$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: bOkarGixVYTkUcChoBtifdr9ycJ6WM079OlALgEe1vA= Subject key identifier: E7:11:51:98:23:E6:7E:B9:92:9E:46:49:B6:5A:CC:86:B5:A9:D3:1F Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: 5E Signing time: Tue 01 Jul 2025 07:50:36 +0000 Manifest this update: Tue 01 Jul 2025 07:50:35 +0000 Manifest next update: Tue 08 Jul 2025 07:50:35 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: fIj8+w9lHTyy9IKLDaNENqRyHLL5nQqQzM+S/FuHVow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:50:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Jul 1 07:50:35 2025 GMT Not After : Jul 8 07:50:35 2025 GMT Subject: CN=6863934b-4dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:35:48:5e:29:19:20:34:8e:c4:76:3f:a1:34: 1e:cf:ad:52:be:74:25:3a:01:c5:24:ff:a6:40:42: f8:f3:e6:28:9e:d5:71:8a:76:59:8f:78:39:d5:2f: a2:42:4c:79:c3:b1:b2:0d:f8:a2:62:4e:bf:bd:b2: 3e:81:12:e7:37:db:a7:b6:35:c0:f9:89:b8:87:78: bb:ae:65:49:27:5b:1a:fd:43:2d:b5:0e:c1:5e:c1: 11:34:1e:e0:ef:db:06:29:a4:9d:76:41:4d:07:eb: 29:96:4d:15:4e:e4:d4:a4:2a:5f:96:68:60:66:fd: 22:14:ab:de:f0:e4:e3:4e:95:61:54:52:84:b7:49: f9:94:19:b0:b9:3d:10:34:7a:29:1d:86:ad:17:6b: 87:aa:56:fa:a9:03:f7:c0:02:3f:44:09:16:af:21: fa:10:55:c0:fe:c9:bf:96:5a:a6:3c:0a:74:f2:8c: e1:9e:06:0e:a6:d1:c9:0f:53:e7:fa:19:15:4c:94: 60:f7:f2:a4:ab:92:56:6d:9b:83:8c:55:a1:32:a2: 77:a7:8b:83:80:0a:bd:75:aa:85:4a:1c:f5:26:f8: 47:40:3a:7f:db:cb:c4:9c:f0:e9:b7:ce:4b:bc:c9: eb:0a:d0:46:54:a5:dd:d9:f8:94:9e:b1:4c:fb:85: b9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:11:51:98:23:E6:7E:B9:92:9E:46:49:B6:5A:CC:86:B5:A9:D3:1F X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:1e:4c:ba:d8:bc:88:17:81:40:05:85:d7:f4:02:14:a0:de: 18:71:e3:42:6a:2c:68:94:d8:3d:a8:18:07:a5:48:a9:a2:e5: 92:59:a2:71:4c:17:3d:1f:ac:2f:1c:68:20:c8:f8:59:b2:eb: 18:c7:09:69:d7:d9:72:ea:16:9f:b4:70:1b:6c:cc:3f:eb:b0: ee:ae:68:17:7a:4e:e0:46:90:46:9b:67:26:66:71:65:81:1e: 81:7e:83:8a:81:29:7f:12:39:a1:6c:10:23:f6:b5:47:00:2f: 1b:e3:b1:76:3e:49:82:e3:1e:cc:56:bf:b0:40:10:79:74:97: d5:ff:0a:75:60:10:f6:f1:9c:7e:0d:7b:99:32:27:50:ba:1b: 49:cb:18:a8:94:d5:9c:71:1f:59:a2:78:54:7b:a6:39:64:fe: cc:4b:d1:2a:1d:7b:18:2f:5e:d3:25:30:2f:88:3b:2d:4f:3a: 86:29:c9:a3:1c:a8:62:59:bc:1c:4f:82:85:32:9f:2f:4b:67: ef:2b:16:da:b5:d0:66:29:1e:ba:32:45:84:a2:ba:6e:45:4a: 51:5a:e4:ac:14:c3:dc:9c:1c:ab:8f:9e:e8:64:47:dc:65:1b: 2c:36:19:44:00:ad:b2:aa:0c:0c:7a:c8:2d:05:94:25:a5:ab: 30:32:e8:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUUxRDExMC8GA1UEBRMoOEFENjEwQUM4QjYyRjJBNkZDQTgyNTg5NTVENUYxMjQ5 MjdCM0EwMDAeFw0yNTA3MDEwNzUwMzVaFw0yNTA3MDgwNzUwMzVaMBgxFjAUBgNV BAMTDTY4NjM5MzRiLTRkYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7NUheKRkgNI7Edj+hNB7PrVK+dCU6AcUk/6ZAQvjz5iie1XGKdlmPeDnVL6JC THnDsbIN+KJiTr+9sj6BEuc326e2NcD5ibiHeLuuZUknWxr9Qy21DsFewRE0HuDv 2wYppJ12QU0H6ymWTRVO5NSkKl+WaGBm/SIUq97w5ONOlWFUUoS3SfmUGbC5PRA0 eikdhq0Xa4eqVvqpA/fAAj9ECRavIfoQVcD+yb+WWqY8CnTyjOGeBg6m0ckPU+f6 GRVMlGD38qSrklZtm4OMVaEyoneni4OACr11qoVKHPUm+EdAOn/by8Sc8Om3zku8 yesK0EZUpd3Z+JSesUz7hbn3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5xFRmCPm frmSnkZJtlrMhrWp0x8wHwYDVR0jBBgwFoAUitYQrIti8qb8qCWJVdXxJJJ7OgAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFRTFELzlBREFEQURFQzcw RTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09n QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXRZUXJJdGk4cWI4cUNXSlZkWHhKSko3T2dBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF RTFELzlBREFEQURFQzcwRTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFi OHFDV0pWZFh4SkpKN09nQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACEeTLrYvIgXgUAFhdf0AhSg3hhx40JqLGiU2D2oGAelSKmi5ZJZonFM Fz0frC8caCDI+Fmy6xjHCWnX2XLqFp+0cBtszD/rsO6uaBd6TuBGkEabZyZmcWWB HoF+g4qBKX8SOaFsECP2tUcALxvjsXY+SYLjHsxWv7BAEHl0l9X/CnVgEPbxnH4N e5kyJ1C6G0nLGKiU1ZxxH1mieFR7pjlk/sxL0SodexgvXtMlMC+IOy1POoYpyaMc qGJZvBxPgoUyny9LZ+8rFtq10GYpHroyRYSium5FSlFa5KwUw9ycHKuPnuhkR9xl Gyw2GUQArbKqDAx6yC0FlCWlqzAy6EY= -----END CERTIFICATE-----Generated at Wed Jul 2 12:21:06 2025 by rpki-client