$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: z8TvPqdZwdXe6rk8o78Sy11iYsmq7wVcXJegEaxQ6Ho= Subject key identifier: 02:F6:BC:E3:94:B2:27:38:58:00:68:A2:49:1C:C2:2F:6D:54:16:B3 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0C5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0C54 Signing time: Wed 02 Jul 2025 18:37:35 +0000 Manifest this update: Wed 02 Jul 2025 18:37:34 +0000 Manifest next update: Wed 09 Jul 2025 18:37:34 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: lJH5fQbr+fJKsMtEf+9ubiMmvpaQReS+lYl4wJ/8dwY=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Jul 2 18:37:34 2025 GMT Not After : Jul 9 18:37:34 2025 GMT Subject: CN=68657c6e-0735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:27:e2:63:72:21:68:3f:3d:a5:de:fd:0c:50: 5c:d1:04:cc:d1:00:e2:6d:ed:0c:43:d5:5a:56:df: 83:17:40:3f:11:27:62:aa:68:60:c9:91:d4:e9:d0: c6:10:96:08:a1:ae:69:33:1b:e8:9c:5e:0e:9e:49: d9:d4:cc:9f:ff:16:3b:6f:3e:96:02:21:cd:f3:29: 0d:45:84:53:6f:e5:a3:f6:30:19:fe:99:c8:c6:7b: e0:a4:7b:88:a0:b4:42:3f:2b:f0:0b:97:e7:a4:9d: 2d:96:5b:eb:b5:e0:80:77:3f:b1:26:0c:b0:47:0f: a7:ff:e6:9e:93:7e:bb:dd:69:6e:97:07:1b:84:86: 18:bd:9d:9e:db:d0:ed:d2:66:c5:02:7e:4e:c8:48: d0:93:ae:77:0b:51:de:23:f5:67:0b:fe:4e:5f:18: 6f:6d:9c:0a:73:6e:5b:3b:a4:95:a5:33:fc:ff:8f: f2:08:3a:0c:0f:59:2c:0c:48:1c:ad:6d:76:7c:ff: 7c:ce:03:9b:2a:00:6f:1a:7f:ef:e4:f1:34:6d:e8: ff:e7:2b:69:43:5c:99:80:d2:d3:a0:2d:27:4c:3e: db:a8:8c:3e:d4:d4:1e:1f:f4:ad:0a:a8:53:64:47: 7e:9f:79:9d:17:0d:4b:53:09:47:9e:e4:01:a0:91: 88:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F6:BC:E3:94:B2:27:38:58:00:68:A2:49:1C:C2:2F:6D:54:16:B3 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:5c:48:43:78:2f:66:d1:30:a7:f3:50:d2:22:71:b0:8e:d8: 03:e8:9b:51:ce:8a:34:d9:67:bf:30:f4:6b:19:51:96:00:99: 20:1a:5a:ff:70:6a:de:f5:43:f1:61:cb:e0:6f:75:04:fd:f8: e1:74:cf:e4:4b:02:58:66:cd:8a:0d:66:97:30:20:a0:76:d2: 91:52:2c:8b:73:5f:ba:a1:ca:ce:ef:f0:03:1a:09:b8:78:ca: 7a:1c:79:1e:3b:a1:79:07:51:69:42:dc:a4:cd:83:82:08:bf: 22:da:09:ae:eb:4c:b5:e9:2c:c0:4d:8d:66:99:2c:38:13:5d: a1:a3:76:9c:8d:4f:bf:e8:a2:59:a3:9c:1d:6b:ea:11:14:b1: 19:0f:fc:4c:ab:62:e0:dd:2a:d0:61:89:d1:26:87:24:46:33: 8f:a2:ec:33:93:bd:67:dc:f6:0d:4b:be:d9:0b:da:ab:f0:24: f6:c5:21:3b:5e:1e:d9:ba:ae:b4:35:3b:4d:d7:6f:39:5a:e6: 71:88:ba:20:54:82:1c:39:34:54:d4:e3:a2:7b:2d:ba:56:d5: 38:92:c3:07:39:0c:bf:a1:82:c2:8d:35:74:84:04:59:10:8a: 78:fe:48:d2:a2:19:30:70:c4:ed:e5:f2:5c:a6:b0:76:a6:c8: d0:6b:0b:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUwNzAyMTgzNzM0WhcNMjUwNzA5MTgzNzM0WjAYMRYwFAYD VQQDEw02ODY1N2M2ZS0wNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySfiY3IhaD89pd79DFBc0QTM0QDibe0MQ9VaVt+DF0A/ESdiqmhgyZHU6dDG EJYIoa5pMxvonF4OnknZ1Myf/xY7bz6WAiHN8ykNRYRTb+Wj9jAZ/pnIxnvgpHuI oLRCPyvwC5fnpJ0tllvrteCAdz+xJgywRw+n/+aek3673WlulwcbhIYYvZ2e29Dt 0mbFAn5OyEjQk653C1HeI/VnC/5OXxhvbZwKc25bO6SVpTP8/4/yCDoMD1ksDEgc rW12fP98zgObKgBvGn/v5PE0bej/5ytpQ1yZgNLToC0nTD7bqIw+1NQeH/StCqhT ZEd+n3mdFw1LUwlHnuQBoJGIfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAL2vOOU sic4WABookkcwi9tVBazMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDXEhDeC9m0TCn81DSInGwjtgD6JtRzoo02We/MPRrGVGWAJkgGlr/ cGre9UPxYcvgb3UE/fjhdM/kSwJYZs2KDWaXMCCgdtKRUiyLc1+6ocrO7/ADGgm4 eMp6HHkeO6F5B1FpQtykzYOCCL8i2gmu60y16SzATY1mmSw4E12ho3acjU+/6KJZ o5wda+oRFLEZD/xMq2Lg3SrQYYnRJockRjOPouwzk71n3PYNS77ZC9qr8CT2xSE7 Xh7Zuq60NTtN1285WuZxiLogVIIcOTRU1OOiey26VtU4ksMHOQy/oYLCjTV0hARZ EIp4/kjSohkwcMTt5fJcprB2psjQawu+ -----END CERTIFICATE-----Generated at Thu Jul 3 23:23:38 2025 by rpki-client