$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft File: anyGILARkTWk4pZxECAuepIQ_XY.mft (raw, json) Hash identifier: xslivabtya4Xt4oZiZ/cJ/TL9Z4pDviFmPrq2lZjAoE= Subject key identifier: D6:99:B2:84:3A:4D:48:EA:13:F1:58:94:7E:88:50:27:9D:9B:88:27 Authority key identifier: 6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 Certificate issuer: /CN=A91D2659/serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft Manifest number: 0CBA Signing time: Fri 04 Jul 2025 18:26:30 +0000 Manifest this update: Fri 04 Jul 2025 18:26:29 +0000 Manifest next update: Fri 11 Jul 2025 18:26:29 +0000 Files and hashes: 1: anyGILARkTWk4pZxECAuepIQ_XY.crl (hash: 2N33Lj1RHWZ3WLvpBGY1NGlGoUeDZPsnxtPe4lQrlYw=) 2: 3ED2E738F0C511E9AD7DCC11C4F9AE02.roa (hash: sDU0CzCwuoT0jsGzITGNqVvjEqL0/qHnbm4MS2vPAPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2659, serialNumber=6A7C8620B0119135A4E2967110202E7A9210FD76 Validity Not Before: Jul 4 18:26:29 2025 GMT Not After : Jul 11 18:26:29 2025 GMT Subject: CN=68681cd5-3280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a0:8e:fe:1d:c0:c7:14:f7:b7:48:ba:98:f2: c2:96:9f:bf:ca:62:be:a2:c5:1e:80:7e:23:f6:35: 94:8e:b8:6a:c9:19:e5:c2:a5:16:65:f3:66:35:43: a8:67:d3:d7:ea:a1:6a:20:61:a6:ff:42:17:19:6e: 54:33:a6:2d:18:10:d3:92:e4:41:2a:e9:ec:c7:1a: 00:c5:42:48:6e:0c:a0:90:6f:22:b1:aa:2c:cf:23: b1:c6:16:6c:d1:3a:6e:3e:e1:21:6a:1d:55:3b:04: fb:71:5c:b6:38:3a:f5:ed:86:10:ed:dd:11:a8:3a: 30:ba:b5:fe:a1:55:ec:84:64:58:ce:dc:64:bd:e5: 60:52:36:7b:13:8a:21:e0:c8:4c:ac:12:3f:fe:28: 45:e3:4a:a7:a8:fe:b4:1e:a1:44:ae:0e:90:f3:ec: b2:dc:cc:3a:92:3d:dd:1f:ef:db:f3:78:8c:5c:56: 41:98:b3:5e:c4:11:72:be:1b:1b:ab:5e:9c:58:2d: 20:85:ed:89:a3:f0:a6:32:ec:c5:94:d0:9f:76:48: 56:76:90:19:4e:36:3e:ed:54:0b:17:ce:f1:86:e4: 4e:08:a7:32:d5:8e:37:bd:79:34:b3:7a:03:20:12: 26:21:5b:a3:17:4d:2d:e5:04:62:eb:f7:0b:ef:30: 8c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:99:B2:84:3A:4D:48:EA:13:F1:58:94:7E:88:50:27:9D:9B:88:27 X509v3 Authority Key Identifier: keyid:6A:7C:86:20:B0:11:91:35:A4:E2:96:71:10:20:2E:7A:92:10:FD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/anyGILARkTWk4pZxECAuepIQ_XY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2659/C468E9C6F0C311E9926CCD0EC4F9AE02/anyGILARkTWk4pZxECAuepIQ_XY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c5:f8:cf:d4:6a:cf:6b:e1:8e:a9:7d:0a:f4:1f:f7:0d:59: 7d:cb:b1:b9:58:b9:5c:2a:38:f4:c5:ba:56:04:b1:af:0c:b3: 03:55:d2:2d:ac:ba:02:30:5e:2c:37:59:c7:73:de:01:fb:46: 48:f2:14:e3:ed:e7:57:9e:4b:1f:63:f8:a4:ae:e9:fb:ab:ea: 6f:a3:38:9c:60:e5:c2:d3:4f:90:28:f8:e1:07:85:61:0d:ad: ba:cb:ce:28:d4:94:81:d2:07:54:4e:67:9a:79:8d:7d:dd:08: da:1e:95:30:09:58:67:50:b3:0d:63:c8:7c:6f:ad:c6:6e:7b: 5f:4c:90:46:4c:24:d7:f8:2b:1a:ca:43:58:ef:d9:87:be:08: 82:9d:c5:09:57:65:0e:b5:e1:26:73:d9:71:d9:47:1e:dd:00: 41:62:1b:4e:d4:e1:56:66:64:5d:4b:0e:50:93:5e:2c:fb:d5: bd:9a:bf:44:40:42:05:7d:44:8f:50:32:e5:7b:77:d5:f9:73: 72:6d:f5:f6:89:24:76:e2:e4:4d:64:e7:46:0c:34:ad:76:08: 4e:23:fc:95:25:31:bc:ab:e9:8e:86:64:e4:cf:f7:44:bb:85: 97:5c:ac:98:c0:11:85:80:bf:13:52:54:ea:ef:19:61:76:c6: fe:e8:61:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2NTkxMTAvBgNVBAUTKDZBN0M4NjIwQjAxMTkxMzVBNEUyOTY3MTEwMjAyRTdB OTIxMEZENzYwHhcNMjUwNzA0MTgyNjI5WhcNMjUwNzExMTgyNjI5WjAYMRYwFAYD VQQDEw02ODY4MWNkNS0zMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6CO/h3AxxT3t0i6mPLClp+/ymK+osUegH4j9jWUjrhqyRnlwqUWZfNmNUOo Z9PX6qFqIGGm/0IXGW5UM6YtGBDTkuRBKunsxxoAxUJIbgygkG8isaoszyOxxhZs 0TpuPuEhah1VOwT7cVy2ODr17YYQ7d0RqDowurX+oVXshGRYztxkveVgUjZ7E4oh 4MhMrBI//ihF40qnqP60HqFErg6Q8+yy3Mw6kj3dH+/b83iMXFZBmLNexBFyvhsb q16cWC0ghe2Jo/CmMuzFlNCfdkhWdpAZTjY+7VQLF87xhuROCKcy1Y43vXk0s3oD IBImIVujF00t5QRi6/cL7zCMowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaZsoQ6 TUjqE/FYlH6IUCedm4gnMB8GA1UdIwQYMBaAFGp8hiCwEZE1pOKWcRAgLnqSEP12 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjY1OS9DNDY4RTlDNkYw QzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtUV2s0cFp4RUNBdWVwSVFf WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FueUdJTEFSa1RXazRwWnhFQ0F1ZXBJUV9YWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjY1OS9DNDY4RTlDNkYwQzMxMUU5OTI2Q0NEMEVDNEY5QUUwMi9hbnlHSUxBUmtU V2s0cFp4RUNBdWVwSVFfWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7xfjP1GrPa+GOqX0K9B/3DVl9y7G5WLlcKjj0xbpWBLGvDLMDVdIt rLoCMF4sN1nHc94B+0ZI8hTj7edXnksfY/ikrun7q+pvozicYOXC00+QKPjhB4Vh Da26y84o1JSB0gdUTmeaeY193QjaHpUwCVhnULMNY8h8b63GbntfTJBGTCTX+Csa ykNY79mHvgiCncUJV2UOteEmc9lx2Uce3QBBYhtO1OFWZmRdSw5Qk14s+9W9mr9E QEIFfUSPUDLle3fV+XNybfX2iSR24uRNZOdGDDStdghOI/yVJTG8q+mOhmTkz/dE u4WXXKyYwBGFgL8TUlTq7xlhdsb+6GGc -----END CERTIFICATE-----Generated at Fri Jul 4 22:07:16 2025 by rpki-client