$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft File: -kF5Yn9bJllOVjA1Ogt3heDWksU.mft (raw, json) Hash identifier: j6aoHniQXli5YTQH9xi1AUxovx8VmANrKan31Z5WS2I= Subject key identifier: DD:9A:FE:A2:60:28:37:DE:85:76:67:B6:66:89:31:8E:72:49:3C:F5 Authority key identifier: FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 Certificate issuer: /CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft Manifest number: 34B4 Signing time: Wed 02 Jul 2025 14:16:13 +0000 Manifest this update: Wed 02 Jul 2025 14:16:13 +0000 Manifest next update: Wed 09 Jul 2025 14:16:13 +0000 Files and hashes: 1: -kF5Yn9bJllOVjA1Ogt3heDWksU.crl (hash: qeYACBOgHIBFm31+hDNHEpYb76vQJTLympqVbAqnO9Q=) 2: CDE36D52DB9511E99F3F673EC4F9AE02.roa (hash: zbmIG6CT7ypIn3HcTtsDFC7ihfXsVyZlUb242ctePDw=) 3: BB8F87B4D4B011ECAA427351C4F9AE02.roa (hash: V6xVQh9iUu5NDnwtI8z/zA2tAozAKTEZViih6UdSdQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Validity Not Before: Jul 2 14:16:13 2025 GMT Not After : Jul 9 14:16:13 2025 GMT Subject: CN=68653f2d-c883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4e:ce:0a:cd:dd:1f:b6:43:30:50:5c:19:b5: 91:8f:69:89:b1:01:d3:f3:85:8c:a2:0a:fa:af:c6: 5c:30:9f:aa:bb:90:ed:f8:ee:a8:07:33:10:1a:0e: a4:fe:79:03:74:c6:41:3b:07:80:8e:c7:f1:30:cd: c3:53:87:6b:27:df:20:63:a8:75:b6:3c:68:2d:7e: 59:84:da:92:0e:e3:ca:46:3a:00:ad:6c:e4:6c:9d: e4:01:52:8e:08:ad:a3:93:8d:04:2a:98:92:13:46: af:1c:c6:3d:54:83:11:d4:a4:79:ad:9e:4c:47:41: db:23:ba:d6:73:92:a5:ff:bb:58:78:24:9d:5e:cb: 1f:1a:51:27:ee:f1:06:4e:43:67:47:d9:27:fc:22: 7b:f8:f0:7b:58:37:69:3c:e6:ab:d3:93:78:df:61: 64:67:ee:75:4a:22:da:33:22:07:e3:a1:0b:4f:54: 92:b7:34:e5:b2:40:65:f5:f2:74:e2:71:7a:41:53: 7f:a4:2f:36:74:5e:d1:06:d2:d1:20:d4:55:b5:5a: 2b:27:0a:fd:eb:51:6b:8d:49:30:c6:d1:fa:18:63: 72:33:34:c0:15:ee:54:0f:03:a8:35:1b:79:47:7b: 1a:90:89:e6:3f:69:f2:69:fa:ab:bb:20:5e:80:72: a1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9A:FE:A2:60:28:37:DE:85:76:67:B6:66:89:31:8E:72:49:3C:F5 X509v3 Authority Key Identifier: keyid:FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:14:12:d4:51:9d:2a:a3:d0:79:c2:6c:cb:57:fe:28:f0:36: 18:2c:f1:24:5f:ec:04:63:a8:1b:43:57:63:9f:51:6e:68:79: 29:c8:03:48:65:02:68:71:bf:8e:3c:20:c9:56:62:89:96:4f: 74:01:45:2d:db:8b:0d:2d:1e:06:8d:51:1a:d2:1d:fc:20:89: ea:26:29:e1:a6:a7:7b:88:74:19:44:a7:ea:23:2e:5c:8f:ae: 3a:fd:f0:2e:4a:b5:c5:ce:bb:ac:dd:b4:99:31:2b:d4:59:b1: 12:37:a7:9d:db:cf:69:bd:30:24:b9:a0:13:17:46:49:1b:37: 24:b1:d9:0f:bd:fa:1d:ca:6d:eb:fd:64:2f:ce:6b:2b:48:84: 63:f9:1b:7b:df:70:6b:9d:20:b0:9e:bf:d1:61:79:3b:7c:88: 7e:99:d7:13:1a:83:fd:e1:60:7f:f2:a5:bf:a0:00:42:a2:d9: c9:e7:db:40:61:3e:76:36:aa:52:d7:34:9c:79:e4:a8:a6:81: 41:d7:a6:f8:87:3e:11:93:d9:00:4c:82:06:69:04:dc:27:2b: b0:32:92:06:e8:9c:32:f2:00:ca:48:03:cc:e5:e4:01:83:0a: cb:6c:30:e6:bd:f6:6d:52:78:9c:88:1d:fc:f8:1c:1e:33:62: 6a:63:35:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEZBNDE3OTYyN0Y1QjI2NTk0RTU2MzAzNTNBMEI3Nzg1 RTBENjkyQzUwHhcNMjUwNzAyMTQxNjEzWhcNMjUwNzA5MTQxNjEzWjAYMRYwFAYD VQQDEw02ODY1M2YyZC1jODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA307OCs3dH7ZDMFBcGbWRj2mJsQHT84WMogr6r8ZcMJ+qu5Dt+O6oBzMQGg6k /nkDdMZBOweAjsfxMM3DU4drJ98gY6h1tjxoLX5ZhNqSDuPKRjoArWzkbJ3kAVKO CK2jk40EKpiSE0avHMY9VIMR1KR5rZ5MR0HbI7rWc5Kl/7tYeCSdXssfGlEn7vEG TkNnR9kn/CJ7+PB7WDdpPOar05N432FkZ+51SiLaMyIH46ELT1SStzTlskBl9fJ0 4nF6QVN/pC82dF7RBtLRINRVtVorJwr961FrjUkwxtH6GGNyMzTAFe5UDwOoNRt5 R3sakInmP2nyafqruyBegHKhfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2a/qJg KDfehXZntmaJMY5ySTz1MB8GA1UdIwQYMBaAFPpBeWJ/WyZZTlYwNToLd4Xg1pLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS85OUQ2OERDRTFE NjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45YkpsbE9WakExT2d0M2hlRFdr c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1rRjVZbjliSmxsT1ZqQTFPZ3QzaGVEV2tzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS85OUQ2OERDRTFENjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45Ykps bE9WakExT2d0M2hlRFdrc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfFBLUUZ0qo9B5wmzLV/4o8DYYLPEkX+wEY6gbQ1djn1FuaHkpyANI ZQJocb+OPCDJVmKJlk90AUUt24sNLR4GjVEa0h38IInqJinhpqd7iHQZRKfqIy5c j646/fAuSrXFzrus3bSZMSvUWbESN6ed289pvTAkuaATF0ZJGzcksdkPvfodym3r /WQvzmsrSIRj+Rt733BrnSCwnr/RYXk7fIh+mdcTGoP94WB/8qW/oABCotnJ59tA YT52NqpS1zSceeSopoFB16b4hz4Rk9kATIIGaQTcJyuwMpIG6Jwy8gDKSAPM5eQB gwrLbDDmvfZtUniciB38+BweM2JqYzX2 -----END CERTIFICATE-----Generated at Thu Jul 3 06:03:43 2025 by rpki-client