$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: Pe//0TCFSmzqkzmESHRAZHkG86GDyb/Qd2mK/iXutvU= Subject key identifier: F7:A4:AC:A5:28:D3:3C:8B:C9:21:4E:78:81:5F:47:CF:35:2F:88:26 Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 0697 Signing time: Wed 02 Jul 2025 22:32:14 +0000 Manifest this update: Wed 02 Jul 2025 22:32:13 +0000 Manifest next update: Wed 09 Jul 2025 22:32:13 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: kJ1zdK0YmTe8gUoxQIZlqIHSFTr2LOpOvxP0wpZhoFQ=) 2: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: GbZWi9q6UX7D+oMHHFTd4plXypkHkfSoO+ds1DieM3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Jul 2 22:32:13 2025 GMT Not After : Jul 9 22:32:13 2025 GMT Subject: CN=6865b36e-8436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7b:72:2a:fd:56:c0:85:d1:0f:4c:7b:c6:47: 74:6c:c8:a1:65:55:35:bb:fb:9e:db:11:47:39:3c: 82:e8:06:96:0d:0b:d4:4a:39:30:8d:58:f3:d2:69: d8:f8:f9:44:fe:e7:a9:b1:4a:f9:ff:4b:37:b1:91: 50:29:2d:34:21:78:fe:08:52:07:f9:46:48:c2:d2: 32:7a:01:2a:5f:16:e0:1b:0b:dd:3c:af:cf:7f:fb: 79:b4:1c:0b:ef:5b:c5:70:fc:59:fd:3a:10:a1:b6: 1d:a6:9b:34:ff:5b:4a:85:4e:5d:a8:33:ac:d7:af: 7e:ed:f3:02:62:9a:e5:f5:bc:96:69:57:7b:59:e0: bb:de:d5:84:3b:57:4b:99:fa:58:9a:5f:c1:66:47: 11:fa:dd:2b:17:8a:65:b0:b1:fb:c0:7c:a3:17:53: 2a:ca:df:1a:7c:23:1d:14:fb:85:de:a1:a0:40:c6: 70:15:86:c6:50:b7:9a:23:af:b3:d9:a6:54:a0:7a: bc:7c:17:52:19:ce:3f:6a:fa:c1:ba:68:de:6b:8a: 41:30:2b:be:fb:76:51:eb:ae:2c:f0:0e:f3:af:fd: 15:f9:73:0b:d7:87:2c:41:50:51:b2:c9:24:0d:3b: 82:a5:79:d2:f8:26:ee:3f:44:ae:5d:9c:0c:06:25: 7a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A4:AC:A5:28:D3:3C:8B:C9:21:4E:78:81:5F:47:CF:35:2F:88:26 X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:5f:5b:28:81:05:6a:72:3d:5d:d4:19:c4:63:94:91:8d:24: 0f:79:9c:72:87:e2:65:c6:2e:f3:03:50:26:da:b5:c5:75:c1: eb:86:2c:3c:ce:d5:2d:d3:ec:82:e9:3a:02:77:59:87:68:94: 6a:01:01:a7:9f:2b:00:23:08:10:aa:93:0a:2f:0e:52:fa:40: 8d:63:36:5c:62:c8:55:1c:65:71:3f:7c:d9:9a:83:3b:1c:8b: 1b:1b:0b:13:5d:a4:39:d5:c1:ef:f4:9b:5d:ec:db:10:87:18: b2:15:f5:02:ea:46:19:f5:d6:5b:76:df:f3:45:0a:4f:48:c2: 18:d8:17:0f:07:f7:93:af:24:8b:02:9c:11:51:bb:6a:dc:7a: c2:4e:68:b3:db:e5:d9:be:fe:8e:71:81:2a:05:5e:fd:db:1e: 94:5e:13:0b:59:1f:8b:b2:86:53:cc:94:9c:f4:6e:8f:5b:a4: d4:a9:20:e9:a7:f8:31:d1:18:41:26:3a:0e:87:98:91:93:b0: d5:3e:d3:1d:25:11:eb:5b:1a:f2:0e:81:a4:e2:37:df:f9:d5: ba:5c:9b:d7:f7:ce:7c:10:39:f8:76:75:41:c1:c0:2c:d6:af: 41:71:ec:4c:27:e4:f2:7a:08:09:38:54:03:98:a3:d0:a2:31: fb:5b:a8:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwNzAyMjIzMjEzWhcNMjUwNzA5MjIzMjEzWjAYMRYwFAYD VQQDEw02ODY1YjM2ZS04NDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3tyKv1WwIXRD0x7xkd0bMihZVU1u/ue2xFHOTyC6AaWDQvUSjkwjVjz0mnY +PlE/uepsUr5/0s3sZFQKS00IXj+CFIH+UZIwtIyegEqXxbgGwvdPK/Pf/t5tBwL 71vFcPxZ/ToQobYdpps0/1tKhU5dqDOs169+7fMCYprl9byWaVd7WeC73tWEO1dL mfpYml/BZkcR+t0rF4plsLH7wHyjF1Mqyt8afCMdFPuF3qGgQMZwFYbGULeaI6+z 2aZUoHq8fBdSGc4/avrBumjea4pBMCu++3ZR664s8A7zr/0V+XML14csQVBRsskk DTuCpXnS+CbuP0SuXZwMBiV6jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPekrKUo 0zyLySFOeIFfR881L4gmMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKX1sogQVqcj1d1BnEY5SRjSQPeZxyh+Jlxi7zA1Am2rXFdcHrhiw8 ztUt0+yC6ToCd1mHaJRqAQGnnysAIwgQqpMKLw5S+kCNYzZcYshVHGVxP3zZmoM7 HIsbGwsTXaQ51cHv9Jtd7NsQhxiyFfUC6kYZ9dZbdt/zRQpPSMIY2BcPB/eTrySL ApwRUbtq3HrCTmiz2+XZvv6OcYEqBV792x6UXhMLWR+LsoZTzJSc9G6PW6TUqSDp p/gx0RhBJjoOh5iRk7DVPtMdJRHrWxryDoGk4jff+dW6XJvX9858EDn4dnVBwcAs 1q9BcexMJ+TyeggJOFQDmKPQojH7W6js -----END CERTIFICATE-----Generated at Thu Jul 3 15:05:50 2025 by rpki-client