$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: 9iIYxSu0NHlUH33qsxPtm4am0qkiv5DphXB1C3V18l4= Subject key identifier: D5:AA:FE:40:9D:28:90:A3:A6:3A:D3:2A:27:9B:73:3F:C2:62:EE:51 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13CC Signing time: Wed 02 Jul 2025 15:32:48 +0000 Manifest this update: Wed 02 Jul 2025 15:32:48 +0000 Manifest next update: Wed 09 Jul 2025 15:32:48 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: Ac01LewIO4DRLYUEAOt7rWrQdP1GMbZQOyqykQq1uDI=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5097 (0x13e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Jul 2 15:32:48 2025 GMT Not After : Jul 9 15:32:48 2025 GMT Subject: CN=68655120-2108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:04:7f:59:ea:21:61:32:2b:34:24:b0:7f: 3a:5a:3e:28:a8:72:f3:7d:26:13:7d:f3:5d:08:0e: db:77:db:59:f7:82:9e:44:5b:53:54:8e:86:c4:21: 27:d7:b3:e4:df:cf:ae:37:f8:53:e0:6c:29:d9:cc: 0c:85:51:b5:b4:c6:09:18:2a:7a:d7:20:28:66:64: 1c:be:72:6a:0c:95:9d:9f:c5:f6:79:c6:c6:fa:3b: 4b:c5:95:f6:11:09:eb:0f:65:12:bf:24:10:b1:14: 03:ae:df:6a:d3:f5:0a:eb:5c:3d:71:65:ef:06:29: 15:16:55:c7:d2:e1:fc:e1:3f:80:30:b3:c3:d8:78: 85:3c:bf:cf:2b:db:7a:06:f1:75:e5:d1:96:d7:07: 56:fd:71:05:e8:73:66:27:77:55:40:45:8e:1c:86: 60:4d:15:23:cf:96:ee:4c:0b:50:8a:90:0b:77:1d: b9:bc:0f:6d:6c:70:3f:47:07:c2:26:f8:30:57:eb: 5f:d9:3a:62:d8:32:84:6b:0e:35:02:25:1d:8a:62: cb:e5:64:e5:6b:3a:a0:fe:15:94:31:e9:0d:5f:f0: 76:56:69:32:44:fd:57:56:a4:b8:bd:d7:5d:e8:7d: 45:0c:de:72:fc:85:30:31:37:aa:e9:f5:10:f3:9e: 65:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:AA:FE:40:9D:28:90:A3:A6:3A:D3:2A:27:9B:73:3F:C2:62:EE:51 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a8:05:24:af:c4:e8:83:12:2c:1c:b1:28:9a:52:d4:da:a0: 85:c2:5d:fa:f8:81:ec:7f:f8:74:07:c9:60:a7:9f:35:27:ad: 92:06:60:a6:4d:6d:14:09:84:b3:d5:0c:7b:5c:ca:bd:52:d5: b2:51:69:8d:d2:1b:96:fa:55:d0:41:13:99:4c:35:0e:dc:b7: b8:5b:e6:e3:ca:e3:27:fd:4e:19:67:9c:ee:ea:5e:11:c9:11: 4e:15:e9:75:a9:78:5d:97:b1:73:0e:4c:15:5f:e4:c4:4f:21: de:62:8e:b7:de:68:4a:90:60:b2:68:e0:43:1f:51:e5:72:fc: 6a:0b:13:6d:02:45:a8:58:f8:cc:fc:ac:eb:45:88:d4:ab:a1: 47:af:54:1d:f2:59:eb:57:56:b7:6f:74:08:c1:62:4e:ff:90: d8:21:c3:72:9e:4d:2f:79:da:bd:a6:b3:07:99:29:6b:0c:16: 1b:34:03:4d:0d:e2:06:be:09:23:b4:c9:34:3a:1b:32:55:e1: 13:9b:b2:be:b4:72:78:be:fb:af:23:78:2e:99:95:a2:96:d0: e9:a4:e1:dc:9b:82:00:3a:6c:13:e0:54:77:d2:61:92:5a:e6: d5:dc:03:1d:eb:97:d8:b2:60:57:3f:05:cd:7d:37:0f:63:c3: 69:f5:82:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwNzAyMTUzMjQ4WhcNMjUwNzA5MTUzMjQ4WjAYMRYwFAYD VQQDEw02ODY1NTEyMC0yMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtT4Ef1nqIWEyKzQksH86Wj4oqHLzfSYTffNdCA7bd9tZ94KeRFtTVI6GxCEn 17Pk38+uN/hT4Gwp2cwMhVG1tMYJGCp61yAoZmQcvnJqDJWdn8X2ecbG+jtLxZX2 EQnrD2USvyQQsRQDrt9q0/UK61w9cWXvBikVFlXH0uH84T+AMLPD2HiFPL/PK9t6 BvF15dGW1wdW/XEF6HNmJ3dVQEWOHIZgTRUjz5buTAtQipALdx25vA9tbHA/RwfC JvgwV+tf2Tpi2DKEaw41AiUdimLL5WTlazqg/hWUMekNX/B2VmkyRP1XVqS4vddd 6H1FDN5y/IUwMTeq6fUQ855lyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWq/kCd KJCjpjrTKiebcz/CYu5RMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeqAUkr8TogxIsHLEomlLU2qCFwl36+IHsf/h0B8lgp581J62SBmCm TW0UCYSz1Qx7XMq9UtWyUWmN0huW+lXQQROZTDUO3Le4W+bjyuMn/U4ZZ5zu6l4R yRFOFel1qXhdl7FzDkwVX+TETyHeYo633mhKkGCyaOBDH1HlcvxqCxNtAkWoWPjM /KzrRYjUq6FHr1Qd8lnrV1a3b3QIwWJO/5DYIcNynk0vedq9prMHmSlrDBYbNANN DeIGvgkjtMk0OhsyVeETm7K+tHJ4vvuvI3gumZWiltDppOHcm4IAOmwT4FR30mGS WubV3AMd65fYsmBXPwXNfTcPY8Np9YI0 -----END CERTIFICATE-----Generated at Thu Jul 3 23:27:52 2025 by rpki-client