$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft File: IAAAWsWhdEBL07_CmUMyPpYGJbk.mft (raw, json) Hash identifier: lp8mB/dJOE5qtZRBrBEb9m6YdDvlXnXq5vS6FDGYpyc= Subject key identifier: 63:E9:38:22:50:6D:EC:1D:2A:4E:67:6C:BE:22:45:2E:70:AC:A2:5C Authority key identifier: 20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 Certificate issuer: /CN=A91DA590/serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Certificate serial: 0358 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft Manifest number: 0351 Signing time: Thu 03 Jul 2025 01:21:21 +0000 Manifest this update: Thu 03 Jul 2025 01:21:21 +0000 Manifest next update: Thu 10 Jul 2025 01:21:21 +0000 Files and hashes: 1: IAAAWsWhdEBL07_CmUMyPpYGJbk.crl (hash: PzVeviFRFRWGMmAxhsS5DsCXwElqK+ayZuSEnE6jDoI=) 2: 09E46A74C07F11ECB0707F18C4F9AE02.roa (hash: fKQvUorpCo1+t6j4CpNdFsIqffZ/KOuD0j+HaDJA0Es=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 856 (0x358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA590, serialNumber=2000005AC5A174404BD3BFC29943323E960625B9 Validity Not Before: Jul 3 01:21:21 2025 GMT Not After : Jul 10 01:21:21 2025 GMT Subject: CN=6865db11-ffda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fb:f2:7a:bd:75:af:a1:30:e5:ac:b7:46:4b: dc:ab:18:bd:ef:16:88:2a:63:c6:7d:67:98:24:99: 52:b2:49:62:97:0b:a9:b5:3f:32:25:fe:a8:48:36: 44:94:c7:ab:e2:1a:fe:fc:6d:c5:a4:fc:c2:73:b5: 75:fe:54:6f:22:b3:77:5c:64:3c:be:9b:3f:4c:1f: f9:1a:29:7b:4b:cb:de:b2:98:b5:8a:03:8d:35:9d: f0:45:8f:03:2b:2d:02:d5:56:6c:dc:52:f8:f9:27: a3:5c:be:5f:2d:fd:1f:ff:98:10:8e:de:b5:0b:0a: f8:ee:08:5a:ab:bc:09:8f:95:8a:a6:cb:89:05:7c: 60:6a:43:85:eb:b1:8b:3d:e7:ec:e2:22:8a:26:a1: 8d:e9:9c:5f:fe:46:d1:b7:23:1b:c9:46:1e:0e:09: 00:c1:10:0c:13:a6:02:34:ce:63:2f:2b:49:35:a6: db:fd:af:37:03:a1:41:c2:2e:ce:e7:59:d7:1a:bd: 1b:61:d2:17:b4:56:ea:2b:09:af:fe:b0:40:f9:0f: 26:c4:da:8d:89:3c:94:c9:42:c9:f8:ae:04:32:37: f1:25:b9:a5:58:12:a1:60:08:80:16:48:27:2a:51: e8:ba:f4:1e:a1:86:94:e7:03:10:92:d5:6f:dd:10: ef:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E9:38:22:50:6D:EC:1D:2A:4E:67:6C:BE:22:45:2E:70:AC:A2:5C X509v3 Authority Key Identifier: keyid:20:00:00:5A:C5:A1:74:40:4B:D3:BF:C2:99:43:32:3E:96:06:25:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAAAWsWhdEBL07_CmUMyPpYGJbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA590/9510E86AC07B11EC987B847FC4F9AE02/IAAAWsWhdEBL07_CmUMyPpYGJbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:db:4f:84:eb:df:e8:f0:5a:5a:ce:56:b0:1f:50:e6:bf:f3: 77:ca:83:b5:ab:a0:73:cc:e5:3f:fe:f6:57:e9:ab:48:41:75: 9d:5d:13:a0:f8:8c:11:81:6d:92:9b:57:21:c8:38:93:83:53: 33:dc:99:68:81:eb:0f:e5:e5:c6:95:e4:ca:51:b5:88:f2:b8: f3:ca:ed:84:ce:46:bd:91:56:2f:8a:2a:09:94:23:bc:71:e9: c8:35:f1:66:08:2d:df:3e:9a:d5:99:49:41:c3:ac:99:7d:61: a4:6e:3a:cf:06:22:ae:53:b8:8d:d4:c0:f4:55:a1:84:2f:55: 1c:d1:e7:ed:35:5d:1e:c1:5d:cc:3e:57:71:0c:45:ee:26:a8: 75:7f:85:f5:37:39:96:c9:22:a8:7f:00:d7:8b:d3:ba:e9:f2: eb:bb:d9:34:4f:de:b7:d6:81:47:03:fc:b9:ec:d3:5e:1f:6f: 39:80:0c:69:5c:e7:c1:67:97:12:8c:c8:f5:7e:f7:9a:f6:ff: db:b1:c3:6b:36:fb:66:f3:7d:6a:5e:a6:b5:bb:65:3d:df:04: 0a:90:94:9d:14:de:0a:3d:20:09:b0:4e:42:d1:63:d7:4c:09: b2:f0:ea:18:15:a5:fc:85:ba:b5:cc:23:95:79:4b:e0:78:13: 34:f9:9b:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1OTAxMTAvBgNVBAUTKDIwMDAwMDVBQzVBMTc0NDA0QkQzQkZDMjk5NDMzMjNF OTYwNjI1QjkwHhcNMjUwNzAzMDEyMTIxWhcNMjUwNzEwMDEyMTIxWjAYMRYwFAYD VQQDEw02ODY1ZGIxMS1mZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vvyer11r6Ew5ay3Rkvcqxi97xaIKmPGfWeYJJlSsklilwuptT8yJf6oSDZE lMer4hr+/G3FpPzCc7V1/lRvIrN3XGQ8vps/TB/5Gil7S8vespi1igONNZ3wRY8D Ky0C1VZs3FL4+SejXL5fLf0f/5gQjt61Cwr47ghaq7wJj5WKpsuJBXxgakOF67GL Pefs4iKKJqGN6Zxf/kbRtyMbyUYeDgkAwRAME6YCNM5jLytJNabb/a83A6FBwi7O 51nXGr0bYdIXtFbqKwmv/rBA+Q8mxNqNiTyUyULJ+K4EMjfxJbmlWBKhYAiAFkgn KlHouvQeoYaU5wMQktVv3RDvRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPpOCJQ bewdKk5nbL4iRS5wrKJcMB8GA1UdIwQYMBaAFCAAAFrFoXRAS9O/wplDMj6WBiW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTU5MC85NTEwRTg2QUMw N0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRFQkwwN19DbVVNeVBwWUdK YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBQUFXc1doZEVCTDA3X0NtVU15UHBZR0piay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTU5MC85NTEwRTg2QUMwN0IxMUVDOTg3Qjg0N0ZDNEY5QUUwMi9JQUFBV3NXaGRF QkwwN19DbVVNeVBwWUdKYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo20+E69/o8FpazlawH1Dmv/N3yoO1q6BzzOU//vZX6atIQXWdXROg +IwRgW2Sm1chyDiTg1Mz3JlogesP5eXGleTKUbWI8rjzyu2Ezka9kVYviioJlCO8 cenINfFmCC3fPprVmUlBw6yZfWGkbjrPBiKuU7iN1MD0VaGEL1Uc0eftNV0ewV3M PldxDEXuJqh1f4X1NzmWySKofwDXi9O66fLru9k0T9631oFHA/y57NNeH285gAxp XOfBZ5cSjMj1fvea9v/bscNrNvtm831qXqa1u2U93wQKkJSdFN4KPSAJsE5C0WPX TAmy8OoYFaX8hbq1zCOVeUvgeBM0+Zuz -----END CERTIFICATE-----Generated at Fri Jul 4 06:57:40 2025 by rpki-client