$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: e40GC+iXy0TslrSTNGXGef26qgVfKch3rFCAu287w2E= Subject key identifier: A7:39:F4:C3:9E:52:FC:4C:7D:EC:B9:47:40:49:E4:D4:BB:70:CD:D7 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C55 Signing time: Wed 02 Jul 2025 18:39:08 +0000 Manifest this update: Wed 02 Jul 2025 18:39:08 +0000 Manifest next update: Wed 09 Jul 2025 18:39:08 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: YQcjN695fnwpFunfAnhqKJ9z71jvS/Zs2U718aQEjgI=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Jul 2 18:39:08 2025 GMT Not After : Jul 9 18:39:08 2025 GMT Subject: CN=68657ccc-0f0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:64:2f:b5:b3:88:2b:68:04:c7:b5:35:22:36: 3d:fb:fa:35:b1:fe:0b:a7:1c:7b:09:ac:76:44:86: 32:d3:a4:9e:e4:51:c1:ca:ab:ad:a8:aa:90:72:f4: 07:12:35:e4:9f:63:6d:7e:b2:c0:f6:e4:d3:1a:1a: ef:e5:41:cf:31:26:43:d5:a2:52:eb:b3:1e:5f:71: 42:3f:d8:de:2c:8d:5b:0b:62:b8:16:68:4c:46:dc: 5a:5c:f7:0c:ff:69:02:bc:50:72:bd:29:43:54:f3: 31:6d:a9:34:48:91:73:8d:52:ca:df:64:d6:0e:4f: 5f:ac:d5:64:65:81:ef:59:fd:1c:81:f0:39:0f:e9: 74:c7:e4:a5:c9:12:46:7e:65:19:88:42:86:49:4d: 0f:a6:53:bc:a3:25:d8:d9:d9:fb:21:28:c4:26:c2: 05:ca:f6:8b:d9:1e:aa:2b:9a:a9:04:28:ce:dd:1b: 50:3a:04:3f:ef:08:65:6c:21:56:08:b4:4b:f9:2e: 4b:9b:08:e0:35:3f:58:8d:d6:67:da:18:80:01:1a: bc:2f:10:21:db:fc:5c:13:53:ee:13:e6:fd:e6:ae: 0f:d5:ee:22:bd:75:ed:26:44:68:37:91:07:94:aa: 53:bd:db:ef:37:7e:ac:f8:5e:2f:d5:83:fc:03:2c: f2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:39:F4:C3:9E:52:FC:4C:7D:EC:B9:47:40:49:E4:D4:BB:70:CD:D7 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:74:93:a1:78:96:e1:df:2d:7e:29:06:ce:f9:e6:ef:2f:96: f5:c7:e2:9f:39:46:84:7c:b2:bf:55:e4:be:c9:75:57:70:71: 8d:c3:a4:0d:80:72:f9:cb:ae:00:71:3e:66:c1:2a:5e:f1:ef: 0f:c9:38:8f:0b:0f:f0:33:b2:b3:e3:c8:15:ce:35:3c:60:5d: 1d:79:6c:44:9e:e4:ab:11:ac:20:4b:51:40:99:d6:7f:86:57: f3:c0:4d:37:67:25:0c:6e:00:46:85:aa:87:47:d4:da:43:57: ee:ab:92:73:83:8d:f1:37:57:40:84:7a:75:da:42:0e:dd:cb: 97:4c:92:a8:6a:39:6c:d4:a3:55:01:94:51:d0:2f:48:ee:a9: 74:ef:ce:3b:4e:92:ad:4f:52:56:ff:12:03:d0:fc:57:c1:fe: 80:e6:c5:3c:a0:88:9d:f1:80:20:19:a9:f0:e0:12:f7:57:75: f2:98:36:ba:40:10:e5:5a:f3:c1:5d:b2:be:23:d0:90:72:b1: 13:c9:96:ac:99:7c:4b:d6:4d:6e:7b:7f:a0:d9:42:9b:4c:af: b2:84:04:cd:de:c9:9d:25:c8:fd:55:82:f1:c9:81:bf:f1:2c: 43:3d:26:5f:e5:c4:8e:8c:0e:7f:1b:a6:91:a4:2f:e0:d0:89: 2b:ba:3b:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwNzAyMTgzOTA4WhcNMjUwNzA5MTgzOTA4WjAYMRYwFAYD VQQDEw02ODY1N2NjYy0wZjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GQvtbOIK2gEx7U1IjY9+/o1sf4Lpxx7Cax2RIYy06Se5FHByqutqKqQcvQH EjXkn2NtfrLA9uTTGhrv5UHPMSZD1aJS67MeX3FCP9jeLI1bC2K4FmhMRtxaXPcM /2kCvFByvSlDVPMxbak0SJFzjVLK32TWDk9frNVkZYHvWf0cgfA5D+l0x+SlyRJG fmUZiEKGSU0PplO8oyXY2dn7ISjEJsIFyvaL2R6qK5qpBCjO3RtQOgQ/7whlbCFW CLRL+S5LmwjgNT9YjdZn2hiAARq8LxAh2/xcE1PuE+b95q4P1e4ivXXtJkRoN5EH lKpTvdvvN36s+F4v1YP8Ayzy9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc59MOe UvxMfey5R0BJ5NS7cM3XMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgdJOheJbh3y1+KQbO+ebvL5b1x+KfOUaEfLK/VeS+yXVXcHGNw6QN gHL5y64AcT5mwSpe8e8PyTiPCw/wM7Kz48gVzjU8YF0deWxEnuSrEawgS1FAmdZ/ hlfzwE03ZyUMbgBGhaqHR9TaQ1fuq5Jzg43xN1dAhHp12kIO3cuXTJKoajls1KNV AZRR0C9I7ql07847TpKtT1JW/xID0PxXwf6A5sU8oIid8YAgGanw4BL3V3XymDa6 QBDlWvPBXbK+I9CQcrETyZasmXxL1k1ue3+g2UKbTK+yhATN3smdJcj9VYLxyYG/ 8SxDPSZf5cSOjA5/G6aRpC/g0Ikrujvx -----END CERTIFICATE-----Generated at Thu Jul 3 01:12:49 2025 by rpki-client