$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: Gn6jBjp2CpBGm0YjlJOPs/zTuENTB1h+fypsiGl9pxI= Subject key identifier: 4C:D3:53:46:1B:35:9B:76:8D:E3:8C:DE:F8:7D:F8:F3:9B:57:76:2A Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: 96 Signing time: Tue 01 Jul 2025 07:06:22 +0000 Manifest this update: Tue 01 Jul 2025 07:06:21 +0000 Manifest next update: Tue 08 Jul 2025 07:06:21 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: wagdbjjcnhYzd00zRxnp+cpw/UIfhfBSKTXNbCDB6Hs=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: AxDsA8rt+K98y/uEnY4JUiHZ0XXqFDNJTlI0IgqxxqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Jul 1 07:06:21 2025 GMT Not After : Jul 8 07:06:21 2025 GMT Subject: CN=686388ed-f66b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:65:33:bb:2a:92:a7:74:09:6f:c6:07:c4:3b: 7b:20:e3:50:cd:52:1d:0a:9a:6a:9b:da:95:07:7c: 51:89:1c:25:6f:ea:e5:19:0e:80:d2:62:78:29:ff: 8f:79:25:cc:be:71:99:ce:8f:a6:8a:e2:e2:d0:a1: 7e:66:90:1d:56:3e:1c:a1:1b:7e:8d:f2:7f:9e:6c: dc:fa:15:6c:01:28:63:3f:67:49:8f:a5:44:dd:5c: b8:a6:04:0a:4c:ba:08:6b:3c:a7:b3:5a:77:68:8c: 31:a5:be:83:2e:cf:80:40:b0:3b:b7:03:40:dd:5d: d1:74:34:39:99:41:60:1d:55:bb:6a:42:90:4e:b1: ed:29:81:e6:8e:96:cb:41:83:23:03:5e:f7:ac:3e: b9:18:70:43:45:31:4d:d7:57:d7:29:93:24:3a:38: a2:88:d4:e2:01:24:12:bb:93:2a:9e:28:c0:04:79: 26:7d:0a:cf:80:51:07:39:e6:7c:c6:fe:6e:89:4b: d5:a9:ef:11:92:3e:0d:39:2b:ff:d7:07:b5:aa:a4: a4:16:28:39:01:07:a8:bf:ef:3a:5a:d8:e9:9e:c7: b5:fb:89:e9:1d:0b:13:0b:e0:90:a0:3d:87:5f:df: be:50:84:9f:01:86:60:ce:92:64:e0:36:31:bf:ed: 3a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D3:53:46:1B:35:9B:76:8D:E3:8C:DE:F8:7D:F8:F3:9B:57:76:2A X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:aa:48:d5:3e:f3:7d:88:8f:93:a8:30:07:21:1f:11:9f:41: 93:d0:46:0b:9c:8f:5b:e2:b1:06:5c:59:3a:ca:b2:ba:c8:1c: b0:fc:36:89:63:8f:29:e5:92:4e:42:41:63:70:ab:17:97:17: f4:5e:3c:f9:eb:d2:6b:9e:a2:90:f1:59:08:e5:04:94:83:23: 34:44:25:31:34:13:7c:7f:29:65:81:93:1e:04:98:ee:d2:0b: 77:9b:d2:6f:da:bf:2a:d5:09:44:b6:f5:65:37:ac:e9:14:bc: 98:e4:76:f2:cf:3b:d1:79:01:2d:52:f2:1e:97:4d:d6:c3:e4: da:7c:23:a2:b5:d5:1a:bb:a2:2e:7a:e2:b4:92:48:c7:8a:8b: d6:2a:99:8d:74:ee:20:59:e4:7a:8a:d2:1c:51:50:78:56:6c: 2d:c5:38:d6:cd:2a:e4:a6:16:29:15:91:93:56:db:1b:8e:97: 6e:ed:fe:2c:12:0b:44:fb:61:48:2c:6a:6d:af:4e:67:25:45: 4b:08:eb:6c:95:6e:a6:0a:12:b9:69:28:be:7b:63:bb:3c:1b: 8c:29:41:f7:57:20:15:64:61:80:4d:85:3a:75:5e:dc:b1:9c: 94:39:c0:6c:05:af:e0:f9:e0:d8:4f:83:f6:c2:01:4b:92:0d: 78:86:e2:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjUwNzAxMDcwNjIxWhcNMjUwNzA4MDcwNjIxWjAYMRYwFAYD VQQDEw02ODYzODhlZC1mNjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WUzuyqSp3QJb8YHxDt7IONQzVIdCppqm9qVB3xRiRwlb+rlGQ6A0mJ4Kf+P eSXMvnGZzo+miuLi0KF+ZpAdVj4coRt+jfJ/nmzc+hVsAShjP2dJj6VE3Vy4pgQK TLoIazyns1p3aIwxpb6DLs+AQLA7twNA3V3RdDQ5mUFgHVW7akKQTrHtKYHmjpbL QYMjA173rD65GHBDRTFN11fXKZMkOjiiiNTiASQSu5MqnijABHkmfQrPgFEHOeZ8 xv5uiUvVqe8Rkj4NOSv/1we1qqSkFig5AQeov+86Wtjpnse1+4npHQsTC+CQoD2H X9++UISfAYZgzpJk4DYxv+06DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzTU0Yb NZt2jeOM3vh9+PObV3YqMB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi81ODAwNEFBQTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlL NjVhamhsVmd1ZkltQzZtUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUqkjVPvN9iI+TqDAHIR8Rn0GT0EYLnI9b4rEGXFk6yrK6yByw/DaJ Y48p5ZJOQkFjcKsXlxf0Xjz569JrnqKQ8VkI5QSUgyM0RCUxNBN8fyllgZMeBJju 0gt3m9Jv2r8q1QlEtvVlN6zpFLyY5HbyzzvReQEtUvIel03Ww+TafCOitdUau6Iu euK0kkjHiovWKpmNdO4gWeR6itIcUVB4VmwtxTjWzSrkphYpFZGTVtsbjpdu7f4s EgtE+2FILGptr05nJUVLCOtslW6mChK5aSi+e2O7PBuMKUH3VyAVZGGATYU6dV7c sZyUOcBsBa/g+eDYT4P2wgFLkg14huJ+ -----END CERTIFICATE-----Generated at Thu Jul 3 07:03:26 2025 by rpki-client