$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: 3aSgc9iwL97ZT5jDfKGFzMHhYWEG+ut0ygF7CmK2/Vs= Subject key identifier: 8F:09:92:10:D7:4D:05:9C:37:9E:E1:0D:64:9B:4E:1B:0F:5D:53:0F Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 11EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 11D2 Signing time: Wed 02 Jul 2025 17:22:31 +0000 Manifest this update: Wed 02 Jul 2025 17:22:31 +0000 Manifest next update: Wed 09 Jul 2025 17:22:31 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: +QOTFozLRlboQILNF24hpvvAwRkF+OfUZaPMUuS0++E=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Cinni1CQdvw9QZ/TfXqeTRH7AM3KM0M/pfCrSaEHDYM=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4586 (0x11ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Jul 2 17:22:31 2025 GMT Not After : Jul 9 17:22:31 2025 GMT Subject: CN=68656ad7-eea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b1:3b:99:21:e4:5d:0c:80:20:0d:24:a6:96: b1:19:04:f8:92:c6:2d:bf:86:60:ff:5f:3e:f1:62: c8:52:68:66:7e:4a:1f:7b:c7:c8:d5:52:05:c3:d0: cc:ba:5b:39:61:a8:5c:e9:ea:af:48:14:a8:b5:b1: c9:74:f1:f3:6b:fe:fc:05:35:23:df:06:69:14:ef: 8f:f9:e1:08:a8:1b:fc:fd:17:a3:9b:8e:78:e5:0f: 8f:7a:a8:9f:89:2e:2d:96:a8:3e:13:9c:63:a7:61: a3:f9:b2:25:b8:42:69:5f:6d:51:8c:f3:ca:ef:19: 70:37:f2:a3:75:8c:58:61:b8:3b:8c:00:5c:d0:9e: d2:5e:f9:4a:94:23:cd:1a:a3:30:90:d5:00:26:11: eb:2f:a4:97:a2:ca:51:7f:14:76:14:7e:17:3c:1d: 31:0d:0a:94:ae:86:90:e3:9b:b0:6c:fa:9a:6a:75: d8:38:09:7c:e9:93:90:4f:bd:10:da:c9:47:c5:c2: 72:e0:58:9c:7a:c5:5c:b7:f4:87:de:21:bc:30:5c: c5:56:cb:b0:2d:24:eb:5f:cc:db:5f:12:e0:37:13: 49:51:fd:e0:d3:f5:45:ac:74:da:6f:b4:1c:a4:d2: 6f:a6:79:d7:ba:63:8e:bd:49:1c:57:65:56:59:5c: 0f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:09:92:10:D7:4D:05:9C:37:9E:E1:0D:64:9B:4E:1B:0F:5D:53:0F X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:0b:fb:da:f0:32:59:35:ab:58:90:20:00:8f:ea:b3:b7:f4: e3:0c:08:69:1b:b9:85:fe:1d:d2:11:ed:bd:d1:d4:54:c1:f8: 86:0f:ca:a1:4a:7b:62:17:ec:1d:61:6e:22:1b:f0:3b:71:1d: 72:8a:b2:fb:04:0e:7f:c7:41:87:9d:c7:7e:c0:46:89:bd:98: c8:e6:cf:2c:a6:47:e5:d2:95:0a:bc:85:93:43:0e:02:3a:e9: 5d:4d:18:cc:38:b6:39:d3:ac:22:45:c0:37:42:1c:52:ec:48: ef:0d:8f:89:28:c1:60:cd:c0:ab:5e:1f:0d:7b:2b:4c:ed:5c: 3c:52:2d:84:99:0a:29:41:60:a9:63:17:6d:6d:64:95:ba:04: 5e:05:fd:c1:e8:0d:3a:74:d8:5e:59:1f:2c:44:a2:fb:60:e5: bb:2b:e4:41:05:52:43:b1:64:2f:3a:cd:9d:d0:69:6a:98:29: 16:96:06:c8:a3:fa:28:e3:d5:4b:ed:5f:2c:3f:93:af:85:7b: 38:9a:ba:03:d0:60:05:7b:49:ac:39:81:81:81:1d:64:b9:1a: 7e:f8:56:46:85:a3:b6:f0:f4:4a:d8:2d:06:d9:c0:70:f0:47: aa:ba:a9:cb:4d:26:ee:b3:d5:c0:e9:d1:cf:11:a6:3e:31:ad: 6d:28:5f:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUwNzAyMTcyMjMxWhcNMjUwNzA5MTcyMjMxWjAYMRYwFAYD VQQDEw02ODY1NmFkNy1lZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rE7mSHkXQyAIA0kppaxGQT4ksYtv4Zg/18+8WLIUmhmfkofe8fI1VIFw9DM uls5Yahc6eqvSBSotbHJdPHza/78BTUj3wZpFO+P+eEIqBv8/Rejm4545Q+Peqif iS4tlqg+E5xjp2Gj+bIluEJpX21RjPPK7xlwN/KjdYxYYbg7jABc0J7SXvlKlCPN GqMwkNUAJhHrL6SXospRfxR2FH4XPB0xDQqUroaQ45uwbPqaanXYOAl86ZOQT70Q 2slHxcJy4FicesVct/SH3iG8MFzFVsuwLSTrX8zbXxLgNxNJUf3g0/VFrHTab7Qc pNJvpnnXumOOvUkcV2VWWVwP8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8JkhDX TQWcN57hDWSbThsPXVMPMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzC/va8DJZNatYkCAAj+qzt/TjDAhpG7mF/h3SEe290dRUwfiGD8qh SntiF+wdYW4iG/A7cR1yirL7BA5/x0GHncd+wEaJvZjI5s8spkfl0pUKvIWTQw4C OuldTRjMOLY506wiRcA3QhxS7EjvDY+JKMFgzcCrXh8NeytM7Vw8Ui2EmQopQWCp YxdtbWSVugReBf3B6A06dNheWR8sRKL7YOW7K+RBBVJDsWQvOs2d0GlqmCkWlgbI o/oo49VL7V8sP5OvhXs4mroD0GAFe0msOYGBgR1kuRp++FZGhaO28PRK2C0G2cBw 8EequqnLTSbus9XA6dHPEaY+Ma1tKF8Z -----END CERTIFICATE-----Generated at Fri Jul 4 07:06:03 2025 by rpki-client