$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: p+rZejMucBiPhTP2J9/QsCQ3Lh0E/uEbHgPIf3T1J5E= Subject key identifier: 2F:42:DF:4B:95:9B:41:44:A1:1D:14:EC:C7:A1:84:E2:CD:6A:CB:71 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 017F Signing time: Thu 03 Jul 2025 03:47:18 +0000 Manifest this update: Thu 03 Jul 2025 03:47:17 +0000 Manifest next update: Thu 10 Jul 2025 03:47:17 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: FS4pV8PjzuHUkJzXrv+fPG4BINnATx32USmeqVN+Y5I=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: JgXDvvb08AKpWtQFVgWoJSRrsvnpi7N5Npk5xtbR4bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Jul 3 03:47:17 2025 GMT Not After : Jul 10 03:47:17 2025 GMT Subject: CN=6865fd46-d352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b4:d4:5e:65:c6:5d:b8:c9:65:75:8b:25:70: 3a:9f:b7:1e:d3:2d:39:2b:36:d1:d4:75:4f:b5:56: e4:a7:ac:ae:e3:6c:9f:a2:9d:49:4f:02:60:db:68: 86:fa:c6:45:e8:02:e2:58:36:0f:9a:46:ad:c0:c5: 69:17:01:a3:87:24:0b:1a:b6:1a:33:16:6c:6b:5b: 65:ee:d6:25:e7:19:fd:4f:0a:1e:95:c9:b6:a7:9f: 9c:e0:1b:de:50:a8:f0:63:b1:e0:53:11:43:57:3e: aa:6c:69:02:b5:7e:c0:da:15:44:08:91:16:6f:06: 5e:c3:0c:6a:18:6c:ed:9f:7a:0e:fc:70:f3:ca:4b: ef:d7:d1:2b:cb:a6:8e:df:77:cb:7c:be:f1:e1:94: 56:2d:b6:62:85:bd:88:da:22:98:16:f1:cf:70:7c: 8c:ba:02:c3:f7:a2:0b:0c:8c:2c:ae:26:a2:d8:6f: d0:08:51:45:ec:c3:e4:69:23:d5:dd:11:21:c2:b2: f5:b1:bf:ba:23:7e:c2:d9:0d:b3:f5:15:83:c4:c2: 0c:d2:27:4f:69:2d:ff:d8:85:e6:00:8c:75:fa:4b: 5e:ba:ec:85:73:8c:f3:a7:be:d3:c6:9d:99:f9:f7: 71:f7:7c:6c:d5:88:15:df:49:68:52:a4:66:b7:9b: e9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:42:DF:4B:95:9B:41:44:A1:1D:14:EC:C7:A1:84:E2:CD:6A:CB:71 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:4f:01:80:20:6d:63:3b:b6:c5:ca:74:0b:64:64:fa:db:ab: 32:87:51:01:7b:60:e1:2b:b1:de:93:eb:4d:72:a0:1e:c9:80: f9:2e:8d:8d:f7:4f:65:5a:56:25:ab:76:ff:9c:67:ba:10:9c: 4a:b9:0d:6b:ff:eb:43:0a:fd:e7:ba:d4:99:a8:56:42:32:31: f6:3e:e2:f7:aa:33:db:57:b8:9c:65:78:23:26:48:0d:05:29: cc:3c:56:8c:fb:99:28:1c:9a:25:d2:79:6b:c1:49:f1:7a:58: a7:5f:a0:fc:65:57:f6:d6:d2:ce:60:0a:32:08:e1:9d:44:96: a5:c4:8b:35:87:d2:2b:ac:25:8b:8e:3b:12:5e:8b:1d:19:03: 9a:21:b6:9a:ef:34:dd:24:d2:0f:24:c6:ae:7a:62:bc:ea:6b: b0:c4:eb:4a:f3:a6:ae:f8:fd:18:2c:24:91:80:ef:c9:ca:06: ff:80:da:d4:19:ef:a5:17:8b:da:27:87:a3:2d:c2:ef:22:82: d7:be:91:51:8e:36:61:ce:e1:af:ef:8e:f5:61:65:b6:f7:d9: c0:6d:78:29:d0:d0:7d:84:02:fc:cd:bf:ea:33:0f:e4:20:e0: 52:5b:4f:54:94:19:3c:64:cd:0b:be:a5:9b:29:d3:11:15:0a: 7c:54:1a:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwNzAzMDM0NzE3WhcNMjUwNzEwMDM0NzE3WjAYMRYwFAYD VQQDEw02ODY1ZmQ0Ni1kMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLTUXmXGXbjJZXWLJXA6n7ce0y05KzbR1HVPtVbkp6yu42yfop1JTwJg22iG +sZF6ALiWDYPmkatwMVpFwGjhyQLGrYaMxZsa1tl7tYl5xn9Twoelcm2p5+c4Bve UKjwY7HgUxFDVz6qbGkCtX7A2hVECJEWbwZewwxqGGztn3oO/HDzykvv19Ery6aO 33fLfL7x4ZRWLbZihb2I2iKYFvHPcHyMugLD96ILDIwsriai2G/QCFFF7MPkaSPV 3REhwrL1sb+6I37C2Q2z9RWDxMIM0idPaS3/2IXmAIx1+kteuuyFc4zzp77Txp2Z +fdx93xs1YgV30loUqRmt5vpuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9C30uV m0FEoR0U7MehhOLNastxMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKTwGAIG1jO7bFynQLZGT626syh1EBe2DhK7Hek+tNcqAeyYD5Lo2N 909lWlYlq3b/nGe6EJxKuQ1r/+tDCv3nutSZqFZCMjH2PuL3qjPbV7icZXgjJkgN BSnMPFaM+5koHJol0nlrwUnxelinX6D8ZVf21tLOYAoyCOGdRJalxIs1h9IrrCWL jjsSXosdGQOaIbaa7zTdJNIPJMauemK86muwxOtK86au+P0YLCSRgO/Jygb/gNrU Ge+lF4vaJ4ejLcLvIoLXvpFRjjZhzuGv7471YWW299nAbXgp0NB9hAL8zb/qMw/k IOBSW09UlBk8ZM0LvqWbKdMRFQp8VBp5 -----END CERTIFICATE-----Generated at Thu Jul 3 08:06:09 2025 by rpki-client