$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: JX5B8BzMSPL8csA2RKLRfE4DcacrPygHUWq6wfYruNk= Subject key identifier: B1:1C:1A:47:D5:2F:9F:77:0C:B3:A1:E9:A2:76:EC:D4:F7:B9:5F:D6 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 05DA Signing time: Wed 02 Jul 2025 23:19:32 +0000 Manifest this update: Wed 02 Jul 2025 23:19:32 +0000 Manifest next update: Wed 09 Jul 2025 23:19:32 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: LAFP8t+AcOy38O1sv6uf6tAaJnzU782GxwJCoY9HxwA=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Jul 2 23:19:32 2025 GMT Not After : Jul 9 23:19:32 2025 GMT Subject: CN=6865be84-8916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5e:14:24:f2:1c:61:63:9e:99:3d:11:7f:1e: 24:50:5a:86:aa:73:c5:cf:a6:fb:ea:aa:38:5f:34: 2b:d3:6e:a8:19:9a:f6:bb:b3:0c:70:ce:ff:90:84: 22:22:ac:79:4f:b9:1f:d6:f8:b0:33:12:0e:1f:a5: 86:ac:3b:2d:06:d5:60:fb:4d:42:7d:95:6e:8c:a3: 82:48:10:f2:db:93:ef:16:21:17:44:2c:57:66:c2: c1:7e:69:47:28:c4:34:4d:8a:45:94:d8:35:f1:58: da:28:b1:8b:8f:e7:c4:4b:ec:da:1f:ef:10:92:c1: 35:dc:89:a3:84:cf:c8:eb:b5:d7:b0:3d:cd:17:8c: 23:fb:2f:f5:f5:6d:ae:40:4f:90:fc:56:3e:9b:17: a5:02:58:94:ca:c0:b5:34:49:0d:c1:1f:46:3d:8f: 5d:2f:44:01:38:ac:f0:74:41:f9:06:cd:85:02:ab: 42:2a:e3:db:d1:6b:36:aa:f7:4d:17:b8:e2:45:48: fe:b4:a9:9d:3c:ab:ea:f5:05:72:54:75:27:19:b1: 19:7c:12:fc:32:eb:88:e8:ca:9b:13:2f:b6:52:4a: 3e:c5:e0:fc:4b:bc:fe:e1:75:5f:20:b3:6b:00:d5: 90:66:c7:11:e7:b6:67:1f:f8:cb:54:07:9e:92:ed: 9b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1C:1A:47:D5:2F:9F:77:0C:B3:A1:E9:A2:76:EC:D4:F7:B9:5F:D6 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:52:7c:a2:44:9e:2d:b5:83:4b:d3:31:76:f2:f2:91:48:8a: 35:0f:d0:e9:fe:ca:2a:c4:79:20:83:eb:98:80:90:c0:fc:b7: b6:b8:3a:0e:cf:5d:6d:96:f6:35:c0:aa:25:35:06:c3:f3:af: 08:18:81:f3:25:2d:5b:c1:02:a2:79:07:2d:aa:30:82:a9:d4: 0b:2e:cf:12:bd:99:2c:f4:c7:02:27:ae:b1:4e:3c:e0:63:82: 65:96:fc:a2:34:32:7f:f5:51:4f:f1:d2:66:75:5a:c7:79:3e: 33:0a:4c:5e:e7:f9:67:ce:70:50:89:1a:29:cb:85:50:de:0f: cc:fe:83:65:55:d5:58:61:d1:1f:43:4a:74:23:40:a5:67:a0: 86:ff:ae:5d:d1:fb:b9:e6:81:0c:28:bd:d5:f1:2d:5e:94:e0: 87:4f:28:b6:cd:d8:7e:11:74:7c:0e:70:1a:84:06:23:66:40: c4:4c:16:1d:ec:10:c5:88:e3:71:c6:d0:02:fa:45:38:ae:18: 0e:3c:80:c1:86:a2:3b:8a:fb:20:6b:4f:b7:44:e7:84:6d:11: 00:56:a2:51:f7:0e:16:c3:91:39:a9:42:b3:42:b8:08:9e:9d: b7:5a:4b:08:78:06:52:e7:b0:84:7e:7e:f0:84:e6:a8:f2:06: 2a:58:3e:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwNzAyMjMxOTMyWhcNMjUwNzA5MjMxOTMyWjAYMRYwFAYD VQQDEw02ODY1YmU4NC04OTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA114UJPIcYWOemT0Rfx4kUFqGqnPFz6b76qo4XzQr026oGZr2u7MMcM7/kIQi Iqx5T7kf1viwMxIOH6WGrDstBtVg+01CfZVujKOCSBDy25PvFiEXRCxXZsLBfmlH KMQ0TYpFlNg18VjaKLGLj+fES+zaH+8QksE13ImjhM/I67XXsD3NF4wj+y/19W2u QE+Q/FY+mxelAliUysC1NEkNwR9GPY9dL0QBOKzwdEH5Bs2FAqtCKuPb0Ws2qvdN F7jiRUj+tKmdPKvq9QVyVHUnGbEZfBL8MuuI6MqbEy+2Uko+xeD8S7z+4XVfILNr ANWQZscR57ZnH/jLVAeeku2b8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEcGkfV L593DLOh6aJ27NT3uV/WMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6UnyiRJ4ttYNL0zF28vKRSIo1D9Dp/soqxHkgg+uYgJDA/Le2uDoO z11tlvY1wKolNQbD868IGIHzJS1bwQKieQctqjCCqdQLLs8SvZks9McCJ66xTjzg Y4JllvyiNDJ/9VFP8dJmdVrHeT4zCkxe5/lnznBQiRopy4VQ3g/M/oNlVdVYYdEf Q0p0I0ClZ6CG/65d0fu55oEMKL3V8S1elOCHTyi2zdh+EXR8DnAahAYjZkDETBYd 7BDFiONxxtAC+kU4rhgOPIDBhqI7ivsga0+3ROeEbREAVqJR9w4Ww5E5qUKzQrgI np23WksIeAZS57CEfn7whOao8gYqWD4i -----END CERTIFICATE-----Generated at Fri Jul 4 17:46:44 2025 by rpki-client