$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: q144OESu4dAFiNJ9zlOth13kPbEMvVVuzEj9ypDYk24= Subject key identifier: 3F:9A:55:22:A1:45:BB:67:AA:74:C8:F8:56:94:5D:4A:7F:3D:C2:D6 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 08BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 08B7 Signing time: Wed 02 Jul 2025 20:46:17 +0000 Manifest this update: Wed 02 Jul 2025 20:46:17 +0000 Manifest next update: Wed 09 Jul 2025 20:46:17 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: m3SJKdyo0YlOMV1/YLLUQiJ3uPD3HvXGxjkQhh4X80k=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Jul 2 20:46:17 2025 GMT Not After : Jul 9 20:46:17 2025 GMT Subject: CN=68659a99-235a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:92:7c:8d:03:60:f3:03:e8:4a:22:fd:fc:a0: da:e7:42:a5:38:4b:8b:8c:5a:2b:ee:ba:47:50:88: 51:f4:21:56:56:11:3f:ba:ac:f8:8f:b9:47:67:02: 59:66:a2:5a:a3:99:63:f4:a0:02:d8:b1:cb:a6:d7: e0:3b:f1:5b:06:73:34:e6:2d:1c:d7:95:ab:60:b3: 3d:36:7d:e9:26:bd:3f:3a:d4:1f:78:f0:ed:5c:4b: 4d:2c:87:95:68:67:1e:10:03:e2:6f:a0:c7:9a:98: 80:d0:e4:b3:7c:c5:a8:63:48:ad:eb:f9:fa:bc:3b: 63:f1:3c:35:0e:dc:db:99:1f:f8:3e:9b:07:4d:16: a6:d9:3f:1a:87:5a:ec:32:01:63:b0:ec:3d:74:d3: 7c:15:10:19:ce:61:dd:82:a8:0f:06:30:6c:e5:c2: 7d:49:e9:67:e4:2e:38:19:7c:ab:f6:69:9e:5e:0f: f6:3f:aa:bd:79:30:d7:02:3a:4e:5e:c3:c5:3e:e0: fb:35:76:3d:37:58:d6:56:b4:75:99:1e:00:cf:68: 1c:ff:8c:b1:af:58:05:a8:6d:74:21:5e:98:4a:cf: 36:d0:e1:f4:98:5e:87:17:81:22:91:b7:d8:16:3c: 32:a7:c4:17:a9:fc:ac:e4:80:6d:22:3a:df:c4:50: 73:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:9A:55:22:A1:45:BB:67:AA:74:C8:F8:56:94:5D:4A:7F:3D:C2:D6 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:1c:7b:dc:5c:26:d3:ea:1b:e5:2f:13:3f:d9:f4:83:26:ab: 13:b9:a8:86:ab:61:52:2d:2d:c0:e9:bf:1f:a0:da:01:e5:5e: 19:d7:eb:9b:07:40:b2:2e:e1:12:ec:c6:0c:b3:31:92:32:6b: 20:b0:a6:2c:1b:98:a4:37:3f:dc:75:e6:9d:1d:24:c8:dd:03: 2a:c9:40:50:80:3e:4c:ae:ba:0f:75:fa:f7:6b:32:14:34:01: 01:63:1b:42:9c:7b:2a:09:96:46:ca:46:5f:2b:8b:14:36:8b: fb:5d:0f:8d:78:f8:4f:a5:fa:53:dd:d2:67:5c:d3:69:20:d3: ea:4e:1e:62:53:37:50:a8:d9:ea:76:dd:1f:1c:9d:dc:fd:44: 8f:f7:2b:56:d9:97:96:65:ac:c8:5a:f4:ec:cb:fa:4c:0c:e4: fc:26:01:e0:e1:f3:9f:16:8c:1c:de:e4:32:cd:6e:2a:e1:ce: a0:a6:5a:78:52:a2:05:46:7d:82:42:10:be:75:db:5e:15:d8: 62:bc:43:a6:5a:af:2f:5d:6f:f1:eb:be:d8:e0:2f:67:56:04: 90:dd:33:d6:1d:59:82:8f:a0:d2:a3:4f:98:3d:9a:01:8d:2c: 8a:d0:4c:b9:b8:0a:e8:87:e9:96:3d:a4:43:cd:68:06:0e:ca: 87:a6:83:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUwNzAyMjA0NjE3WhcNMjUwNzA5MjA0NjE3WjAYMRYwFAYD VQQDEw02ODY1OWE5OS0yMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZJ8jQNg8wPoSiL9/KDa50KlOEuLjFor7rpHUIhR9CFWVhE/uqz4j7lHZwJZ ZqJao5lj9KAC2LHLptfgO/FbBnM05i0c15WrYLM9Nn3pJr0/OtQfePDtXEtNLIeV aGceEAPib6DHmpiA0OSzfMWoY0it6/n6vDtj8Tw1DtzbmR/4PpsHTRam2T8ah1rs MgFjsOw9dNN8FRAZzmHdgqgPBjBs5cJ9Seln5C44GXyr9mmeXg/2P6q9eTDXAjpO XsPFPuD7NXY9N1jWVrR1mR4Az2gc/4yxr1gFqG10IV6YSs820OH0mF6HF4EikbfY Fjwyp8QXqfys5IBtIjrfxFBz6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+aVSKh RbtnqnTI+FaUXUp/PcLWMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlHHvcXCbT6hvlLxM/2fSDJqsTuaiGq2FSLS3A6b8foNoB5V4Z1+ub B0CyLuES7MYMszGSMmsgsKYsG5ikNz/cdeadHSTI3QMqyUBQgD5MrroPdfr3azIU NAEBYxtCnHsqCZZGykZfK4sUNov7XQ+NePhPpfpT3dJnXNNpINPqTh5iUzdQqNnq dt0fHJ3c/USP9ytW2ZeWZazIWvTsy/pMDOT8JgHg4fOfFowc3uQyzW4q4c6gplp4 UqIFRn2CQhC+ddteFdhivEOmWq8vXW/x677Y4C9nVgSQ3TPWHVmCj6DSo0+YPZoB jSyK0Ey5uAroh+mWPaRDzWgGDsqHpoMt -----END CERTIFICATE-----Generated at Fri Jul 4 00:16:41 2025 by rpki-client