$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft File: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft (raw, json) Hash identifier: qMpMjpoLarknl5F465ZbvqREu2oue/jfunA6MemEzo0= Subject key identifier: 30:1E:BC:1E:1B:53:33:19:69:B9:54:69:C7:21:B2:2F:4D:DA:AC:05 Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 1220 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft Manifest number: 1201 Signing time: Wed 02 Jul 2025 17:21:32 +0000 Manifest this update: Wed 02 Jul 2025 17:21:32 +0000 Manifest next update: Wed 09 Jul 2025 17:21:32 +0000 Files and hashes: 1: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl (hash: oCsSr57/KUevbD1x3F9cRaRbj2fJuLOhK1MleDkbBHw=) 2: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (hash: EG7DAdh62MT15Z2IRnWNBPi8u6Tt+z9LL+klU2Atkq0=) 3: 29ED0D46839011EE946C5E63C4F9AE02.roa (hash: ieAu/eYOiYngZXOxKG9Shsj5mrubW8gne154rOLi258=) 4: 4551BE2CD19D11EAA120EE14C4F9AE02.roa (hash: Zb8K4a4S76xzShJsXA+J8BCfBTGu/Fav49T1ERobF/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4640 (0x1220) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33, serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Jul 2 17:21:32 2025 GMT Not After : Jul 9 17:21:32 2025 GMT Subject: CN=68656a9c-8acc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:75:e6:cb:0c:45:88:26:c1:14:28:b3:b4:7f: 6f:c3:09:a3:f7:38:b1:43:49:e7:8c:f6:1f:20:d0: 00:a1:c8:bb:5b:bf:d0:c0:d3:85:05:ca:5c:36:d3: ec:f7:7c:4e:32:27:57:cb:4b:45:bf:3a:bf:ce:7b: 7e:73:76:20:1e:28:1b:87:98:14:2f:9c:a6:2a:3a: 5f:0b:dd:06:ba:07:74:74:cc:0e:2e:f2:9f:34:61: 75:fc:1c:9d:55:d5:7b:05:b2:34:5e:16:00:79:7e: b8:ce:83:d2:67:2e:67:19:55:ee:5a:28:c5:c8:84: 75:26:a6:48:aa:e1:cb:49:26:36:b9:3d:63:d7:4b: 53:93:fa:f7:b1:ee:9c:89:96:82:fe:54:99:4a:9f: f1:ab:cb:36:a2:e2:8d:20:dc:05:06:65:a6:f3:c1: d7:04:2c:7e:c2:e8:ad:f6:4c:9d:70:c0:53:97:67: 3c:62:95:10:2e:6b:26:f0:f7:33:8d:8a:59:7d:6a: c1:24:c9:38:52:36:30:a6:eb:8f:f0:4f:cb:bf:18: 41:f3:9d:b9:b6:d5:ff:14:7f:19:6c:1f:2e:86:a9: bd:1c:46:81:ae:20:2e:76:88:c4:5a:f7:68:29:97: ea:6e:8f:4f:3e:67:fb:df:c5:cc:d8:b7:c8:c6:f3: ee:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1E:BC:1E:1B:53:33:19:69:B9:54:69:C7:21:B2:2F:4D:DA:AC:05 X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:64:87:ce:c0:99:c2:f4:78:72:cb:58:37:d9:52:d7:fc:88: 1f:52:da:99:55:fe:4c:95:98:92:7a:f5:7d:e1:34:2c:c3:d5: 83:30:7a:c2:63:7d:ea:a9:02:a9:56:c4:b5:37:0f:25:27:ec: e0:61:2d:2d:a2:cd:ec:37:c1:34:a6:7e:7b:51:fd:ef:96:e9: a2:ce:ef:15:6f:00:b2:b8:18:de:be:ce:c5:99:df:83:10:9f: 9a:64:04:f9:4e:1d:f3:ab:82:c7:5b:1a:26:c4:59:a0:65:59: e0:d0:c1:49:86:92:45:2d:fa:21:dd:d1:65:7f:36:5b:84:f6: cc:53:17:dd:35:aa:1e:66:b7:4a:1e:8e:28:ee:37:8f:36:88: a9:ad:05:d7:76:53:4f:9b:da:29:5e:d3:ec:ec:46:2b:19:38: 6d:c8:64:83:9d:1f:f5:fc:dc:13:6b:a8:9f:a2:5a:7a:54:6e: 4f:c4:d2:9a:03:05:62:5b:39:84:13:a7:9d:cb:02:e3:ae:08: 6e:d1:84:40:21:8c:35:1a:96:25:64:92:cd:5e:1b:75:58:b0: dc:d5:df:b1:b3:dc:97:7f:83:65:ca:e5:50:64:09:db:11:bc: 47:0b:1a:81:e8:41:49:1f:b7:a4:ee:da:6e:9c:92:87:9f:0c: 52:42:d0:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjUwNzAyMTcyMTMyWhcNMjUwNzA5MTcyMTMyWjAYMRYwFAYD VQQDEw02ODY1NmE5Yy04YWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3XmywxFiCbBFCiztH9vwwmj9zixQ0nnjPYfINAAoci7W7/QwNOFBcpcNtPs 93xOMidXy0tFvzq/znt+c3YgHigbh5gUL5ymKjpfC90Gugd0dMwOLvKfNGF1/Byd VdV7BbI0XhYAeX64zoPSZy5nGVXuWijFyIR1JqZIquHLSSY2uT1j10tTk/r3se6c iZaC/lSZSp/xq8s2ouKNINwFBmWm88HXBCx+wuit9kydcMBTl2c8YpUQLmsm8Pcz jYpZfWrBJMk4UjYwpuuP8E/LvxhB8525ttX/FH8ZbB8uhqm9HEaBriAudojEWvdo KZfqbo9PPmf738XM2LfIxvPu8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAevB4b UzMZablUacchsi9N2qwFMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UzMy84NzdBNzlCNkU5RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0Vp TUtxWGk3R3FqSGtPY0daNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtZIfOwJnC9Hhyy1g32VLX/IgfUtqZVf5MlZiSevV94TQsw9WDMHrC Y33qqQKpVsS1Nw8lJ+zgYS0tos3sN8E0pn57Uf3vlumizu8VbwCyuBjevs7Fmd+D EJ+aZAT5Th3zq4LHWxomxFmgZVng0MFJhpJFLfoh3dFlfzZbhPbMUxfdNaoeZrdK Ho4o7jePNoiprQXXdlNPm9opXtPs7EYrGThtyGSDnR/1/NwTa6ifolp6VG5PxNKa AwViWzmEE6edywLjrghu0YRAIYw1GpYlZJLNXht1WLDc1d+xs9yXf4NlyuVQZAnb EbxHCxqB6EFJH7ek7tpunJKHnwxSQtBg -----END CERTIFICATE-----Generated at Wed Jul 2 23:43:11 2025 by rpki-client