$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: TDzh7tTICP/AckE8gCfwbMEH0vnrjDJdkf1BIQJljIU= Subject key identifier: CF:CB:5E:81:7E:39:18:ED:F7:8B:51:44:E4:26:FD:42:1E:D9:48:AE Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 045B Signing time: Thu 03 Jul 2025 00:30:42 +0000 Manifest this update: Thu 03 Jul 2025 00:30:41 +0000 Manifest next update: Thu 10 Jul 2025 00:30:41 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: WzgNwXEZRCr9HgAHd+fk2Q+sJKJ7Pk3qi+mFs/WYnJE=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Jul 3 00:30:41 2025 GMT Not After : Jul 10 00:30:41 2025 GMT Subject: CN=6865cf31-1040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:22:06:73:98:2b:52:c4:53:95:ac:8a:76:cd: ec:a1:08:1d:4a:96:8c:d0:41:fe:0c:f9:17:bf:bf: 7e:24:7f:1d:cc:78:2b:27:81:04:9a:97:60:c0:64: e3:a0:d1:e6:6c:39:4f:4e:05:fe:12:0a:12:4c:7e: 14:fa:7a:f8:47:4a:88:1e:40:f2:f8:8a:42:34:a1: 5e:ae:c2:c7:7d:23:f7:a8:15:27:36:e9:30:61:cf: fa:2f:d4:7f:4b:22:60:55:4f:24:fa:89:05:f5:4b: 38:4b:6d:68:03:06:57:f6:dd:fc:4a:81:78:eb:7e: 7c:3c:4f:1b:32:4c:43:a4:5e:6a:2d:2e:fb:d8:f2: 25:7e:a9:68:e1:a3:fa:24:b8:e3:9d:d3:f0:1a:df: 50:c8:4a:55:fb:93:c1:07:1a:6a:34:42:be:3c:93: 0f:c6:e2:fd:56:cd:70:89:e3:fd:ee:9b:9d:cf:99: 45:14:dc:1a:e1:3c:59:e9:87:33:91:22:22:da:31: 72:78:cd:f3:9a:5f:13:bf:b4:a5:cf:4c:55:3b:55: d0:93:56:77:7f:bd:2b:3e:c8:56:58:a3:0c:64:75: 0d:a8:87:d0:15:51:51:ae:20:7c:16:a5:05:63:9a: 57:7a:5e:35:d2:94:b6:04:b2:21:71:4f:0d:ae:ee: e7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CB:5E:81:7E:39:18:ED:F7:8B:51:44:E4:26:FD:42:1E:D9:48:AE X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:d3:b5:6c:14:6f:f8:f7:66:69:47:0e:09:15:ac:95:99:ef: ce:7c:f8:60:20:9c:f1:99:c2:e1:12:01:46:b4:87:2a:45:22: c3:1f:41:0a:a9:a2:47:73:7f:46:35:98:8c:cc:9b:94:b8:a8: aa:61:b3:d4:13:cb:48:76:48:50:14:06:57:b1:b0:a7:ad:5e: ac:7a:c4:6d:ee:6e:9c:04:c4:ae:83:18:25:3a:e5:6a:7c:87: 79:b9:ee:0c:df:ec:f5:dd:10:75:60:8c:f1:6f:4c:43:21:13: fa:09:9f:a1:85:81:d5:f7:07:e2:6e:ff:d7:97:7c:44:ff:99: 18:32:d0:4e:c6:15:77:05:44:86:45:08:4d:1a:ad:4d:fc:cc: 5f:53:54:be:b0:0c:db:3a:b8:5c:3c:94:99:b1:46:b4:94:a8: 19:96:fc:1c:0c:88:62:fd:6c:a5:34:3f:68:57:a9:83:72:14: 68:54:3a:1d:0d:8d:02:c1:cb:14:32:c5:69:4f:5c:0e:0c:5d: 5c:92:6d:2e:a0:d9:e1:d7:99:1e:9c:37:57:59:92:83:8c:15: 09:eb:7e:9a:a0:5d:0c:c4:57:ba:85:1f:91:92:15:45:9a:e4: a6:b4:49:45:83:2f:54:2e:bc:f2:10:5d:a2:ac:06:00:48:eb: 30:52:89:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwNzAzMDAzMDQxWhcNMjUwNzEwMDAzMDQxWjAYMRYwFAYD VQQDEw02ODY1Y2YzMS0xMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCIGc5grUsRTlayKds3soQgdSpaM0EH+DPkXv79+JH8dzHgrJ4EEmpdgwGTj oNHmbDlPTgX+EgoSTH4U+nr4R0qIHkDy+IpCNKFersLHfSP3qBUnNukwYc/6L9R/ SyJgVU8k+okF9Us4S21oAwZX9t38SoF46358PE8bMkxDpF5qLS772PIlfqlo4aP6 JLjjndPwGt9QyEpV+5PBBxpqNEK+PJMPxuL9Vs1wieP97pudz5lFFNwa4TxZ6Ycz kSIi2jFyeM3zml8Tv7Slz0xVO1XQk1Z3f70rPshWWKMMZHUNqIfQFVFRriB8FqUF Y5pXel410pS2BLIhcU8Nru7nHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/LXoF+ ORjt94tRROQm/UIe2UiuMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA507VsFG/492ZpRw4JFayVme/OfPhgIJzxmcLhEgFGtIcqRSLDH0EK qaJHc39GNZiMzJuUuKiqYbPUE8tIdkhQFAZXsbCnrV6sesRt7m6cBMSugxglOuVq fId5ue4M3+z13RB1YIzxb0xDIRP6CZ+hhYHV9wfibv/Xl3xE/5kYMtBOxhV3BUSG RQhNGq1N/MxfU1S+sAzbOrhcPJSZsUa0lKgZlvwcDIhi/WylND9oV6mDchRoVDod DY0CwcsUMsVpT1wODF1ckm0uoNnh15kenDdXWZKDjBUJ636aoF0MxFe6hR+RkhVF muSmtElFgy9ULrzyEF2irAYASOswUok3 -----END CERTIFICATE-----Generated at Thu Jul 3 11:02:28 2025 by rpki-client