$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft File: _edM0WVtTsrysOa7wxNdTrhAeCs.mft (raw, json) Hash identifier: UYmRESuQFkP35nbHBW1PV9gBw9fJr/6FVYkt/5rV4ms= Subject key identifier: 09:26:59:ED:38:E8:ED:2B:0A:73:22:F7:F6:69:FF:D8:64:A2:90:E1 Authority key identifier: FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B Certificate issuer: /CN=A91DA898/serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft Manifest number: 56 Signing time: Wed 02 Jul 2025 14:38:14 +0000 Manifest this update: Wed 02 Jul 2025 14:38:14 +0000 Manifest next update: Wed 09 Jul 2025 14:38:14 +0000 Files and hashes: 1: _edM0WVtTsrysOa7wxNdTrhAeCs.crl (hash: NtQvErY4qdIeDAjxj6UoWO8bFqr3fQjIWGxjlVqefeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA898, serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Validity Not Before: Jul 2 14:38:14 2025 GMT Not After : Jul 9 14:38:14 2025 GMT Subject: CN=68654456-dfb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:13:5b:10:0b:db:83:7a:79:68:32:7a:c3:90: 2b:fc:4f:04:02:a1:a5:36:33:5d:f8:4e:12:e0:08: ad:bd:37:12:8b:3b:54:b5:d6:93:f6:8a:fc:ac:5f: b2:33:1e:d8:63:47:e4:eb:8d:cf:24:3e:da:6a:1a: 82:c8:4c:e8:a6:31:3e:e6:37:48:5b:13:12:57:33: 44:2d:79:d8:de:9b:3b:63:4b:6c:8d:71:46:7a:e3: e0:8a:17:d1:b4:59:99:45:f4:ef:5c:8c:e8:1a:91: c1:16:b3:47:90:58:ab:0b:cc:90:7f:31:57:9d:d9: 1f:2c:d4:5f:22:30:01:a5:91:0b:7b:97:32:70:80: b3:60:87:86:8c:31:e0:55:80:89:0e:cd:63:98:b4: c2:28:3f:47:b6:84:5a:a1:eb:31:a2:8b:ea:e1:7d: 05:05:a4:92:8f:14:be:90:e0:52:97:f4:38:6c:38: 9f:30:7e:77:ee:49:ee:67:2b:f2:4e:d7:d5:0d:68: ea:10:16:71:a1:c4:a4:de:c6:b6:93:03:e8:3b:3f: 30:a1:fe:d0:9e:4e:50:df:08:fd:6d:31:9e:0b:81: 7e:dc:b4:ff:df:f0:88:bb:97:95:a8:12:54:5c:68: 5f:26:c4:13:5f:c7:3b:95:d7:a8:0a:38:ca:b2:4c: 97:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:26:59:ED:38:E8:ED:2B:0A:73:22:F7:F6:69:FF:D8:64:A2:90:E1 X509v3 Authority Key Identifier: keyid:FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:14:7c:9f:da:ef:ad:8a:62:d4:f6:0c:14:86:61:e7:e1:49: 15:ec:cb:85:15:b7:49:de:38:a3:9b:2f:95:bb:eb:c0:dd:fd: 65:61:d9:35:32:ca:4e:1c:8b:7f:30:93:f8:ba:23:d7:87:51: 60:ba:9b:29:d8:e8:e4:6a:56:8a:56:69:c1:46:62:6f:8d:b2: 13:a1:91:b5:11:53:b1:c5:f0:0d:7e:f2:bf:ba:b5:d6:12:92: bc:39:c0:ae:d9:79:48:66:4e:b5:ad:b5:d0:af:cf:16:d0:87: b3:5e:94:ca:5c:c9:b3:98:d2:60:6d:d2:86:e1:9c:56:97:31: f2:a1:5d:d3:37:f6:36:f4:79:9d:8d:f3:29:2f:5a:b2:f3:11: ca:d7:59:0e:3a:40:18:64:06:9c:e3:12:36:63:99:06:3e:b2: b2:51:63:62:ae:76:3a:38:a4:22:6a:b6:54:17:8d:7f:90:d1: 0f:52:5c:c4:45:87:ee:74:bd:a7:10:51:02:25:e2:50:3d:26: f7:e5:08:b0:72:07:35:4b:16:2d:16:8d:01:2d:0c:4a:52:83: 30:b7:bd:0e:85:2c:03:66:22:bb:d4:b6:b3:08:b8:e7:c1:a8: ad:ef:c7:da:38:00:13:7e:6f:89:0d:7d:c2:13:fe:fe:c0:f4: e5:93:74:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTg5ODExMC8GA1UEBRMoRkRFNzRDRDE2NTZENEVDQUYyQjBFNkJCQzMxMzVENEVC ODQwNzgyQjAeFw0yNTA3MDIxNDM4MTRaFw0yNTA3MDkxNDM4MTRaMBgxFjAUBgNV BAMTDTY4NjU0NDU2LWRmYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6E1sQC9uDenloMnrDkCv8TwQCoaU2M134ThLgCK29NxKLO1S11pP2ivysX7Iz HthjR+Trjc8kPtpqGoLITOimMT7mN0hbExJXM0QtedjemztjS2yNcUZ64+CKF9G0 WZlF9O9cjOgakcEWs0eQWKsLzJB/MVed2R8s1F8iMAGlkQt7lzJwgLNgh4aMMeBV gIkOzWOYtMIoP0e2hFqh6zGii+rhfQUFpJKPFL6Q4FKX9DhsOJ8wfnfuSe5nK/JO 19UNaOoQFnGhxKTexraTA+g7PzCh/tCeTlDfCP1tMZ4LgX7ctP/f8Ii7l5WoElRc aF8mxBNfxzuV16gKOMqyTJc9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCSZZ7Tjo 7SsKcyL39mn/2GSikOEwHwYDVR0jBBgwFoAU/edM0WVtTsrysOa7wxNdTrhAeCsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBODk4LzQwN0EyNUVBRDg3 RjExRUY5MUNDNTM0NkM0RjlBRTAyL19lZE0wV1Z0VHNyeXNPYTd3eE5kVHJoQWVD cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX2VkTTBXVnRUc3J5c09hN3d4TmRUcmhBZUNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB ODk4LzQwN0EyNUVBRDg3RjExRUY5MUNDNTM0NkM0RjlBRTAyL19lZE0wV1Z0VHNy eXNPYTd3eE5kVHJoQWVDcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHYUfJ/a762KYtT2DBSGYefhSRXsy4UVt0neOKObL5W768Dd/WVh2TUy yk4ci38wk/i6I9eHUWC6mynY6ORqVopWacFGYm+NshOhkbURU7HF8A1+8r+6tdYS krw5wK7ZeUhmTrWttdCvzxbQh7NelMpcybOY0mBt0obhnFaXMfKhXdM39jb0eZ2N 8ykvWrLzEcrXWQ46QBhkBpzjEjZjmQY+srJRY2Kudjo4pCJqtlQXjX+Q0Q9SXMRF h+50vacQUQIl4lA9JvflCLByBzVLFi0WjQEtDEpSgzC3vQ6FLANmIrvUtrMIuOfB qK3vx9o4ABN+b4kNfcIT/v7A9OWTdMM= -----END CERTIFICATE-----Generated at Thu Jul 3 23:05:19 2025 by rpki-client