$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: DdF3uJsByeq0svwQE3m4+qcXRjFSIHTDFUPU+58XNQc= Subject key identifier: A2:D2:1D:6F:42:E6:87:C2:1F:5D:7B:C7:00:A3:29:4C:FA:F0:A4:33 Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 07CD Signing time: Fri 04 Jul 2025 21:29:27 +0000 Manifest this update: Fri 04 Jul 2025 21:29:26 +0000 Manifest next update: Fri 11 Jul 2025 21:29:26 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: HHQq+1WBfM2WLVmohoTgAZzzwph9QQLVXkY1BUV782o=) 2: 353932A29B3111EEAFB64748C4F9AE02.roa (hash: 9uk0usjnIlSyDjwPsAY9kObLcGremCDO3bEAYN35jzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Jul 4 21:29:26 2025 GMT Not After : Jul 11 21:29:26 2025 GMT Subject: CN=686847b7-e77b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b4:0c:7f:9f:47:19:1d:59:38:24:23:46:da: f1:67:82:85:b6:32:a8:04:f6:90:5d:c6:bb:80:81: d2:b5:a9:53:4b:29:e5:2f:fd:14:cd:f1:b6:60:76: d9:8d:2c:e3:8d:30:3a:c5:47:7f:a2:3c:2a:25:69: 3c:70:c7:2d:2b:10:92:c5:d8:4a:71:b8:ca:ef:cc: ba:a1:c3:12:13:3e:19:a9:65:d2:fc:cd:d2:87:ad: ff:9f:f5:69:f5:93:7f:65:e0:8b:8b:f5:64:a9:1f: 9a:3a:e8:a3:4e:d3:a3:bf:70:51:d2:cd:30:e1:c5: b9:d0:be:37:dd:aa:4d:1b:c9:12:2c:bf:f8:a0:a1: f7:33:45:e3:67:76:24:dd:48:85:f9:4e:a6:7e:a5: 1c:d2:56:b8:1e:8f:9a:01:8b:16:9f:1b:83:ed:85: 84:77:e0:33:7b:4d:dc:d3:c0:a9:c0:3d:a1:dd:84: 52:e9:7a:d2:0b:ad:64:e2:8f:a5:8e:c2:57:63:66: de:df:54:6b:69:38:6c:e3:5c:82:f2:ca:7c:94:c0: ab:79:34:31:b7:9d:44:78:84:1a:12:6a:7a:ea:35: 7f:97:72:36:ff:bc:21:47:10:f9:ef:55:46:49:be: b1:03:09:08:62:e4:78:56:02:fc:22:9e:72:a0:4a: 42:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D2:1D:6F:42:E6:87:C2:1F:5D:7B:C7:00:A3:29:4C:FA:F0:A4:33 X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:14:92:11:14:53:d7:33:aa:04:b8:cd:01:7c:a4:11:97:dd: 26:a8:0a:ba:e4:91:0f:a6:e3:46:f9:ba:fb:35:db:98:29:cc: 6d:9c:e9:52:d5:03:f5:35:e6:dd:aa:33:c9:10:96:8f:74:c8: 06:ec:3b:0b:5f:56:47:81:a9:b1:3f:ba:3f:70:77:5a:3a:07: aa:1b:2b:9f:1a:63:0a:62:8b:11:9e:03:49:f1:a1:c4:ee:14: 23:d7:d2:6e:65:7f:53:9b:5a:8e:ec:8b:b5:cf:a7:07:a9:08: f0:cc:92:80:bf:6b:cf:4e:34:64:bf:6e:01:e7:70:de:01:5c: 38:26:f9:8e:c0:65:c6:8d:3b:d1:d2:bf:8f:89:25:70:7b:d0: 76:d5:69:f1:35:f8:7d:a1:99:0c:04:2b:cf:da:b5:c8:5b:de: 7e:66:89:0f:ff:d5:af:81:3e:b6:24:e9:91:4b:43:43:8f:79: 1c:73:73:65:dd:7f:cd:fb:55:4b:2a:eb:e5:c7:fb:b0:e8:d4: 39:0d:09:37:28:1a:ee:3d:a3:9b:45:9a:fe:74:42:82:b1:dd: 5d:9c:60:b5:26:13:fa:18:f9:fa:23:1b:f8:a0:64:ab:3e:c6: ba:e8:7b:83:8b:a0:97:09:2a:eb:c5:b9:97:99:9c:09:a4:b2: 7a:c5:19:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjUwNzA0MjEyOTI2WhcNMjUwNzExMjEyOTI2WjAYMRYwFAYD VQQDEw02ODY4NDdiNy1lNzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rQMf59HGR1ZOCQjRtrxZ4KFtjKoBPaQXca7gIHStalTSynlL/0UzfG2YHbZ jSzjjTA6xUd/ojwqJWk8cMctKxCSxdhKcbjK78y6ocMSEz4ZqWXS/M3Sh63/n/Vp 9ZN/ZeCLi/VkqR+aOuijTtOjv3BR0s0w4cW50L433apNG8kSLL/4oKH3M0XjZ3Yk 3UiF+U6mfqUc0la4Ho+aAYsWnxuD7YWEd+Aze03c08CpwD2h3YRS6XrSC61k4o+l jsJXY2be31RraThs41yC8sp8lMCreTQxt51EeIQaEmp66jV/l3I2/7whRxD571VG Sb6xAwkIYuR4VgL8Ip5yoEpC6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLSHW9C 5ofCH117xwCjKUz68KQzMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1FJIRFFPXM6oEuM0BfKQRl90mqAq65JEPpuNG+br7NduYKcxtnOlS 1QP1NebdqjPJEJaPdMgG7DsLX1ZHgamxP7o/cHdaOgeqGyufGmMKYosRngNJ8aHE 7hQj19JuZX9Tm1qO7Iu1z6cHqQjwzJKAv2vPTjRkv24B53DeAVw4JvmOwGXGjTvR 0r+PiSVwe9B21WnxNfh9oZkMBCvP2rXIW95+ZokP/9WvgT62JOmRS0NDj3kcc3Nl 3X/N+1VLKuvlx/uw6NQ5DQk3KBruPaObRZr+dEKCsd1dnGC1JhP6GPn6Ixv4oGSr Psa66HuDi6CXCSrrxbmXmZwJpLJ6xRka -----END CERTIFICATE-----Generated at Sun Jul 6 00:55:59 2025 by rpki-client