$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft File: 45Npup3YgJmHsja0d6144Vx1qxw.mft (raw, json) Hash identifier: nflC+GoC0+hLzHU+5pk1OycLuy+cmZcLo1jrRpx/lKs= Subject key identifier: 1F:26:2B:37:AE:AD:03:E8:49:59:19:47:94:2B:0E:97:1B:39:81:C0 Authority key identifier: E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C Certificate issuer: /CN=A91C0C73/serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft Manifest number: 022E Signing time: Thu 03 Jul 2025 02:21:08 +0000 Manifest this update: Thu 03 Jul 2025 02:21:08 +0000 Manifest next update: Thu 10 Jul 2025 02:21:08 +0000 Files and hashes: 1: 45Npup3YgJmHsja0d6144Vx1qxw.crl (hash: lCyLX1/riuH1OqB0qb9i8dg78H/ZV38B4lsaYm5txCo=) 2: 3728DA229A8611EFA824F73BC4F9AE02.roa (hash: s/TAy9epcEKTC12lHA/WIlwW4b4QaIyA/jvIAJ5W4eQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C73, serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Validity Not Before: Jul 3 02:21:08 2025 GMT Not After : Jul 10 02:21:08 2025 GMT Subject: CN=6865e914-f90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:80:cb:eb:d1:03:a2:64:1a:aa:87:a1:46: 8f:37:02:0f:cc:c3:38:14:91:0d:47:71:12:a9:58: 5b:02:21:76:28:25:e2:16:83:80:d5:3e:fd:a8:33: 9f:39:19:90:e0:77:0f:fa:f5:d3:f5:08:5c:eb:86: a1:f3:ee:bf:a4:6d:f7:c4:c7:11:b9:80:6d:18:8a: 46:b6:5f:3e:41:94:88:df:7f:6d:37:27:7c:3b:0e: a6:37:d3:9c:00:83:f3:51:8c:12:78:dc:b4:3d:6f: 4e:74:67:e7:2a:d5:87:7b:7c:87:2e:98:47:e5:4c: 17:a0:ac:19:16:c5:73:ae:ee:d5:53:5d:f8:4b:c6: 29:25:56:af:e4:35:aa:5c:05:27:25:5a:80:50:0b: 09:92:ec:ff:35:bd:bb:9c:1c:1b:16:42:ff:98:be: 4d:f5:b6:49:5c:49:53:d4:fb:2f:84:af:17:5f:fc: 3b:75:fa:3b:44:48:6b:de:97:a0:e5:d5:51:e0:4b: d0:f1:76:f3:2a:7a:5e:e6:d8:66:36:64:2e:9a:23: 0d:bf:d3:2d:68:ab:aa:2d:94:c3:bf:9e:fb:8e:f3: 57:4b:a1:83:be:5c:25:9b:71:a6:ca:48:06:e2:29: 85:fc:51:5b:69:34:3f:44:83:5c:e0:e9:0a:ff:67: 05:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:26:2B:37:AE:AD:03:E8:49:59:19:47:94:2B:0E:97:1B:39:81:C0 X509v3 Authority Key Identifier: keyid:E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:ab:a7:3e:21:b5:84:d7:aa:58:20:d7:ca:7f:c2:8c:81:a3: 3b:c1:67:ba:61:d7:3d:0b:72:46:83:e7:08:bf:cb:ba:cb:0c: 27:c3:b9:66:db:5b:2a:fe:34:ab:98:d1:43:42:9c:2e:5b:e5: c2:40:2b:76:09:e7:ee:88:eb:49:1c:49:62:d5:4f:2d:73:44: fd:01:fc:e7:9c:e4:c1:16:89:d6:85:96:e8:bc:c8:37:d7:98: bd:2d:37:f0:ab:f0:ed:b9:e4:9b:7e:41:5a:96:b7:e0:c1:e2: 5b:5b:d3:64:09:02:3f:c1:21:5e:4b:07:88:21:a1:da:50:d3: 32:34:a5:17:d3:4e:d4:8e:67:c4:eb:f4:68:df:c6:b1:e7:27: 47:55:8f:07:07:58:c1:4e:17:1f:07:96:2f:ff:e8:ab:8d:9f: c2:6b:05:d0:32:1c:9f:b0:78:4e:65:7f:4f:58:db:67:16:d8: 5e:69:bf:72:67:d1:ea:da:10:f5:c3:19:63:e9:57:71:ac:53: f1:95:73:dd:14:f9:e5:c1:ac:df:7e:12:dd:95:b3:fa:02:e9: e2:0d:7d:f6:a0:88:95:13:c1:8b:b0:05:b1:9a:74:87:85:6d: 05:e2:ab:67:2b:43:69:a5:a5:f8:a5:a9:cc:37:5a:7f:0f:1a: ce:c0:10:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDNzMxMTAvBgNVBAUTKEUzOTM2OUJBOUREODgwOTk4N0IyMzZCNDc3QUQ3OEUx NUM3NUFCMUMwHhcNMjUwNzAzMDIyMTA4WhcNMjUwNzEwMDIyMTA4WjAYMRYwFAYD VQQDEw02ODY1ZTkxNC1mOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWyAy+vRA6JkGqqHoUaPNwIPzMM4FJENR3ESqVhbAiF2KCXiFoOA1T79qDOf ORmQ4HcP+vXT9Qhc64ah8+6/pG33xMcRuYBtGIpGtl8+QZSI339tNyd8Ow6mN9Oc AIPzUYwSeNy0PW9OdGfnKtWHe3yHLphH5UwXoKwZFsVzru7VU134S8YpJVav5DWq XAUnJVqAUAsJkuz/Nb27nBwbFkL/mL5N9bZJXElT1PsvhK8XX/w7dfo7REhr3peg 5dVR4EvQ8XbzKnpe5thmNmQumiMNv9MtaKuqLZTDv577jvNXS6GDvlwlm3GmykgG 4imF/FFbaTQ/RINc4OkK/2cFUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8mKzeu rQPoSVkZR5QrDpcbOYHAMB8GA1UdIwQYMBaAFOOTabqd2ICZh7I2tHeteOFcdasc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM3My8yMTVFNUQzQTM2 NUExMUVEQUQxMEJBN0FDNEY5QUUwMi80NU5wdXAzWWdKbUhzamEwZDYxNDRWeDFx eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1TnB1cDNZZ0ptSHNqYTBkNjE0NFZ4MXF4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEM3My8yMTVFNUQzQTM2NUExMUVEQUQxMEJBN0FDNEY5QUUwMi80NU5wdXAzWWdK bUhzamEwZDYxNDRWeDFxeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBq6c+IbWE16pYINfKf8KMgaM7wWe6Ydc9C3JGg+cIv8u6ywwnw7lm 21sq/jSrmNFDQpwuW+XCQCt2CefuiOtJHEli1U8tc0T9AfznnOTBFonWhZbovMg3 15i9LTfwq/DtueSbfkFalrfgweJbW9NkCQI/wSFeSweIIaHaUNMyNKUX007UjmfE 6/Ro38ax5ydHVY8HB1jBThcfB5Yv/+irjZ/CawXQMhyfsHhOZX9PWNtnFtheab9y Z9Hq2hD1wxlj6VdxrFPxlXPdFPnlwazffhLdlbP6AuniDX32oIiVE8GLsAWxmnSH hW0F4qtnK0NppaX4panMN1p/DxrOwBDZ -----END CERTIFICATE-----Generated at Thu Jul 3 10:22:15 2025 by rpki-client