$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: ngN9WjT18QrwsDt+/7UfjEJINSV+6MJop7pe1RHo8ls= Subject key identifier: E0:E8:43:BF:A1:3A:52:66:77:6C:8D:66:66:F1:1B:39:63:C7:9A:07 Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 0152 Signing time: Sun 29 Jun 2025 03:16:50 +0000 Manifest this update: Sun 29 Jun 2025 03:16:49 +0000 Manifest next update: Sun 06 Jul 2025 03:16:49 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: k/wHXmnGtv0OZfNrfhvF0tqvqTPWDOoRfh+LXiwJ+ys=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: jAD/7lg+++i+O4y1RlntCcfLaxTpo5Pzuq6OqBjjXF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Jun 29 03:16:49 2025 GMT Not After : Jul 6 03:16:49 2025 GMT Subject: CN=6860b021-dab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:63:ec:b8:97:b4:68:8d:51:22:4a:d4:9f: 32:7a:64:d8:e5:72:ae:cb:53:32:2f:2a:f9:9c:87: e6:b9:da:87:cf:cd:f8:40:1d:86:bd:1a:ee:e2:81: 28:46:f4:65:2b:8a:f7:5a:cf:4c:9c:86:06:9a:9f: 35:c5:17:79:da:b5:8c:f4:25:ab:5a:7b:57:12:af: e7:39:2d:05:29:47:ba:22:15:ac:31:fb:9b:7a:c7: e7:c3:6e:ba:12:f9:80:03:d1:ff:f4:21:3e:1f:0f: 52:b5:64:97:59:d6:2b:ce:61:0d:a4:41:14:4f:fa: fc:75:d1:f7:49:ca:53:75:29:2b:28:30:a6:bc:52: 0c:0f:c0:4a:f5:ef:67:a9:30:3a:e6:54:23:04:68: 58:da:55:d6:ea:62:b0:63:78:82:a8:eb:7f:69:d7: 95:a8:d1:4d:b7:9a:35:66:a7:de:83:10:b1:b6:37: 45:93:0b:97:5b:4d:b4:dd:f0:03:48:97:7e:0f:5b: a3:99:ad:19:73:73:f8:6b:26:a0:ed:7e:c3:f5:3c: d4:9d:e7:f9:92:c1:d9:31:68:2c:d9:f7:c3:c5:7a: eb:56:d4:d4:96:ec:8b:82:d6:a5:0e:87:d5:62:71: 10:4a:39:f1:6b:b7:3c:22:83:13:bb:ba:9e:a5:cd: c7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E8:43:BF:A1:3A:52:66:77:6C:8D:66:66:F1:1B:39:63:C7:9A:07 X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:16:17:4b:f4:d4:ef:cb:26:08:0b:91:45:2a:7e:b2:4b:9c: ef:bb:6b:91:73:ad:4b:46:31:62:af:3f:0c:2e:17:5d:3a:ea: e2:ce:a1:8b:18:ec:3c:8a:c4:b6:dd:ba:f5:b8:08:fd:4a:80: e1:9c:60:27:c3:38:52:91:b0:b3:c4:60:5c:48:18:16:91:a3: c9:46:9b:8b:d5:9a:92:00:c9:5a:d1:5e:31:9c:c7:d1:14:c1: 21:79:94:6e:60:60:52:1e:b5:85:1f:36:e2:f9:71:36:ce:56: 53:f9:2e:0e:54:5d:1d:fa:b2:1b:fc:65:78:0a:95:51:89:9d: 78:59:d3:a9:ce:9c:f2:53:b2:05:1f:ad:19:a3:e9:a7:13:6f: be:e4:97:5a:16:a1:8b:c7:36:43:87:3e:05:5a:1e:ff:27:63: cc:e8:5e:0c:10:b0:cd:d2:a8:27:33:71:27:0c:10:ee:f8:00: 38:51:24:2e:1e:02:89:77:88:2b:03:72:68:54:27:f4:77:c2: ac:5b:b3:c8:0b:fc:89:7b:fd:91:8d:95:4c:f6:b4:32:71:b8: 5e:38:3a:d6:51:fc:20:fe:6b:cf:4e:a5:84:9e:b8:49:0a:ad: cc:23:78:60:bc:bf:dd:e9:21:84:4b:b1:1b:6e:61:b9:13:3b: 50:5e:95:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjUwNjI5MDMxNjQ5WhcNMjUwNzA2MDMxNjQ5WjAYMRYwFAYD VQQDEw02ODYwYjAyMS1kYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUdj7LiXtGiNUSJK1J8yemTY5XKuy1MyLyr5nIfmudqHz834QB2GvRru4oEo RvRlK4r3Ws9MnIYGmp81xRd52rWM9CWrWntXEq/nOS0FKUe6IhWsMfubesfnw266 EvmAA9H/9CE+Hw9StWSXWdYrzmENpEEUT/r8ddH3ScpTdSkrKDCmvFIMD8BK9e9n qTA65lQjBGhY2lXW6mKwY3iCqOt/adeVqNFNt5o1ZqfegxCxtjdFkwuXW0203fAD SJd+D1ujma0Zc3P4ayag7X7D9TzUnef5ksHZMWgs2ffDxXrrVtTUluyLgtalDofV YnEQSjnxa7c8IoMTu7qepc3HJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODoQ7+h OlJmd2yNZmbxGzljx5oHMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPFhdL9NTvyyYIC5FFKn6yS5zvu2uRc61LRjFirz8MLhddOurizqGL GOw8isS23br1uAj9SoDhnGAnwzhSkbCzxGBcSBgWkaPJRpuL1ZqSAMla0V4xnMfR FMEheZRuYGBSHrWFHzbi+XE2zlZT+S4OVF0d+rIb/GV4CpVRiZ14WdOpzpzyU7IF H60Zo+mnE2++5JdaFqGLxzZDhz4FWh7/J2PM6F4MELDN0qgnM3EnDBDu+AA4USQu HgKJd4grA3JoVCf0d8KsW7PIC/yJe/2RjZVM9rQycbheODrWUfwg/mvPTqWEnrhJ Cq3MI3hgvL/d6SGES7EbbmG5EztQXpUC -----END CERTIFICATE-----Generated at Sun Jun 29 13:43:32 2025 by rpki-client