$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft File: 0VLfcuXWwcb-QrZCN3w7CIEobec.mft (raw, json) Hash identifier: sh+5iVIpVYNn9hAgVpoVZZhMp09d/R/bpl91aS7mvy0= Subject key identifier: 29:6E:5F:C3:41:62:F6:BE:E7:F2:37:55:92:41:C3:6C:8F:73:E3:92 Authority key identifier: D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 Certificate issuer: /CN=A91C0FAC/serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Certificate serial: 052B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft Manifest number: 0527 Signing time: Wed 02 Jul 2025 23:52:45 +0000 Manifest this update: Wed 02 Jul 2025 23:52:44 +0000 Manifest next update: Wed 09 Jul 2025 23:52:44 +0000 Files and hashes: 1: 0VLfcuXWwcb-QrZCN3w7CIEobec.crl (hash: GmvpEMlYuVPTLVokqrrRgKvMVBe3IuGbBdAj6cXPem8=) 2: 4C2E7A3C049B11ECAC7E5D0DC4F9AE02.roa (hash: RRDCzU53SK4RYR2DdbmwE16o06HoY4GRJ9TEKW1rm3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1323 (0x52b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FAC, serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Validity Not Before: Jul 2 23:52:44 2025 GMT Not After : Jul 9 23:52:44 2025 GMT Subject: CN=6865c64c-d74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e4:9f:07:2c:f0:fa:65:e7:aa:36:25:8a:f9: 28:86:0f:ef:06:fb:1e:6c:6e:69:ae:57:80:76:31: e3:a5:a0:08:98:f1:9c:7a:fd:d7:6b:55:31:1c:a2: f2:4b:8f:93:8c:5b:43:3d:c4:8d:d4:6a:15:38:01: c3:32:b5:49:5b:fa:85:38:a5:af:cd:24:e1:58:c3: d7:36:09:29:9a:a7:f1:c8:ce:89:02:74:ba:38:86: 04:bc:f1:83:6e:29:0d:ac:60:11:95:fa:b5:1d:7f: 24:8d:ee:bf:da:34:12:ca:38:c6:a0:f6:0c:13:c7: ee:d2:bb:5c:cb:bf:0e:73:86:90:d1:35:9c:01:8a: cc:a5:61:2c:27:3a:04:9d:c3:1a:92:46:9c:59:8a: 69:ff:64:3e:36:61:b3:09:12:58:4f:36:25:36:8d: 8e:6d:27:7c:90:b9:f3:5e:d1:d9:9f:04:1a:29:d4: e5:be:a7:62:34:2b:3e:fc:78:7f:ca:ec:6c:61:de: bb:65:05:00:9d:2c:c9:97:3b:c7:2c:28:b5:be:30: 79:0f:7f:3f:37:f9:5b:f1:fc:04:0b:0a:da:f6:9f: ba:e0:c8:f8:36:3e:f1:52:ea:70:d8:5e:71:9c:ee: ac:01:4c:77:fc:b3:3c:43:31:ef:25:53:98:62:da: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:6E:5F:C3:41:62:F6:BE:E7:F2:37:55:92:41:C3:6C:8F:73:E3:92 X509v3 Authority Key Identifier: keyid:D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:fb:4e:9a:68:96:7b:96:58:b3:01:19:30:cc:3f:ef:86:18: a2:26:3a:88:58:d6:9c:3c:90:0e:3a:b4:fb:9c:2a:76:2b:36: 6e:db:25:23:a2:58:53:ef:6b:4b:e9:82:1c:4a:cf:e3:1a:d0: 55:86:75:b8:ca:3f:d2:b7:ee:b5:0c:ba:ec:6a:35:73:a4:1c: 0e:89:68:a8:8e:ab:fd:a4:3e:ab:8e:2e:79:4a:b5:05:92:54: d3:06:cc:a3:e6:d8:ff:68:c7:98:d1:14:c5:ef:8e:44:a0:a3: 28:06:5b:df:3e:d6:4f:0c:cd:b5:b6:8f:39:d4:b6:3b:95:85: d4:24:db:c3:cd:a9:ee:05:fe:ec:32:96:dd:f9:b2:ac:91:dc: a3:62:cc:ea:ee:19:ba:3c:48:eb:6c:10:53:1c:f3:8d:ab:b8: 75:97:20:9a:09:53:65:5f:7b:34:e5:2e:ec:60:ca:59:0d:07: 60:e9:d6:74:82:11:93:75:3d:13:a8:ad:90:df:c1:01:f4:61: 69:d7:cb:99:c8:77:ab:ee:2e:f3:bc:cf:af:fd:7e:32:cc:14: 5b:3c:07:c4:1c:cb:2a:ff:95:f3:56:07:fe:6e:c1:39:d8:42: 77:3f:e2:69:d9:2b:f2:86:30:cb:e8:bb:c4:40:50:e7:56:0a: 4b:97:d0:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGQUMxMTAvBgNVBAUTKEQxNTJERjcyRTVENkMxQzZGRTQyQjY0MjM3N0MzQjA4 ODEyODZERTcwHhcNMjUwNzAyMjM1MjQ0WhcNMjUwNzA5MjM1MjQ0WjAYMRYwFAYD VQQDEw02ODY1YzY0Yy1kNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OSfByzw+mXnqjYlivkohg/vBvsebG5prleAdjHjpaAImPGcev3Xa1UxHKLy S4+TjFtDPcSN1GoVOAHDMrVJW/qFOKWvzSThWMPXNgkpmqfxyM6JAnS6OIYEvPGD bikNrGARlfq1HX8kje6/2jQSyjjGoPYME8fu0rtcy78Oc4aQ0TWcAYrMpWEsJzoE ncMakkacWYpp/2Q+NmGzCRJYTzYlNo2ObSd8kLnzXtHZnwQaKdTlvqdiNCs+/Hh/ yuxsYd67ZQUAnSzJlzvHLCi1vjB5D38/N/lb8fwECwra9p+64Mj4Nj7xUupw2F5x nO6sAUx3/LM8QzHvJVOYYtq4HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCluX8NB Yva+5/I3VZJBw2yPc+OSMB8GA1UdIwQYMBaAFNFS33Ll1sHG/kK2Qjd8OwiBKG3n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZBQy8zQ0Y3OThFMDA0 OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3djYi1RclpDTjN3N0NJRW9i ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWTGZjdVhXd2NiLVFyWkNOM3c3Q0lFb2JlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZBQy8zQ0Y3OThFMDA0OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3dj Yi1RclpDTjN3N0NJRW9iZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ+06aaJZ7llizARkwzD/vhhiiJjqIWNacPJAOOrT7nCp2KzZu2yUj olhT72tL6YIcSs/jGtBVhnW4yj/St+61DLrsajVzpBwOiWiojqv9pD6rji55SrUF klTTBsyj5tj/aMeY0RTF745EoKMoBlvfPtZPDM21to851LY7lYXUJNvDzanuBf7s Mpbd+bKskdyjYszq7hm6PEjrbBBTHPONq7h1lyCaCVNlX3s05S7sYMpZDQdg6dZ0 ghGTdT0TqK2Q38EB9GFp18uZyHer7i7zvM+v/X4yzBRbPAfEHMsq/5XzVgf+bsE5 2EJ3P+Jp2SvyhjDL6LvEQFDnVgpLl9CW -----END CERTIFICATE-----Generated at Thu Jul 3 14:46:11 2025 by rpki-client