$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: JTOVjO0qwnHipOuhsvb0sG2dWffmefhHc8j/9BcIo9w= Subject key identifier: 02:B7:6E:F6:3A:94:B9:6E:0F:0A:64:EF:A9:D6:4F:2C:BF:0C:81:15 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B7D Signing time: Wed 02 Jul 2025 15:39:39 +0000 Manifest this update: Wed 02 Jul 2025 15:39:39 +0000 Manifest next update: Wed 09 Jul 2025 15:39:39 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: 03hNxEsqzRKQjBzn7JL9BdR87bgV4LaBA0NodZpjLuA=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11169 (0x2ba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Jul 2 15:39:39 2025 GMT Not After : Jul 9 15:39:39 2025 GMT Subject: CN=686552bb-8e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:59:b0:1a:39:b8:5d:76:60:1b:69:62:37:20: c1:c8:47:c8:10:b6:3a:1e:34:2f:e4:91:56:80:13: f4:43:f3:34:65:a4:f4:62:63:df:c3:55:ba:56:21: 3e:58:54:cc:3d:d0:ca:96:56:09:44:9b:f3:c5:e3: 8f:d3:03:28:62:f9:b3:16:1e:e8:c2:b4:73:16:d9: 69:01:37:08:c0:6b:58:2a:9d:6d:41:93:48:2c:c6: 28:29:c0:e1:f2:40:13:9e:21:02:9e:87:ac:db:0f: 43:c0:ca:61:8d:7f:2d:3b:f2:3b:1d:57:44:5a:62: f5:45:7f:9e:75:0f:fa:c0:6b:04:21:76:70:75:99: d2:50:2b:9f:9b:b9:b3:e6:48:81:8e:85:49:1b:69: d6:b7:30:93:23:a2:6c:82:39:85:48:b5:5b:4d:8f: dd:f8:4e:b1:06:af:69:31:1a:6b:8b:15:f5:66:cc: 71:57:c0:1b:5e:14:bc:d7:af:7d:de:81:3f:7b:c9: 73:f9:32:03:a6:e7:d5:3b:08:e5:65:d2:02:07:ff: c5:ab:dd:10:13:e3:c3:11:27:18:b0:2a:f3:dc:35: 2e:7c:c3:27:52:c5:24:28:da:14:7c:cd:5b:70:56: e6:4b:c3:bf:c4:8f:78:8e:d6:79:21:1d:b6:6d:67: ae:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B7:6E:F6:3A:94:B9:6E:0F:0A:64:EF:A9:D6:4F:2C:BF:0C:81:15 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:26:e4:47:81:ef:e0:8a:3f:36:16:f4:cf:ac:73:5e:5e:e2: 51:6b:8b:4b:90:bc:a1:0b:5a:db:d3:15:8c:c4:73:03:36:fd: 22:4c:ac:85:5f:ed:f2:32:97:bb:e8:2f:3c:29:4e:6a:72:00: a4:e8:89:3d:73:0e:08:d9:71:07:aa:d1:7c:72:26:73:99:df: 51:34:1a:91:c3:47:9d:4d:cc:aa:81:19:75:77:ac:b0:c3:65: 0d:ea:f0:fa:fe:ee:13:a9:ad:0a:9c:b8:d3:44:e8:7d:11:b7: 70:07:ea:1e:e0:e1:ba:3b:0f:10:e8:70:7a:31:65:39:aa:07: 54:9a:ba:ee:ff:78:84:64:2a:79:12:b7:3a:9a:16:65:65:e3: 8b:f8:f9:8c:b4:f4:18:85:e5:1e:f9:37:7e:86:03:60:78:4f: b8:34:35:1b:47:17:e8:b6:1d:71:88:b8:15:4b:b9:18:5a:b3: 79:cc:e4:5b:97:ab:88:6a:a2:5e:2f:ea:a0:ea:e4:81:ad:ab: 74:f8:59:f9:70:6d:c3:dd:e3:8b:e6:79:38:8b:38:14:49:50: 5a:b3:a8:73:3e:9f:56:03:cb:06:18:fa:7b:72:b7:be:3d:71: fc:fe:dc:13:85:94:7a:7f:d6:07:08:90:65:c6:e3:71:8f:e1: 6b:83:4b:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwNzAyMTUzOTM5WhcNMjUwNzA5MTUzOTM5WjAYMRYwFAYD VQQDEw02ODY1NTJiYi04ZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlmwGjm4XXZgG2liNyDByEfIELY6HjQv5JFWgBP0Q/M0ZaT0YmPfw1W6ViE+ WFTMPdDKllYJRJvzxeOP0wMoYvmzFh7owrRzFtlpATcIwGtYKp1tQZNILMYoKcDh 8kATniECnoes2w9DwMphjX8tO/I7HVdEWmL1RX+edQ/6wGsEIXZwdZnSUCufm7mz 5kiBjoVJG2nWtzCTI6JsgjmFSLVbTY/d+E6xBq9pMRprixX1ZsxxV8AbXhS81699 3oE/e8lz+TIDpufVOwjlZdICB//Fq90QE+PDEScYsCrz3DUufMMnUsUkKNoUfM1b cFbmS8O/xI94jtZ5IR22bWeuSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAK3bvY6 lLluDwpk76nWTyy/DIEVMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEJuRHge/gij82FvTPrHNeXuJRa4tLkLyhC1rb0xWMxHMDNv0iTKyF X+3yMpe76C88KU5qcgCk6Ik9cw4I2XEHqtF8ciZzmd9RNBqRw0edTcyqgRl1d6yw w2UN6vD6/u4Tqa0KnLjTROh9EbdwB+oe4OG6Ow8Q6HB6MWU5qgdUmrru/3iEZCp5 Erc6mhZlZeOL+PmMtPQYheUe+Td+hgNgeE+4NDUbRxfoth1xiLgVS7kYWrN5zORb l6uIaqJeL+qg6uSBrat0+Fn5cG3D3eOL5nk4izgUSVBas6hzPp9WA8sGGPp7cre+ PXH8/twThZR6f9YHCJBlxuNxj+Frg0uW -----END CERTIFICATE-----Generated at Thu Jul 3 06:12:41 2025 by rpki-client