$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: QVoSf9/tImB6hJq17//SX56Knf8zw8TF7gqYSRdQ5Gk= Subject key identifier: DB:A0:6C:50:15:FB:1E:AD:01:F0:83:97:D4:CB:BC:3C:7E:91:E5:78 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D2E Signing time: Fri 04 Jul 2025 16:23:01 +0000 Manifest this update: Fri 04 Jul 2025 16:23:00 +0000 Manifest next update: Fri 11 Jul 2025 16:23:00 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: AcZDxnzX47Ff6XN3vv86M1Onal1gZ7JpSZvhvDadWEE=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: QN4dhYeOYexv58OGwmZdyDg8Z4B86G7ksX83Qid7CHk=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: oh/v7iVJL2nmvk/qjcAVXe7OglXKPf/jEhdssMeYp/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7483 (0x1d3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Jul 4 16:23:00 2025 GMT Not After : Jul 11 16:23:00 2025 GMT Subject: CN=6867ffe5-f9fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ac:d5:e0:ee:d7:3f:08:b8:cf:c5:09:9e:ec: 00:4a:45:ff:43:89:f1:91:32:10:8b:a7:b9:bf:0a: b3:16:2a:b6:ff:9e:c7:24:e4:77:0c:b9:2c:19:4c: 0d:f0:85:8a:5c:c4:ac:91:90:a9:4b:6f:3a:a0:a9: 1a:60:cf:c6:d9:0f:26:6c:6b:25:29:0c:96:a5:15: 5d:bd:af:48:d6:61:51:56:a4:8a:49:e4:67:5c:73: 2f:8a:c2:60:1d:91:41:d0:09:9c:d9:23:0b:7c:5d: d1:8c:d7:84:01:50:7b:a6:28:31:78:25:7a:c0:b0: d8:aa:6e:c5:17:c0:59:dd:b5:d4:87:bb:64:4a:7b: 5f:0f:18:1b:b6:02:d5:d1:3d:1c:55:c9:2a:33:14: 37:76:27:76:1f:14:5f:87:09:9d:25:81:29:85:2c: ec:7a:29:1c:29:1e:77:dd:e6:6b:9f:f0:38:ae:2d: 20:e6:d5:26:46:d4:80:e1:20:05:f3:b9:bb:c9:a8: df:6d:40:19:e2:c8:9a:73:72:a5:24:43:c7:99:41: c3:54:ac:8d:e8:17:cc:06:d1:f3:19:9e:55:40:72: 04:2e:76:19:fc:db:9f:71:1e:a8:e3:5b:00:2c:65: 0c:b9:85:4b:9e:f9:99:d1:2f:92:0a:03:43:dd:6e: 59:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A0:6C:50:15:FB:1E:AD:01:F0:83:97:D4:CB:BC:3C:7E:91:E5:78 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:6a:60:88:61:d5:c4:3d:5d:e2:16:93:4a:cc:cd:32:2f:44: aa:28:22:89:e1:de:ca:86:63:f3:2e:86:6a:11:49:9b:e5:a5: 50:7e:f7:b3:36:c1:6b:7f:c5:c8:4b:89:59:b4:9d:84:54:9b: 18:05:28:1e:6d:11:da:58:73:f2:62:ee:b0:cb:12:12:5d:13: 32:7b:e5:f4:65:e0:e2:e5:c1:22:59:cd:be:ed:ed:5c:63:6e: 3b:a6:c6:09:53:c2:90:50:ef:c4:91:8d:30:50:9c:5e:62:13: 79:d8:04:9b:85:ff:41:09:97:fc:99:87:fe:4b:ce:18:ef:3c: 2a:ac:7e:7c:4e:d2:13:03:f7:f5:e8:2e:1e:99:c1:5b:15:c6: 44:a8:4c:34:df:93:f4:73:e8:ab:a8:b1:1f:f0:22:91:b3:6b: ff:e8:0c:ae:9c:ae:f0:c8:12:87:0c:6a:9d:b1:61:bf:ba:d6: 9d:9b:34:00:9b:d1:b7:05:ef:88:8b:4a:15:77:c3:05:29:c6: 6c:1f:de:79:6f:d4:f4:ff:31:0d:dd:74:ac:e0:e9:9f:b9:d0: f8:70:bf:43:9f:78:7f:34:ea:37:3e:57:7d:ee:08:c8:ff:5c: 9a:d3:b0:0a:36:a2:d3:a6:c4:4d:64:a8:ad:21:f9:29:ef:79: 43:29:98:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUwNzA0MTYyMzAwWhcNMjUwNzExMTYyMzAwWjAYMRYwFAYD VQQDEw02ODY3ZmZlNS1mOWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwazV4O7XPwi4z8UJnuwASkX/Q4nxkTIQi6e5vwqzFiq2/57HJOR3DLksGUwN 8IWKXMSskZCpS286oKkaYM/G2Q8mbGslKQyWpRVdva9I1mFRVqSKSeRnXHMvisJg HZFB0Amc2SMLfF3RjNeEAVB7pigxeCV6wLDYqm7FF8BZ3bXUh7tkSntfDxgbtgLV 0T0cVckqMxQ3did2HxRfhwmdJYEphSzseikcKR533eZrn/A4ri0g5tUmRtSA4SAF 87m7yajfbUAZ4siac3KlJEPHmUHDVKyN6BfMBtHzGZ5VQHIELnYZ/NufcR6o41sA LGUMuYVLnvmZ0S+SCgND3W5ZMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNugbFAV +x6tAfCDl9TLvDx+keV4MB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2amCIYdXEPV3iFpNKzM0yL0SqKCKJ4d7KhmPzLoZqEUmb5aVQfvez NsFrf8XIS4lZtJ2EVJsYBSgebRHaWHPyYu6wyxISXRMye+X0ZeDi5cEiWc2+7e1c Y247psYJU8KQUO/EkY0wUJxeYhN52ASbhf9BCZf8mYf+S84Y7zwqrH58TtITA/f1 6C4emcFbFcZEqEw035P0c+irqLEf8CKRs2v/6AyunK7wyBKHDGqdsWG/utadmzQA m9G3Be+Ii0oVd8MFKcZsH955b9T0/zEN3XSs4OmfudD4cL9Dn3h/NOo3Pld97gjI /1ya07AKNqLTpsRNZKitIfkp73lDKZjy -----END CERTIFICATE-----Generated at Fri Jul 4 22:09:13 2025 by rpki-client