$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: iBGboc0RIytdQUPaNYRp0YPU81OQGjyA5/BIwI4jrwk= Subject key identifier: 39:7A:B7:2B:08:3D:E6:30:DD:90:E7:68:63:0C:E1:7D:BF:51:7F:70 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 085E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 0858 Signing time: Wed 02 Jul 2025 20:58:08 +0000 Manifest this update: Wed 02 Jul 2025 20:58:08 +0000 Manifest next update: Wed 09 Jul 2025 20:58:08 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: ruwgfy501fgBj/vYQiM5Xn7MeZNC7ZMh4fFs+G7yXoU=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: Orts9nJAHIeXwpDUPuUMiOuSaf1VvGVbpuD8ge8k//4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2142 (0x85e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Jul 2 20:58:08 2025 GMT Not After : Jul 9 20:58:08 2025 GMT Subject: CN=68659d60-e166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:82:7a:5f:f6:7b:70:b0:9e:a6:77:9f:6c: 3d:f6:24:d8:83:29:d5:e5:02:88:89:b9:f6:6a:6f: 7b:4f:d0:3e:74:39:12:e2:f2:39:66:cf:91:90:75: 30:37:87:6e:c3:06:13:ce:71:59:33:78:fa:83:ec: da:47:e1:7c:d4:8c:a0:ff:84:e5:e2:5f:43:95:e2: a3:06:00:d5:db:62:a0:5a:60:e1:b2:94:81:de:64: 73:ee:4e:b6:a6:18:55:86:55:b2:60:b4:e1:44:5e: 27:7b:e1:f8:75:6f:87:ec:81:ff:e5:9a:9e:26:17: 1e:f5:7b:2c:fb:32:2f:dd:dc:20:41:20:92:06:89: 3d:46:3c:e0:1b:b2:c7:a1:42:f5:c6:d0:26:de:26: fb:1d:1a:61:6a:29:2e:41:54:47:74:0f:dd:ac:41: 28:6d:3c:8d:04:35:bd:b0:25:6e:3b:93:6c:9e:82: e6:b6:5a:d6:8a:8d:23:9b:db:ef:fd:d8:13:48:9b: ef:d4:b1:1c:95:4f:c2:1d:16:20:c9:38:85:45:3b: 0b:8c:ca:ac:22:88:3c:1f:d5:97:37:e9:a0:5d:9b: 5e:d9:6e:db:14:68:0d:1b:1d:76:59:0d:b6:f4:d5: ea:2f:12:bf:1c:55:df:ec:57:9e:55:86:b2:32:e0: 61:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7A:B7:2B:08:3D:E6:30:DD:90:E7:68:63:0C:E1:7D:BF:51:7F:70 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f9:cb:b5:34:82:a5:a1:ac:ff:14:48:22:76:ab:6d:f3:5b: e7:76:c5:60:b7:b8:cc:a9:c4:68:60:aa:ca:ed:25:f2:97:5c: 7a:7c:ee:09:ee:1d:64:e0:ac:8e:88:98:09:e8:4c:c1:8f:1c: c0:7a:ec:b2:23:e2:96:d2:0d:74:5d:7f:34:b7:15:5a:4c:2e: f2:fa:2c:77:91:32:a1:63:65:f0:b2:c6:e5:10:8c:dd:60:66: 88:bd:6d:66:32:b3:f4:ff:0a:a0:bf:32:d9:cc:00:e7:84:1c: cb:03:67:95:0c:3e:e5:01:81:2a:1d:fd:48:b7:98:14:55:96: 08:15:0c:02:38:35:72:3e:d7:e2:12:d9:94:d5:b4:6b:ba:ee: bf:36:0a:52:ce:4a:4f:0e:a1:18:ea:8a:7b:2e:ab:4f:05:d4: 2a:82:d6:ea:72:b6:01:59:c3:26:87:a8:da:ad:d0:ac:d3:ca: 15:4f:1a:9f:cd:ff:00:91:2c:60:3f:85:83:00:39:97:f4:b1: 37:5f:a8:58:89:1d:50:55:15:89:f7:3f:01:d1:07:22:51:c3: ed:c0:53:d9:00:88:fd:11:6d:75:40:93:d7:75:33:b3:4e:ee: 41:72:1d:39:e9:35:f8:78:f5:18:87:a6:99:2d:80:42:69:c1: bd:ac:c0:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUwNzAyMjA1ODA4WhcNMjUwNzA5MjA1ODA4WjAYMRYwFAYD VQQDEw02ODY1OWQ2MC1lMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy+Cel/2e3CwnqZ3n2w99iTYgynV5QKIibn2am97T9A+dDkS4vI5Zs+RkHUw N4duwwYTznFZM3j6g+zaR+F81Iyg/4Tl4l9DleKjBgDV22KgWmDhspSB3mRz7k62 phhVhlWyYLThRF4ne+H4dW+H7IH/5ZqeJhce9Xss+zIv3dwgQSCSBok9RjzgG7LH oUL1xtAm3ib7HRphaikuQVRHdA/drEEobTyNBDW9sCVuO5NsnoLmtlrWio0jm9vv /dgTSJvv1LEclU/CHRYgyTiFRTsLjMqsIog8H9WXN+mgXZte2W7bFGgNGx12WQ22 9NXqLxK/HFXf7FeeVYayMuBhMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDl6tysI PeYw3ZDnaGMM4X2/UX9wMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC+cu1NIKloaz/FEgidqtt81vndsVgt7jMqcRoYKrK7SXyl1x6fO4J 7h1k4KyOiJgJ6EzBjxzAeuyyI+KW0g10XX80txVaTC7y+ix3kTKhY2XwssblEIzd YGaIvW1mMrP0/wqgvzLZzADnhBzLA2eVDD7lAYEqHf1It5gUVZYIFQwCODVyPtfi EtmU1bRruu6/NgpSzkpPDqEY6op7LqtPBdQqgtbqcrYBWcMmh6jardCs08oVTxqf zf8AkSxgP4WDADmX9LE3X6hYiR1QVRWJ9z8B0QciUcPtwFPZAIj9EW11QJPXdTOz Tu5Bch056TX4ePUYh6aZLYBCacG9rMBQ -----END CERTIFICATE-----Generated at Thu Jul 3 06:31:57 2025 by rpki-client