$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: ZgVBxsBhM4XAKiJO1IwGDCbfi0BxoJ+7Bmp2uGtIah4= Subject key identifier: 24:0B:97:A5:B2:13:32:DB:04:60:87:72:8E:82:0D:4F:85:EE:2A:F9 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 0601 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 05FB Signing time: Wed 02 Jul 2025 23:12:45 +0000 Manifest this update: Wed 02 Jul 2025 23:12:45 +0000 Manifest next update: Wed 09 Jul 2025 23:12:45 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: fxI8ujaSN6GJlsZViGF38t4lRaZ1vEvSsdm8EywwmKw=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1537 (0x601) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Jul 2 23:12:45 2025 GMT Not After : Jul 9 23:12:45 2025 GMT Subject: CN=6865bced-d718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7d:c2:b3:cd:ab:83:19:60:c9:2c:59:3c:96: 40:49:13:4e:0c:d8:ff:7c:1a:02:a9:18:3a:2a:c3: 80:fb:2d:68:2f:16:22:89:93:15:93:66:50:80:0b: 4b:42:ad:66:1c:8b:55:91:a9:86:b4:66:ac:00:5b: 40:5f:a9:68:85:8b:3a:f8:7a:60:5b:1d:3e:a3:01: 2e:e3:41:6b:bd:ff:c7:b3:61:11:8b:4e:62:a0:8b: 15:ab:ff:eb:af:e7:36:56:97:37:6d:3d:82:a0:a7: d1:c9:c5:59:63:d8:2d:74:b4:c2:6a:cf:b4:7a:e4: 11:cc:af:6f:2d:38:47:37:d3:cb:bc:9f:ad:3b:b3: 94:68:d1:75:a9:1e:78:8f:66:de:a0:c4:fe:6c:04: dc:d0:ef:19:d4:55:3e:25:e0:68:b1:58:b9:75:3b: 9d:39:4b:25:b5:66:4c:15:6e:3f:c2:8d:83:db:ba: 33:38:7b:ae:ac:3c:af:c0:76:d5:90:ee:88:c5:22: 6a:39:6f:e1:b6:82:a0:a2:3f:f4:93:c9:53:08:05: 29:1b:2d:aa:ef:03:9f:40:6d:e1:cb:c9:ad:02:b8: e3:b3:3e:02:fd:c4:6c:b2:23:8e:9a:9a:27:ff:c2: 41:94:e2:86:2c:20:1d:55:3c:2d:7d:52:7b:03:f0: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0B:97:A5:B2:13:32:DB:04:60:87:72:8E:82:0D:4F:85:EE:2A:F9 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:36:af:52:e0:eb:5a:02:99:89:af:67:f1:09:8f:1a:6d:d0: 55:89:ed:a1:08:7c:33:2a:df:7e:53:50:e0:b0:bd:f3:f9:55: d1:27:89:64:13:1f:e2:5b:4e:aa:90:53:97:6f:0d:7a:57:09: cc:b2:1a:da:c0:b1:c1:e6:df:1e:9e:79:f9:de:c4:90:ef:a5: 57:98:70:29:ee:4d:21:9e:c0:5c:33:e6:1d:92:9a:25:46:24: 71:d5:9f:46:20:f1:28:0e:52:fd:8f:bc:ef:5f:27:5f:47:b7: 5b:91:c6:28:aa:69:53:cf:dc:c7:18:9c:f1:25:7b:1b:e0:eb: 9d:e1:33:05:61:c2:fb:71:f5:33:62:17:1d:97:98:69:63:7a: ee:a7:08:e0:06:7d:44:2e:f4:bf:5b:7c:e8:8a:7b:49:56:95: dd:54:ca:2a:02:d1:60:4d:78:ec:47:30:13:aa:63:c3:f5:a4: 49:ad:9a:ff:69:f5:28:de:3a:83:8d:78:13:97:92:45:2f:b1: 8d:1e:6c:89:cb:ba:b1:2f:d7:21:3f:5b:f2:ab:2f:95:3e:70: ae:1c:d4:a1:88:2f:12:15:a1:67:70:4a:13:26:1b:73:79:35: 8c:82:cf:a3:6a:e1:c6:5d:0e:93:12:ed:b8:3f:04:c8:3c:a2: f1:af:56:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUwNzAyMjMxMjQ1WhcNMjUwNzA5MjMxMjQ1WjAYMRYwFAYD VQQDEw02ODY1YmNlZC1kNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3n3Cs82rgxlgySxZPJZASRNODNj/fBoCqRg6KsOA+y1oLxYiiZMVk2ZQgAtL Qq1mHItVkamGtGasAFtAX6lohYs6+HpgWx0+owEu40Frvf/Hs2ERi05ioIsVq//r r+c2Vpc3bT2CoKfRycVZY9gtdLTCas+0euQRzK9vLThHN9PLvJ+tO7OUaNF1qR54 j2beoMT+bATc0O8Z1FU+JeBosVi5dTudOUsltWZMFW4/wo2D27ozOHuurDyvwHbV kO6IxSJqOW/htoKgoj/0k8lTCAUpGy2q7wOfQG3hy8mtArjjsz4C/cRssiOOmpon /8JBlOKGLCAdVTwtfVJ7A/DGKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQLl6Wy EzLbBGCHco6CDU+F7ir5MB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjNq9S4OtaApmJr2fxCY8abdBVie2hCHwzKt9+U1DgsL3z+VXRJ4lk Ex/iW06qkFOXbw16VwnMshrawLHB5t8ennn53sSQ76VXmHAp7k0hnsBcM+Ydkpol RiRx1Z9GIPEoDlL9j7zvXydfR7dbkcYoqmlTz9zHGJzxJXsb4Oud4TMFYcL7cfUz Yhcdl5hpY3rupwjgBn1ELvS/W3zointJVpXdVMoqAtFgTXjsRzATqmPD9aRJrZr/ afUo3jqDjXgTl5JFL7GNHmyJy7qxL9chP1vyqy+VPnCuHNShiC8SFaFncEoTJhtz eTWMgs+jauHGXQ6TEu24PwTIPKLxr1Z/ -----END CERTIFICATE-----Generated at Thu Jul 3 07:04:41 2025 by rpki-client