$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: 1CBBkE87PmZ3ZBUPoZSLNyhvZ0flBHT1kvvK7HPo+kw= Subject key identifier: 9A:9D:C0:41:92:A1:66:A7:D5:9E:68:30:F1:8C:94:77:42:DD:45:F7 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 10AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 1093 Signing time: Wed 02 Jul 2025 17:32:42 +0000 Manifest this update: Wed 02 Jul 2025 17:32:41 +0000 Manifest next update: Wed 09 Jul 2025 17:32:41 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: eTQtl2phR1XoA8PMIWIYGDZaMiu1rsI829KwzuIjQXM=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4268 (0x10ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Jul 2 17:32:41 2025 GMT Not After : Jul 9 17:32:41 2025 GMT Subject: CN=68656d3a-8380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8a:30:57:63:5b:22:b1:ff:6b:c7:62:52:48: 1e:e3:48:25:d3:2b:35:79:0c:e4:4c:4f:75:9d:5e: 7e:e8:ee:b3:41:1c:f3:97:57:68:be:99:a1:09:0e: 1a:f3:b8:a0:c9:3a:1f:4a:83:57:38:27:90:ed:98: d7:09:f5:6c:f5:4d:60:f8:f4:e1:4d:26:c8:91:1a: 83:5f:75:32:15:54:fe:d6:5c:2a:52:9b:99:2f:cd: cc:50:df:96:4e:37:b7:15:d4:d6:dc:3e:d6:89:d6: 53:03:c8:b0:cc:48:a7:f0:4a:1e:9f:d3:8c:d0:76: a2:67:d4:97:2e:f2:31:5b:6e:f2:21:86:51:01:04: 85:48:c1:6e:b2:2b:3d:21:46:ce:3f:44:9a:a2:2b: 28:da:a8:56:7d:75:70:64:16:ed:0b:85:30:b5:15: 4a:5b:d9:a0:20:d7:37:47:0c:db:fc:f7:d4:20:14: 7f:0b:9c:a3:13:e0:f3:93:90:48:85:d4:e1:f4:5e: d0:51:83:61:9f:af:18:15:8c:46:55:e1:e7:5d:11: 63:86:0c:36:d4:78:08:24:8f:eb:e3:fa:97:40:74: 99:c1:71:6a:83:bf:a8:ee:e1:c8:3c:48:ab:96:02: 06:1a:51:ed:91:63:03:51:12:2a:d4:58:bf:64:0f: be:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:9D:C0:41:92:A1:66:A7:D5:9E:68:30:F1:8C:94:77:42:DD:45:F7 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:9f:59:c3:4d:a9:72:68:5b:a0:38:4c:98:9f:cb:dd:3e:e6: 78:ce:a9:21:d4:ee:58:e3:a0:4c:46:08:c3:d4:23:8c:d9:a4: cd:9a:3d:a8:e2:02:2b:f8:02:2f:c1:81:4b:ad:88:67:70:24: 55:f5:cc:05:b4:70:59:31:17:98:dc:f3:94:c9:5f:a2:62:4b: 08:12:39:67:03:13:2f:74:32:19:b2:2d:ea:54:f0:f4:73:3e: d4:22:52:70:46:f3:fb:6a:c6:34:62:5e:93:f2:06:c6:cd:f0: 06:67:2f:8f:1c:c9:46:aa:5a:36:1b:9f:39:88:85:da:e6:30: 39:8f:11:b5:2b:50:21:83:2d:b1:76:d5:e9:a8:18:aa:26:0a: f1:21:b8:48:27:ec:5a:9e:98:d3:7b:c9:ec:78:7e:f9:93:23: f9:5e:b5:0d:08:be:90:e9:48:d8:f2:f2:96:94:e2:8b:69:f9: 74:a8:58:5d:45:c4:3e:6b:a4:35:b0:8e:72:b2:7d:3e:f6:04: a6:01:b3:36:0a:64:76:34:2f:9b:f2:a4:f5:e4:2b:17:8f:50: 09:82:21:00:73:5a:82:9a:d9:c8:77:f4:9d:a6:82:61:5c:b7: e5:2c:54:ba:56:72:5e:3e:e4:cf:2d:38:60:b9:3e:f5:ae:7b: 09:2f:c6:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUwNzAyMTczMjQxWhcNMjUwNzA5MTczMjQxWjAYMRYwFAYD VQQDEw02ODY1NmQzYS04MzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIowV2NbIrH/a8diUkge40gl0ys1eQzkTE91nV5+6O6zQRzzl1dovpmhCQ4a 87igyTofSoNXOCeQ7ZjXCfVs9U1g+PThTSbIkRqDX3UyFVT+1lwqUpuZL83MUN+W Tje3FdTW3D7WidZTA8iwzEin8Eoen9OM0HaiZ9SXLvIxW27yIYZRAQSFSMFusis9 IUbOP0Saoiso2qhWfXVwZBbtC4UwtRVKW9mgINc3Rwzb/PfUIBR/C5yjE+Dzk5BI hdTh9F7QUYNhn68YFYxGVeHnXRFjhgw21HgIJI/r4/qXQHSZwXFqg7+o7uHIPEir lgIGGlHtkWMDURIq1Fi/ZA++oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqdwEGS oWan1Z5oMPGMlHdC3UX3MB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsn1nDTalyaFugOEyYn8vdPuZ4zqkh1O5Y46BMRgjD1COM2aTNmj2o 4gIr+AIvwYFLrYhncCRV9cwFtHBZMReY3POUyV+iYksIEjlnAxMvdDIZsi3qVPD0 cz7UIlJwRvP7asY0Yl6T8gbGzfAGZy+PHMlGqlo2G585iIXa5jA5jxG1K1Ahgy2x dtXpqBiqJgrxIbhIJ+xanpjTe8nseH75kyP5XrUNCL6Q6UjY8vKWlOKLafl0qFhd RcQ+a6Q1sI5ysn0+9gSmAbM2CmR2NC+b8qT15CsXj1AJgiEAc1qCmtnId/SdpoJh XLflLFS6VnJePuTPLThguT71rnsJL8b4 -----END CERTIFICATE-----Generated at Fri Jul 4 02:54:38 2025 by rpki-client