$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: joftP02zerZLgJchgKDWd3+kI8M03VGLyBkP9yd/+A0= Subject key identifier: CB:78:43:15:5D:63:B6:C3:C7:77:FB:DE:1D:3E:05:E2:43:40:0B:1B Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 01EC Signing time: Tue 01 Jul 2025 02:55:53 +0000 Manifest this update: Tue 01 Jul 2025 02:55:52 +0000 Manifest next update: Tue 08 Jul 2025 02:55:52 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: uA8mSTJMx7n2Nv/ToEFamF9vfDw6tkT2bykNfhl4zq0=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: EdWi73Mh5xQLy3TivA4ubB2nlEznz8QrqPnUKcwGaiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Jul 1 02:55:52 2025 GMT Not After : Jul 8 02:55:52 2025 GMT Subject: CN=68634e38-f9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8b:bd:c6:70:0c:7b:0f:ae:76:0e:e1:98:ad: 75:a0:99:98:57:d2:f9:e8:50:db:86:92:bc:88:24: 42:fb:b6:a0:04:30:64:5a:bc:55:72:dd:61:49:9d: 93:4b:36:d3:5b:07:0b:c4:ca:bb:da:89:c2:36:94: 05:30:15:28:dc:28:69:6d:3b:e6:74:7e:26:12:88: 13:ac:63:4d:0e:97:4e:50:88:49:94:d3:47:f6:f8: 0f:d8:e0:c7:fe:cb:f0:3d:c5:3e:43:52:ff:15:84: e8:5f:99:6a:27:f2:c0:1c:7f:83:74:e2:9e:d0:22: 97:4b:93:50:4c:bb:4a:ed:a4:da:6b:52:fe:5d:27: 81:f0:5b:b1:3f:57:02:3b:7e:6d:2c:71:46:d8:0c: 1d:d4:26:2f:40:5b:22:ff:c7:b3:c9:09:de:2a:3c: 5f:7d:9b:ae:9e:10:a9:6f:0c:1c:01:2f:05:52:47: 95:8d:0b:a4:0e:14:b4:56:28:76:a8:db:0c:ee:23: 9f:d5:6d:b4:6b:d1:b7:21:c5:cc:77:26:2a:bd:4a: a3:b5:9d:76:d4:bd:57:b9:41:a2:f4:86:26:5b:d9: db:1c:d4:95:1b:ec:7c:ad:b4:6c:05:bb:7f:c4:4c: 4b:a1:ad:a0:27:03:2f:a0:b6:af:a5:f6:00:8e:ed: c0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:78:43:15:5D:63:B6:C3:C7:77:FB:DE:1D:3E:05:E2:43:40:0B:1B X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:5f:3d:2d:3c:bf:c8:25:30:ca:5c:b5:ff:ca:1b:45:3d:fb: b0:f0:75:68:9a:95:3d:b1:2e:03:ce:fa:59:ff:e9:b6:58:a4: cd:6b:ff:c2:9c:65:eb:d5:4d:ce:d6:68:49:c1:80:85:0f:1d: e0:f0:e6:03:43:6b:1e:b0:2c:ed:b1:14:dc:37:70:3f:51:a5: 02:e7:84:92:87:2a:a7:2f:35:b1:b4:c7:e9:13:0b:cd:05:94: 65:b5:ee:c3:66:23:a3:d7:be:04:6f:fe:6c:d4:98:74:01:af: e2:3e:a9:71:de:44:e4:d4:5c:2d:df:30:5f:7e:fd:02:ee:26: cd:3f:e7:fc:90:bb:2a:92:fe:af:9b:8a:6c:2c:42:a3:61:f4: b3:1e:6d:bf:2a:d4:0a:13:a1:cb:38:ee:2c:ce:df:5b:8f:b9: 91:51:eb:ab:7a:b6:ac:ac:f1:eb:eb:05:83:26:94:25:90:d4: c5:83:08:f3:fe:c0:e5:73:8c:19:c6:ce:a3:4b:21:58:27:40: a1:4b:4a:fc:5c:83:f9:e9:28:8d:4a:1e:7c:9e:ce:61:1d:57: 8f:23:83:82:bb:6d:5d:79:81:73:49:d7:fa:fb:58:37:62:de: ac:f9:58:7b:4b:6c:95:28:6b:1a:fe:83:43:d2:74:87:c2:92: 91:77:84:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjUwNzAxMDI1NTUyWhcNMjUwNzA4MDI1NTUyWjAYMRYwFAYD VQQDEw02ODYzNGUzOC1mOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYu9xnAMew+udg7hmK11oJmYV9L56FDbhpK8iCRC+7agBDBkWrxVct1hSZ2T SzbTWwcLxMq72onCNpQFMBUo3ChpbTvmdH4mEogTrGNNDpdOUIhJlNNH9vgP2ODH /svwPcU+Q1L/FYToX5lqJ/LAHH+DdOKe0CKXS5NQTLtK7aTaa1L+XSeB8FuxP1cC O35tLHFG2Awd1CYvQFsi/8ezyQneKjxffZuunhCpbwwcAS8FUkeVjQukDhS0Vih2 qNsM7iOf1W20a9G3IcXMdyYqvUqjtZ121L1XuUGi9IYmW9nbHNSVG+x8rbRsBbt/ xExLoa2gJwMvoLavpfYAju3A8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMt4QxVd Y7bDx3f73h0+BeJDQAsbMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVXz0tPL/IJTDKXLX/yhtFPfuw8HVompU9sS4DzvpZ/+m2WKTNa//C nGXr1U3O1mhJwYCFDx3g8OYDQ2sesCztsRTcN3A/UaUC54SShyqnLzWxtMfpEwvN BZRlte7DZiOj174Eb/5s1Jh0Aa/iPqlx3kTk1Fwt3zBffv0C7ibNP+f8kLsqkv6v m4psLEKjYfSzHm2/KtQKE6HLOO4szt9bj7mRUeurerasrPHr6wWDJpQlkNTFgwjz /sDlc4wZxs6jSyFYJ0ChS0r8XIP56SiNSh58ns5hHVePI4OCu21deYFzSdf6+1g3 Yt6s+Vh7S2yVKGsa/oND0nSHwpKRd4SB -----END CERTIFICATE-----Generated at Wed Jul 2 14:33:10 2025 by rpki-client