$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: DNb4vg+aTjTDHqI4q7SrtzwXvRMSRTGthl7IOt8x40E= Subject key identifier: F6:5D:9F:5D:47:44:18:9E:36:D0:88:3D:99:2A:6F:6A:82:23:A0:DB Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: E7 Signing time: Thu 03 Jul 2025 05:42:24 +0000 Manifest this update: Thu 03 Jul 2025 05:42:24 +0000 Manifest next update: Thu 10 Jul 2025 05:42:24 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: VXS5PbQk6q7Mf5bW+V2uhk9+QeVlfARZCQOHS9XoEvA=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Jul 3 05:42:24 2025 GMT Not After : Jul 10 05:42:24 2025 GMT Subject: CN=68661840-4228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f6:76:7c:05:c7:df:90:43:1d:b2:d0:1a:31: c8:13:f7:f1:62:38:05:35:3f:f0:b9:19:73:17:d8: c4:fc:4a:b6:e5:63:d0:e9:5e:db:4a:6d:67:c2:61: 47:37:f1:58:ce:65:dd:d6:93:41:67:9e:e3:30:87: 63:9f:87:5c:4f:cf:33:bf:a1:03:ed:2e:bc:21:a1: 4a:c9:dd:32:13:b8:4a:f6:d7:84:6d:f7:6c:30:37: 5c:75:bc:35:4d:21:90:e5:4d:2e:ae:3c:a6:d0:53: c0:1a:57:cf:f7:dc:05:56:c6:68:63:46:67:66:f9: 7f:e9:02:70:3e:ab:ee:b2:03:b3:65:2d:17:86:e7: 58:79:a4:35:42:5c:49:be:3b:fb:cc:53:ec:c3:4c: d5:1e:83:6d:94:c9:42:fc:7a:ef:e7:aa:34:e9:c1: 21:41:f4:c6:7c:88:75:e2:33:4e:54:67:f4:b2:d4: f0:a9:29:0f:f6:f2:2b:c9:63:f6:c6:97:2e:00:29: c0:ed:59:f5:13:e0:d4:c4:0f:27:a8:5b:21:e9:2d: 81:88:2b:f8:48:17:4e:51:38:df:28:5b:fb:57:43: 9b:ba:aa:d7:17:20:64:cf:b9:ea:2f:43:7e:37:24: 84:68:ed:37:8d:33:cf:61:3c:99:c5:17:b9:35:3f: bc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5D:9F:5D:47:44:18:9E:36:D0:88:3D:99:2A:6F:6A:82:23:A0:DB X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:b6:b3:4f:f3:a1:f1:76:61:37:46:e9:81:68:aa:1c:5d:6c: 42:af:43:34:b6:cb:94:79:53:e7:fb:85:d7:87:53:7f:eb:f3: a3:2c:a8:d1:1b:a1:77:8e:e2:30:f4:27:fe:61:c0:cf:83:b6: c4:f7:13:ef:d8:ea:b3:34:d2:7e:5c:09:6c:9d:07:d1:23:ca: f5:83:93:82:03:a8:fd:e8:49:ba:06:1a:b0:38:5a:68:dd:73: 18:3c:96:3e:4b:42:a0:c9:2a:c9:22:10:a2:8f:59:d5:e6:04: 69:22:b5:de:0c:00:f5:6e:b3:cc:bb:fd:33:c8:6a:d9:20:f5: e7:93:c7:2b:65:b7:e9:d5:af:99:7f:7d:64:c9:94:76:58:89: 24:19:0e:03:4f:f3:15:9d:d9:16:16:81:66:0c:0a:26:c9:df: 95:46:34:69:06:9b:a3:aa:91:2f:ff:62:9c:05:77:6f:1e:a9: 20:60:9e:bb:b7:e7:ae:47:31:bc:9c:aa:3c:90:82:4b:18:34: 70:a8:dc:6d:5f:e5:5b:4a:fc:c0:32:cc:06:82:c6:15:02:22: 8e:13:14:a6:05:3a:0b:76:6d:f4:37:a3:1c:e1:e6:3e:e6:84: 09:f0:87:eb:9d:5d:b7:ca:8f:f1:cc:ca:2a:ac:7d:b3:0f:89: 70:47:b2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwNzAzMDU0MjI0WhcNMjUwNzEwMDU0MjI0WjAYMRYwFAYD VQQDEw02ODY2MTg0MC00MjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfZ2fAXH35BDHbLQGjHIE/fxYjgFNT/wuRlzF9jE/Eq25WPQ6V7bSm1nwmFH N/FYzmXd1pNBZ57jMIdjn4dcT88zv6ED7S68IaFKyd0yE7hK9teEbfdsMDdcdbw1 TSGQ5U0urjym0FPAGlfP99wFVsZoY0ZnZvl/6QJwPqvusgOzZS0XhudYeaQ1QlxJ vjv7zFPsw0zVHoNtlMlC/Hrv56o06cEhQfTGfIh14jNOVGf0stTwqSkP9vIryWP2 xpcuACnA7Vn1E+DUxA8nqFsh6S2BiCv4SBdOUTjfKFv7V0ObuqrXFyBkz7nqL0N+ NySEaO03jTPPYTyZxRe5NT+8pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZdn11H RBieNtCIPZkqb2qCI6DbMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBctrNP86HxdmE3RumBaKocXWxCr0M0tsuUeVPn+4XXh1N/6/OjLKjR G6F3juIw9Cf+YcDPg7bE9xPv2OqzNNJ+XAlsnQfRI8r1g5OCA6j96Em6BhqwOFpo 3XMYPJY+S0KgySrJIhCij1nV5gRpIrXeDAD1brPMu/0zyGrZIPXnk8crZbfp1a+Z f31kyZR2WIkkGQ4DT/MVndkWFoFmDAomyd+VRjRpBpujqpEv/2KcBXdvHqkgYJ67 t+euRzG8nKo8kIJLGDRwqNxtX+VbSvzAMswGgsYVAiKOExSmBToLdm30N6Mc4eY+ 5oQJ8IfrnV23yo/xzMoqrH2zD4lwR7Iu -----END CERTIFICATE-----Generated at Thu Jul 3 08:09:01 2025 by rpki-client