$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft File: -2uUY2HwxcguKwZ0DUuosLmTU_g.mft (raw, json) Hash identifier: qL7yqIqRolGTbhr3Nc9hTZ0gzbxcMNqAmsAMZV9YXZQ= Subject key identifier: 7D:E9:18:54:F2:B8:42:59:52:0A:A5:C8:52:28:08:E9:17:13:3D:56 Authority key identifier: FB:6B:94:63:61:F0:C5:C8:2E:2B:06:74:0D:4B:A8:B0:B9:93:53:F8 Certificate issuer: /CN=A91C6A35/serialNumber=FB6B946361F0C5C82E2B06740D4BA8B0B99353F8 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft Manifest number: 55 Signing time: Tue 01 Jul 2025 07:58:39 +0000 Manifest this update: Tue 01 Jul 2025 07:58:39 +0000 Manifest next update: Tue 08 Jul 2025 07:58:39 +0000 Files and hashes: 1: -2uUY2HwxcguKwZ0DUuosLmTU_g.crl (hash: 4WZOnmmz9CwC9QFfdarcZC06vJilqgVc6LHrxYKnoto=) 2: 06D77958D49411EFA8DF5E69C4F9AE02.roa (hash: SIysPbQ0shw6SImSP7LGItvtceoka+GBhE2dzjDub+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.crl rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:58:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=FB6B946361F0C5C82E2B06740D4BA8B0B99353F8 Validity Not Before: Jul 1 07:58:39 2025 GMT Not After : Jul 8 07:58:39 2025 GMT Subject: CN=6863952f-70b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:87:ed:e3:8a:3b:12:ab:83:ea:56:ff:7c:e3: 1d:2d:f6:f1:1c:9a:97:bb:24:6d:8a:ad:d9:12:f5: b6:30:12:38:22:1e:54:41:04:99:e4:28:81:f1:26: 54:cc:4a:25:da:f7:23:9e:af:9d:d6:3f:9b:10:86: 94:31:3d:99:d1:9f:53:36:92:76:95:c3:e2:0a:31: 75:47:6a:b6:e3:15:56:99:89:cc:d0:71:d7:2f:29: 6c:b2:55:ec:08:dc:11:89:ea:d4:f1:6a:8f:51:5b: 47:69:d6:d7:23:da:79:5a:16:d4:2f:61:e8:50:63: e3:5a:fd:5b:0d:94:51:56:ed:0d:69:b4:f2:8f:36: 60:e1:3c:88:ac:b7:8f:84:53:39:cf:99:f1:28:25: 91:63:1e:78:ee:d1:f8:43:3d:f2:53:7b:25:ed:05: 8e:4d:d7:16:71:9b:f1:9b:fc:36:08:51:fa:41:8d: da:2f:cc:72:29:d3:a7:0f:f4:96:5c:af:2f:0e:52: d7:6e:49:00:9f:bf:89:fe:38:ed:d7:bd:e0:54:15: 87:63:c5:c7:b8:82:92:bc:ac:a9:d9:0c:d8:e9:51: 10:15:f4:f9:9d:4e:c1:30:02:dd:f8:ce:47:32:3a: 54:1f:06:e0:0b:8d:ed:13:f1:b1:6c:68:63:19:9a: 1b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E9:18:54:F2:B8:42:59:52:0A:A5:C8:52:28:08:E9:17:13:3D:56 X509v3 Authority Key Identifier: keyid:FB:6B:94:63:61:F0:C5:C8:2E:2B:06:74:0D:4B:A8:B0:B9:93:53:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:64:41:64:85:5c:c2:cd:ae:07:03:b4:a0:43:9c:d3:a8:3f: af:32:4c:95:67:4c:09:45:09:4d:b3:b2:b1:fb:bb:64:a7:9c: 53:84:97:15:89:c9:f6:2e:45:f9:7f:cf:9a:c2:66:44:8d:33: cb:9c:7a:fa:1d:42:7f:77:bc:9b:1e:82:a2:b7:89:c5:9c:e2: eb:6c:1f:6a:54:19:9b:2d:fb:fb:bc:7e:e6:57:24:9c:cf:3c: 18:e4:71:d4:55:95:ee:24:60:57:5b:98:ca:99:6e:d3:e5:13: 36:dd:b7:f3:c2:e9:83:c4:a2:e1:8d:3e:1f:68:57:ca:38:c2: 43:8d:b4:d0:c6:6c:8c:9d:9e:e9:fa:5e:e0:31:97:00:02:e7: de:be:7a:83:d8:aa:33:ab:08:98:aa:0e:55:ff:20:c9:b9:52: 2e:2a:ef:63:71:8b:c5:0a:8a:75:bd:ec:bb:4b:f7:7d:3d:cd: 62:59:02:52:e4:25:e4:f7:98:e7:16:29:d5:c3:98:12:6e:e0: 26:3f:86:94:2d:53:37:2f:cc:22:0b:b3:e8:46:ae:57:cc:75: 60:54:86:31:3c:51:df:d6:23:fc:ed:03:f0:f0:1b:a9:e2:25: e2:b2:8d:93:51:2f:74:07:77:3d:d2:90:7b:b8:71:d9:42:ed: 52:d5:88:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkEzNTExMC8GA1UEBRMoRkI2Qjk0NjM2MUYwQzVDODJFMkIwNjc0MEQ0QkE4QjBC OTkzNTNGODAeFw0yNTA3MDEwNzU4MzlaFw0yNTA3MDgwNzU4MzlaMBgxFjAUBgNV BAMTDTY4NjM5NTJmLTcwYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9h+3jijsSq4PqVv984x0t9vEcmpe7JG2KrdkS9bYwEjgiHlRBBJnkKIHxJlTM SiXa9yOer53WP5sQhpQxPZnRn1M2knaVw+IKMXVHarbjFVaZiczQcdcvKWyyVewI 3BGJ6tTxao9RW0dp1tcj2nlaFtQvYehQY+Na/VsNlFFW7Q1ptPKPNmDhPIist4+E UznPmfEoJZFjHnju0fhDPfJTeyXtBY5N1xZxm/Gb/DYIUfpBjdovzHIp06cP9JZc ry8OUtduSQCfv4n+OO3XveBUFYdjxce4gpK8rKnZDNjpURAV9PmdTsEwAt34zkcy OlQfBuALje0T8bFsaGMZmhsfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfekYVPK4 QllSCqXIUigI6RcTPVYwHwYDVR0jBBgwFoAU+2uUY2HwxcguKwZ0DUuosLmTU/gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTM1L0ExNTlGNzgyRDQ5 MjExRUZCNTY0REU2MkM0RjlBRTAyLy0ydVVZMkh3eGNndUt3WjBEVXVvc0xtVFVf Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTJ1VVkySHd4Y2d1S3daMERVdW9zTG1UVV9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 QTM1L0ExNTlGNzgyRDQ5MjExRUZCNTY0REU2MkM0RjlBRTAyLy0ydVVZMkh3eGNn dUt3WjBEVXVvc0xtVFVfZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFxkQWSFXMLNrgcDtKBDnNOoP68yTJVnTAlFCU2zsrH7u2SnnFOElxWJ yfYuRfl/z5rCZkSNM8ucevodQn93vJsegqK3icWc4utsH2pUGZst+/u8fuZXJJzP PBjkcdRVle4kYFdbmMqZbtPlEzbdt/PC6YPEouGNPh9oV8o4wkONtNDGbIydnun6 XuAxlwAC596+eoPYqjOrCJiqDlX/IMm5Ui4q72Nxi8UKinW97LtL9309zWJZAlLk JeT3mOcWKdXDmBJu4CY/hpQtUzcvzCILs+hGrlfMdWBUhjE8Ud/WI/ztA/DwG6ni JeKyjZNRL3QHdz3SkHu4cdlC7VLViIM= -----END CERTIFICATE-----Generated at Thu Jul 3 01:14:29 2025 by rpki-client