$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft File: aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft (raw, json) Hash identifier: MeJ2d5uk2eOIsCyIZpIopQK9EL04iNzHd2ClejhS2+k= Subject key identifier: 4D:2E:0B:83:01:BB:52:F4:AD:6C:93:69:DF:69:30:57:1C:D2:86:65 Authority key identifier: 69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 Certificate issuer: /CN=A91C8BEE/serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft Manifest number: 071C Signing time: Wed 02 Jul 2025 22:07:37 +0000 Manifest this update: Wed 02 Jul 2025 22:07:36 +0000 Manifest next update: Wed 09 Jul 2025 22:07:36 +0000 Files and hashes: 1: aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl (hash: sBNaTlRd3wsNvZy2QNGY7AsKWMwHRknBS652z2qyzeE=) 2: DE524D283F0511EBBB4C174FC4F9AE02.roa (hash: zWRikEivlVPteMMOfXpGEHZKMPXoa2S3XawXpPi4Aig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BEE, serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Validity Not Before: Jul 2 22:07:36 2025 GMT Not After : Jul 9 22:07:36 2025 GMT Subject: CN=6865ada9-eb5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0b:56:33:9d:3e:37:b4:fa:9e:c3:59:e7:6c: 9b:32:2c:b6:ec:fb:8c:01:92:07:99:08:f9:0e:20: c5:47:d2:44:bc:cb:a2:32:5c:23:88:f1:72:af:4f: 4f:2f:7e:5b:f0:56:0b:26:73:b5:3e:41:96:65:bb: c3:6d:df:e1:e1:f1:53:4f:1b:97:1d:c4:9c:92:6a: 81:af:fb:1e:cb:7c:af:22:50:5a:6e:88:3b:c9:e9: c5:2d:40:24:c8:dd:dc:96:7b:5b:37:bc:e8:78:1b: 08:bc:25:c8:37:cb:b5:b2:70:87:bc:ac:42:39:27: 70:1b:58:2d:7b:dc:eb:8e:ca:51:c1:ae:39:c2:7b: 7e:ba:b3:8d:d9:5f:85:6b:7d:8f:32:74:2d:9c:23: 29:66:70:12:a1:2e:3f:c1:62:47:fa:c1:4c:be:be: 72:6e:19:51:8e:4b:b5:a6:a4:2c:43:09:d0:63:98: 86:60:6c:6b:79:e3:2f:d3:91:d9:3e:11:64:e2:f3: ef:a6:8c:02:b0:17:d9:2f:83:27:12:bd:a9:52:5f: 01:2f:19:58:b4:65:a8:4c:d8:57:98:c2:58:cd:a6: f4:b6:56:a3:a9:fe:88:8b:89:eb:89:a5:0c:c1:3e: 17:f1:e7:95:02:84:7b:ba:56:27:e1:37:78:8c:62: 0a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2E:0B:83:01:BB:52:F4:AD:6C:93:69:DF:69:30:57:1C:D2:86:65 X509v3 Authority Key Identifier: keyid:69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:1c:f5:77:a9:0d:7b:8b:2e:39:09:f0:b0:ed:3d:35:8f:cf: c9:c4:71:63:7c:70:6b:6c:db:b5:57:07:8d:0e:8b:5b:e0:2a: 81:0e:72:c4:fc:7d:5f:fd:8e:80:6a:bf:71:2e:a8:dc:bb:b1: 29:ba:6b:b1:21:95:c5:2e:5d:11:bf:c0:61:f4:14:60:75:a1: 57:f9:25:3b:1a:99:e9:3e:18:a9:6a:fe:1a:71:00:30:ff:a9: 84:c6:79:ac:a6:2a:22:7c:18:e4:bb:34:6f:55:5c:02:97:f3: 1a:75:c5:02:28:b7:74:23:e5:99:41:40:d8:14:a3:17:1d:67: c1:ad:50:3d:ce:7f:5e:86:97:70:5c:a6:99:cc:1b:d3:bc:d1: 08:2c:90:73:20:25:ee:28:98:ee:e5:46:99:8a:da:40:f7:39: 07:74:7b:2f:db:bf:86:8d:a8:d9:8b:75:01:db:9f:1f:f9:da: 39:70:e4:01:5f:33:24:6d:d2:ac:a4:6f:ac:67:2f:b7:94:80: 57:e9:ef:bd:b4:58:bf:42:13:af:b5:ed:fa:eb:1c:df:cc:dc: 74:5d:9a:f2:f6:db:42:40:4a:78:52:39:da:59:3f:7e:48:bc: f6:35:bb:fc:cf:a4:42:b9:32:07:48:e1:63:aa:f8:09:76:29: 72:45:9b:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCRUUxMTAvBgNVBAUTKDY5NjlDMjBCODY5OUE0OEQwNzJENEEzMDY3Q0ZGMDBE NUY0NDdDOTgwHhcNMjUwNzAyMjIwNzM2WhcNMjUwNzA5MjIwNzM2WjAYMRYwFAYD VQQDEw02ODY1YWRhOS1lYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AtWM50+N7T6nsNZ52ybMiy27PuMAZIHmQj5DiDFR9JEvMuiMlwjiPFyr09P L35b8FYLJnO1PkGWZbvDbd/h4fFTTxuXHcSckmqBr/sey3yvIlBabog7yenFLUAk yN3clntbN7zoeBsIvCXIN8u1snCHvKxCOSdwG1gte9zrjspRwa45wnt+urON2V+F a32PMnQtnCMpZnASoS4/wWJH+sFMvr5ybhlRjku1pqQsQwnQY5iGYGxreeMv05HZ PhFk4vPvpowCsBfZL4MnEr2pUl8BLxlYtGWoTNhXmMJYzab0tlajqf6Ii4nriaUM wT4X8eeVAoR7ulYn4Td4jGIKZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0uC4MB u1L0rWyTad9pMFcc0oZlMB8GA1UdIwQYMBaAFGlpwguGmaSNBy1KMGfP8A1fRHyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJFRS82RTA2MjdGODNG MDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJMEhMVW93Wjhfd0RWOUVm SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXbkNDNGFacEkwSExVb3daOF93RFY5RWZKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJFRS82RTA2MjdGODNGMDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJ MEhMVW93Wjhfd0RWOUVmSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/HPV3qQ17iy45CfCw7T01j8/JxHFjfHBrbNu1VweNDotb4CqBDnLE /H1f/Y6Aar9xLqjcu7EpumuxIZXFLl0Rv8Bh9BRgdaFX+SU7GpnpPhipav4acQAw /6mExnmspioifBjkuzRvVVwCl/MadcUCKLd0I+WZQUDYFKMXHWfBrVA9zn9ehpdw XKaZzBvTvNEILJBzICXuKJju5UaZitpA9zkHdHsv27+GjajZi3UB258f+do5cOQB XzMkbdKspG+sZy+3lIBX6e+9tFi/QhOvte366xzfzNx0XZry9ttCQEp4UjnaWT9+ SLz2Nbv8z6RCuTIHSOFjqvgJdilyRZuN -----END CERTIFICATE-----Generated at Thu Jul 3 23:53:08 2025 by rpki-client