$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: 2JFLsgTlPVlU/4hFDLx3qx+xUeuH0AgZ1TUrzl5GJeA= Subject key identifier: 9A:C0:3D:D9:52:8E:34:59:A8:65:44:65:C0:D6:F7:45:3B:9F:0E:94 Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 07F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 07EB Signing time: Wed 02 Jul 2025 21:14:37 +0000 Manifest this update: Wed 02 Jul 2025 21:14:36 +0000 Manifest next update: Wed 09 Jul 2025 21:14:36 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: QrEl5+j4zjNnZDPcDAX1VN2wfO7huZkxYqGjL/kAa6Q=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: IS2j0d/zVkxwnqe+1txywwwV0QyYZmwCTkV8FQIqSXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2033 (0x7f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Jul 2 21:14:36 2025 GMT Not After : Jul 9 21:14:36 2025 GMT Subject: CN=6865a13d-40bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:28:4d:00:7e:70:0f:ac:3f:df:90:9d:87: a2:e6:8e:d4:fb:fa:e8:ef:fd:f7:8d:19:ab:6b:dc: fc:91:31:73:92:69:51:e2:9f:58:7f:01:80:89:83: b0:54:b7:d4:1d:6f:16:6f:21:50:d4:1d:48:75:a1: c3:66:17:f1:14:c0:51:7a:34:67:77:2d:e7:3a:62: 1d:64:fa:65:e0:cf:11:34:b1:7b:38:61:86:5e:a2: 0e:f8:6b:4b:34:b6:61:2a:ab:ce:ee:8a:7e:be:66: f0:c4:5d:ab:72:26:ee:3b:02:8e:29:67:ad:87:79: 7f:f4:56:9a:f5:77:6d:63:6c:71:f4:91:9f:37:23: 0e:9e:d3:cc:bb:24:83:87:6e:03:e0:a2:eb:b1:c7: e0:92:ff:12:a5:4a:79:53:65:58:82:4d:86:7e:b4: d6:1e:a9:b4:c0:97:25:19:d8:55:10:ea:6a:4b:db: d2:e8:56:26:e2:7d:4a:8e:ae:39:48:f5:e6:5e:5b: f7:83:59:b9:b3:e7:e0:37:6e:c8:29:59:2a:65:4c: 4e:fb:f0:19:7b:aa:1f:1f:40:02:51:49:44:80:3d: 36:d9:59:9b:dd:e6:a5:8b:a8:30:e1:4e:13:a6:51: 12:68:6d:ff:23:bb:c5:6e:e7:16:d1:85:84:05:5a: 1c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C0:3D:D9:52:8E:34:59:A8:65:44:65:C0:D6:F7:45:3B:9F:0E:94 X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:56:33:b5:da:35:6d:48:b4:72:fd:c7:7f:31:3a:cb:66:e7: 74:92:4f:de:7e:a9:28:18:ce:1c:81:47:6e:a7:36:0c:d3:aa: f5:3b:d4:dc:de:96:ee:d7:92:ca:46:2d:ce:ac:80:ae:52:72: b0:d7:eb:b4:75:bc:bf:d8:ce:54:a2:c6:35:8d:6f:c7:4b:e1: 4f:27:71:3b:fa:21:48:e3:99:76:36:a4:95:1e:9f:a9:f5:bb: 2e:82:3f:07:8a:92:d6:63:bf:43:30:92:4c:8a:7e:6c:9b:6e: 6d:3c:1f:c7:8b:38:70:3a:20:6e:dc:96:a7:df:1c:c8:36:4b: 2d:fc:94:92:04:76:fe:20:e3:6a:e0:7d:5b:76:b2:44:03:98: 38:0b:cd:63:0e:8e:7a:3f:45:09:96:b1:39:54:1f:84:9d:c8: a9:03:03:d1:c9:05:a5:04:de:c7:0a:cc:90:70:11:ed:27:04: 54:01:a8:0a:7e:07:ec:6e:98:f0:bb:87:fc:70:b5:f1:00:08: ee:67:4f:1e:78:3a:8b:f0:c1:fb:cb:77:d5:a7:87:85:94:c6: 34:3c:67:a7:04:0e:72:94:63:5d:c2:7d:17:73:c3:cf:2b:fb: 25:fa:13:27:d1:b1:72:54:da:90:3a:48:be:91:fc:c7:ec:44: 95:72:44:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUwNzAyMjExNDM2WhcNMjUwNzA5MjExNDM2WjAYMRYwFAYD VQQDEw02ODY1YTEzZC00MGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w4oTQB+cA+sP9+QnYei5o7U+/ro7/33jRmra9z8kTFzkmlR4p9YfwGAiYOw VLfUHW8WbyFQ1B1IdaHDZhfxFMBRejRndy3nOmIdZPpl4M8RNLF7OGGGXqIO+GtL NLZhKqvO7op+vmbwxF2rcibuOwKOKWeth3l/9Faa9XdtY2xx9JGfNyMOntPMuySD h24D4KLrscfgkv8SpUp5U2VYgk2GfrTWHqm0wJclGdhVEOpqS9vS6FYm4n1Kjq45 SPXmXlv3g1m5s+fgN27IKVkqZUxO+/AZe6ofH0ACUUlEgD022Vmb3eali6gw4U4T plESaG3/I7vFbucW0YWEBVoc/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrAPdlS jjRZqGVEZcDW90U7nw6UMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3VjO12jVtSLRy/cd/MTrLZud0kk/efqkoGM4cgUdupzYM06r1O9Tc 3pbu15LKRi3OrICuUnKw1+u0dby/2M5UosY1jW/HS+FPJ3E7+iFI45l2NqSVHp+p 9bsugj8HipLWY79DMJJMin5sm25tPB/HizhwOiBu3Jan3xzINkst/JSSBHb+IONq 4H1bdrJEA5g4C81jDo56P0UJlrE5VB+EncipAwPRyQWlBN7HCsyQcBHtJwRUAagK fgfsbpjwu4f8cLXxAAjuZ08eeDqL8MH7y3fVp4eFlMY0PGenBA5ylGNdwn0Xc8PP K/sl+hMn0bFyVNqQOki+kfzH7ESVckS9 -----END CERTIFICATE-----Generated at Thu Jul 3 09:28:08 2025 by rpki-client