$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: BMnSkjhbvc0nNA1sIsqRQUlOQKh1nIerxYY2Nxrtr2A= Subject key identifier: EC:B4:A5:9A:22:EF:F3:1D:6D:E0:C7:BD:FE:F7:AF:DB:14:45:3C:61 Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 086D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 085C Signing time: Wed 02 Jul 2025 20:59:00 +0000 Manifest this update: Wed 02 Jul 2025 20:58:59 +0000 Manifest next update: Wed 09 Jul 2025 20:58:59 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: xq8+o5XhQPDb7zwN0SyUeFXxre97qCNRNKVu5iwlSyk=) 2: C286BE40C4C711EDAFA9AF17C4F9AE02.roa (hash: wm0PciNiC4cbLFQcb4SHn/OMRIvkGpQeYyT8rS6bdpU=) 3: 032132A0E0D011ECAF88A30DC4F9AE02.roa (hash: Oqme3hgS+ErgCZrhOMJFY6E0bgLfBlO2jysH8V+HitY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:58:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2157 (0x86d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Jul 2 20:58:59 2025 GMT Not After : Jul 9 20:58:59 2025 GMT Subject: CN=68659d94-7267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a6:83:1e:e5:9c:78:98:0e:28:b6:32:ef:88: 5d:60:ff:cd:bb:a2:ff:6f:8b:1a:8e:77:9c:12:8a: df:55:76:98:fe:cf:c9:2d:55:c0:33:ae:70:68:01: ef:cd:89:5e:d6:c5:42:71:f3:7c:76:e3:25:0c:c9: a4:69:01:d6:d1:43:7a:d7:1b:13:eb:fa:7e:27:03: 6f:48:17:1a:e0:b5:45:2f:3e:0c:d1:ff:5c:57:54: 9d:31:8a:9c:07:58:5a:08:13:3e:72:ec:5f:ca:cb: 1b:46:ea:d7:ed:ed:82:c8:49:91:ca:59:67:f5:f2: 85:31:a1:e3:21:6a:f0:4e:d5:12:3a:e2:36:90:b7: 7f:8a:1b:55:70:a7:02:a7:71:11:f3:87:9d:28:af: ab:fc:08:b0:b2:c3:42:d6:c5:23:9c:0b:d5:d8:46: fc:83:bc:c6:d9:5e:5e:5d:75:83:77:68:6c:10:ca: 03:d1:8d:49:d9:80:14:d5:08:94:59:74:d8:0c:11: 2a:c7:9f:74:8d:b6:7d:fd:8d:16:a8:17:09:fa:27: 87:c0:19:07:05:27:5c:38:32:39:d2:e8:ef:12:5a: 80:a5:f5:a3:27:61:ee:d8:ff:42:9f:04:ac:a2:51: b5:79:27:e6:86:d2:23:f4:12:2f:b4:fc:8f:a6:4b: 02:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B4:A5:9A:22:EF:F3:1D:6D:E0:C7:BD:FE:F7:AF:DB:14:45:3C:61 X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:43:d8:4f:67:04:96:17:05:36:5e:f7:0e:6a:68:fc:fe:f3: f4:6d:00:18:54:07:97:0b:1e:a7:e2:fe:ff:06:98:af:8a:71: 0f:9f:f0:6a:20:a5:40:fe:06:67:89:96:66:dd:4e:6b:a5:9a: e2:3d:45:20:b3:8c:99:67:c3:b7:73:00:05:f7:38:14:3f:21: d0:02:c7:22:a0:56:f7:1b:a5:5a:03:40:69:59:3d:81:6b:6b: d6:71:d1:c1:d4:11:b8:c2:21:85:70:55:a2:92:6c:6c:b5:22: 34:0b:56:5e:ee:31:db:e1:fb:03:90:b1:33:cc:43:26:4f:cb: 1a:b2:68:1f:aa:83:39:8f:e8:c6:f9:9a:e1:92:2a:cc:fc:e8: 3d:62:17:f6:34:dc:f1:e3:7e:76:32:29:e2:d6:0e:cd:e6:6b: 11:72:79:73:d4:2a:12:f5:c0:85:b1:1d:8d:4b:14:61:56:34: 9e:d5:00:23:c0:c4:82:3a:bf:3f:30:fd:5c:4f:ec:01:51:e6: 8a:bb:33:45:d2:31:cb:5f:67:6e:3b:30:89:ce:f3:32:5c:42: a9:0e:e8:2b:61:ab:f5:41:45:d9:31:17:2b:2e:74:8d:12:d1: 72:0d:23:ec:0f:50:46:40:f7:63:55:d9:7c:98:7e:d9:48:39: d9:ae:b9:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwNzAyMjA1ODU5WhcNMjUwNzA5MjA1ODU5WjAYMRYwFAYD VQQDEw02ODY1OWQ5NC03MjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6aDHuWceJgOKLYy74hdYP/Nu6L/b4sajnecEorfVXaY/s/JLVXAM65waAHv zYle1sVCcfN8duMlDMmkaQHW0UN61xsT6/p+JwNvSBca4LVFLz4M0f9cV1SdMYqc B1haCBM+cuxfyssbRurX7e2CyEmRylln9fKFMaHjIWrwTtUSOuI2kLd/ihtVcKcC p3ER84edKK+r/AiwssNC1sUjnAvV2Eb8g7zG2V5eXXWDd2hsEMoD0Y1J2YAU1QiU WXTYDBEqx590jbZ9/Y0WqBcJ+ieHwBkHBSdcODI50ujvElqApfWjJ2Hu2P9CnwSs olG1eSfmhtIj9BIvtPyPpksCXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOy0pZoi 7/MdbeDHvf73r9sURTxhMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoQ9hPZwSWFwU2XvcOamj8/vP0bQAYVAeXCx6n4v7/BpivinEPn/Bq IKVA/gZniZZm3U5rpZriPUUgs4yZZ8O3cwAF9zgUPyHQAscioFb3G6VaA0BpWT2B a2vWcdHB1BG4wiGFcFWikmxstSI0C1Ze7jHb4fsDkLEzzEMmT8sasmgfqoM5j+jG +ZrhkirM/Og9Yhf2NNzx4352Mini1g7N5msRcnlz1CoS9cCFsR2NSxRhVjSe1QAj wMSCOr8/MP1cT+wBUeaKuzNF0jHLX2duOzCJzvMyXEKpDugrYav1QUXZMRcrLnSN EtFyDSPsD1BGQPdjVdl8mH7ZSDnZrrk2 -----END CERTIFICATE-----Generated at Fri Jul 4 00:28:39 2025 by rpki-client