$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft File: i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft (raw, json) Hash identifier: Kw4jhthDw2QiAhdlLHxn/0gi2egmeWn8Mz2lblrgAHs= Subject key identifier: 1E:57:0C:BE:4C:1A:2F:DF:FA:AE:AA:4B:66:C0:0C:C0:26:40:EA:9D Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 0780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft Manifest number: 0773 Signing time: Mon 30 Jun 2025 21:50:13 +0000 Manifest this update: Mon 30 Jun 2025 21:50:13 +0000 Manifest next update: Mon 07 Jul 2025 21:50:13 +0000 Files and hashes: 1: i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl (hash: g45YVR6xyOX7koMpDajbdBoKtDgQnkewvN97T0klFPc=) 2: D933655E23B511EBA7BDD50FC4F9AE02.roa (hash: 8WBXx40LoIwub2WeF3ccrcQG4fq4wKZ7IVrDku/6ikQ=) 3: BD764EAE1D5B11EBAB008D19C4F9AE02.roa (hash: faL6wM9GsLMo9++JSpEkUSiwl7+QPEuIOOkR0NTNngU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: Jun 30 21:50:13 2025 GMT Not After : Jul 7 21:50:13 2025 GMT Subject: CN=68630695-a67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:64:a1:28:59:28:de:ba:62:d6:6e:8a:76:36: a3:ba:e0:6c:d7:64:3c:43:3c:09:13:98:d5:2d:40: b3:2f:f7:27:e7:41:cb:26:b8:42:c2:68:3b:d6:8d: f6:cf:82:ba:37:b6:95:fb:5c:07:f9:2b:ac:b0:5a: a9:85:04:bc:45:72:a2:4f:c0:65:0f:15:24:5e:61: fd:c8:cf:92:a6:41:2e:01:39:f0:91:a4:86:5b:b0: 3d:ac:b3:dc:ab:b0:b3:ff:5a:b6:ad:d6:64:ec:4c: 10:3e:d2:40:75:65:35:f3:61:8e:d0:6e:12:b6:e9: ea:6a:95:68:3d:f5:15:01:17:ef:0b:54:e5:33:d3: c1:f1:bb:da:cf:dc:f6:60:79:b4:13:47:72:3c:ea: 4d:29:6a:13:45:e6:d0:7f:f2:97:f8:da:ff:3c:c1: f3:60:9e:1b:af:41:9e:86:94:0b:c4:e3:61:83:b2: 49:7c:cd:72:bc:46:cf:a8:8f:5e:0a:17:86:16:e5: c1:05:30:13:c3:04:45:83:20:09:24:68:7f:a4:bd: 43:fc:a9:bd:ef:f5:b2:f5:b8:53:c1:5b:01:9a:3b: b5:5c:1f:ad:9c:6d:76:88:34:c2:a5:3e:ec:05:00: cd:05:4c:74:f0:45:42:27:74:d8:6c:1f:91:8d:bd: 3d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:57:0C:BE:4C:1A:2F:DF:FA:AE:AA:4B:66:C0:0C:C0:26:40:EA:9D X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:93:ea:25:7f:26:5a:4e:71:fe:5b:1f:ce:cd:90:84:07:18: 62:28:62:ee:17:e1:8f:da:82:49:43:75:2c:cb:01:d4:27:4a: 71:c0:cb:e5:dd:e8:27:d3:fe:cb:03:d2:9d:74:7a:7c:2f:d3: 67:8c:8a:8c:7f:5c:68:14:1c:de:d4:db:2d:c0:17:6e:33:67: 28:29:e2:bf:98:42:2b:62:d4:00:b8:04:71:ee:2c:75:7f:0d: 4c:21:8f:4d:51:db:44:c5:c1:b8:74:93:c6:67:b0:74:da:45: 58:e2:49:4a:49:a0:db:ca:22:94:ec:25:a3:50:1d:50:8e:21: a2:cb:b0:d4:bb:bd:c0:f4:f4:a4:d7:60:a0:45:08:fa:48:d8: a0:a5:b1:ea:1f:0f:0e:e4:54:b8:3b:ee:4c:0d:66:6e:0c:44: 3c:47:5e:54:2f:71:30:0e:b2:0a:ce:0b:44:21:f1:84:97:af: ef:49:34:3f:47:23:04:e2:82:1f:c3:40:e2:a0:d2:f0:90:8e: 10:b7:e1:8c:06:d1:26:33:50:b1:4b:59:1a:06:42:96:4d:2d: 3e:f9:a2:f8:c7:ee:dd:15:19:81:4a:02:4f:9a:66:3a:71:f8: d8:51:8c:38:f1:96:1a:94:7a:fa:75:60:d0:cf:7f:a0:cd:ce: 74:3a:f2:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjUwNjMwMjE1MDEzWhcNMjUwNzA3MjE1MDEzWjAYMRYwFAYD VQQDEw02ODYzMDY5NS1hNjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWShKFko3rpi1m6KdjajuuBs12Q8QzwJE5jVLUCzL/cn50HLJrhCwmg71o32 z4K6N7aV+1wH+SussFqphQS8RXKiT8BlDxUkXmH9yM+SpkEuATnwkaSGW7A9rLPc q7Cz/1q2rdZk7EwQPtJAdWU182GO0G4StunqapVoPfUVARfvC1TlM9PB8bvaz9z2 YHm0E0dyPOpNKWoTRebQf/KX+Nr/PMHzYJ4br0GehpQLxONhg7JJfM1yvEbPqI9e CheGFuXBBTATwwRFgyAJJGh/pL1D/Km97/Wy9bhTwVsBmju1XB+tnG12iDTCpT7s BQDNBUx08EVCJ3TYbB+Rjb09twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5XDL5M Gi/f+q6qS2bADMAmQOqdMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzdFNC8zNkZCMTE0NDFENUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1Jz TXdZd1JxY2w2cmhXUXJuQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4k+olfyZaTnH+Wx/OzZCEBxhiKGLuF+GP2oJJQ3UsywHUJ0pxwMvl 3egn0/7LA9KddHp8L9NnjIqMf1xoFBze1NstwBduM2coKeK/mEIrYtQAuARx7ix1 fw1MIY9NUdtExcG4dJPGZ7B02kVY4klKSaDbyiKU7CWjUB1QjiGiy7DUu73A9PSk 12CgRQj6SNigpbHqHw8O5FS4O+5MDWZuDEQ8R15UL3EwDrIKzgtEIfGEl6/vSTQ/ RyME4oIfw0DioNLwkI4Qt+GMBtEmM1CxS1kaBkKWTS0++aL4x+7dFRmBSgJPmmY6 cfjYUYw48ZYalHr6dWDQz3+gzc50OvIe -----END CERTIFICATE-----Generated at Wed Jul 2 20:00:51 2025 by rpki-client