$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft File: iZOTjIV1ACgOj15T3As-kweu1Kc.mft (raw, json) Hash identifier: 2AkSMY5IaHAjzRUEchYZzohIHKeHKkeK5wKnZ5C06nk= Subject key identifier: A8:82:44:38:EE:69:D9:45:CE:C4:CB:75:FD:09:F6:E6:10:AD:89:55 Authority key identifier: 89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 Certificate issuer: /CN=A91BD3E1/serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft Manifest number: 47 Signing time: Thu 03 Jul 2025 07:39:01 +0000 Manifest this update: Thu 03 Jul 2025 07:39:01 +0000 Manifest next update: Thu 10 Jul 2025 07:39:01 +0000 Files and hashes: 1: iZOTjIV1ACgOj15T3As-kweu1Kc.crl (hash: PCU8xoLLCrl+LqpX9Tj6WkVZzFczhkVjluQLiNITJYE=) 2: 459FAF10EF4811EF8F4B9284C4F9AE02.roa (hash: t4VsjBzDPnCNqQJ4/+l/e7o+o8AvICh72VVWJ8BMmY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3E1, serialNumber=8993938C857500280E8F5E53DC0B3E9307AED4A7 Validity Not Before: Jul 3 07:39:01 2025 GMT Not After : Jul 10 07:39:01 2025 GMT Subject: CN=68663395-fcc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e0:09:a8:69:3b:36:9c:c6:cd:5a:2f:c2:6c: 35:38:7d:ce:e1:a9:7c:a5:9e:19:65:7d:dd:5d:49: b0:47:69:99:5e:79:13:c7:41:61:55:2a:08:4d:82: 2f:cd:5a:b6:c2:c6:1f:e0:ef:b5:e8:c8:a3:16:03: 92:80:29:01:99:e2:68:7d:5c:f5:d2:d2:83:57:c0: ef:5a:9e:a9:2a:d9:d9:c9:4e:71:ff:07:b2:ef:e0: 96:38:f6:3c:14:43:f7:ce:be:dc:dd:95:7d:d1:2c: b7:8c:03:eb:cd:43:ee:97:3c:33:ad:a3:2d:66:c1: ad:d7:eb:95:36:cd:47:4b:09:cc:e3:d2:1f:64:be: e9:33:a3:d8:26:ec:cf:6d:aa:d8:e3:06:6f:a8:f1: c6:69:fe:cb:0f:e9:f0:cf:6f:6b:d2:29:e1:c9:5f: 5c:08:aa:e1:64:09:d3:11:3a:9c:d7:b4:06:4e:b0: eb:7b:85:e6:39:39:c2:ca:07:fb:b5:16:aa:ca:2f: 58:45:ec:17:03:42:94:0d:73:eb:60:6c:fe:85:3b: 82:23:29:23:b5:5b:d4:bc:dc:f3:8b:f6:cc:37:8f: 88:b9:a2:9f:70:dd:35:2e:e9:47:f5:fd:75:32:5f: 47:b6:88:ea:19:d6:df:be:33:05:d5:45:55:4c:86: e1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:82:44:38:EE:69:D9:45:CE:C4:CB:75:FD:09:F6:E6:10:AD:89:55 X509v3 Authority Key Identifier: keyid:89:93:93:8C:85:75:00:28:0E:8F:5E:53:DC:0B:3E:93:07:AE:D4:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iZOTjIV1ACgOj15T3As-kweu1Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3E1/7CF07BC6EF4711EFAF4C4968C4F9AE02/iZOTjIV1ACgOj15T3As-kweu1Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:5f:72:d8:ca:46:1b:0c:c9:1f:4c:26:79:34:4a:8b:c9:1c: 26:30:da:dc:78:1b:a8:b7:9f:3b:0b:5e:93:fd:12:3a:1d:d9: 3f:a4:86:ae:d1:fa:d1:56:ff:ba:f2:f0:b1:6e:a3:f5:93:8f: d2:79:d0:05:91:a6:73:0a:a5:cb:39:e1:4a:8c:1a:9d:7f:30: 74:52:87:ef:3b:7f:01:b2:22:21:15:09:fd:c6:d6:e7:8b:e0: cc:63:cd:ca:8c:b4:40:48:57:fd:64:87:08:46:c8:c0:9a:c5: cc:db:07:0b:90:d2:69:8d:b2:2d:13:21:56:e4:2a:23:96:ea: a4:be:84:f0:86:53:27:39:80:83:5d:44:7d:96:ea:08:17:3c: 4f:57:92:c5:56:98:aa:1f:63:b1:ac:a1:38:f9:f4:12:3e:a6: 43:12:3e:a8:99:ea:4b:72:6f:d4:21:86:2e:cd:8b:7d:2f:0b: fa:64:2a:76:74:31:e7:0d:95:59:8b:23:26:7f:9e:48:f8:31: 47:6d:74:ab:33:8d:73:f0:51:b3:65:ad:23:52:9b:4a:98:1c: fd:46:b6:30:f1:b1:90:57:a2:0e:f8:ca:53:db:fb:20:5d:01: 3f:4e:f5:33:d7:c1:12:42:a6:d4:cb:5b:3a:a5:7b:ff:35:af: 19:77:26:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDNFMTExMC8GA1UEBRMoODk5MzkzOEM4NTc1MDAyODBFOEY1RTUzREMwQjNFOTMw N0FFRDRBNzAeFw0yNTA3MDMwNzM5MDFaFw0yNTA3MTAwNzM5MDFaMBgxFjAUBgNV BAMTDTY4NjYzMzk1LWZjYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr4AmoaTs2nMbNWi/CbDU4fc7hqXylnhllfd1dSbBHaZleeRPHQWFVKghNgi/N WrbCxh/g77XoyKMWA5KAKQGZ4mh9XPXS0oNXwO9anqkq2dnJTnH/B7Lv4JY49jwU Q/fOvtzdlX3RLLeMA+vNQ+6XPDOtoy1mwa3X65U2zUdLCczj0h9kvukzo9gm7M9t qtjjBm+o8cZp/ssP6fDPb2vSKeHJX1wIquFkCdMROpzXtAZOsOt7heY5OcLKB/u1 FqrKL1hF7BcDQpQNc+tgbP6FO4IjKSO1W9S83POL9sw3j4i5op9w3TUu6Uf1/XUy X0e2iOoZ1t++MwXVRVVMhuHNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqIJEOO5p 2UXOxMt1/Qn25hCtiVUwHwYDVR0jBBgwFoAUiZOTjIV1ACgOj15T3As+kweu1Kcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEM0UxLzdDRjA3QkM2RUY0 NzExRUZBRjRDNDk2OEM0RjlBRTAyL2laT1RqSVYxQUNnT2oxNVQzQXMta3dldTFL Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVpPVGpJVjFBQ2dPajE1VDNBcy1rd2V1MUtjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE M0UxLzdDRjA3QkM2RUY0NzExRUZBRjRDNDk2OEM0RjlBRTAyL2laT1RqSVYxQUNn T2oxNVQzQXMta3dldTFLYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFNfctjKRhsMyR9MJnk0SovJHCYw2tx4G6i3nzsLXpP9Ejod2T+khq7R +tFW/7ry8LFuo/WTj9J50AWRpnMKpcs54UqMGp1/MHRSh+87fwGyIiEVCf3G1ueL 4MxjzcqMtEBIV/1khwhGyMCaxczbBwuQ0mmNsi0TIVbkKiOW6qS+hPCGUyc5gINd RH2W6ggXPE9XksVWmKofY7GsoTj59BI+pkMSPqiZ6ktyb9Qhhi7Ni30vC/pkKnZ0 MecNlVmLIyZ/nkj4MUdtdKszjXPwUbNlrSNSm0qYHP1GtjDxsZBXog74ylPb+yBd AT9O9TPXwRJCptTLWzqle/81rxl3JrY= -----END CERTIFICATE-----Generated at Fri Jul 4 10:50:42 2025 by rpki-client