$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: UsNbG0O25Orj7ILqFvY9+/4f4F6YStDstUp0353ry+s= Subject key identifier: 6C:70:A3:53:FB:09:3B:D3:FC:AF:F4:01:C2:07:24:BE:DC:65:0A:E4 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 05D6 Signing time: Tue 01 Jul 2025 00:02:34 +0000 Manifest this update: Tue 01 Jul 2025 00:02:34 +0000 Manifest next update: Tue 08 Jul 2025 00:02:34 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: RUKkLG6mA1U/RFKowmhOETCjr10hsBpNuQOgr+MG1P8=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 9l/idt3LJislssNxfPBsqgjifz4U+6PzxoXpIp44G34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Jul 1 00:02:34 2025 GMT Not After : Jul 8 00:02:34 2025 GMT Subject: CN=6863259a-18c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d5:f7:10:b3:f9:19:66:a0:17:a0:a1:1e:50: a2:48:6b:d1:9c:55:08:69:33:a6:ea:0e:eb:14:9f: a8:95:91:e4:65:51:49:8f:0f:ea:be:50:77:85:ec: ba:ce:b5:31:73:8c:a6:a2:33:3f:0c:b8:89:56:f1: 63:08:cc:04:e4:1d:0f:40:31:94:b1:06:2f:c8:4d: d9:65:11:c1:6a:35:99:12:29:1f:97:70:e1:e0:e6: 7f:54:95:ea:25:53:4c:63:0e:49:cf:fb:ab:e8:a0: 1b:27:0c:5b:5f:bb:a3:59:51:ac:32:da:b3:f9:35: 5c:16:f1:b2:e1:f4:47:52:12:26:33:03:a1:26:7f: 21:93:7c:74:88:4c:e6:5a:be:ad:a2:ab:c0:cb:2d: 94:c3:1f:84:fe:6c:1d:67:fa:fc:c6:e9:8c:24:7f: 28:73:0e:84:dc:27:6d:b6:29:80:64:f9:27:07:02: e5:29:1c:76:82:dc:00:36:69:e7:bf:1e:db:26:fb: df:35:df:26:c4:db:e4:f3:28:b9:8b:9e:81:bd:b3: ea:44:19:03:49:6d:4e:50:c3:a3:8d:05:d8:b3:a6: 5c:f2:3a:00:8c:a2:58:a6:a5:b9:2b:83:4e:bd:4a: 0f:8b:19:5f:61:f8:41:fc:91:fa:07:3d:da:73:ea: 30:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:70:A3:53:FB:09:3B:D3:FC:AF:F4:01:C2:07:24:BE:DC:65:0A:E4 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ce:fd:60:61:20:d0:0a:1e:c9:c7:12:a1:58:4d:3b:78:53: 6f:3f:83:f0:8f:32:fe:05:4c:53:9b:c1:ec:66:2f:b3:da:b1: e2:32:a1:c4:b4:fd:69:9a:43:9a:49:f4:77:ba:e0:71:0c:93: 3c:7a:c4:85:ec:5a:74:cb:58:3c:57:33:4d:47:1d:de:db:c8: b9:89:56:10:57:e2:10:36:71:a8:6a:0d:a4:84:73:30:72:fe: fa:6d:aa:5b:2e:a4:6b:0d:5e:8a:e4:18:43:6a:bb:94:75:92: c2:be:45:74:3a:91:7f:94:1e:d9:89:3c:07:46:7e:15:2f:85: b3:12:9c:12:3b:aa:05:52:bd:c9:e2:4f:27:7a:e0:d0:4b:f2: 5c:61:55:82:bd:ff:7e:b8:dd:95:d0:29:30:36:bc:e7:7b:91: 41:3e:1a:dd:00:aa:58:03:80:30:aa:1d:06:03:b2:40:1c:fd: 14:c7:56:4a:7d:f4:7c:d3:bc:0a:26:50:8d:78:f1:4e:d4:a5: 39:3f:4b:90:13:7c:5c:70:95:23:74:5a:ff:d5:9c:7e:9e:a7: c7:1a:dc:8e:6a:ae:b9:b4:83:df:b8:a1:72:86:4e:1a:8f:b9: b7:09:55:11:40:4a:ca:a1:72:79:6a:21:05:bc:fc:38:eb:b9: cf:d1:48:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUwNzAxMDAwMjM0WhcNMjUwNzA4MDAwMjM0WjAYMRYwFAYD VQQDEw02ODYzMjU5YS0xOGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9X3ELP5GWagF6ChHlCiSGvRnFUIaTOm6g7rFJ+olZHkZVFJjw/qvlB3hey6 zrUxc4ymojM/DLiJVvFjCMwE5B0PQDGUsQYvyE3ZZRHBajWZEikfl3Dh4OZ/VJXq JVNMYw5Jz/ur6KAbJwxbX7ujWVGsMtqz+TVcFvGy4fRHUhImMwOhJn8hk3x0iEzm Wr6toqvAyy2Uwx+E/mwdZ/r8xumMJH8ocw6E3CdttimAZPknBwLlKRx2gtwANmnn vx7bJvvfNd8mxNvk8yi5i56BvbPqRBkDSW1OUMOjjQXYs6Zc8joAjKJYpqW5K4NO vUoPixlfYfhB/JH6Bz3ac+owTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxwo1P7 CTvT/K/0AcIHJL7cZQrkMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUzv1gYSDQCh7JxxKhWE07eFNvP4PwjzL+BUxTm8HsZi+z2rHiMqHE tP1pmkOaSfR3uuBxDJM8esSF7Fp0y1g8VzNNRx3e28i5iVYQV+IQNnGoag2khHMw cv76bapbLqRrDV6K5BhDaruUdZLCvkV0OpF/lB7ZiTwHRn4VL4WzEpwSO6oFUr3J 4k8neuDQS/JcYVWCvf9+uN2V0CkwNrzne5FBPhrdAKpYA4Awqh0GA7JAHP0Ux1ZK ffR807wKJlCNePFO1KU5P0uQE3xccJUjdFr/1Zx+nqfHGtyOaq65tIPfuKFyhk4a j7m3CVURQErKoXJ5aiEFvPw467nP0Ui8 -----END CERTIFICATE-----Generated at Tue Jul 1 12:32:05 2025 by rpki-client