$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: IIOLYZx0qNyE+ejo2xwnlRYoB1mZokMziKpgpaDnry8= Subject key identifier: D0:FA:A8:C8:F6:C0:91:27:AC:AA:B7:9B:F0:CA:0F:03:EE:5A:CF:63 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 07EE Signing time: Wed 02 Jul 2025 21:16:47 +0000 Manifest this update: Wed 02 Jul 2025 21:16:46 +0000 Manifest next update: Wed 09 Jul 2025 21:16:46 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: zn4IHZRbsRSPdngTSHaUa2RpFM5ABozPiCA0bGPxRb8=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Jul 2 21:16:46 2025 GMT Not After : Jul 9 21:16:46 2025 GMT Subject: CN=6865a1be-a021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e1:d8:ed:d9:cd:a0:4d:c2:2d:d8:ca:8d:0c: 7b:e8:2e:ae:e3:a5:a5:88:a9:e1:75:a8:f8:c0:92: d1:ca:bd:c9:ca:54:9d:54:af:6f:69:9f:e0:7d:9c: 20:9d:a3:d5:49:7f:36:d6:4e:f1:50:04:7d:56:bc: a5:b6:e1:19:66:64:2c:f3:18:c4:0d:22:2c:26:2f: e3:ef:d7:23:d6:44:23:f2:49:7f:91:d7:24:48:9c: 89:78:e8:d9:bc:db:b8:93:79:a8:39:78:87:22:84: 21:1e:61:f3:a0:90:1d:05:03:cc:eb:8d:16:bd:f4: b8:86:69:eb:07:27:5a:ee:83:e5:10:e1:a9:49:5e: 17:18:ec:3b:c9:9b:5c:f6:71:01:9e:68:b2:44:96: 0e:d6:5a:f8:db:97:15:72:32:c5:19:36:7b:bd:09: 69:47:40:6b:c1:2b:3b:64:65:ae:c7:df:ce:16:e6: 1c:a5:7e:94:87:68:c3:30:3d:f1:c5:26:85:e4:b0: 4a:7e:94:1f:8c:b9:39:4f:a8:b7:8d:1f:e1:f3:11: 14:3a:38:1a:44:f3:72:cb:d5:99:f8:11:e8:f4:c8: e3:41:a7:de:34:1d:ac:35:c4:a3:ac:85:81:f3:2e: 57:10:29:e3:2e:65:01:21:24:67:c5:74:e3:2a:ac: 3c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FA:A8:C8:F6:C0:91:27:AC:AA:B7:9B:F0:CA:0F:03:EE:5A:CF:63 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:53:4f:38:9e:ec:8c:f0:88:81:6a:cf:47:a4:a2:58:a3:42: 9a:2c:bf:82:b2:a8:29:ee:67:74:73:1e:a1:5e:06:bb:37:55: e9:4e:7f:e3:48:d0:b3:a7:da:6d:cb:5b:31:03:18:c3:55:77: 62:6d:e3:25:84:b6:f9:e3:c7:4a:4a:de:d2:2e:17:5f:d9:d0: d7:ec:9c:51:8f:3d:58:2e:f8:93:0f:d8:1a:97:57:95:a0:1c: 79:3e:0d:5b:33:ac:6a:29:99:d9:9e:f1:50:35:10:55:cc:59: 60:a7:2a:ad:80:d0:4d:c8:3e:d2:b2:24:00:ff:2f:c1:45:30: 6d:5c:91:0d:d0:cc:3c:f1:18:6c:bb:88:fb:41:af:19:71:bc: 68:25:2c:9f:69:7c:f5:23:44:28:06:b9:1e:8f:3f:57:4e:24: 98:46:0c:bb:86:43:93:2f:d3:8e:7d:c8:46:97:f7:10:01:7a: 8d:f7:8d:c9:e7:c7:86:b7:43:ad:19:05:54:e9:c4:a9:14:e6: 2a:50:48:1c:f9:c5:e9:10:2c:2d:9d:7d:bf:7b:e4:79:a5:4a: e7:c2:69:a8:12:46:a7:32:2f:8c:88:c2:ea:8e:9e:48:e2:36: 05:66:53:a0:28:1b:6f:33:2e:cf:a7:eb:c2:41:9d:d1:77:94: 4f:c7:2b:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwNzAyMjExNjQ2WhcNMjUwNzA5MjExNjQ2WjAYMRYwFAYD VQQDEw02ODY1YTFiZS1hMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eHY7dnNoE3CLdjKjQx76C6u46WliKnhdaj4wJLRyr3JylSdVK9vaZ/gfZwg naPVSX821k7xUAR9VryltuEZZmQs8xjEDSIsJi/j79cj1kQj8kl/kdckSJyJeOjZ vNu4k3moOXiHIoQhHmHzoJAdBQPM640WvfS4hmnrByda7oPlEOGpSV4XGOw7yZtc 9nEBnmiyRJYO1lr425cVcjLFGTZ7vQlpR0BrwSs7ZGWux9/OFuYcpX6Uh2jDMD3x xSaF5LBKfpQfjLk5T6i3jR/h8xEUOjgaRPNyy9WZ+BHo9MjjQafeNB2sNcSjrIWB 8y5XECnjLmUBISRnxXTjKqw8gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFND6qMj2 wJEnrKq3m/DKDwPuWs9jMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJU084nuyM8IiBas9HpKJYo0KaLL+Csqgp7md0cx6hXga7N1XpTn/j SNCzp9pty1sxAxjDVXdibeMlhLb548dKSt7SLhdf2dDX7JxRjz1YLviTD9gal1eV oBx5Pg1bM6xqKZnZnvFQNRBVzFlgpyqtgNBNyD7SsiQA/y/BRTBtXJEN0Mw88Rhs u4j7Qa8ZcbxoJSyfaXz1I0QoBrkejz9XTiSYRgy7hkOTL9OOfchGl/cQAXqN943J 58eGt0OtGQVU6cSpFOYqUEgc+cXpECwtnX2/e+R5pUrnwmmoEkanMi+MiMLqjp5I 4jYFZlOgKBtvMy7Pp+vCQZ3Rd5RPxysY -----END CERTIFICATE-----Generated at Thu Jul 3 23:09:57 2025 by rpki-client