$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: RtybEO5q4dOwMz5pMzkWnqfUmaeaAsAyyZI7d84+7qY= Subject key identifier: A2:76:46:A2:54:41:75:B8:13:14:45:91:6C:5A:E3:59:CC:1E:F8:13 Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2D7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D58 Signing time: Fri 04 Jul 2025 15:41:13 +0000 Manifest this update: Fri 04 Jul 2025 15:41:12 +0000 Manifest next update: Fri 11 Jul 2025 15:41:12 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: KlmVNUp/jlKTHRxYIw3JK5SXUpjCIa5+il+5CQUxa0c=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11645 (0x2d7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Jul 4 15:41:12 2025 GMT Not After : Jul 11 15:41:12 2025 GMT Subject: CN=6867f619-40de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bb:e3:0f:bf:07:37:0c:d6:67:02:36:18:47: 3b:4e:c1:8c:6c:83:b6:00:55:d5:a8:84:68:f9:10: ea:77:33:26:76:b5:de:e8:53:a4:6c:05:81:5e:8d: 3a:f6:c0:f9:86:4d:99:1e:a4:60:da:73:28:2b:35: e5:e9:2b:46:2a:55:7a:05:ed:b7:4e:f3:dc:3f:1a: 4a:71:67:d4:d8:35:5e:b0:59:5f:68:c2:3f:3d:32: 39:1c:d3:e6:5f:f6:ef:04:db:1a:8d:52:61:33:95: cf:83:20:b5:aa:3f:d6:c6:3e:00:a5:28:03:a5:61: 04:da:bb:6b:cb:77:d4:bf:8c:0e:54:2a:70:53:45: d8:96:bd:37:91:bf:1e:fe:6a:0f:36:80:94:44:c6: 0e:50:87:94:ae:0b:79:d4:03:00:52:fb:d5:f0:bc: 0f:53:dc:fc:ca:f9:0a:30:a8:24:91:0b:f3:9a:71: 05:58:7c:44:11:30:9d:74:17:da:d4:98:c1:30:54: a4:f3:9a:26:62:70:d1:6e:a4:32:89:f2:b9:c8:35: 7c:d5:cd:ed:18:35:34:9a:58:49:d3:e3:8a:0f:ed: e3:c5:f4:f4:8b:36:2d:6d:59:57:ef:54:f2:8e:c7: 82:86:eb:91:a9:c4:6d:5d:ec:b6:33:a3:8d:db:b9: c6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:76:46:A2:54:41:75:B8:13:14:45:91:6C:5A:E3:59:CC:1E:F8:13 X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d4:8a:6b:5d:b9:ff:4e:98:93:ab:a8:19:8f:8d:3c:24:57: 3a:4b:fa:22:3e:43:eb:8a:c7:ca:b0:1c:82:fa:c7:34:c7:d8: 73:6b:84:12:2e:60:ae:f2:00:b8:a9:29:a2:39:0b:4c:2d:ff: 1e:bf:4c:93:d0:05:ad:fd:ed:29:8a:64:64:f1:0c:f4:6c:45: 86:81:c8:ee:53:0e:78:2b:08:a4:01:56:23:a3:d6:42:33:16: 73:70:e4:96:11:c9:83:ca:ce:e8:90:2e:06:ef:42:47:85:00: 9b:c7:ff:13:b2:48:71:b5:06:c0:85:7d:87:7d:3a:85:32:85: ee:38:c1:39:94:81:8e:63:d7:f0:da:8a:a8:23:3c:48:f5:c0: 0d:a5:f4:cd:33:e5:94:2c:c2:65:84:7f:35:6b:2d:37:b7:67: c5:c9:16:79:67:28:79:58:c5:36:97:8c:7d:40:68:f6:5a:68: dc:aa:86:7f:fd:b5:3d:7c:f8:7e:39:da:f5:86:02:4e:7a:75: 6e:b3:78:fe:11:89:78:77:d2:f2:9f:68:66:50:92:81:a7:f8: 79:b0:8d:51:01:51:43:8f:a9:0e:5a:c9:e0:ec:79:f4:f1:6c: 32:5d:a6:2d:03:01:af:57:cb:48:13:ad:5f:5d:e4:d3:20:85: 15:4c:b9:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUwNzA0MTU0MTEyWhcNMjUwNzExMTU0MTEyWjAYMRYwFAYD VQQDEw02ODY3ZjYxOS00MGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprvjD78HNwzWZwI2GEc7TsGMbIO2AFXVqIRo+RDqdzMmdrXe6FOkbAWBXo06 9sD5hk2ZHqRg2nMoKzXl6StGKlV6Be23TvPcPxpKcWfU2DVesFlfaMI/PTI5HNPm X/bvBNsajVJhM5XPgyC1qj/Wxj4ApSgDpWEE2rtry3fUv4wOVCpwU0XYlr03kb8e /moPNoCURMYOUIeUrgt51AMAUvvV8LwPU9z8yvkKMKgkkQvzmnEFWHxEETCddBfa 1JjBMFSk85omYnDRbqQyifK5yDV81c3tGDU0mlhJ0+OKD+3jxfT0izYtbVlX71Ty jseChuuRqcRtXey2M6ON27nGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJ2RqJU QXW4ExRFkWxa41nMHvgTMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ1IprXbn/TpiTq6gZj408JFc6S/oiPkPrisfKsByC+sc0x9hza4QS LmCu8gC4qSmiOQtMLf8ev0yT0AWt/e0pimRk8Qz0bEWGgcjuUw54KwikAVYjo9ZC MxZzcOSWEcmDys7okC4G70JHhQCbx/8TskhxtQbAhX2HfTqFMoXuOME5lIGOY9fw 2oqoIzxI9cANpfTNM+WULMJlhH81ay03t2fFyRZ5Zyh5WMU2l4x9QGj2WmjcqoZ/ /bU9fPh+Odr1hgJOenVus3j+EYl4d9Lyn2hmUJKBp/h5sI1RAVFDj6kOWsng7Hn0 8WwyXaYtAwGvV8tIE61fXeTTIIUVTLlD -----END CERTIFICATE-----Generated at Sat Jul 5 22:17:07 2025 by rpki-client