$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: q15PLen59Mh4w1Gy3eMIbwzfSM3Q0vutFgdh7W+C5Fg= Subject key identifier: A7:8D:24:3B:5A:FB:12:46:B2:52:3E:13:BE:58:EA:DB:25:23:AB:2E Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 3585 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 3501 Signing time: Wed 02 Jul 2025 14:16:24 +0000 Manifest this update: Wed 02 Jul 2025 14:16:24 +0000 Manifest next update: Wed 09 Jul 2025 14:16:24 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: gfzoxq8C3H/F4CxTctmD5bOgDsIOSMPFEyNiAI5AMr0=) 2: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 3: AF560BA2B1CC11EF80C4BE44C4F9AE02.roa (hash: JKOX2Bnk1obdJWD/11GK8Zj49w+PdYErgulVkpa2rdU=) 4: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) 5: 539CC922366C11EEBEBBBE1DC4F9AE02.roa (hash: TrayTHMiKb+Dm5posHRv3ZfOvi01WiwhoUD8use0rkY=) 6: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) 7: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 8: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13701 (0x3585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Jul 2 14:16:24 2025 GMT Not After : Jul 9 14:16:24 2025 GMT Subject: CN=68653f38-8967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6a:85:85:67:19:e2:2d:1d:08:58:f3:7c:2d: a2:28:93:91:a9:09:ad:d7:e8:05:a9:fb:3f:04:51: ec:ba:25:dc:c8:aa:01:3b:61:e3:87:f5:a5:21:85: 21:e6:cd:46:6a:84:2c:a9:cc:ec:72:2b:09:c8:f5: d6:ea:3f:e0:33:a9:07:98:a3:97:5b:d7:f3:6a:94: 41:fe:48:8b:5e:a3:fe:e8:43:75:14:b5:10:5d:3f: d8:87:45:2e:f3:a1:22:9b:96:a3:69:ad:38:d8:8b: a7:3c:42:70:1a:a9:96:40:46:10:4d:e3:4c:42:c2: 64:4e:d2:d0:42:09:2d:ec:8c:ba:4d:a9:e7:7a:ff: 7f:97:eb:82:08:ae:b3:a6:4e:d3:30:55:8d:34:af: bc:ab:f7:2f:28:ca:67:db:62:eb:d6:60:bf:8f:6a: d9:2e:bc:a4:a3:b3:6d:9b:90:0f:60:40:21:46:ca: 9d:c8:1a:54:d1:b2:5b:89:55:42:28:1c:2a:af:6d: 03:ae:13:a4:ee:de:75:9d:4f:b2:fa:6f:6a:c9:5a: c6:8d:a1:8e:5d:ad:3f:93:f5:13:3f:e3:d7:3c:9c: b6:e1:52:53:d6:d5:18:ce:87:73:e2:3e:38:64:e4: b0:c0:48:f5:d3:12:60:6f:3b:74:b2:ca:04:02:93: 4b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8D:24:3B:5A:FB:12:46:B2:52:3E:13:BE:58:EA:DB:25:23:AB:2E X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a2:19:b9:eb:77:67:cc:72:11:47:60:9d:0d:29:9e:45:3a: 60:be:f8:02:7c:52:9b:5b:ec:29:6a:3d:75:75:02:d8:ab:4e: d0:ce:8b:c0:e0:e5:a0:2b:26:02:37:f1:6a:59:0b:b5:33:9d: 61:44:e5:ea:bb:89:98:fc:1d:ca:ed:01:6e:48:02:6b:18:e0: c1:14:e5:a3:85:b2:7f:19:ba:73:f5:4d:28:1a:2f:2f:74:8b: ee:04:a5:6d:17:8e:71:95:72:6e:8d:4b:88:86:4c:7d:84:60: b9:00:7c:9f:1f:40:64:f9:1a:3f:5d:11:90:af:73:a0:b6:a0: 4e:16:22:93:6a:79:81:29:c0:28:4a:21:04:49:6e:03:16:3b: 00:5d:3a:95:70:e4:53:9c:27:e7:b2:b1:32:91:42:99:be:87: f4:ea:e9:49:1b:fa:12:d6:bb:ba:6c:ba:95:8b:66:ca:73:a3: c1:8f:2c:2b:6f:39:94:1c:a4:07:06:95:1e:7c:86:24:98:d6: 09:08:90:cd:78:85:df:5a:c5:14:02:b3:0e:ca:0a:4c:19:2c: 53:a9:0d:e4:f4:4b:52:dd:8f:f5:ed:9c:71:63:14:2d:24:07: ff:5e:56:1b:97:1a:6c:e7:cb:bb:a1:c5:15:1f:16:74:38:d7: 1c:c5:2e:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjUwNzAyMTQxNjI0WhcNMjUwNzA5MTQxNjI0WjAYMRYwFAYD VQQDEw02ODY1M2YzOC04OTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGqFhWcZ4i0dCFjzfC2iKJORqQmt1+gFqfs/BFHsuiXcyKoBO2Hjh/WlIYUh 5s1GaoQsqczscisJyPXW6j/gM6kHmKOXW9fzapRB/kiLXqP+6EN1FLUQXT/Yh0Uu 86Eim5ajaa042IunPEJwGqmWQEYQTeNMQsJkTtLQQgkt7Iy6Tannev9/l+uCCK6z pk7TMFWNNK+8q/cvKMpn22Lr1mC/j2rZLryko7Ntm5APYEAhRsqdyBpU0bJbiVVC KBwqr20DrhOk7t51nU+y+m9qyVrGjaGOXa0/k/UTP+PXPJy24VJT1tUYzodz4j44 ZOSwwEj10xJgbzt0ssoEApNLpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeNJDta +xJGslI+E75Y6tslI6suMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGohm563dnzHIRR2CdDSmeRTpgvvgCfFKbW+wpaj11dQLYq07QzovA 4OWgKyYCN/FqWQu1M51hROXqu4mY/B3K7QFuSAJrGODBFOWjhbJ/Gbpz9U0oGi8v dIvuBKVtF45xlXJujUuIhkx9hGC5AHyfH0Bk+Ro/XRGQr3OgtqBOFiKTanmBKcAo SiEESW4DFjsAXTqVcORTnCfnsrEykUKZvof06ulJG/oS1ru6bLqVi2bKc6PBjywr bzmUHKQHBpUefIYkmNYJCJDNeIXfWsUUArMOygpMGSxTqQ3k9EtS3Y/17ZxxYxQt JAf/XlYblxps58u7ocUVHxZ0ONccxS7j -----END CERTIFICATE-----Generated at Thu Jul 3 03:51:05 2025 by rpki-client