$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft File: dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft (raw, json) Hash identifier: kqV8rteqKHe6iVubIs3LemzTu8ztkt36lxZlgvLIqLI= Subject key identifier: AB:FD:EB:0E:2F:23:F8:4D:DE:D2:6D:72:AF:0D:78:95:C8:FD:BD:89 Authority key identifier: 76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F Certificate issuer: /CN=A91B7E17/serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft Manifest number: 0661 Signing time: Mon 30 Jun 2025 22:48:30 +0000 Manifest this update: Mon 30 Jun 2025 22:48:30 +0000 Manifest next update: Mon 07 Jul 2025 22:48:30 +0000 Files and hashes: 1: dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl (hash: jujHXl1HS1S6L5ooBhNjKRQQC8ihRv+O0mFHZHHdH+s=) 2: 87F6FDDC880911EB96D8882DC4F9AE02.roa (hash: HlAv5VKHlCkHYXAj9IKNWvazVRDv1+Tmr+7FuDlOMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7E17, serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Validity Not Before: Jun 30 22:48:30 2025 GMT Not After : Jul 7 22:48:30 2025 GMT Subject: CN=6863143e-aa38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:fc:43:7c:41:fe:ff:cf:fb:b1:db:36:42: 80:06:78:72:a7:1a:01:93:64:d2:b5:82:bb:24:bc: bb:ec:17:2f:1d:e8:e0:eb:dc:a4:cc:59:8d:a1:5e: b0:59:b5:73:b0:2b:2c:48:1e:d7:6c:58:2e:0e:e0: 1c:e8:6d:46:f6:7c:31:43:54:df:6e:72:a3:53:a0: 89:e5:8c:bc:ae:a4:4c:41:e1:a5:a7:1d:f7:82:4f: a3:f0:15:a3:81:68:f6:8c:91:52:ec:f3:2e:b9:34: 8f:8d:42:e7:a0:a6:36:22:fd:ec:22:65:22:3b:00: aa:5f:9e:fb:4e:3b:60:78:34:36:6a:c6:64:95:c0: ec:a2:11:06:59:ff:5d:73:9f:7d:fd:13:b6:2b:80: c8:7b:0b:86:d0:74:3a:10:f6:12:3c:12:af:cb:25: 30:40:76:e2:5c:b9:fb:15:5e:76:fc:85:f1:b9:51: 51:01:e2:c8:ba:94:56:f0:39:a9:b6:42:f5:9c:19: 5f:8d:97:a5:0c:16:15:98:e6:cc:a0:cc:b9:ab:b1: b8:d1:cc:26:5c:8f:62:55:ce:e3:c7:a7:a8:ea:ac: 4c:f9:a7:b5:21:fd:2b:eb:09:8c:cb:c9:d2:9e:bd: 82:78:9a:e8:47:5e:bf:ae:ba:b9:f0:8c:16:db:f9: 2d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:FD:EB:0E:2F:23:F8:4D:DE:D2:6D:72:AF:0D:78:95:C8:FD:BD:89 X509v3 Authority Key Identifier: keyid:76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6b:eb:d8:8d:ef:b3:90:32:b9:b2:5c:be:a2:b6:73:9f:4f: a6:1f:ab:76:4b:75:5c:86:0e:be:b4:3e:6d:f3:62:32:32:5e: 9e:9a:90:0c:ce:57:7e:e4:48:13:a7:9b:4d:76:b4:bd:39:21: 15:75:2c:d2:47:38:89:49:75:f0:5f:66:49:95:d6:af:38:36: ae:7a:1d:28:cc:19:37:a0:aa:82:c1:41:c8:0f:e4:42:2e:75: 8c:22:a2:2f:d3:42:35:02:bf:41:82:1e:10:ba:04:c8:94:9b: 17:a3:fa:46:ba:f5:04:b7:e3:92:69:1b:f1:cb:e2:bd:00:08: 9e:9c:93:e5:d3:8c:5e:f4:bc:31:b5:60:d6:a6:19:79:42:d1: 28:e6:22:a9:63:4e:1b:21:54:b0:58:d0:89:ba:02:f0:7e:46: 87:87:be:1f:6a:2e:ac:06:0f:70:7d:72:cd:5b:0c:a7:20:78: cf:70:f2:08:24:51:88:97:da:08:17:90:9f:46:91:95:e7:9c: c9:bd:79:59:c9:7e:bd:52:a9:31:5d:25:4e:76:df:34:c5:df: a1:fa:be:95:4f:0b:74:8e:e6:30:8b:f0:61:34:45:78:24:1c: 70:38:39:c7:da:fd:2d:27:f6:ae:d1:6a:26:6c:a2:53:b3:19: 55:2a:df:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdFMTcxMTAvBgNVBAUTKDc2RDFGNjZDMDE2REMxODQ3MzRFNkQ5QkUxQkVFOTA4 MDFGRkEwMUYwHhcNMjUwNjMwMjI0ODMwWhcNMjUwNzA3MjI0ODMwWjAYMRYwFAYD VQQDEw02ODYzMTQzZS1hYTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5X8Q3xB/v/P+7HbNkKABnhypxoBk2TStYK7JLy77BcvHejg69ykzFmNoV6w WbVzsCssSB7XbFguDuAc6G1G9nwxQ1TfbnKjU6CJ5Yy8rqRMQeGlpx33gk+j8BWj gWj2jJFS7PMuuTSPjULnoKY2Iv3sImUiOwCqX577TjtgeDQ2asZklcDsohEGWf9d c599/RO2K4DIewuG0HQ6EPYSPBKvyyUwQHbiXLn7FV52/IXxuVFRAeLIupRW8Dmp tkL1nBlfjZelDBYVmObMoMy5q7G40cwmXI9iVc7jx6eo6qxM+ae1If0r6wmMy8nS nr2CeJroR16/rrq58IwW2/ktWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKv96w4v I/hN3tJtcq8NeJXI/b2JMB8GA1UdIwQYMBaAFHbR9mwBbcGEc05tm+G+6QgB/6Af MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0UxNy83QUIwQjU2Njg4 MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZUnpUbTJiNGI3cENBSF9v QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0SDJiQUZ0d1lSelRtMmI0YjdwQ0FIX29COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0UxNy83QUIwQjU2Njg4MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZ UnpUbTJiNGI3cENBSF9vQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAba+vYje+zkDK5sly+orZzn0+mH6t2S3Vchg6+tD5t82IyMl6empAM zld+5EgTp5tNdrS9OSEVdSzSRziJSXXwX2ZJldavODaueh0ozBk3oKqCwUHID+RC LnWMIqIv00I1Ar9Bgh4QugTIlJsXo/pGuvUEt+OSaRvxy+K9AAienJPl04xe9Lwx tWDWphl5QtEo5iKpY04bIVSwWNCJugLwfkaHh74fai6sBg9wfXLNWwynIHjPcPII JFGIl9oIF5CfRpGV55zJvXlZyX69UqkxXSVOdt80xd+h+r6VTwt0juYwi/BhNEV4 JBxwODnH2v0tJ/au0WombKJTsxlVKt8u -----END CERTIFICATE-----Generated at Wed Jul 2 22:38:42 2025 by rpki-client