$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: zQUSzeLhuWYKIhWunQ2c63rcm/KdRiuYbtlDP57IK0o= Subject key identifier: FD:76:F8:47:EE:B4:37:0B:F7:C1:24:1C:DB:75:5E:EF:D2:71:A0:96 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 0967 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 0922 Signing time: Mon 30 Jun 2025 20:34:28 +0000 Manifest this update: Mon 30 Jun 2025 20:34:27 +0000 Manifest next update: Mon 07 Jul 2025 20:34:27 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: inu7fTYgw3czV7fHbm1YveJkQ2xgUd7Jnkng7SKZGe4=) 2: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 3: A02B90EA479311F0BBFADC27C4F9AE02.roa (hash: FSGba/ksTfUcD5c5nTx4WizNyHeIp3OO4bcFqqjagGE=) 4: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 5: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2407 (0x967) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Jun 30 20:34:27 2025 GMT Not After : Jul 7 20:34:27 2025 GMT Subject: CN=6862f4d3-0dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:64:49:18:41:37:76:17:de:7b:42:7f:5a:fa: e1:26:be:f0:e2:22:74:c1:b3:07:39:44:86:65:74: 6e:dd:9b:db:49:41:db:df:7c:1d:56:f9:8f:1c:09: 95:7c:bd:c0:50:cc:9a:b1:82:1a:c9:ed:89:90:1f: d1:55:b4:c2:9e:f9:49:76:36:cb:4d:e2:68:ed:2b: 2f:bd:c9:ee:63:3d:49:bf:40:d4:a0:56:43:92:67: c5:b0:7a:5d:2a:81:b3:29:93:d1:a4:d0:6d:c2:a4: ec:47:0d:3e:ab:fd:0b:00:cd:6a:bb:19:84:f1:c9: e2:2e:71:2f:2d:e6:a8:9a:5b:c7:9e:d5:4a:d7:da: 45:eb:15:cb:3b:e3:fd:4d:21:22:f9:07:c3:33:97: aa:ba:35:b8:c0:f0:81:7d:62:d8:fd:8b:a5:a8:89: 6d:61:4c:19:b6:85:cc:2b:8a:bc:54:e5:c9:2d:80: 37:db:f3:db:1b:91:24:2d:5d:44:05:d1:5e:7f:75: d3:04:26:a8:92:2e:22:ba:4f:24:d3:ca:2d:1b:3b: ee:90:58:62:7b:92:b7:b5:3f:5c:c2:4f:eb:b7:e2: e0:65:ef:61:16:8d:e3:cb:63:fa:24:5c:c0:d8:91: 37:87:27:e5:2c:13:ad:fb:00:41:7d:df:b9:c8:8e: a9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:76:F8:47:EE:B4:37:0B:F7:C1:24:1C:DB:75:5E:EF:D2:71:A0:96 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:b2:c6:d6:df:1f:7e:02:69:f6:4d:40:44:9f:97:7f:d0:18: 1f:62:de:62:82:22:e8:7e:f2:2c:c0:24:b6:ae:3e:6a:11:df: ae:79:e0:8b:99:a9:fa:1a:a8:de:dd:92:2d:31:43:f3:53:4f: 93:35:4e:48:cc:8b:93:d1:44:0c:4e:f1:b3:cc:74:ec:6a:77: 3d:23:bf:87:20:ac:35:dd:88:bb:04:30:c2:3a:85:64:11:35: 93:b1:53:d7:b3:ff:37:ef:5c:9f:3e:04:ef:33:f2:e5:a6:a7: a7:1e:20:03:ee:18:8e:c4:06:4d:f4:9d:c3:df:ba:e4:0b:e1: 21:32:83:2b:fe:dd:e5:30:4c:4b:e3:fc:84:ca:0e:b1:8a:f7: 6b:76:c6:9a:27:5a:e7:8e:13:ff:5a:bf:69:7e:18:20:ac:2c: ca:1b:bf:06:19:7c:e2:e5:cb:fc:42:e3:56:4a:b2:47:db:59: 4c:30:d9:3e:72:6e:2d:9c:98:9b:98:f1:f2:cf:51:90:02:a5: e9:cd:11:f7:c7:c2:80:73:4f:c7:70:6a:fa:bb:3e:91:94:24: e5:0f:24:df:ce:6a:e1:fd:16:af:7a:5d:2d:90:2c:2b:86:69: 15:f3:43:41:18:01:47:95:9d:38:f3:75:bb:c5:ee:d5:1c:e0: c8:cf:db:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUwNjMwMjAzNDI3WhcNMjUwNzA3MjAzNDI3WjAYMRYwFAYD VQQDEw02ODYyZjRkMy0wZGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2RJGEE3dhfee0J/WvrhJr7w4iJ0wbMHOUSGZXRu3ZvbSUHb33wdVvmPHAmV fL3AUMyasYIaye2JkB/RVbTCnvlJdjbLTeJo7SsvvcnuYz1Jv0DUoFZDkmfFsHpd KoGzKZPRpNBtwqTsRw0+q/0LAM1quxmE8cniLnEvLeaomlvHntVK19pF6xXLO+P9 TSEi+QfDM5equjW4wPCBfWLY/YulqIltYUwZtoXMK4q8VOXJLYA32/PbG5EkLV1E BdFef3XTBCaoki4iuk8k08otGzvukFhie5K3tT9cwk/rt+LgZe9hFo3jy2P6JFzA 2JE3hyflLBOt+wBBfd+5yI6powIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP12+Efu tDcL98EkHNt1Xu/ScaCWMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZssbW3x9+Amn2TUBEn5d/0BgfYt5igiLofvIswCS2rj5qEd+ueeCL man6Gqje3ZItMUPzU0+TNU5IzIuT0UQMTvGzzHTsanc9I7+HIKw13Yi7BDDCOoVk ETWTsVPXs/8371yfPgTvM/LlpqenHiAD7hiOxAZN9J3D37rkC+EhMoMr/t3lMExL 4/yEyg6xivdrdsaaJ1rnjhP/Wr9pfhggrCzKG78GGXzi5cv8QuNWSrJH21lMMNk+ cm4tnJibmPHyz1GQAqXpzRH3x8KAc0/HcGr6uz6RlCTlDyTfzmrh/Ravel0tkCwr hmkV80NBGAFHlZ0483W7xe7VHODIz9sq -----END CERTIFICATE-----Generated at Tue Jul 1 07:41:49 2025 by rpki-client