$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft File: _10TK8Zqqiu89lw-X-iaDDcdizo.mft (raw, json) Hash identifier: AyQyC0f+5bADP+aoki2KyWcOKICMLmvXMCkyfUJVBhY= Subject key identifier: B5:31:E1:DF:75:E2:37:C9:7A:1E:EB:2A:2D:5A:2E:74:8A:92:00:CF Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft Manifest number: 01F5 Signing time: Sat 05 Jul 2025 02:43:57 +0000 Manifest this update: Sat 05 Jul 2025 02:43:56 +0000 Manifest next update: Sat 12 Jul 2025 02:43:56 +0000 Files and hashes: 1: _10TK8Zqqiu89lw-X-iaDDcdizo.crl (hash: UO1+0IoLwDPy048H9QT+iixFeh2fzf2I7CCyWJdw6zM=) 2: 064042F259F511EDB22E3F2BC4F9AE02.roa (hash: JoMqVSrjZm4JfXMaz6xrPhG5LHTOXjmhXw4j9hZGE8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7, serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Jul 5 02:43:56 2025 GMT Not After : Jul 12 02:43:56 2025 GMT Subject: CN=6868916d-b1a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:55:ea:c3:27:11:8c:f0:6f:c9:88:21:21:4b: bf:ca:bc:07:9e:13:6b:36:16:ea:6e:fe:a0:77:a3: 8a:9f:9f:d9:57:10:0c:37:7f:3d:f2:13:ac:e1:e0: 41:40:e6:49:cd:33:5b:7a:61:6e:2f:72:65:71:21: 1c:92:ea:b2:44:ab:49:76:d9:9c:04:6c:6e:c3:ca: 92:58:3e:e4:77:82:14:65:ce:4d:3d:df:77:47:27: 8e:0f:d3:87:e8:c8:14:fa:cc:d0:8a:17:2b:56:92: eb:7a:d1:1e:f9:ee:3d:90:f0:5a:c3:a4:53:6c:86: f4:11:0a:f7:48:c5:c7:aa:5e:50:d4:13:0f:17:4d: 37:f9:63:4b:7e:c5:b6:51:c1:c8:5e:95:68:1d:c1: a9:f5:36:92:24:54:48:cd:cf:af:2a:b5:4b:37:62: 55:6e:a5:9a:3d:6e:b2:1a:6f:34:ff:3c:ac:ec:8e: 60:64:e3:2e:f2:fe:59:c0:3b:fd:57:99:5e:0a:98: e4:4f:c9:ef:9e:de:51:f8:dc:4a:b2:a7:62:4a:70: c6:66:8b:00:7a:7c:08:4c:d2:1e:9d:19:a4:c9:37: f0:27:ea:a2:44:85:7d:96:5f:16:25:ed:11:28:6a: 47:1e:6f:43:57:fd:16:4f:79:db:6d:0c:32:6c:a6: 16:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:31:E1:DF:75:E2:37:C9:7A:1E:EB:2A:2D:5A:2E:74:8A:92:00:CF X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:46:e0:c8:5d:07:f2:cf:7e:bd:9e:9d:8b:7e:67:d4:71:4a: 4d:47:15:50:18:dc:2a:d0:de:e3:3e:05:0c:98:06:3a:9e:e1: 19:9e:6c:88:0a:36:1f:6a:50:7d:d5:4a:67:ca:00:3a:1a:fe: 33:6d:c6:d5:5b:c9:81:83:f9:9d:20:fc:36:3f:41:34:fd:29: 43:ea:70:74:87:3c:25:dd:5d:54:d5:ef:50:bf:9a:1e:18:26: 6e:0e:ec:5b:96:76:a7:a9:c9:f3:0f:44:d3:0c:52:24:e4:0e: 91:c5:5c:2b:2c:f6:28:c5:73:76:67:77:57:95:27:de:ce:3a: 02:b1:e4:72:e9:7c:9b:2b:39:64:5b:b9:87:97:33:74:bb:ff: 87:00:a3:9f:8b:15:10:41:d5:21:79:bd:b5:38:08:e9:5a:2f: e3:e1:da:1c:85:29:4f:13:bd:6a:10:84:be:97:e1:3b:45:76: ce:3d:e1:d6:f1:36:bc:41:af:4d:0e:7c:39:49:b3:e8:df:cf: 2e:72:b5:28:97:68:50:71:cd:8b:e6:0b:c0:41:60:6e:21:20: 52:03:d1:99:7a:85:c3:b6:5a:b1:60:3c:db:c2:8b:67:49:3e: e6:a2:09:17:b3:52:08:03:3a:2d:79:64:4a:e3:2a:af:7c:5e: 41:84:e0:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjUwNzA1MDI0MzU2WhcNMjUwNzEyMDI0MzU2WjAYMRYwFAYD VQQDEw02ODY4OTE2ZC1iMWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslXqwycRjPBvyYghIUu/yrwHnhNrNhbqbv6gd6OKn5/ZVxAMN3898hOs4eBB QOZJzTNbemFuL3JlcSEckuqyRKtJdtmcBGxuw8qSWD7kd4IUZc5NPd93RyeOD9OH 6MgU+szQihcrVpLretEe+e49kPBaw6RTbIb0EQr3SMXHql5Q1BMPF003+WNLfsW2 UcHIXpVoHcGp9TaSJFRIzc+vKrVLN2JVbqWaPW6yGm80/zys7I5gZOMu8v5ZwDv9 V5leCpjkT8nvnt5R+NxKsqdiSnDGZosAenwITNIenRmkyTfwJ+qiRIV9ll8WJe0R KGpHHm9DV/0WT3nbbQwybKYWHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUx4d91 4jfJeh7rKi1aLnSKkgDPMB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZBNy8yRDk5MUNEMDU5OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFp dTg5bHctWC1pYUREY2Rpem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpRuDIXQfyz369np2LfmfUcUpNRxVQGNwq0N7jPgUMmAY6nuEZnmyI CjYfalB91UpnygA6Gv4zbcbVW8mBg/mdIPw2P0E0/SlD6nB0hzwl3V1U1e9Qv5oe GCZuDuxblnanqcnzD0TTDFIk5A6RxVwrLPYoxXN2Z3dXlSfezjoCseRy6XybKzlk W7mHlzN0u/+HAKOfixUQQdUheb21OAjpWi/j4dochSlPE71qEIS+l+E7RXbOPeHW 8Ta8Qa9NDnw5SbPo388ucrUol2hQcc2L5gvAQWBuISBSA9GZeoXDtlqxYDzbwotn ST7mogkXs1IIAzoteWRK4yqvfF5BhOBK -----END CERTIFICATE-----Generated at Sat Jul 5 05:08:46 2025 by rpki-client