$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft File: 05fnjG3TxpaFEzQVMschiNd1Z68.mft (raw, json) Hash identifier: d9bgAB0tPN7g/if2Pp5c/sp+PZotwMzsBwpU6rpAYts= Subject key identifier: 0D:6F:6F:73:1C:56:B7:CE:73:65:76:63:C8:3D:99:80:C4:CC:A0:C2 Authority key identifier: D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF Certificate issuer: /CN=A91D3CA7/serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Certificate serial: 02D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft Manifest number: 02CB Signing time: Thu 03 Jul 2025 01:46:43 +0000 Manifest this update: Thu 03 Jul 2025 01:46:42 +0000 Manifest next update: Thu 10 Jul 2025 01:46:42 +0000 Files and hashes: 1: 05fnjG3TxpaFEzQVMschiNd1Z68.crl (hash: ZIS5MChc38L1zlqBS7pWXUIgHSlBedz9LHzkG+qDDYI=) 2: DE183F1CF46611EC815F7283C4F9AE02.roa (hash: 9MdpJxrwdV0aU1f/zX8n/hykvTdPQn1kKe0kWScV57Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3CA7, serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Validity Not Before: Jul 3 01:46:42 2025 GMT Not After : Jul 10 01:46:42 2025 GMT Subject: CN=6865e102-706d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3e:8d:af:45:65:4f:dd:b4:32:54:99:ea:8f: 90:7b:9a:90:82:f3:ef:11:16:b5:67:bb:46:72:da: 61:35:d6:1a:0b:d5:dd:47:e1:5d:68:43:ba:31:b1: c1:87:a6:f0:f3:32:c6:cf:16:7a:19:1f:58:6c:15: 00:bc:38:bd:f6:0a:a3:75:7b:13:6b:1b:b3:37:43: d6:64:f8:55:ef:b7:0a:08:4a:9e:3f:7c:9b:11:92: fe:bb:76:2b:3f:8d:ec:2b:4e:6f:08:dc:fe:77:f5: b4:c5:3c:cc:fd:81:c5:85:6b:19:fd:73:2e:12:18: 3c:07:13:07:77:13:0e:eb:4c:e8:cf:71:e5:9f:1c: 39:88:12:30:f8:14:99:69:27:aa:1b:5d:e1:cb:1f: ec:1b:d2:f9:fd:30:3a:01:20:1d:28:f6:1a:87:a8: ba:d2:5a:4f:44:92:ce:05:c6:89:b4:1b:15:68:18: 96:cf:fd:06:91:3f:af:8f:ef:11:73:ab:4a:33:18: 9b:25:45:5e:24:6d:ce:57:f2:61:28:61:7a:54:8f: 84:58:d3:cc:c1:30:ff:72:68:d1:06:48:f8:ee:d6: f4:b8:dd:93:38:83:8d:74:f0:c2:87:9e:9d:a3:f9: ab:d7:6d:84:b8:e7:d3:82:17:af:2b:90:67:80:95: 55:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:6F:6F:73:1C:56:B7:CE:73:65:76:63:C8:3D:99:80:C4:CC:A0:C2 X509v3 Authority Key Identifier: keyid:D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:9d:23:54:83:ad:16:c9:59:33:65:ef:39:7a:af:d3:72:ca: e7:5f:a7:76:48:1b:0a:e2:22:00:f6:ce:b7:f0:ea:fa:06:72: 64:b8:fe:8a:97:c2:74:a1:35:21:87:54:df:fc:12:3e:14:f9: 18:8c:bd:e2:26:06:c8:c6:ef:3f:0a:61:4a:a1:ed:50:4f:86: 92:28:2d:d0:68:57:14:a0:5f:6c:5d:dd:ca:a1:19:af:1c:1c: 81:01:56:96:8c:05:11:dd:3a:bc:45:32:fa:ab:e6:0c:7d:b0: 48:a6:c2:16:0b:99:fa:29:e1:1b:3a:d5:de:83:7d:87:62:2e: 76:a4:30:ce:44:b0:80:9d:3d:e7:e8:a5:71:d7:4c:d3:ad:99: 27:f5:73:28:1a:52:78:c1:cc:15:69:15:bb:36:63:e6:20:79: c8:e6:72:33:f2:c6:aa:a6:42:26:f8:6c:e8:1a:4c:16:95:8e: c4:35:79:b7:29:7d:2c:86:c6:e9:12:fb:10:73:23:17:87:20: 15:97:83:4f:84:2b:8b:9c:74:35:0b:27:98:9b:88:78:70:20: a9:69:2c:68:07:2f:46:9f:a6:cf:59:9a:7a:b2:22:1b:60:75: cd:f3:f7:e0:a7:d5:76:55:1c:35:c7:ba:25:f7:3a:6e:5c:c9: 56:14:0f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNDQTcxMTAvBgNVBAUTKEQzOTdFNzhDNkREM0M2OTY4NTEzMzQxNTMyQzcyMTg4 RDc3NTY3QUYwHhcNMjUwNzAzMDE0NjQyWhcNMjUwNzEwMDE0NjQyWjAYMRYwFAYD VQQDEw02ODY1ZTEwMi03MDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1T6Nr0VlT920MlSZ6o+Qe5qQgvPvERa1Z7tGctphNdYaC9XdR+FdaEO6MbHB h6bw8zLGzxZ6GR9YbBUAvDi99gqjdXsTaxuzN0PWZPhV77cKCEqeP3ybEZL+u3Yr P43sK05vCNz+d/W0xTzM/YHFhWsZ/XMuEhg8BxMHdxMO60zoz3Hlnxw5iBIw+BSZ aSeqG13hyx/sG9L5/TA6ASAdKPYah6i60lpPRJLOBcaJtBsVaBiWz/0GkT+vj+8R c6tKMxibJUVeJG3OV/JhKGF6VI+EWNPMwTD/cmjRBkj47tb0uN2TOIONdPDCh56d o/mr122EuOfTghevK5BngJVVaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1vb3Mc VrfOc2V2Y8g9mYDEzKDCMB8GA1UdIwQYMBaAFNOX54xt08aWhRM0FTLHIYjXdWev MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0NBNy8zRjBFMEUwNkY0 NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhwYUZFelFWTXNjaGlOZDFa NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1Zm5qRzNUeHBhRkV6UVZNc2NoaU5kMVo2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0NBNy8zRjBFMEUwNkY0NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhw YUZFelFWTXNjaGlOZDFaNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhnSNUg60WyVkzZe85eq/TcsrnX6d2SBsK4iIA9s638Or6BnJkuP6K l8J0oTUhh1Tf/BI+FPkYjL3iJgbIxu8/CmFKoe1QT4aSKC3QaFcUoF9sXd3KoRmv HByBAVaWjAUR3Tq8RTL6q+YMfbBIpsIWC5n6KeEbOtXeg32HYi52pDDORLCAnT3n 6KVx10zTrZkn9XMoGlJ4wcwVaRW7NmPmIHnI5nIz8saqpkIm+GzoGkwWlY7ENXm3 KX0shsbpEvsQcyMXhyAVl4NPhCuLnHQ1CyeYm4h4cCCpaSxoBy9Gn6bPWZp6siIb YHXN8/fgp9V2VRw1x7ol9zpuXMlWFA8Z -----END CERTIFICATE-----Generated at Thu Jul 3 08:13:52 2025 by rpki-client