$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft File: _k_aOWcBbBE6yAe4STQKxlIPCAI.mft (raw, json) Hash identifier: oIV34fbcesiU8zbTsMjy+wIztNFBf8pWZalL+7ah36Q= Subject key identifier: 6D:E0:3C:66:67:0D:91:73:B2:2B:FF:DA:AC:40:3D:25:2E:1C:23:0C Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0A0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft Manifest number: 09E7 Signing time: Sat 28 Jun 2025 19:36:24 +0000 Manifest this update: Sat 28 Jun 2025 19:36:24 +0000 Manifest next update: Sat 05 Jul 2025 19:36:24 +0000 Files and hashes: 1: _k_aOWcBbBE6yAe4STQKxlIPCAI.crl (hash: Qi2Jl1fb6vHGv0DiLZXYViZIyFOB5U86b9tH/1Bgv4g=) 2: 699CD772C2B911EBBB4C8928C4F9AE02.roa (hash: yfdf5Mv/GJ9tUDZNlDnmM6hHiINUq2OvlkNbS0rVles=) 3: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (hash: qU5SgxuYfj9EbloGsgp5NlU+LGZow7QsAYGZSye/EIM=) 4: 91F5867070B811EDB6E1F81BC4F9AE02.roa (hash: PgZPVHxtNUmnyrhnnwVcg3kijll4dZA2GpurrS7x078=) 5: 1E9514207F9311EA8177A82DC4F9AE02.roa (hash: mCrr4AsBoN0UqBzrLZ/+kB+0BpCUxnU7wJAUdq4LZdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 19:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Jun 28 19:36:24 2025 GMT Not After : Jul 5 19:36:24 2025 GMT Subject: CN=68604438-e5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ee:71:d2:e7:98:6e:fb:26:35:6f:b9:b6:42: 09:09:8c:4c:06:d5:fc:37:08:62:5a:13:cf:e2:c7: fc:64:7b:ae:b0:3e:64:96:ae:50:85:62:a7:ca:df: 7b:fc:2c:97:9c:c6:db:ab:4f:15:ec:eb:c6:c5:a4: ca:e1:ee:2e:a8:53:ac:07:71:ca:4b:eb:65:51:75: e8:51:2c:f8:bb:e5:11:df:aa:a0:b2:b5:62:db:f5: 60:50:cf:f7:5f:57:3b:bc:cf:a6:fa:24:95:de:5f: 4d:4d:46:ca:0b:3e:22:fe:8f:4b:f2:d0:15:9c:58: 56:c4:b6:b1:29:b5:fa:78:50:09:fe:7f:3e:13:01: 8b:37:59:df:2b:55:d0:28:22:a4:05:c2:bd:fc:5f: ed:aa:bd:b9:1d:bf:0b:46:79:cc:cf:77:52:29:39: c9:ee:09:e7:7b:4b:fb:63:ed:08:cf:07:5c:59:9e: c5:cf:2e:44:db:93:3d:e5:7a:ed:bb:82:90:41:71: 4f:61:27:1c:3c:f4:9b:73:6c:76:ce:61:ab:52:76: 2b:e9:de:7f:e0:86:17:83:4d:a1:5d:d7:b9:f0:30: b9:6e:75:08:8f:7e:93:b5:1c:75:e2:df:19:9a:50: 4e:2f:7a:77:ca:a5:a2:a7:be:16:30:e8:d1:e5:03: 2f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E0:3C:66:67:0D:91:73:B2:2B:FF:DA:AC:40:3D:25:2E:1C:23:0C X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:bd:0e:d1:dc:1d:11:ea:6e:26:91:20:e9:98:3b:c8:08:76: d9:31:7d:e5:c6:e7:37:00:1f:62:c1:ba:e0:6a:11:03:35:bf: 97:8f:ed:2d:92:40:43:e5:53:60:3d:66:38:90:a6:23:a2:6e: 46:75:fa:2b:85:34:01:73:a0:f1:66:ce:d7:b6:89:36:d4:af: a7:f4:ae:01:19:92:27:d9:fe:a7:12:8a:de:9b:ea:80:d9:a9: 12:82:97:84:89:5f:82:11:33:f8:38:4c:0c:2d:10:5e:c5:f7: 33:1e:6e:a7:f6:0f:af:88:28:b5:11:0c:26:9d:1a:e2:75:02: 62:e7:5b:7a:46:5e:17:2c:c3:52:f7:d6:63:df:ff:45:be:6f: a3:28:48:ce:03:11:ba:9a:16:79:f1:cb:31:c6:fd:f4:15:e2: 8f:64:33:a7:80:98:f4:f9:94:4e:2d:8d:6c:d3:18:99:d2:c8: 1b:5e:44:4c:d1:37:aa:84:af:fb:9f:f1:4d:26:2c:c7:5e:bf: 95:33:4c:cd:4d:fd:3d:94:df:fc:2a:8f:7d:5d:f6:69:2e:c0: fe:b2:52:67:27:ec:f8:1f:3c:91:3b:01:a4:81:0a:3a:bd:bf: 6d:63:70:88:b2:cc:18:db:5a:60:df:a5:0a:9c:87:06:b8:e2: 6a:20:74:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjUwNjI4MTkzNjI0WhcNMjUwNzA1MTkzNjI0WjAYMRYwFAYD VQQDEw02ODYwNDQzOC1lNWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0e5x0ueYbvsmNW+5tkIJCYxMBtX8NwhiWhPP4sf8ZHuusD5klq5QhWKnyt97 /CyXnMbbq08V7OvGxaTK4e4uqFOsB3HKS+tlUXXoUSz4u+UR36qgsrVi2/VgUM/3 X1c7vM+m+iSV3l9NTUbKCz4i/o9L8tAVnFhWxLaxKbX6eFAJ/n8+EwGLN1nfK1XQ KCKkBcK9/F/tqr25Hb8LRnnMz3dSKTnJ7gnne0v7Y+0IzwdcWZ7Fzy5E25M95Xrt u4KQQXFPYSccPPSbc2x2zmGrUnYr6d5/4IYXg02hXde58DC5bnUIj36TtRx14t8Z mlBOL3p3yqWip74WMOjR5QMvkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3gPGZn DZFzsiv/2qxAPSUuHCMMMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTU4MC9DN0NFMkUxMDdGOEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJC RTZ5QWU0U1RRS3hsSVBDQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLvQ7R3B0R6m4mkSDpmDvICHbZMX3lxuc3AB9iwbrgahEDNb+Xj+0t kkBD5VNgPWY4kKYjom5GdforhTQBc6DxZs7Xtok21K+n9K4BGZIn2f6nEorem+qA 2akSgpeEiV+CETP4OEwMLRBexfczHm6n9g+viCi1EQwmnRridQJi51t6Rl4XLMNS 99Zj3/9Fvm+jKEjOAxG6mhZ58csxxv30FeKPZDOngJj0+ZROLY1s0xiZ0sgbXkRM 0TeqhK/7n/FNJizHXr+VM0zNTf09lN/8Ko99XfZpLsD+slJnJ+z4HzyROwGkgQo6 vb9tY3CIsswY21pg36UKnIcGuOJqIHQ9 -----END CERTIFICATE-----Generated at Sun Jun 29 21:54:54 2025 by rpki-client