$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft File: elR0EjxUiBfiXzSEzCa2CwZBvWk.mft (raw, json) Hash identifier: sY19K/+VAsErdFcNmzFTY41e5/bflSgeBrUTcJBnUic= Subject key identifier: E1:02:EB:49:DD:03:39:70:3A:EF:B5:3E:A4:63:BE:68:12:A0:33:ED Authority key identifier: 7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 Certificate issuer: /CN=A91B6F87/serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Certificate serial: 078C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft Manifest number: 0779 Signing time: Wed 02 Jul 2025 21:52:56 +0000 Manifest this update: Wed 02 Jul 2025 21:52:56 +0000 Manifest next update: Wed 09 Jul 2025 21:52:56 +0000 Files and hashes: 1: elR0EjxUiBfiXzSEzCa2CwZBvWk.crl (hash: KgnkBLjXnwcTGURi44G0UhVWuuTCmN75ecSEirZaosY=) 2: 6AB849742C9C11EBB49A3A32C4F9AE02.roa (hash: d4sd7UZZo9a+uPHZX7tMr/i70JRLudIGa9+mnphuZB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1932 (0x78c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F87, serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Validity Not Before: Jul 2 21:52:56 2025 GMT Not After : Jul 9 21:52:56 2025 GMT Subject: CN=6865aa38-a161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:58:8f:91:1b:e7:a3:52:78:a7:4b:7b:14:1f: 93:5f:20:23:b1:5f:d3:52:82:30:09:21:ff:bb:1b: 17:4f:6f:ce:a8:20:3a:3a:0f:be:f1:c5:b3:d6:07: da:83:67:3e:2b:e2:89:ba:18:5e:68:90:71:f3:d7: c5:2e:ff:88:cf:1c:0b:f6:b6:0b:51:66:0f:bc:43: d9:12:8b:de:3f:aa:9c:32:8c:6a:d9:5a:b6:c0:9f: c7:ab:96:7c:2d:6e:92:01:80:e5:d9:33:ba:d5:90: ae:19:92:7a:61:ab:b6:68:9b:08:4d:7d:14:6d:a9: 29:87:d9:4a:9c:16:e8:ad:be:66:cc:02:9d:a5:e1: 4d:3f:52:92:c5:46:1a:f3:15:05:27:f8:8b:cc:c9: 6b:06:30:67:46:7b:5e:1e:05:37:1d:6c:b2:5b:68: 6d:64:18:7b:60:8b:b8:4d:2f:d9:17:f3:34:b5:ef: b3:ec:30:30:34:8d:d0:07:8d:8a:38:83:ad:3f:de: 8b:d3:cd:4b:7c:ea:fd:b5:f3:bd:66:ae:80:91:42: e1:7e:9b:fc:0a:aa:2b:8f:6f:4d:91:a1:6b:4a:66: e2:c2:88:77:03:e6:ad:10:68:4a:80:b1:5c:e7:e6: 73:0c:44:4d:b1:6a:be:55:93:2c:90:a3:3f:84:b7: fe:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:02:EB:49:DD:03:39:70:3A:EF:B5:3E:A4:63:BE:68:12:A0:33:ED X509v3 Authority Key Identifier: keyid:7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f0:f7:1b:36:0a:1d:13:82:b0:01:22:83:04:8d:7b:b4:c8: 3b:ea:95:e3:94:1b:cc:58:19:84:8e:62:10:38:99:64:b2:76: 2d:81:69:47:41:db:c3:ed:16:f9:e4:d4:32:05:07:25:96:76: eb:c3:69:59:a1:fe:59:6f:e9:7b:84:41:d2:af:ed:3c:cd:17: 32:c4:88:0b:a1:41:3c:11:b4:c3:4f:e6:06:fb:dc:e1:be:52: fe:5f:e9:a7:d1:d0:93:dc:ff:63:a1:55:aa:85:ee:d8:2a:da: 6b:c8:88:a2:04:37:44:9f:b4:57:4f:41:b1:b7:47:6c:18:40: c3:14:ee:85:4c:53:e0:6c:53:01:2b:c8:e0:dc:b8:83:e6:4b: c6:ab:96:8d:a6:05:12:7f:ae:47:2b:16:9e:2a:db:e1:49:fb: 9e:c5:c9:4c:1d:10:24:2b:61:68:b6:3f:73:6a:15:03:22:93: cc:cb:45:67:7c:ea:15:78:8a:f2:f1:9c:7a:45:84:f9:ba:e8: 44:81:31:a2:2b:fc:7f:25:66:e5:06:96:c2:cd:2a:d8:38:62: e3:64:cc:37:3b:6d:9f:94:96:13:2c:27:36:61:fa:5e:2d:84: 85:81:88:77:b0:67:0c:e8:df:dc:b3:2d:96:1c:fc:bb:b9:4f: 44:da:63:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGODcxMTAvBgNVBAUTKDdBNTQ3NDEyM0M1NDg4MTdFMjVGMzQ4NENDMjZCNjBC MDY0MUJENjkwHhcNMjUwNzAyMjE1MjU2WhcNMjUwNzA5MjE1MjU2WjAYMRYwFAYD VQQDEw02ODY1YWEzOC1hMTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1iPkRvno1J4p0t7FB+TXyAjsV/TUoIwCSH/uxsXT2/OqCA6Og++8cWz1gfa g2c+K+KJuhheaJBx89fFLv+IzxwL9rYLUWYPvEPZEoveP6qcMoxq2Vq2wJ/Hq5Z8 LW6SAYDl2TO61ZCuGZJ6Yau2aJsITX0Ubakph9lKnBborb5mzAKdpeFNP1KSxUYa 8xUFJ/iLzMlrBjBnRnteHgU3HWyyW2htZBh7YIu4TS/ZF/M0te+z7DAwNI3QB42K OIOtP96L081LfOr9tfO9Zq6AkULhfpv8Cqorj29NkaFrSmbiwoh3A+atEGhKgLFc 5+ZzDERNsWq+VZMskKM/hLf+7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEC60nd AzlwOu+1PqRjvmgSoDPtMB8GA1UdIwQYMBaAFHpUdBI8VIgX4l80hMwmtgsGQb1p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY4Ny9CMUNENzFGMDI2 ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlCZmlYelNFekNhMkN3WkJ2 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VsUjBFanhVaUJmaVh6U0V6Q2EyQ3daQnZXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY4Ny9CMUNENzFGMDI2ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlC ZmlYelNFekNhMkN3WkJ2V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW8PcbNgodE4KwASKDBI17tMg76pXjlBvMWBmEjmIQOJlksnYtgWlH QdvD7Rb55NQyBQcllnbrw2lZof5Zb+l7hEHSr+08zRcyxIgLoUE8EbTDT+YG+9zh vlL+X+mn0dCT3P9joVWqhe7YKtpryIiiBDdEn7RXT0Gxt0dsGEDDFO6FTFPgbFMB K8jg3LiD5kvGq5aNpgUSf65HKxaeKtvhSfuexclMHRAkK2Fotj9zahUDIpPMy0Vn fOoVeIry8Zx6RYT5uuhEgTGiK/x/JWblBpbCzSrYOGLjZMw3O22flJYTLCc2Yfpe LYSFgYh3sGcM6N/csy2WHPy7uU9E2mMv -----END CERTIFICATE-----Generated at Thu Jul 3 09:04:34 2025 by rpki-client