$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: bWfaFbkw2L02XsrEe5ujlLKgnZrMitgRDcaKZUfMkE8= Subject key identifier: B9:51:B7:89:E9:B0:E5:46:99:63:4A:9B:19:02:E7:E0:73:59:D3:AA Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 064E Signing time: Wed 02 Jul 2025 22:54:09 +0000 Manifest this update: Wed 02 Jul 2025 22:54:09 +0000 Manifest next update: Wed 09 Jul 2025 22:54:09 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: BBXeuu9ws49+RpnV5Hy2n73jau0IP57YdDvvEtbq/cs=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Jul 2 22:54:09 2025 GMT Not After : Jul 9 22:54:09 2025 GMT Subject: CN=6865b891-751c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e3:00:93:94:63:49:65:31:a6:4a:8b:05:96: ab:37:db:68:82:b2:08:7e:50:24:b3:99:5e:30:9d: 4e:cd:13:b4:cb:9e:06:e1:8e:9b:5e:8c:6b:f3:2d: 22:89:db:2f:5a:37:a6:05:ec:9e:75:91:a9:a5:59: 3f:bd:fd:3d:48:f8:a2:b2:8b:dc:61:45:66:77:1e: 12:1e:82:f9:d4:dc:54:87:17:6f:5a:62:1e:0f:b8: 6d:d2:3e:f8:ee:33:ce:a5:af:1e:77:4f:25:b6:e4: 13:33:95:ae:75:16:4b:58:20:36:a2:c2:88:62:0b: 4d:b9:dd:12:a6:df:69:12:06:67:8b:41:fb:19:6c: bf:db:15:2c:b9:d3:13:d4:1b:e0:dd:67:8f:5f:aa: c1:1b:78:02:16:2b:fe:b3:17:b3:2a:23:6b:b4:0c: 9c:b9:ee:c2:b2:74:02:ca:0a:e1:0f:3b:cf:24:88: dc:9c:0a:2e:ed:3e:8f:be:2b:81:10:5a:36:94:27: 67:37:5d:97:0c:9c:f5:de:ec:10:9d:96:ef:0f:aa: e6:67:d5:e8:ef:58:99:19:e5:3e:c1:6f:8e:ed:c5: 68:9f:1b:0b:76:12:49:7c:26:7c:0e:4b:ca:92:f8: 91:12:9d:3b:5a:ed:ca:f9:5d:ec:f3:fc:38:de:91: 11:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:51:B7:89:E9:B0:E5:46:99:63:4A:9B:19:02:E7:E0:73:59:D3:AA X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:27:d1:b5:a8:d2:a2:c1:55:a2:2b:78:84:ae:e7:d7:d4:e4: f7:9c:84:fe:a1:6e:0c:aa:05:eb:3f:2c:a6:22:82:84:6e:26: ad:83:8d:47:61:27:89:4a:b5:e1:8d:23:ef:02:5a:cf:e0:77: 86:52:54:f3:0a:72:c7:d1:cb:69:ea:33:56:2d:c5:cd:fa:06: b9:92:4d:9f:b2:8b:76:46:16:9d:5a:61:0c:cb:a2:00:4e:e0: e5:6d:6d:5b:80:a9:3e:fb:9f:1c:52:52:2a:9f:4d:f1:88:6f: 76:b9:bc:59:9e:47:9c:e1:fb:0f:94:c0:ec:b5:11:12:3b:7e: 45:bb:51:19:eb:f6:34:67:23:5a:89:02:e7:88:bd:02:2d:df: 08:1f:af:91:ec:6b:1f:a1:e7:76:92:78:82:68:ac:46:e3:fd: 4f:f4:9a:6a:59:94:ca:93:0d:94:cf:8d:69:cb:29:74:43:94: 1c:50:2b:bc:2d:61:f7:92:1d:23:be:21:47:08:a8:82:53:90: 56:f4:a2:fb:c1:72:56:bc:50:06:d1:fd:28:29:13:7d:0f:ce: f9:3a:ec:56:e7:9b:c7:7b:5e:44:b3:34:5f:ac:50:64:d1:90: 0f:df:2e:99:dc:10:79:4f:ee:43:4c:63:77:94:6b:f8:e8:37: b8:03:dc:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUwNzAyMjI1NDA5WhcNMjUwNzA5MjI1NDA5WjAYMRYwFAYD VQQDEw02ODY1Yjg5MS03NTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuMAk5RjSWUxpkqLBZarN9togrIIflAks5leMJ1OzRO0y54G4Y6bXoxr8y0i idsvWjemBeyedZGppVk/vf09SPiisovcYUVmdx4SHoL51NxUhxdvWmIeD7ht0j74 7jPOpa8ed08ltuQTM5WudRZLWCA2osKIYgtNud0Spt9pEgZni0H7GWy/2xUsudMT 1Bvg3WePX6rBG3gCFiv+sxezKiNrtAycue7CsnQCygrhDzvPJIjcnAou7T6PviuB EFo2lCdnN12XDJz13uwQnZbvD6rmZ9Xo71iZGeU+wW+O7cVonxsLdhJJfCZ8DkvK kviREp07Wu3K+V3s8/w43pER/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlRt4np sOVGmWNKmxkC5+BzWdOqMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtJ9G1qNKiwVWiK3iErufX1OT3nIT+oW4MqgXrPyymIoKEbiatg41H YSeJSrXhjSPvAlrP4HeGUlTzCnLH0ctp6jNWLcXN+ga5kk2fsot2RhadWmEMy6IA TuDlbW1bgKk++58cUlIqn03xiG92ubxZnkec4fsPlMDstRESO35Fu1EZ6/Y0ZyNa iQLniL0CLd8IH6+R7Gsfoed2kniCaKxG4/1P9JpqWZTKkw2Uz41pyyl0Q5QcUCu8 LWH3kh0jviFHCKiCU5BW9KL7wXJWvFAG0f0oKRN9D875OuxW55vHe15EszRfrFBk 0ZAP3y6Z3BB5T+5DTGN3lGv46De4A9zv -----END CERTIFICATE-----Generated at Thu Jul 3 23:21:35 2025 by rpki-client