$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: HljDj0GFehedbWCfMgc7WKx+7ukLo76juNHfGm1YMeo= Subject key identifier: 34:E0:E8:FD:F0:A3:19:33:10:BE:B9:CA:CB:63:F4:37:E9:83:08:D5 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0E58 Signing time: Wed 02 Jul 2025 18:04:32 +0000 Manifest this update: Wed 02 Jul 2025 18:04:32 +0000 Manifest next update: Wed 09 Jul 2025 18:04:32 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: sYBaMUqO32LJTmv13lE8Q/RyyVOEd/X2zawQyBxZbnU=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: vEfRiQNE3h/B834WLq9GOeXPVajCjfh3DLWpODG+4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Jul 2 18:04:32 2025 GMT Not After : Jul 9 18:04:32 2025 GMT Subject: CN=686574b0-38a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:be:d3:ac:4d:3d:e8:a3:dd:64:81:d3:e5:c5: 77:ac:a3:08:1c:69:39:4b:1a:d8:d4:b0:b0:65:6a: 16:86:4b:db:80:8e:96:1a:63:e0:01:05:b6:97:62: 3a:c7:4b:31:05:fc:a6:d7:d0:73:0c:32:28:6e:10: f3:4e:fc:5e:8c:2a:f2:83:26:21:23:fb:65:31:b9: 49:0d:60:a6:48:ee:ad:8b:39:16:03:a0:70:ca:c0: 05:2a:14:fb:d6:16:94:37:ca:4d:2a:3a:a2:2d:5b: f4:fa:7a:4f:54:b5:89:51:87:0b:72:cf:cb:a0:fa: 5f:8b:33:18:40:04:a2:a4:4c:0b:ef:f5:c7:94:ba: b5:f1:cc:c1:3e:23:90:de:8d:e1:62:ea:ee:87:8e: dc:6c:75:d2:2a:96:4a:f8:5c:1f:15:84:26:7b:8b: d1:c9:5a:67:6b:4e:08:eb:05:1b:e5:2f:db:e8:9a: 96:5a:08:bc:ba:3b:87:37:a3:56:6e:38:c4:27:86: f8:90:62:8f:48:a6:1a:14:c4:53:27:d5:82:06:3d: 17:e8:11:80:93:4e:a5:28:7a:88:b4:91:22:05:c3: 5d:8a:2e:41:42:f7:a3:dd:d4:54:96:9c:17:80:ec: 66:51:f3:6c:05:7d:13:dd:4b:cb:07:d9:71:09:57: 8b:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E0:E8:FD:F0:A3:19:33:10:BE:B9:CA:CB:63:F4:37:E9:83:08:D5 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:ff:16:da:38:91:50:d7:52:20:89:f8:06:9c:22:e3:1b:10: 24:a5:32:d1:a5:94:af:e4:7e:b1:4b:3b:72:dd:9c:d3:2b:9e: b8:00:ec:ee:1e:d3:78:ef:24:3d:05:45:a8:20:41:6c:3e:65: 34:8f:d1:83:f9:7d:ae:72:ba:db:78:4d:58:79:9a:0b:e8:c6: d9:76:bb:23:b5:16:12:2a:fa:da:6f:35:d2:d9:93:82:67:02: 8c:22:35:7c:c1:43:f2:85:b2:f1:e3:c3:38:42:54:3c:78:06: a0:18:ef:ae:38:47:eb:ee:dd:34:25:ca:19:26:82:34:6e:00: db:39:6f:8d:57:8a:b1:85:22:eb:6e:19:f0:ad:0b:bb:56:58: 40:de:4d:6d:b8:cf:fc:55:38:bb:41:2a:dd:d7:28:36:07:9b: d3:59:04:74:74:c6:00:c2:90:6a:9a:6e:22:d8:be:4f:6d:70: bc:dc:c1:fb:a0:69:c4:92:f9:40:93:6d:dc:2b:53:70:25:ea: 5c:92:e2:b2:44:3e:32:c5:43:5c:16:00:06:32:cf:b3:d0:59: 9b:35:c1:c8:55:3c:37:82:1b:47:40:7b:fd:df:98:9e:67:2b: 44:ad:a0:02:79:64:f8:d5:f3:60:1d:e4:67:39:3b:5c:bf:a7: 82:86:14:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzJDQzExMC8GA1UEBRMoREI3OEQ5RjkzNThFNTY3RDMwNkVFM0JEMUVBQzc0OEU5 NjA2QkY4RjAeFw0yNTA3MDIxODA0MzJaFw0yNTA3MDkxODA0MzJaMBgxFjAUBgNV BAMTDTY4NjU3NGIwLTM4YTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvvtOsTT3oo91kgdPlxXesowgcaTlLGtjUsLBlahaGS9uAjpYaY+ABBbaXYjrH SzEF/KbX0HMMMihuEPNO/F6MKvKDJiEj+2UxuUkNYKZI7q2LORYDoHDKwAUqFPvW FpQ3yk0qOqItW/T6ek9UtYlRhwtyz8ug+l+LMxhABKKkTAvv9ceUurXxzME+I5De jeFi6u6HjtxsddIqlkr4XB8VhCZ7i9HJWmdrTgjrBRvlL9vompZaCLy6O4c3o1Zu OMQnhviQYo9IphoUxFMn1YIGPRfoEYCTTqUoeoi0kSIFw12KLkFC96Pd1FSWnBeA 7GZR82wFfRPdS8sH2XEJV4sdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNODo/fCj GTMQvrnKy2P0N+mDCNUwHwYDVR0jBBgwFoAU23jZ+TWOVn0wbuO9Hqx0jpYGv48w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MkNDLzQzMzBBQzlDQjM2 RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjNqWi1UV09WbjB3YnVPOUhxeDBqcFlHdjQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 MkNDLzQzMzBBQzlDQjM2RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4w d2J1TzlIcXgwanBZR3Y0OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKT/Fto4kVDXUiCJ+AacIuMbECSlMtGllK/kfrFLO3LdnNMrnrgA7O4e 03jvJD0FRaggQWw+ZTSP0YP5fa5yutt4TVh5mgvoxtl2uyO1FhIq+tpvNdLZk4Jn AowiNXzBQ/KFsvHjwzhCVDx4BqAY7644R+vu3TQlyhkmgjRuANs5b41XirGFIutu GfCtC7tWWEDeTW24z/xVOLtBKt3XKDYHm9NZBHR0xgDCkGqabiLYvk9tcLzcwfug acSS+UCTbdwrU3Al6lyS4rJEPjLFQ1wWAAYyz7PQWZs1wchVPDeCG0dAe/3fmJ5n K0StoAJ5ZPjV82Ad5Gc5O1y/p4KGFNg= -----END CERTIFICATE-----Generated at Thu Jul 3 23:56:19 2025 by rpki-client