$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: mNtlczIWmt/NbLIbxVf6W64LlIkcugsRrAIK4g2mYZo= Subject key identifier: 91:FA:11:1A:27:F6:40:BE:85:57:14:17:AB:91:B7:AC:8A:C3:1B:D0 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 03B9 Signing time: Thu 03 Jul 2025 01:02:45 +0000 Manifest this update: Thu 03 Jul 2025 01:02:45 +0000 Manifest next update: Thu 10 Jul 2025 01:02:45 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: qwna5lNzTO1OhWi4FRQc+aNdFeUWOXR12kbReikIh8c=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Jul 3 01:02:45 2025 GMT Not After : Jul 10 01:02:45 2025 GMT Subject: CN=6865d6b5-e1b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ca:b1:54:db:d3:92:bc:72:1d:cd:09:9e:64: 5b:4c:29:d4:9a:a2:61:48:90:33:88:16:20:fe:9b: 3d:ab:4b:ea:8f:77:42:04:ee:fe:6a:09:0b:d4:d7: 80:ab:a0:f6:0c:30:9c:5b:56:c3:d3:83:70:bd:b4: e1:50:1d:07:0e:ba:e2:ed:20:f9:dd:bb:2a:a3:46: 2a:17:d8:12:93:b4:c8:16:dc:59:8b:c4:06:28:b4: 59:86:cc:af:6a:15:e7:b2:dc:9a:9f:ff:e0:bb:bc: 1d:99:2a:c0:41:01:4c:8b:7f:73:ca:ed:ee:d7:dc: 51:7a:4c:4e:1a:46:27:ea:95:16:53:dd:d9:0a:4c: 45:ef:5b:cd:dc:6a:1c:a3:79:fa:bf:b1:67:2b:68: 67:10:4d:d3:95:2d:ac:24:35:d2:68:2d:c2:eb:b2: cc:39:3f:f2:f0:4f:2e:dd:da:fa:ee:94:3f:28:41: 13:d8:dc:9f:71:a0:19:5c:b4:c7:7c:ce:a5:df:e9: a1:68:2c:87:4d:e2:b1:4d:3a:e5:dd:6b:49:1e:de: 5d:bc:2c:98:4f:b5:69:6d:0d:7b:e6:7e:dc:fd:a3: 92:f9:31:e3:0e:9d:8b:53:d2:fd:47:5a:09:31:19: ab:7b:43:35:d2:47:77:5f:28:16:4c:5d:ba:67:d6: 4a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FA:11:1A:27:F6:40:BE:85:57:14:17:AB:91:B7:AC:8A:C3:1B:D0 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:fc:89:1a:ee:65:3e:40:7a:2a:22:5e:6e:e4:81:a8:b6:cf: 56:a3:3f:f8:25:25:30:95:24:ce:05:99:40:46:c1:6f:2d:ed: 03:4f:9b:f0:64:ba:d7:92:04:c9:88:c6:37:bb:5c:45:21:3c: e4:16:35:e8:b2:bc:ec:d5:58:f0:c3:bf:c6:95:9f:a5:6f:ac: 4e:88:40:03:3b:77:b8:b3:5a:e6:3b:71:89:57:f5:22:f4:c6: de:69:31:43:00:16:2b:73:dd:54:82:5e:33:ee:60:0d:73:48: 40:b9:ed:5f:92:16:3e:8f:ee:08:83:f2:15:2b:b9:52:82:8a: ad:4e:95:63:6d:d5:9b:f5:d0:ee:70:7c:e5:90:c4:64:c5:e8: 0f:11:e9:38:0a:65:48:db:fd:6e:20:30:53:15:ba:8e:79:39: 39:55:b9:49:87:66:4e:b2:50:ab:1f:24:a8:d1:cb:5d:77:13: b0:b7:ee:5a:15:21:7f:5d:86:06:b4:df:2a:f4:43:ac:66:d7: 17:97:52:28:ef:b4:34:39:fd:66:b6:36:32:04:50:6f:c7:d4: 04:e6:c8:48:0b:e2:99:31:ca:65:5b:d5:e6:51:9d:33:1d:32: 57:19:20:28:c8:00:39:28:97:5b:a2:ca:a7:e6:75:71:d5:c2: 0d:ce:1f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwNzAzMDEwMjQ1WhcNMjUwNzEwMDEwMjQ1WjAYMRYwFAYD VQQDEw02ODY1ZDZiNS1lMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMqxVNvTkrxyHc0JnmRbTCnUmqJhSJAziBYg/ps9q0vqj3dCBO7+agkL1NeA q6D2DDCcW1bD04NwvbThUB0HDrri7SD53bsqo0YqF9gSk7TIFtxZi8QGKLRZhsyv ahXnstyan//gu7wdmSrAQQFMi39zyu3u19xRekxOGkYn6pUWU93ZCkxF71vN3Goc o3n6v7FnK2hnEE3TlS2sJDXSaC3C67LMOT/y8E8u3dr67pQ/KEET2NyfcaAZXLTH fM6l3+mhaCyHTeKxTTrl3WtJHt5dvCyYT7VpbQ175n7c/aOS+THjDp2LU9L9R1oJ MRmre0M10kd3XygWTF26Z9ZKYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH6ERon 9kC+hVcUF6uRt6yKwxvQMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg/Ika7mU+QHoqIl5u5IGots9Woz/4JSUwlSTOBZlARsFvLe0DT5vw ZLrXkgTJiMY3u1xFITzkFjXosrzs1Vjww7/GlZ+lb6xOiEADO3e4s1rmO3GJV/Ui 9MbeaTFDABYrc91Ugl4z7mANc0hAue1fkhY+j+4Ig/IVK7lSgoqtTpVjbdWb9dDu cHzlkMRkxegPEek4CmVI2/1uIDBTFbqOeTk5VblJh2ZOslCrHySo0ctddxOwt+5a FSF/XYYGtN8q9EOsZtcXl1Io77Q0Of1mtjYyBFBvx9QE5shIC+KZMcplW9XmUZ0z HTJXGSAoyAA5KJdbosqn5nVx1cINzh8Z -----END CERTIFICATE-----Generated at Thu Jul 3 05:14:21 2025 by rpki-client