$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft File: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft (raw, json) Hash identifier: tlRynHYOErAEcMvYzj9erj++hA/YV6poa8LnDS4P91g= Subject key identifier: ED:73:F3:84:0E:B6:D0:BC:24:6F:67:8D:62:D1:27:91:67:F7:39:A7 Authority key identifier: B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 Certificate issuer: /CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft Manifest number: 0170 Signing time: Thu 03 Jul 2025 03:58:22 +0000 Manifest this update: Thu 03 Jul 2025 03:58:22 +0000 Manifest next update: Thu 10 Jul 2025 03:58:22 +0000 Files and hashes: 1: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl (hash: iWPDaXnZ5rU5s6bcaDiOMdFu1IWl6OvBGmIgsOIZil4=) 2: E7B472CE2DC811EEBADF8E61C4F9AE02.roa (hash: 54qHC7QVMBwoC0O3cMcEci4Yy+Xl8hxRZfIa8v1MHj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5320, serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Validity Not Before: Jul 3 03:58:22 2025 GMT Not After : Jul 10 03:58:22 2025 GMT Subject: CN=6865ffde-37da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:47:fe:55:78:6b:2a:37:64:6f:56:b8:7a: b5:c0:72:1e:d1:ed:5b:3e:75:04:e2:e5:fd:c3:f8: d2:59:4b:db:cf:f2:3c:6a:29:cf:cf:b1:f9:31:a0: 70:e9:6d:d3:9e:bf:c4:e5:38:4b:9a:78:a0:4f:3b: 2b:47:ba:fc:e5:c2:5e:d1:a7:17:34:c4:74:40:6c: d5:4d:38:c6:7d:e8:23:82:ac:3b:05:14:07:bc:24: f7:fc:dd:1b:09:82:4f:fc:69:6d:4a:bc:b4:9a:21: d1:a0:8d:31:d9:46:86:5a:d3:1b:d3:05:da:3c:a2: 94:76:d9:e7:51:d6:f3:6d:2f:ce:3a:f2:25:27:cb: f5:89:a4:9a:9c:48:96:91:72:f5:a6:58:43:7b:d0: 9e:11:c3:05:d2:4a:8c:1a:93:7b:83:f2:4f:7c:d6: 4f:94:b0:33:56:cd:e8:32:23:db:87:48:fc:b0:6a: bc:d9:c8:39:bc:0d:82:dc:b8:a0:74:eb:9e:88:47: ec:b1:50:29:5c:f5:c5:94:a6:02:73:0f:8a:2b:76: 60:43:ef:8e:08:dd:e4:e6:d9:c4:82:52:ce:b8:40: 0f:67:ca:1a:6f:c7:40:86:d1:cd:ba:36:87:76:ec: 2f:e3:ce:c7:f7:f9:0d:0e:75:44:6f:f9:db:e9:b8: 84:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:73:F3:84:0E:B6:D0:BC:24:6F:67:8D:62:D1:27:91:67:F7:39:A7 X509v3 Authority Key Identifier: keyid:B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:98:44:d2:34:fb:5a:91:b2:fa:c5:c6:c5:b4:e4:2a:dc:82: 1e:94:30:8e:0d:fb:e4:f6:e8:99:4a:6d:75:bc:18:ba:42:76: ee:73:ba:2c:81:6b:e0:53:b5:ce:00:a5:a2:31:a7:46:08:a7: 94:fe:4d:6b:38:ff:e9:94:7f:dd:a0:ba:78:41:2a:be:a8:8a: 4e:e7:3e:09:59:6d:ce:5e:d2:86:3d:4a:f1:8c:11:61:0a:e1: ab:03:8d:f7:53:2f:49:b7:1e:b4:82:08:44:a1:ae:95:e3:e2: c6:7a:16:3a:83:8f:de:a2:ba:aa:6a:62:31:3c:95:63:71:e1: b1:bb:e2:21:54:0d:f7:c6:46:5b:5d:ad:9c:68:56:1f:e8:5b: aa:5a:18:4c:c8:7e:43:fe:79:8f:0a:cb:27:0d:da:9f:9f:bc: d4:54:f7:4e:6a:6b:61:80:3d:e7:e5:3f:0e:da:1a:05:4e:74: 05:b7:56:fd:e5:b9:f2:f3:d6:41:0a:15:d5:18:3a:2f:17:b2: 46:3c:41:f6:c4:1d:ef:9b:33:49:cc:45:0a:ee:82:d3:45:3a: 93:38:2f:66:78:96:be:14:b0:f0:86:67:b0:87:99:d7:8f:86: 20:8b:bc:00:bc:9f:16:74:32:05:ac:8a:99:2a:c7:fd:55:a0: 83:96:fd:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzMjAxMTAvBgNVBAUTKEIxOTFBRTIwNjgxNDZGOUM3MzlCRUE2Q0Q1OUU3OTJD NEY4OTdCNzYwHhcNMjUwNzAzMDM1ODIyWhcNMjUwNzEwMDM1ODIyWjAYMRYwFAYD VQQDEw02ODY1ZmZkZS0zN2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBJH/lV4ayo3ZG9WuHq1wHIe0e1bPnUE4uX9w/jSWUvbz/I8ainPz7H5MaBw 6W3Tnr/E5ThLmnigTzsrR7r85cJe0acXNMR0QGzVTTjGfegjgqw7BRQHvCT3/N0b CYJP/GltSry0miHRoI0x2UaGWtMb0wXaPKKUdtnnUdbzbS/OOvIlJ8v1iaSanEiW kXL1plhDe9CeEcMF0kqMGpN7g/JPfNZPlLAzVs3oMiPbh0j8sGq82cg5vA2C3Lig dOueiEfssVApXPXFlKYCcw+KK3ZgQ++OCN3k5tnEglLOuEAPZ8oab8dAhtHNujaH duwv487H9/kNDnVEb/nb6biExQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1z84QO ttC8JG9njWLRJ5Fn9zmnMB8GA1UdIwQYMBaAFLGRriBoFG+cc5vqbNWeeSxPiXt2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTMyMC83OENDRkU0RTJE QzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1eHptLXBzMVo1NUxFLUpl M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NaR3VJR2dVYjV4em0tcHMxWjU1TEUtSmUzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTMyMC83OENDRkU0RTJEQzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1 eHptLXBzMVo1NUxFLUplM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcmETSNPtakbL6xcbFtOQq3IIelDCODfvk9uiZSm11vBi6Qnbuc7os gWvgU7XOAKWiMadGCKeU/k1rOP/plH/doLp4QSq+qIpO5z4JWW3OXtKGPUrxjBFh CuGrA433Uy9Jtx60gghEoa6V4+LGehY6g4/eorqqamIxPJVjceGxu+IhVA33xkZb Xa2caFYf6FuqWhhMyH5D/nmPCssnDdqfn7zUVPdOamthgD3n5T8O2hoFTnQFt1b9 5bny89ZBChXVGDovF7JGPEH2xB3vmzNJzEUK7oLTRTqTOC9meJa+FLDwhmewh5nX j4Ygi7wAvJ8WdDIFrIqZKsf9VaCDlv1l -----END CERTIFICATE-----Generated at Thu Jul 3 07:02:10 2025 by rpki-client