$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: h/eP1kPO4sFBvTaBioqa4y62K+6mMpk+msOGEnhzV+Y= Subject key identifier: 90:E1:89:6C:37:CA:52:F5:E3:EA:9C:3E:C0:69:FF:B6:65:D6:98:DB Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 01E8 Signing time: Tue 01 Jul 2025 03:02:05 +0000 Manifest this update: Tue 01 Jul 2025 03:02:04 +0000 Manifest next update: Tue 08 Jul 2025 03:02:04 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: fruxdpYVGO4R/NyFpUbpMl+qO2RFnteAM3g/kbkcAbA=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: Jul 1 03:02:04 2025 GMT Not After : Jul 8 03:02:04 2025 GMT Subject: CN=68634fad-69fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2e:f6:2a:54:55:a1:5e:1f:ac:8a:ac:36:14: e9:7b:80:92:8e:1e:0e:bb:4e:ae:b5:08:3a:73:73: b7:41:a8:f9:01:de:0d:71:e8:bb:e8:72:f4:d8:40: 84:d1:53:8f:44:61:ec:c9:a7:47:3e:7d:ea:08:f7: 1f:a2:04:2d:6b:02:6c:2b:85:b4:2b:0f:a4:d2:a8: a4:0a:2a:c7:38:90:8a:5d:77:02:45:95:66:10:44: 34:6e:2e:9c:e7:d9:5f:19:bf:5f:c6:cd:cc:05:17: 7b:4a:d4:62:f8:ae:86:33:09:a4:a6:0c:e7:87:47: 8f:4f:bf:36:0d:16:30:54:93:43:df:52:85:99:f8: 35:1b:64:88:61:af:fa:db:dd:2b:63:b9:ed:2a:5b: 72:8c:07:83:4b:3e:6c:c1:be:1d:23:6e:fe:77:ad: 22:bf:78:c8:47:f9:8c:85:81:39:64:da:a9:e3:b3: 2a:45:20:d3:b5:5f:ce:18:98:dc:e1:32:3b:e4:fe: 72:ea:36:09:09:39:cb:32:d0:e5:95:32:b6:d7:71: 28:97:99:f4:07:c0:8a:83:d8:e9:1c:c8:39:6f:86: fb:39:77:ce:cf:02:e0:ad:43:23:07:b0:a3:a9:f0: ef:95:7d:d6:3c:ad:98:2a:8e:76:b0:9f:e1:93:ea: 87:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E1:89:6C:37:CA:52:F5:E3:EA:9C:3E:C0:69:FF:B6:65:D6:98:DB X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:72:34:26:92:f4:46:23:b8:78:b1:6b:ca:f5:9f:b1:47:f4: d2:c1:62:3e:42:7c:b0:15:e0:d1:ac:1d:8f:14:a1:2c:7d:ec: 48:e7:74:95:9f:ca:2b:0b:1b:a2:eb:10:07:39:a9:bb:d5:f2: f7:38:12:95:d4:8c:98:3a:a1:ff:59:cc:ef:94:bd:2f:e9:a7: 16:19:48:5b:68:0f:c6:1b:5d:eb:d3:d9:24:1d:f4:b0:f7:6e: 74:2e:62:b7:60:b5:7f:00:68:86:c6:f0:68:c6:2e:cb:55:87: ef:df:12:9b:6c:ae:9e:60:5e:e3:88:c1:df:1c:ee:a5:34:83: 08:12:d0:35:72:3d:c0:ca:24:38:5c:d1:46:d9:8b:ee:99:04: b7:e8:18:8a:1e:b4:a1:dd:1d:e5:a2:57:5c:f5:06:6d:2f:36: c2:a0:51:44:6d:c3:df:26:18:e0:ce:dc:85:c7:e9:9e:50:47: c8:67:76:25:c2:0a:75:71:52:9d:7c:41:eb:8a:a6:6b:dd:63: 8a:f9:d8:7f:c3:95:1b:40:5e:e7:7f:c7:af:3e:fa:70:46:2b: cd:36:c1:0a:2a:a0:dc:1c:e1:25:8a:7c:a3:ed:81:bf:b8:f8: a8:6f:fc:90:85:84:b7:05:f3:b4:34:fe:c5:41:9e:a9:ab:92: 38:f7:69:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjUwNzAxMDMwMjA0WhcNMjUwNzA4MDMwMjA0WjAYMRYwFAYD VQQDEw02ODYzNGZhZC02OWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3S72KlRVoV4frIqsNhTpe4CSjh4Ou06utQg6c3O3Qaj5Ad4Ncei76HL02ECE 0VOPRGHsyadHPn3qCPcfogQtawJsK4W0Kw+k0qikCirHOJCKXXcCRZVmEEQ0bi6c 59lfGb9fxs3MBRd7StRi+K6GMwmkpgznh0ePT782DRYwVJND31KFmfg1G2SIYa/6 290rY7ntKltyjAeDSz5swb4dI27+d60iv3jIR/mMhYE5ZNqp47MqRSDTtV/OGJjc 4TI75P5y6jYJCTnLMtDllTK213Eol5n0B8CKg9jpHMg5b4b7OXfOzwLgrUMjB7Cj qfDvlX3WPK2YKo52sJ/hk+qH2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDhiWw3 ylL14+qcPsBp/7Zl1pjbMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAcjQmkvRGI7h4sWvK9Z+xR/TSwWI+QnywFeDRrB2PFKEsfexI53SV n8orCxui6xAHOam71fL3OBKV1IyYOqH/WczvlL0v6acWGUhbaA/GG13r09kkHfSw 9250LmK3YLV/AGiGxvBoxi7LVYfv3xKbbK6eYF7jiMHfHO6lNIMIEtA1cj3AyiQ4 XNFG2YvumQS36BiKHrSh3R3loldc9QZtLzbCoFFEbcPfJhjgztyFx+meUEfIZ3Yl wgp1cVKdfEHriqZr3WOK+dh/w5UbQF7nf8evPvpwRivNNsEKKqDcHOElinyj7YG/ uPiob/yQhYS3BfO0NP7FQZ6pq5I492mQ -----END CERTIFICATE-----Generated at Tue Jul 1 09:43:20 2025 by rpki-client