity Not Before: Jul 3 05:53:21 2025 GMT Not After : Jul 10 05:53:21 2025 GMT Subject: CN=68661ad1-d738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0d:1b:86:cb:4f:a8:62:ab:27:30:a4:17:25: df:ef:4d:0c:8e:f5:ac:d3:8b:d8:84:d3:07:f3:5d: 0b:57:c2:be:de:20:8c:01:10:1f:7a:6c:98:de:0d: 6a:82:74:27:a1:0a:65:b1:f4:c0:31:1b:aa:42:d6: 13:4b:00:70:6c:15:d0:dc:7f:8b:7a:7d:ce:50:15: 4c:e3:32:7b:eb:8c:51:96:f4:5b:d1:ad:8c:38:3e: 29:cf:bc:ed:e6:c4:3e:32:0b:a0:2d:a0:a0:e9:ce: a4:36:a9:a4:8f:17:c1:e9:9f:76:6e:25:cd:e1:1b: e2:d8:e7:9a:51:5b:95:2b:c9:42:ea:63:59:64:f9: fe:5e:5c:ff:b3:ed:94:01:3c:c1:8f:a5:76:38:ee: c7:3c:19:da:7d:bb:a9:db:ed:0b:ca:9c:87:0c:53: 1f:fe:21:dd:95:12:c8:fe:22:61:6e:55:67:e4:29: 2e:64:ce:e8:d9:f1:4d:e4:ff:36:54:c8:60:b9:16: 7e:53:7b:d4:3d:38:f2:4a:c5:f2:c0:e7:ea:14:91: 26:66:57:1e:25:a9:95:69:b3:3f:52:13:2a:a9:c1: b2:2a:a6:1c:56:ae:a8:ea:6d:33:67:7a:76:78:96: 47:3f:67:1f:81:d8:12:65:5a:7f:49:68:01:23:a0: 23:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:97:50:F1:74:F4:20:42:B0:C4:43:29:61:DC:F6:A9:21:B6:DF:C0 X509v3 Authority Key Identifier: keyid:EF:0E:49:32:FC:68:B7:52:E3:42:89:22:A9:3E:66:AB:E3:1F:34:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7w5JMvxot1LjQokiqT5mq-MfNDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/1ACE7D04221E11EF9344A309C4F9AE02/7w5JMvxot1LjQokiqT5mq-MfNDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:bc:25:24:63:a3:d5:dd:b1:14:b3:4d:f3:32:75:79:27:df: 05:36:44:62:89:fc:81:41:93:da:e5:81:0c:00:82:9b:fa:3b: c5:f0:ef:8c:f3:6d:c7:b9:c3:a2:99:3a:02:ab:e3:36:15:7b: 65:eb:a5:f6:81:4f:75:6c:d7:6c:a4:d4:03:8c:21:57:56:68: a3:e7:a6:ee:c9:59:9f:c4:59:ff:50:0f:74:ff:ab:8a:ec:4a: 2b:03:b9:4e:a3:cc:86:f8:ff:09:48:d9:e1:6b:57:ac:48:c0: ca:1a:08:d7:16:1a:47:6d:20:71:6e:da:e4:a3:d5:2a:64:0c: 77:68:0c:6f:75:61:63:b8:01:05:2e:dc:8c:df:db:81:4f:93: 90:d2:f4:24:b6:a4:cb:42:9f:35:29:c8:2f:bc:4a:2b:f4:e5: 69:1c:bc:17:ac:c6:ac:50:5a:af:a0:21:05:5e:45:47:6e:bd: c3:5c:49:c9:19:82:a6:1e:c1:c0:3f:01:cf:49:43:e3:f0:a3: ad:0a:a2:16:23:ec:a9:90:e7:19:e2:aa:1f:db:bd:16:21:4d: ce:0a:4c:ac:54:c4:74:fd:c7:1a:45:0c:3a:89:f0:7d:83:52: 48:97:29:14:52:42:82:2c:69:60:f1:21:85:34:8c:c5:c0:02: 26:3a:05:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEVGMEU0OTMyRkM2OEI3NTJFMzQyODkyMkE5M0U2NkFC RTMxRjM0MzEwHhcNMjUwNzAzMDU1MzIxWhcNMjUwNzEwMDU1MzIxWjAYMRYwFAYD VQQDEw02ODY2MWFkMS1kNzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnA0bhstPqGKrJzCkFyXf700MjvWs04vYhNMH810LV8K+3iCMARAfemyY3g1q gnQnoQplsfTAMRuqQtYTSwBwbBXQ3H+Len3OUBVM4zJ764xRlvRb0a2MOD4pz7zt 5sQ+MgugLaCg6c6kNqmkjxfB6Z92biXN4Rvi2OeaUVuVK8lC6mNZZPn+Xlz/s+2U ATzBj6V2OO7HPBnafbup2+0LypyHDFMf/iHdlRLI/iJhblVn5CkuZM7o2fFN5P82 VMhguRZ+U3vUPTjySsXywOfqFJEmZlceJamVabM/UhMqqcGyKqYcVq6o6m0zZ3p2 eJZHP2cfgdgSZVp/SWgBI6AjowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCXUPF0 9CBCsMRDKWHc9qkhtt/AMB8GA1UdIwQYMBaAFO8OSTL8aLdS40KJIqk+ZqvjHzQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8xQUNFN0QwNDIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3QxTGpRb2tpcVQ1bXEtTWZO REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzd3NUpNdnhvdDFMalFva2lxVDVtcS1NZk5ERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8xQUNFN0QwNDIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi83dzVKTXZ4b3Qx TGpRb2tpcVQ1bXEtTWZOREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+vCUkY6PV3bEUs03zMnV5J98FNkRiifyBQZPa5YEMAIKb+jvF8O+M 823HucOimToCq+M2FXtl66X2gU91bNdspNQDjCFXVmij56buyVmfxFn/UA90/6uK 7EorA7lOo8yG+P8JSNnha1esSMDKGgjXFhpHbSBxbtrko9UqZAx3aAxvdWFjuAEF LtyM39uBT5OQ0vQktqTLQp81KcgvvEor9OVpHLwXrMasUFqvoCEFXkVHbr3DXEnJ GYKmHsHAPwHPSUPj8KOtCqIWI+ypkOcZ4qof270WIU3OCkysVMR0/ccaRQw6ifB9 g1JIlykUUkKCLGlg8SGFNIzFwAImOgWX -----END CERTIFICATE-----Generated at Thu Jul 3 23:32:02 2025 by rpki-client