$ rpki-client -vvf rpki.apnic.net/member_repository/A91B527E/E8A88CBAAB7211E4B8BBB81CC4F9AE02/V7aHJ0szGe2QcblmFY-birZK5vc.mft File: V7aHJ0szGe2QcblmFY-birZK5vc.mft (raw, json) Hash identifier: sLw/mnWKUzeRIYIejA1RToSCt3jQU8NxEVy71iUnjas= Subject key identifier: B7:8C:E8:4E:D6:81:6B:7B:2B:C4:D7:3D:84:24:5C:DC:D4:F0:07:51 Authority key identifier: 57:B6:87:27:4B:33:19:ED:90:71:B9:66:15:8F:9B:8A:B6:4A:E6:F7 Certificate issuer: /CN=A91B527E/serialNumber=57B687274B3319ED9071B966158F9B8AB64AE6F7 Certificate serial: 27A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V7aHJ0szGe2QcblmFY-birZK5vc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B527E/E8A88CBAAB7211E4B8BBB81CC4F9AE02/V7aHJ0szGe2QcblmFY-birZK5vc.mft Manifest number: 279D Signing time: Mon 30 Jun 2025 15:41:26 +0000 Manifest this update: Mon 30 Jun 2025 15:41:26 +0000 Manifest next update: Mon 07 Jul 2025 15:41:26 +0000 Files and hashes: 1: V7aHJ0szGe2QcblmFY-birZK5vc.crl (hash: zoGLLeWVb4v2mB1n7JMQ4eJPKf0BbbNyd00r4Vb8WyM=) 2: C22BA9D094E411EA9076F758C4F9AE02.roa (hash: 0PS4/rj5Rh5J9qWit0urM3xL4w3DPtmcsnvl2FziSAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B527E/E8A88CBAAB7211E4B8BBB81CC4F9AE02/V7aHJ0szGe2QcblmFY-birZK5vc.crl rsync://rpki.apnic.net/member_repository/A91B527E/E8A88CBAAB7211E4B8BBB81CC4F9AE02/V7aHJ0szGe2QcblmFY-birZK5vc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V7aHJ0szGe2QcblmFY-birZK5vc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10149 (0x27a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B527E, serialNumber=57B687274B3319ED9071B966158F9B8AB64AE6F7 Validity Not Before: Jun 30 15:41:26 2025 GMT Not After : Jul 7 15:41:26 2025 GMT Subject: CN=6862b026-b8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:35:74:f7:1b:bb:23:63:40:65:36:da:7c:83: c4:ac:d5:e9:f0:db:0c:14:9c:83:e0:97:3d:b3:dc: 71:7d:19:f6:42:96:df:b3:e4:16:3f:00:ec:44:30: e5:8d:13:1c:4c:54:af:37:18:76:9a:2d:b3:3e:19: fd:68:aa:59:8a:59:0d:ca:0f:31:2f:1a:42:e9:2d: c1:e1:73:1a:1a:98:b6:fc:99:78:e7:4c:d3:cd:d6: e2:f8:bb:4b:e3:34:b9:be:6b:55:17:94:48:ad:ee: e6:7e:1f:7e:1b:ca:5e:38:29:5b:a1:bb:f2:2a:f5: 09:1e:8d:93:5a:7b:fa:4e:94:69:32:d5:b2:af:bd: 86:35:f6:87:7d:75:4f:41:30:4a:b8:ca:3c:92:48: 66:d4:cd:8d:fb:b4:c4:8a:25:9b:e8:69:2c:f6:ed: 7d:1e:ad:43:6a:c7:73:16:3b:e5:d9:d0:54:2d:5b: 46:7c:37:54:12:6f:72:a8:2f:0b:11:10:d4:71:14: 95:70:85:e9:55:9c:23:6c:67:93:3c:a8:d3:00:a7: d8:f1:e1:65:c4:c9:fe:60:61:a8:43:1c:b2:84:22: 11:46:1c:42:3c:1a:49:b0:91:66:87:83:5a:df:b3: 96:7b:a7:12:4e:0e:41:29:eb:86:6c:49:cc:3d:c6: 9d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:8C:E8:4E:D6:81:6B:7B:2B:C4:D7:3D:84:24:5C:DC:D4:F0:07:51 X509v3 Authority Key Identifier: keyid:57:B6:87:27:4B:33:19:ED:90:71:B9:66:15:8F:9B:8A:B6:4A:E6:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B527E/E8A88CBAAB7211E4B8BBB81CC4F9AE02/V7aHJ0szGe2QcblmFY-birZK5vc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V7aHJ0szGe2QcblmFY-birZK5vc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B527E/E8A88CBAAB7211E4B8BBB81CC4F9AE02/V7aHJ0szGe2QcblmFY-birZK5vc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:ea:65:b6:e5:e5:95:0b:f5:61:74:18:06:db:42:56:d0:0f: aa:de:8b:e8:44:dd:4e:7a:9a:7b:8e:76:12:30:c0:62:5f:63: df:bb:91:41:4c:99:d8:71:ea:77:49:23:2e:6a:64:f6:b7:c7: 46:14:5b:7a:67:ca:b4:49:0b:c3:b4:f1:86:e8:fb:09:f3:27: 44:ac:6f:1b:c5:f8:73:a4:38:2d:0d:ed:e7:8b:83:0a:66:da: c9:26:a5:ce:d2:4d:34:3e:79:e3:db:16:7d:5f:d0:74:b0:4f: 5b:d2:dd:82:6c:3f:77:f4:20:25:5d:b4:0f:dd:92:2e:05:5e: bb:54:6c:96:ef:6e:bd:b0:ed:de:23:59:46:cb:d9:12:01:84: c3:c3:6a:22:b9:5f:f2:35:bf:36:52:95:a2:46:52:33:ad:61: 5e:36:a3:31:f2:22:06:64:37:d8:21:04:82:29:3b:b7:75:81: 78:70:1c:33:fe:0e:47:53:38:35:9f:94:bc:a6:fd:f1:72:96: d5:f4:23:79:07:f2:84:36:6a:26:20:51:23:50:de:7a:b8:df: 43:99:3e:c8:bd:7d:8c:15:07:5d:1a:c2:69:ea:29:b9:18:87: 7e:1f:74:70:c9:2a:26:01:a7:f2:b2:83:dd:1e:02:29:61:ae: e2:8a:62:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJ6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUyN0UxMTAvBgNVBAUTKDU3QjY4NzI3NEIzMzE5RUQ5MDcxQjk2NjE1OEY5QjhB QjY0QUU2RjcwHhcNMjUwNjMwMTU0MTI2WhcNMjUwNzA3MTU0MTI2WjAYMRYwFAYD VQQDEw02ODYyYjAyNi1iOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zV09xu7I2NAZTbafIPErNXp8NsMFJyD4Jc9s9xxfRn2Qpbfs+QWPwDsRDDl jRMcTFSvNxh2mi2zPhn9aKpZilkNyg8xLxpC6S3B4XMaGpi2/Jl450zTzdbi+LtL 4zS5vmtVF5RIre7mfh9+G8peOClbobvyKvUJHo2TWnv6TpRpMtWyr72GNfaHfXVP QTBKuMo8kkhm1M2N+7TEiiWb6Gks9u19Hq1DasdzFjvl2dBULVtGfDdUEm9yqC8L ERDUcRSVcIXpVZwjbGeTPKjTAKfY8eFlxMn+YGGoQxyyhCIRRhxCPBpJsJFmh4Na 37OWe6cSTg5BKeuGbEnMPcadKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeM6E7W gWt7K8TXPYQkXNzU8AdRMB8GA1UdIwQYMBaAFFe2hydLMxntkHG5ZhWPm4q2Sub3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTI3RS9FOEE4OENCQUFC NzIxMUU0QjhCQkI4MUNDNEY5QUUwMi9WN2FISjBzekdlMlFjYmxtRlktYmlyWks1 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y3YUhKMHN6R2UyUWNibG1GWS1iaXJaSzV2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTI3RS9FOEE4OENCQUFCNzIxMUU0QjhCQkI4MUNDNEY5QUUwMi9WN2FISjBzekdl MlFjYmxtRlktYmlyWks1dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ6mW25eWVC/VhdBgG20JW0A+q3ovoRN1Oepp7jnYSMMBiX2Pfu5FB TJnYcep3SSMuamT2t8dGFFt6Z8q0SQvDtPGG6PsJ8ydErG8bxfhzpDgtDe3ni4MK ZtrJJqXO0k00Pnnj2xZ9X9B0sE9b0t2CbD939CAlXbQP3ZIuBV67VGyW7269sO3e I1lGy9kSAYTDw2oiuV/yNb82UpWiRlIzrWFeNqMx8iIGZDfYIQSCKTu3dYF4cBwz /g5HUzg1n5S8pv3xcpbV9CN5B/KENmomIFEjUN56uN9DmT7IvX2MFQddGsJp6im5 GId+H3RwySomAafysoPdHgIpYa7iimIx -----END CERTIFICATE-----Generated at Tue Jul 1 05:21:00 2025 by rpki-client