$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft File: A0a2NPJj9jaEI52232S7us33-KQ.mft (raw, json) Hash identifier: 1T8UzSghROA/9TajV6kWK6aYrhTFfiodZVTF45FJpzs= Subject key identifier: DE:05:2F:2E:9C:27:CA:90:F9:8A:C9:E7:5A:AE:D8:7F:BF:59:42:BB Authority key identifier: 03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 Certificate issuer: /CN=A91D7156/serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Certificate serial: 1113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft Manifest number: 0EF5 Signing time: Mon 30 Jun 2025 18:19:57 +0000 Manifest this update: Mon 30 Jun 2025 18:19:56 +0000 Manifest next update: Mon 07 Jul 2025 18:19:56 +0000 Files and hashes: 1: A0a2NPJj9jaEI52232S7us33-KQ.crl (hash: ZqN9IakweLA4vZKfDoxg9mJQQHETU0wk0heWX+I5CNk=) 2: 5CF5B0D0C0FC11EFBD950B83C4F9AE02.roa (hash: vN/9LHfh3j5ZLBr/LEueO3rNwhcG/GM6CvWEAGSk/ZI=) 3: 2D5961DC1EBC11F0B2B33B09C4F9AE02.roa (hash: LdebEkCRrhy63DdZXzPif/b/vfYplYHj6hgrohg5ZGY=) 4: 26DA1E16247411EA8E1A1178C4F9AE02.roa (hash: aychuQENH8MDXgDPyxOf+DmbnwVNOnjjWiqIFqUZGSQ=) 5: 161D8022A24611EF966F6286C4F9AE02.roa (hash: 2XDfE9tomi91M9QoC2KCz+TumizpJ0BJ//HIQVo+Dlw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4371 (0x1113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7156, serialNumber=0346B634F263F63684239DB6DF64BBBACDF7F8A4 Validity Not Before: Jun 30 18:19:56 2025 GMT Not After : Jul 7 18:19:56 2025 GMT Subject: CN=6862d54c-8101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ea:72:9c:11:cf:a0:e3:5d:c5:3a:21:4f:e8: ab:35:73:7c:72:83:b2:d4:7f:38:68:7d:51:ff:69: ea:67:34:6a:64:ee:48:fd:8d:ed:49:55:59:64:02: 03:ed:8e:2e:83:c3:a4:ee:21:f7:64:8a:46:1c:5d: 8f:4b:c0:4a:5d:d1:8e:b3:17:16:25:ab:28:f0:ea: 4e:ea:be:25:26:cd:95:8b:db:17:ba:63:54:00:08: dc:f9:38:40:ec:8c:93:9e:ff:28:4b:68:af:33:3a: 0d:a6:b9:e0:ce:ee:eb:09:c4:21:1d:4e:77:54:eb: de:dc:ac:88:f4:80:f4:fc:7c:38:c1:67:23:22:17: b8:97:14:7d:51:e7:d8:f9:0d:85:9b:be:1f:c7:86: 56:8d:c4:8e:b5:cc:d2:bf:82:78:a1:dc:f0:34:d8: 9f:f3:c3:6c:17:0c:26:af:55:b2:b4:bd:04:ab:49: 14:90:b2:4b:dc:59:e0:08:e3:67:84:a9:82:a1:42: a8:cf:e3:87:26:d4:a7:95:76:83:a2:2c:93:96:44: 49:b5:3d:74:cb:82:44:9e:e9:d4:93:be:e8:13:9c: 68:33:34:29:b1:5b:68:fb:1f:de:69:47:17:88:24: 8f:d0:32:8e:c5:23:9c:bb:35:e9:16:75:3e:54:db: 37:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:05:2F:2E:9C:27:CA:90:F9:8A:C9:E7:5A:AE:D8:7F:BF:59:42:BB X509v3 Authority Key Identifier: keyid:03:46:B6:34:F2:63:F6:36:84:23:9D:B6:DF:64:BB:BA:CD:F7:F8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0a2NPJj9jaEI52232S7us33-KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7156/B9F0844CF23D11E9AF842724C4F9AE02/A0a2NPJj9jaEI52232S7us33-KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:57:ea:f1:e9:9b:36:9b:0e:ba:4b:84:7a:03:43:91:6a:ac: 80:04:32:9c:05:a2:4e:83:c6:25:fb:96:7d:be:11:e7:01:ac: bf:30:c1:71:28:13:b7:2a:65:3f:e1:75:5c:4d:81:42:f7:7c: 0d:8f:f2:c0:9c:95:b1:5a:27:1e:16:c8:1b:91:6d:04:38:51: 49:b8:33:32:69:a5:5b:7d:66:93:71:73:16:ed:67:6d:24:5b: 9d:25:4a:e9:be:e7:c9:b5:0b:6f:9c:e8:eb:19:07:3e:41:dc: 2b:96:12:1d:46:f9:cb:98:00:d1:9e:b5:0e:34:5e:9e:30:70: 88:72:31:66:98:71:f4:fe:20:66:dd:b8:f9:7f:ba:95:da:19: fe:5e:be:96:b9:12:a3:9a:9f:81:ac:ba:a9:7f:69:60:77:1e: 13:74:10:0d:49:09:e7:45:38:23:47:57:61:82:d1:24:c3:c3: 3e:fb:b4:53:ce:a1:26:e5:34:7e:5d:53:96:ec:83:46:7e:63: 47:ed:93:62:a7:89:04:28:e5:b8:b0:38:c2:a3:d7:23:08:99: 1d:cb:79:66:a8:da:fe:0f:26:d4:0a:82:3b:fa:d2:8b:43:9c: 84:0b:15:45:d2:92:c7:be:a3:6b:3b:77:d7:15:9e:0d:6a:38: c2:dc:eb:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxNTYxMTAvBgNVBAUTKDAzNDZCNjM0RjI2M0Y2MzY4NDIzOURCNkRGNjRCQkJB Q0RGN0Y4QTQwHhcNMjUwNjMwMTgxOTU2WhcNMjUwNzA3MTgxOTU2WjAYMRYwFAYD VQQDEw02ODYyZDU0Yy04MTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OpynBHPoONdxTohT+irNXN8coOy1H84aH1R/2nqZzRqZO5I/Y3tSVVZZAID 7Y4ug8Ok7iH3ZIpGHF2PS8BKXdGOsxcWJaso8OpO6r4lJs2Vi9sXumNUAAjc+ThA 7IyTnv8oS2ivMzoNprngzu7rCcQhHU53VOve3KyI9ID0/Hw4wWcjIhe4lxR9UefY +Q2Fm74fx4ZWjcSOtczSv4J4odzwNNif88NsFwwmr1WytL0Eq0kUkLJL3FngCONn hKmCoUKoz+OHJtSnlXaDoiyTlkRJtT10y4JEnunUk77oE5xoMzQpsVto+x/eaUcX iCSP0DKOxSOcuzXpFnU+VNs3/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4FLy6c J8qQ+YrJ51qu2H+/WUK7MB8GA1UdIwQYMBaAFANGtjTyY/Y2hCOdtt9ku7rN9/ik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzE1Ni9COUYwODQ0Q0Yy M0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlqYUVJNTIyMzJTN3VzMzMt S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwYTJOUEpqOWphRUk1MjIzMlM3dXMzMy1LUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzE1Ni9COUYwODQ0Q0YyM0QxMUU5QUY4NDI3MjRDNEY5QUUwMi9BMGEyTlBKajlq YUVJNTIyMzJTN3VzMzMtS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9V+rx6Zs2mw66S4R6A0ORaqyABDKcBaJOg8Yl+5Z9vhHnAay/MMFx KBO3KmU/4XVcTYFC93wNj/LAnJWxWiceFsgbkW0EOFFJuDMyaaVbfWaTcXMW7Wdt JFudJUrpvufJtQtvnOjrGQc+QdwrlhIdRvnLmADRnrUONF6eMHCIcjFmmHH0/iBm 3bj5f7qV2hn+Xr6WuRKjmp+BrLqpf2lgdx4TdBANSQnnRTgjR1dhgtEkw8M++7RT zqEm5TR+XVOW7INGfmNH7ZNip4kEKOW4sDjCo9cjCJkdy3lmqNr+DybUCoI7+tKL Q5yECxVF0pLHvqNrO3fXFZ4NajjC3Ot3 -----END CERTIFICATE-----Generated at Tue Jul 1 17:09:05 2025 by rpki-client