$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: TZ9VNvmMJuOEZJNhaBX9wpHE4fO4izzcJMXw98GnGGM= Subject key identifier: 03:C2:C6:6B:A4:EF:46:EA:4E:9E:09:F6:C9:5F:16:6B:7A:08:AB:D6 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 056A Signing time: Thu 03 Jul 2025 00:58:43 +0000 Manifest this update: Thu 03 Jul 2025 00:58:43 +0000 Manifest next update: Thu 10 Jul 2025 00:58:43 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: dm5UrtMBk2iYHh9hd+Ha4qkn5FYFwefv3eBwqfKPF0E=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Jul 3 00:58:43 2025 GMT Not After : Jul 10 00:58:43 2025 GMT Subject: CN=6865d5c3-753a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:33:41:24:c9:d6:06:79:24:24:3c:f7:7a:8f: 2a:d5:be:03:aa:2b:22:11:79:70:b1:14:f6:f7:8d: 7d:5a:d0:c9:fa:44:2e:c8:2f:a5:37:d5:65:16:ed: 68:f4:81:7b:bb:38:51:66:12:94:15:45:c3:39:66: 98:af:2d:3e:de:bf:23:64:24:eb:85:ee:70:94:d8: d6:c6:aa:42:d4:34:a4:dd:eb:a7:c3:32:e3:63:74: bd:93:b1:8d:4d:9e:f8:81:f6:c9:29:4a:71:74:e9: d1:bd:c0:f2:fc:26:6f:39:a7:df:0f:a3:f0:10:8b: ae:a6:51:82:0e:e1:e5:7b:63:27:4c:3f:35:50:5b: 92:d0:ac:02:28:85:6d:1d:67:58:0b:4c:e9:d5:1a: ca:63:41:7c:36:f0:5d:d5:97:e8:db:ee:78:62:d4: 58:b6:a9:a7:2d:ed:c0:3c:50:7d:d9:9c:51:9c:66: 9a:7b:ee:2d:3d:19:c0:76:b1:ad:2d:53:86:6f:aa: b1:55:b0:8d:4d:b5:38:c2:f7:aa:7d:1e:d3:de:6e: 93:49:08:bb:75:2f:4a:95:7c:1a:6f:fa:33:7c:23: 19:bf:9d:f7:0f:33:a9:26:f5:2a:e9:e5:81:9e:3c: cf:35:89:dc:95:4d:68:a8:a2:36:e4:b4:94:ee:1a: 45:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C2:C6:6B:A4:EF:46:EA:4E:9E:09:F6:C9:5F:16:6B:7A:08:AB:D6 X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:8a:81:49:98:6d:78:6a:42:6d:55:c8:8b:8a:3a:ec:15:69: 57:4e:d3:83:a2:27:94:10:7d:f8:8a:7f:d2:02:6d:0b:41:5c: b1:2d:de:c2:6e:2b:a0:c3:4f:7f:1f:97:81:c1:2d:f1:06:29: 87:64:26:30:08:82:87:ff:82:48:ec:a0:4b:01:d5:80:20:fa: e9:e7:c8:23:38:f1:96:17:63:5b:8f:c9:25:bb:06:ee:55:19: a0:17:16:08:46:39:de:6f:f4:37:31:ca:52:82:83:8b:9d:86: 16:08:89:57:e0:ea:f9:be:7d:df:b8:c3:d8:d0:ac:3e:90:ab: 76:52:ba:0b:2e:74:87:66:73:d1:7d:89:49:56:64:e3:1f:ee: 51:30:c8:c8:ef:41:31:a1:64:b7:2f:34:c1:28:a9:72:17:89: 5b:d5:a9:c8:4d:72:34:1c:d4:fe:74:e5:f1:5d:d6:e9:ed:50: b4:61:e5:90:f9:33:ca:fb:67:ac:db:e5:98:52:ff:fd:e0:85: 88:42:87:6a:00:f5:ae:ad:d6:98:b5:f8:ae:3f:04:87:9a:c3: 5c:8b:74:3c:4e:50:93:f8:1b:cf:03:f9:66:c4:a6:ce:74:9b: 79:94:74:f2:5c:11:24:0d:c0:e1:0d:fc:47:78:01:4b:24:56: 69:fc:82:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNzAzMDA1ODQzWhcNMjUwNzEwMDA1ODQzWjAYMRYwFAYD VQQDEw02ODY1ZDVjMy03NTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDNBJMnWBnkkJDz3eo8q1b4DqisiEXlwsRT29419WtDJ+kQuyC+lN9VlFu1o 9IF7uzhRZhKUFUXDOWaYry0+3r8jZCTrhe5wlNjWxqpC1DSk3eunwzLjY3S9k7GN TZ74gfbJKUpxdOnRvcDy/CZvOaffD6PwEIuuplGCDuHle2MnTD81UFuS0KwCKIVt HWdYC0zp1RrKY0F8NvBd1Zfo2+54YtRYtqmnLe3APFB92ZxRnGaae+4tPRnAdrGt LVOGb6qxVbCNTbU4wveqfR7T3m6TSQi7dS9KlXwab/ozfCMZv533DzOpJvUq6eWB njzPNYnclU1oqKI25LSU7hpFfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPCxmuk 70bqTp4J9slfFmt6CKvWMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOioFJmG14akJtVciLijrsFWlXTtODoieUEH34in/SAm0LQVyxLd7C biugw09/H5eBwS3xBimHZCYwCIKH/4JI7KBLAdWAIPrp58gjOPGWF2Nbj8kluwbu VRmgFxYIRjneb/Q3McpSgoOLnYYWCIlX4Or5vn3fuMPY0Kw+kKt2UroLLnSHZnPR fYlJVmTjH+5RMMjI70ExoWS3LzTBKKlyF4lb1anITXI0HNT+dOXxXdbp7VC0YeWQ +TPK+2es2+WYUv/94IWIQodqAPWurdaYtfiuPwSHmsNci3Q8TlCT+BvPA/lmxKbO dJt5lHTyXBEkDcDhDfxHeAFLJFZp/ILw -----END CERTIFICATE-----Generated at Thu Jul 3 14:33:27 2025 by rpki-client