$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: 6oF7rt7xo6INlraHti52iOGWlSYO+J0cOWqjU6N8wxQ= Subject key identifier: 15:9E:2B:4C:9A:9E:E3:BE:22:54:99:66:B7:68:51:37:2C:08:38:FC Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C1C Signing time: Sat 28 Jun 2025 18:24:25 +0000 Manifest this update: Sat 28 Jun 2025 18:24:25 +0000 Manifest next update: Sat 05 Jul 2025 18:24:25 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: Xw2EHDlcYg2YyS+d/nEsE0ppIWl8l4RZLAWXmBkcMDQ=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3109 (0xc25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Jun 28 18:24:25 2025 GMT Not After : Jul 5 18:24:25 2025 GMT Subject: CN=68603359-f65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:42:7b:46:5b:5e:27:06:36:f9:db:89:cc:1e: dd:04:fb:c1:c4:28:c8:dd:9e:b7:ef:50:e2:41:f8: 3d:62:35:28:1a:f2:9c:72:13:d3:66:c8:2c:31:fd: bc:85:92:bf:38:2e:8a:47:3e:30:a9:45:ff:78:29: c9:f9:b7:61:ea:5d:9b:82:60:f1:96:4d:cd:8a:1a: 83:25:61:31:94:7f:89:b4:f7:35:08:22:99:ee:cf: ac:2c:3e:52:69:d6:ee:50:80:bf:c9:2f:0a:14:92: 3f:a0:4b:7f:b3:be:7d:5c:4b:30:66:97:d4:80:b5: 42:a6:dc:19:70:4e:71:63:18:bd:d3:8c:0f:88:55: b9:df:13:2b:3c:38:d5:b3:6e:77:3a:36:57:68:20: 35:cb:3c:4f:f8:11:fc:ac:bc:17:e3:8c:ac:08:47: eb:cf:d5:48:8b:06:74:85:28:fa:92:c3:5c:69:ec: 36:ae:d9:e1:7a:23:27:60:68:43:76:2a:1e:84:2c: 7d:62:23:cb:dd:79:67:2f:2d:72:6f:1a:a9:3f:8a: e4:0b:e3:c3:6c:3a:aa:ee:e5:ec:08:a7:82:49:2b: 51:83:08:6b:c3:fe:5f:dd:62:ae:d1:44:36:ec:54: 86:ee:65:53:0b:79:52:bd:f1:b6:ff:5c:79:26:0c: b6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:9E:2B:4C:9A:9E:E3:BE:22:54:99:66:B7:68:51:37:2C:08:38:FC X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:46:8b:d2:0f:92:45:87:71:66:98:a8:88:2a:7b:08:56:d0: df:dd:5f:fe:22:42:d7:c5:78:f8:4b:de:16:39:45:9b:a1:69: c0:17:6f:99:23:6f:9c:17:6c:b8:d4:f8:a5:79:08:b0:65:57: 75:10:f0:69:5c:0f:df:d7:42:cc:9d:2c:a8:d7:dc:f6:21:6b: 7c:34:1d:4b:fb:33:bc:d1:98:f9:68:0b:04:6d:a0:0e:c4:25: 7b:5c:e8:de:43:3e:00:b2:af:91:4f:ca:71:54:b8:5f:cd:49: 4c:3e:17:8f:bc:12:d3:92:a0:f2:56:37:3e:a6:ec:7c:64:53: 12:f7:6b:76:fe:25:47:45:c6:85:df:54:cb:34:65:b7:1a:c2: bb:bb:8b:1b:c4:ba:63:ac:c8:97:ec:03:ed:c5:41:66:d4:93: 89:7a:37:99:3b:a0:22:9a:54:58:86:9d:f1:b0:1d:b2:d8:e4: 74:98:25:3a:0e:61:8f:88:03:df:d7:f4:c8:ff:4d:af:55:ac: 6e:17:b3:20:c6:95:7c:0c:fe:1b:65:4e:7b:99:c0:96:6e:39: 0f:ff:e2:00:fb:16:46:10:cd:df:2a:f2:ef:bb:bf:44:af:22: 07:74:c7:2b:23:e1:f4:37:36:15:a7:55:4e:6e:d6:bd:b5:37: 4c:a5:01:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUwNjI4MTgyNDI1WhcNMjUwNzA1MTgyNDI1WjAYMRYwFAYD VQQDEw02ODYwMzM1OS1mNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEJ7RlteJwY2+duJzB7dBPvBxCjI3Z6371DiQfg9YjUoGvKcchPTZsgsMf28 hZK/OC6KRz4wqUX/eCnJ+bdh6l2bgmDxlk3NihqDJWExlH+JtPc1CCKZ7s+sLD5S adbuUIC/yS8KFJI/oEt/s759XEswZpfUgLVCptwZcE5xYxi904wPiFW53xMrPDjV s253OjZXaCA1yzxP+BH8rLwX44ysCEfrz9VIiwZ0hSj6ksNcaew2rtnheiMnYGhD dioehCx9YiPL3XlnLy1ybxqpP4rkC+PDbDqq7uXsCKeCSStRgwhrw/5f3WKu0UQ2 7FSG7mVTC3lSvfG2/1x5Jgy29wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWeK0ya nuO+IlSZZrdoUTcsCDj8MB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALRovSD5JFh3FmmKiIKnsIVtDf3V/+IkLXxXj4S94WOUWboWnAF2+Z I2+cF2y41PileQiwZVd1EPBpXA/f10LMnSyo19z2IWt8NB1L+zO80Zj5aAsEbaAO xCV7XOjeQz4Asq+RT8pxVLhfzUlMPhePvBLTkqDyVjc+pux8ZFMS92t2/iVHRcaF 31TLNGW3GsK7u4sbxLpjrMiX7APtxUFm1JOJejeZO6AimlRYhp3xsB2y2OR0mCU6 DmGPiAPf1/TI/02vVaxuF7MgxpV8DP4bZU57mcCWbjkP/+IA+xZGEM3fKvLvu79E ryIHdMcrI+H0NzYVp1VObta9tTdMpQFE -----END CERTIFICATE-----Generated at Mon Jun 30 18:25:12 2025 by rpki-client