$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: d/gsZt2GTA/cd2OEezMGajL55LzQh6dbNCj9QoGFn4A= Subject key identifier: BA:6D:D0:2A:CE:93:9C:31:0B:79:83:27:F7:8C:CA:41:80:1C:AE:99 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: 6B Signing time: Thu 03 Jul 2025 07:15:33 +0000 Manifest this update: Thu 03 Jul 2025 07:15:33 +0000 Manifest next update: Thu 10 Jul 2025 07:15:33 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: wcoE8X2I8Fy4MdKzEwuoLtBDdG5XRDtIMr80CRi0Pt0=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Jul 3 07:15:33 2025 GMT Not After : Jul 10 07:15:33 2025 GMT Subject: CN=68662e15-b737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e9:db:1d:53:9f:fa:42:4a:32:1e:2a:a9:6a: 82:87:7c:62:b3:54:90:1f:47:2b:01:80:5d:0f:25: 33:3a:52:01:0b:af:38:07:57:cb:0f:64:4a:75:fb: ba:95:f9:a4:e9:a9:5a:c8:7d:a2:e2:6c:53:53:e6: 0e:d2:b1:8e:10:79:89:0e:96:4d:e8:86:95:12:32: 28:70:25:a1:6c:38:f7:be:1c:2f:d7:78:c8:49:e9: 3b:1b:7e:2f:4f:e6:b4:2e:02:77:dd:94:6a:98:9c: 2f:72:f2:d7:7b:bc:67:a5:35:63:e7:2d:6b:f2:01: fb:53:16:0c:3e:86:ae:e6:cd:fd:7b:8d:b7:4d:dd: ed:ec:91:b3:6a:c0:c0:21:4b:57:0c:f5:01:92:1a: aa:e1:f6:cc:d3:5f:11:36:e9:49:33:30:c1:cd:e4: a8:07:a7:8b:f7:bd:1d:23:94:1c:d7:3c:23:86:a6: de:ca:72:50:42:5e:12:05:56:1f:48:54:f5:21:8b: b4:5e:26:ac:38:03:bb:a3:31:16:de:d7:1e:ea:98: c1:54:8a:ce:f6:92:83:4c:11:7e:f5:25:66:05:63: 64:c2:d1:70:91:f3:de:26:3d:d1:b0:6a:d9:16:83: 57:a0:66:9d:84:16:07:41:ce:75:c6:05:eb:3c:ee: c2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6D:D0:2A:CE:93:9C:31:0B:79:83:27:F7:8C:CA:41:80:1C:AE:99 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:9a:13:07:95:1e:b6:21:b7:66:a0:b9:91:31:34:e6:47:92: ce:06:63:2b:51:c6:1a:8b:fd:06:65:0a:f9:ba:c0:c6:89:42: 08:f6:c9:a5:b9:7b:c4:ca:16:f9:e4:77:ca:3b:1e:4b:c7:47: 19:73:39:0c:8e:b9:31:de:26:d6:df:fa:b4:9c:27:27:d9:60: d8:5d:40:9f:fe:41:32:05:3c:bf:67:23:ba:33:81:55:14:9d: 1b:26:8d:96:aa:5b:42:bc:1d:c5:2b:ed:6a:9a:ad:8e:4b:5a: b2:bb:0f:c2:c0:47:cd:05:31:98:07:04:e0:ba:b2:34:35:ee: ae:12:21:19:85:e2:86:05:de:96:4f:13:dd:e5:11:52:58:02: d5:8f:94:44:49:2e:fc:93:ee:18:f8:db:95:1f:4f:ee:83:86: 1e:94:2e:dd:e6:97:fd:fd:96:7a:aa:5b:af:a2:bb:15:ef:d5: e9:cc:19:a9:3d:93:c4:cd:f2:70:6c:5c:4b:5b:50:6f:fe:f7: 67:89:90:f9:20:1e:c0:03:9d:37:e9:93:c9:0d:80:8c:f9:d9: 5b:c8:61:59:3b:26:ec:ce:c0:fb:13:b6:8b:19:3d:7b:3b:66: a1:a1:6c:3f:9c:90:d7:a5:b9:73:b1:13:68:2a:70:30:b4:46: 86:38:48:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNkZEMDg4N0EzOTAzRTNENkUxN0JCOUNGRDhFRjI2OTI3 MEJBQ0IwNzAeFw0yNTA3MDMwNzE1MzNaFw0yNTA3MTAwNzE1MzNaMBgxFjAUBgNV BAMTDTY4NjYyZTE1LWI3MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy6dsdU5/6QkoyHiqpaoKHfGKzVJAfRysBgF0PJTM6UgELrzgHV8sPZEp1+7qV +aTpqVrIfaLibFNT5g7SsY4QeYkOlk3ohpUSMihwJaFsOPe+HC/XeMhJ6Tsbfi9P 5rQuAnfdlGqYnC9y8td7vGelNWPnLWvyAftTFgw+hq7mzf17jbdN3e3skbNqwMAh S1cM9QGSGqrh9szTXxE26UkzMMHN5KgHp4v3vR0jlBzXPCOGpt7KclBCXhIFVh9I VPUhi7ReJqw4A7ujMRbe1x7qmMFUis72koNMEX71JWYFY2TC0XCR894mPdGwatkW g1egZp2EFgdBznXGBes87sIHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUum3QKs6T nDELeYMn94zKQYAcrpkwHwYDVR0jBBgwFoAUb9CIejkD49bhe7nP2O8mknC6ywcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0U2RTZCRTQ0QkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjlDSWVqa0Q0OWJoZTduUDJPOG1rbkM2eXdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0U2RTZCRTQ0QkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDli aGU3blAyTzhta25DNnl3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEKaEweVHrYht2aguZExNOZHks4GYytRxhqL/QZlCvm6wMaJQgj2yaW5 e8TKFvnkd8o7HkvHRxlzOQyOuTHeJtbf+rScJyfZYNhdQJ/+QTIFPL9nI7ozgVUU nRsmjZaqW0K8HcUr7WqarY5LWrK7D8LAR80FMZgHBOC6sjQ17q4SIRmF4oYF3pZP E93lEVJYAtWPlERJLvyT7hj425UfT+6Dhh6ULt3ml/39lnqqW6+iuxXv1enMGak9 k8TN8nBsXEtbUG/+92eJkPkgHsADnTfpk8kNgIz52VvIYVk7JuzOwPsTtosZPXs7 ZqGhbD+ckNeluXOxE2gqcDC0RoY4SHM= -----END CERTIFICATE-----Generated at Thu Jul 3 22:44:05 2025 by rpki-client