$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: TQeSVLlg/PXYEk/+/7G1iMXfcnzRLhU81i8j5bl5pkc= Subject key identifier: 90:9F:9B:25:34:7B:D5:F7:24:A7:89:4A:94:BD:7E:8A:9B:7F:FF:A6 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 085A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 0853 Signing time: Mon 30 Jun 2025 20:55:42 +0000 Manifest this update: Mon 30 Jun 2025 20:55:42 +0000 Manifest next update: Mon 07 Jul 2025 20:55:42 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: pMcdq6A3TW/ZPOheaKg6ecDVS/2+41IWgkfOxdmlssw=) 2: B6EB6C5ED46611ECA1A27035C4F9AE02.roa (hash: MzytEdv6AFwyptJ19U9Ds4XRz9r3S4O8DZQCdtraCmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6, serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Jun 30 20:55:42 2025 GMT Not After : Jul 7 20:55:42 2025 GMT Subject: CN=6862f9ce-6ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b0:58:c3:f8:0c:f3:83:85:60:fb:f5:ec:37: 30:d9:1c:d5:d8:39:38:85:64:92:3b:e2:1d:fa:7c: 4b:28:81:21:b0:67:03:d4:d8:f4:72:a4:24:be:07: ab:3d:9d:72:33:29:da:eb:b8:93:6a:83:7d:97:26: 47:57:05:e3:c7:d5:35:84:d9:68:2b:5e:72:12:3a: f9:90:09:fc:bc:1c:45:af:25:86:ba:c3:a9:d1:ca: cb:f5:3d:d6:26:b6:ef:36:7e:5b:c7:b6:6b:4f:87: 9b:99:48:6a:28:4f:99:f6:40:0b:a6:9c:75:94:c8: 34:35:bd:b3:91:57:61:2b:61:3b:17:d1:e0:cd:3c: 8e:6f:cd:34:48:d6:f5:bc:1d:be:0d:67:d1:38:ef: 68:31:6a:06:61:84:6f:ee:87:fe:63:f6:25:c4:87: bf:ee:cf:c0:86:fa:b5:6e:32:bf:56:ce:b5:11:d7: f8:1c:73:6d:e6:a5:4f:14:13:ea:0c:8d:ce:cb:2a: 86:81:07:83:06:35:7e:19:a0:5c:7f:c3:68:04:06: 96:12:f1:65:6b:38:cc:30:26:fd:59:c0:ef:a9:10: 5c:5d:7d:50:ac:a0:78:01:3b:d4:d7:7d:7d:4d:08: 75:d4:09:15:26:7d:13:59:54:fc:14:4f:5d:68:ab: be:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9F:9B:25:34:7B:D5:F7:24:A7:89:4A:94:BD:7E:8A:9B:7F:FF:A6 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:11:ae:cd:75:26:0c:00:ef:dc:cf:ec:00:62:e9:a2:4a:c5: d3:32:af:d7:dd:34:72:bc:0d:9b:38:3e:7a:53:1b:c6:64:31: 3b:56:08:5b:f9:a6:a6:a5:cc:04:15:43:8a:07:4c:57:d6:59: 81:93:49:9d:f7:c2:c5:52:6a:d1:85:c6:e8:5b:b0:6c:43:b3: 19:e4:6f:48:7c:08:d5:2c:15:f5:23:52:89:02:44:6b:85:b9: 90:e4:3b:d0:72:da:15:f6:b3:c5:2a:cd:cd:a6:e2:63:31:51: 7b:40:14:f1:53:60:be:67:66:e3:c4:40:17:f3:f0:9a:36:42: 07:3a:85:25:0f:55:b0:9a:d1:a7:3a:49:f9:6c:34:58:df:86: 14:f2:6a:15:98:e8:8f:4e:fc:ec:eb:ae:3b:b2:ca:5f:dc:d0: d9:c8:99:3f:65:20:f1:1e:5c:20:18:52:65:03:0b:ed:1a:ca: 4f:77:c3:f0:4e:80:4a:38:22:2c:17:12:00:90:aa:1c:76:70: fe:2e:a8:b3:4f:fd:c0:1f:af:9f:7f:19:af:01:cf:a0:75:04: ba:bb:5e:4f:4f:18:c4:b5:b0:04:e0:03:e0:d2:10:04:80:f5: 34:07:cb:ba:e8:08:7a:a2:b6:58:18:9f:40:8b:9c:fe:cc:6e: c8:e4:9d:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjUwNjMwMjA1NTQyWhcNMjUwNzA3MjA1NTQyWjAYMRYwFAYD VQQDEw02ODYyZjljZS02ZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrBYw/gM84OFYPv17Dcw2RzV2Dk4hWSSO+Id+nxLKIEhsGcD1Nj0cqQkvger PZ1yMyna67iTaoN9lyZHVwXjx9U1hNloK15yEjr5kAn8vBxFryWGusOp0crL9T3W JrbvNn5bx7ZrT4ebmUhqKE+Z9kALppx1lMg0Nb2zkVdhK2E7F9HgzTyOb800SNb1 vB2+DWfROO9oMWoGYYRv7of+Y/YlxIe/7s/Ahvq1bjK/Vs61Edf4HHNt5qVPFBPq DI3OyyqGgQeDBjV+GaBcf8NoBAaWEvFlazjMMCb9WcDvqRBcXX1QrKB4ATvU1319 TQh11AkVJn0TWVT8FE9daKu+nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCfmyU0 e9X3JKeJSpS9foqbf/+mMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0Ea7NdSYMAO/cz+wAYumiSsXTMq/X3TRyvA2bOD56UxvGZDE7Vghb +aampcwEFUOKB0xX1lmBk0md98LFUmrRhcboW7BsQ7MZ5G9IfAjVLBX1I1KJAkRr hbmQ5DvQctoV9rPFKs3NpuJjMVF7QBTxU2C+Z2bjxEAX8/CaNkIHOoUlD1WwmtGn Okn5bDRY34YU8moVmOiPTvzs6647sspf3NDZyJk/ZSDxHlwgGFJlAwvtGspPd8Pw ToBKOCIsFxIAkKocdnD+LqizT/3AH6+ffxmvAc+gdQS6u15PTxjEtbAE4APg0hAE gPU0B8u66Ah6orZYGJ9Ai5z+zG7I5J3q -----END CERTIFICATE-----Generated at Wed Jul 2 20:05:06 2025 by rpki-client