$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: ULiCtg4d6QCLh3iSXscXiBV3oKq2u0zRR5eT7KVXCmo= Subject key identifier: 6B:35:FD:D0:8D:E4:58:51:00:DA:BE:D5:EC:92:C2:04:71:9D:14:49 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: F9 Signing time: Thu 03 Jul 2025 05:25:22 +0000 Manifest this update: Thu 03 Jul 2025 05:25:21 +0000 Manifest next update: Thu 10 Jul 2025 05:25:21 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: 60HIVmKNKkabgk3IMjFT0gK9HHm6oi/bWYxxYp58h/M=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: MrPqjHlMCM5b67h4IqKRm22f4PuZXIPWzDsfWbxNY08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Jul 3 05:25:21 2025 GMT Not After : Jul 10 05:25:21 2025 GMT Subject: CN=68661441-4998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:f9:cd:6f:89:8d:c1:71:c9:00:a0:0f:bd: 94:8d:a7:68:6e:f8:a5:10:35:e4:ac:4b:a6:a0:40: 40:05:83:6a:31:46:7d:97:a4:76:a9:49:e6:93:63: 1e:34:a8:51:8e:00:6e:04:40:d1:41:74:64:3e:3e: c6:ab:13:bc:c1:43:77:c9:25:2c:66:e3:23:4d:01: 3d:3e:b7:9d:b1:91:39:e5:6c:cf:79:07:2d:70:33: 34:83:0f:92:11:71:40:cb:f6:fc:16:14:fc:7e:b8: 3b:27:d4:29:d4:f5:7e:cd:f4:9f:f2:07:14:e3:31: 36:26:d8:e8:a8:ec:be:94:ca:4a:8b:3d:ac:73:3d: 5e:e8:12:1c:a5:39:32:93:d6:24:21:2b:b1:ee:95: a7:55:48:f4:63:c3:06:8c:80:6d:01:01:f4:18:f0: d4:6a:8e:c2:2d:2a:59:cf:2b:f8:10:98:79:12:ad: 58:14:5f:cd:67:2d:33:74:c9:12:0b:93:47:11:6a: 92:af:a5:a0:67:11:b0:11:4d:42:d0:9c:b2:c1:92: 8c:75:43:df:95:c3:5a:87:09:0d:5c:59:05:b9:45: d4:76:b1:ac:f6:81:fd:95:e0:99:2d:36:9a:56:4a: ff:e1:6b:c0:bf:ff:2b:e3:f2:dc:e5:25:07:88:27: a9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:35:FD:D0:8D:E4:58:51:00:DA:BE:D5:EC:92:C2:04:71:9D:14:49 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d1:6f:e9:2b:62:43:1c:d6:db:e7:b5:be:c9:5b:58:54:0d: 68:8f:97:e7:08:31:0b:da:6c:95:ef:a0:64:88:56:69:eb:46: 66:f6:9a:45:a9:c8:19:d9:1b:02:98:9f:70:ea:b8:9f:52:45: db:63:32:30:a6:a8:0b:cf:7b:b2:75:d2:de:ec:bf:5f:fb:65: 2c:5f:29:b4:2d:fe:dd:43:90:70:9b:26:8b:f1:10:c3:78:ff: b7:b9:58:8c:6b:e5:d5:72:c0:84:c9:63:f0:40:c7:e4:ea:5d: 0d:07:54:0a:2f:ce:68:35:94:2a:00:43:d6:11:5a:b4:b6:47: 42:ff:a6:4a:92:2b:5a:98:3c:c0:c4:b1:a8:7d:2b:c5:df:1b: 3f:0e:94:80:e9:19:60:ed:66:96:5d:fd:a7:4b:7a:06:16:fa: 41:41:00:b4:41:aa:62:70:a0:64:97:b2:c2:91:31:11:c7:df: 09:42:a2:fd:40:c0:58:50:79:52:1b:51:83:de:17:18:24:98: 4c:2e:6e:4c:b5:10:4e:e1:38:df:bf:86:37:7c:7d:63:b5:4f: 57:d1:11:fb:94:d6:67:9b:57:cc:2c:ca:cd:44:e3:cc:2b:06: c7:5a:48:54:c6:54:cf:4f:60:f8:fa:a2:17:53:c3:8d:a7:ad: 8f:ed:38:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjUwNzAzMDUyNTIxWhcNMjUwNzEwMDUyNTIxWjAYMRYwFAYD VQQDEw02ODY2MTQ0MS00OTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNX5zW+JjcFxyQCgD72UjadobvilEDXkrEumoEBABYNqMUZ9l6R2qUnmk2Me NKhRjgBuBEDRQXRkPj7GqxO8wUN3ySUsZuMjTQE9PredsZE55WzPeQctcDM0gw+S EXFAy/b8FhT8frg7J9Qp1PV+zfSf8gcU4zE2JtjoqOy+lMpKiz2scz1e6BIcpTky k9YkISux7pWnVUj0Y8MGjIBtAQH0GPDUao7CLSpZzyv4EJh5Eq1YFF/NZy0zdMkS C5NHEWqSr6WgZxGwEU1C0JyywZKMdUPflcNahwkNXFkFuUXUdrGs9oH9leCZLTaa Vkr/4WvAv/8r4/Lc5SUHiCep7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGs1/dCN 5FhRANq+1eySwgRxnRRJMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq0W/pK2JDHNbb57W+yVtYVA1oj5fnCDEL2myV76BkiFZp60Zm9ppF qcgZ2RsCmJ9w6rifUkXbYzIwpqgLz3uyddLe7L9f+2UsXym0Lf7dQ5BwmyaL8RDD eP+3uViMa+XVcsCEyWPwQMfk6l0NB1QKL85oNZQqAEPWEVq0tkdC/6ZKkitamDzA xLGofSvF3xs/DpSA6Rlg7WaWXf2nS3oGFvpBQQC0QapicKBkl7LCkTERx98JQqL9 QMBYUHlSG1GD3hcYJJhMLm5MtRBO4Tjfv4Y3fH1jtU9X0RH7lNZnm1fMLMrNROPM KwbHWkhUxlTPT2D4+qIXU8ONp62P7TjK -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:22 2025 by rpki-client