$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: 7/V53JXMp/x+Q2gAP5ABRAYdh0nNhy5LdymlWd3ISrY= Subject key identifier: 66:F9:06:B7:B7:B2:1D:1F:C1:84:59:45:E4:35:B3:C7:F7:E4:FE:02 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C08 Signing time: Wed 02 Jul 2025 19:34:15 +0000 Manifest this update: Wed 02 Jul 2025 19:34:15 +0000 Manifest next update: Wed 09 Jul 2025 19:34:15 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: 4RtuX6mvRQafkvZDR4T/P7WAJV10VwgrcdqfGB8i03I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Jul 2 19:34:15 2025 GMT Not After : Jul 9 19:34:15 2025 GMT Subject: CN=686589b7-6e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:95:4c:0c:bb:2d:cd:bd:b4:df:8b:74:d6:a0: 25:8a:2d:cc:ad:42:5d:e7:98:b9:bf:f9:e7:55:1e: d9:3e:3b:ef:25:b3:bd:4a:50:de:8a:b6:62:b2:d6: 37:a5:0e:95:a1:aa:ed:0d:2d:22:2f:a1:f3:51:31: a9:d0:e3:be:a9:63:5c:b2:6b:cc:1d:bf:b7:97:5d: e5:ff:71:94:44:a4:cc:e7:0a:cf:2e:49:d5:fe:dc: 0e:15:50:49:47:b2:82:ad:59:c5:1f:15:a3:cf:f9: 42:ab:2a:87:e8:2c:5e:82:f2:4a:c3:ce:69:df:3e: af:7a:78:c9:0a:f3:03:26:32:1a:78:30:6f:50:41: 24:bf:71:95:81:af:7c:27:04:1c:39:6a:6f:b4:eb: 1f:ca:01:a7:5b:e2:41:9b:05:6a:4a:18:ac:6a:5e: 71:6b:d1:2a:40:7b:23:02:a6:a6:af:12:46:a1:29: 24:8b:9d:ff:c8:17:e9:32:ff:e0:f2:58:b5:11:d6: 73:95:3e:8b:ab:25:ef:aa:88:7e:a2:87:16:53:0e: 8e:4a:35:fc:2d:ae:be:fe:52:bb:98:6b:2d:4a:fe: 15:0c:fd:8a:da:96:9e:8d:1e:1b:e8:8d:10:a1:2d: e4:47:e4:4e:a1:4f:7e:4b:3c:4a:4b:00:bc:06:61: 2b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F9:06:B7:B7:B2:1D:1F:C1:84:59:45:E4:35:B3:C7:F7:E4:FE:02 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c9:6d:06:ad:9a:65:ed:c3:8f:fc:e7:cf:09:5a:8f:1e:09: b6:79:73:c2:5c:c8:40:9a:fa:ae:7e:3e:e8:0b:29:f3:f3:d7: 40:c1:ca:46:b4:17:e0:37:8c:11:b3:9e:ac:ee:cf:52:49:90: 68:5e:0a:56:d0:e7:19:4b:fe:41:be:d8:d0:35:7b:f3:70:3a: 82:f2:6b:bd:fe:58:7e:40:f5:0c:8f:94:69:2b:0f:b6:5e:da: 19:8c:ef:5e:6e:be:18:9f:0c:76:73:e2:73:71:f6:b1:db:2c: ce:c2:be:b0:31:8c:71:d1:12:cf:84:20:28:f1:49:74:21:03: 21:b7:3d:e1:00:42:3d:df:01:64:14:c3:26:5e:f3:9f:9b:eb: 01:e3:87:65:8c:a5:46:bf:10:fb:db:79:b4:6f:df:d0:72:db: e2:6b:7e:17:33:22:b8:67:dd:ee:a6:af:26:cb:63:c0:18:14: 0c:d3:0b:56:98:32:d0:c2:f8:77:5d:2b:f7:a9:51:38:fe:0b: 95:00:1a:cb:ba:b5:aa:6f:9b:95:38:39:23:3e:9e:25:d0:12: 08:c0:47:04:39:f7:d7:37:c8:96:fd:dc:47:a3:fa:7e:f5:67: 21:b4:9c:a2:16:7a:91:82:1f:31:43:63:79:a3:c8:72:b6:1d: 99:41:18:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwNzAyMTkzNDE1WhcNMjUwNzA5MTkzNDE1WjAYMRYwFAYD VQQDEw02ODY1ODliNy02ZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJVMDLstzb2034t01qAlii3MrUJd55i5v/nnVR7ZPjvvJbO9SlDeirZistY3 pQ6VoartDS0iL6HzUTGp0OO+qWNcsmvMHb+3l13l/3GURKTM5wrPLknV/twOFVBJ R7KCrVnFHxWjz/lCqyqH6CxegvJKw85p3z6venjJCvMDJjIaeDBvUEEkv3GVga98 JwQcOWpvtOsfygGnW+JBmwVqShisal5xa9EqQHsjAqamrxJGoSkki53/yBfpMv/g 8li1EdZzlT6LqyXvqoh+oocWUw6OSjX8La6+/lK7mGstSv4VDP2K2paejR4b6I0Q oS3kR+ROoU9+SzxKSwC8BmEr/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGb5Bre3 sh0fwYRZReQ1s8f35P4CMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwyW0GrZpl7cOP/OfPCVqPHgm2eXPCXMhAmvqufj7oCynz89dAwcpG tBfgN4wRs56s7s9SSZBoXgpW0OcZS/5BvtjQNXvzcDqC8mu9/lh+QPUMj5RpKw+2 XtoZjO9ebr4Ynwx2c+Jzcfax2yzOwr6wMYxx0RLPhCAo8Ul0IQMhtz3hAEI93wFk FMMmXvOfm+sB44dljKVGvxD723m0b9/Qctvia34XMyK4Z93upq8my2PAGBQM0wtW mDLQwvh3XSv3qVE4/guVABrLurWqb5uVODkjPp4l0BIIwEcEOffXN8iW/dxHo/p+ 9WchtJyiFnqRgh8xQ2N5o8hyth2ZQRiR -----END CERTIFICATE-----Generated at Thu Jul 3 06:16:18 2025 by rpki-client