$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft File: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft (raw, json) Hash identifier: 9UjlpM/IC1aibk3GJCI8JcWatYiPORa/AFMWlbPW/yo= Subject key identifier: 7B:B2:1E:49:E5:07:BA:06:9F:23:C7:C3:E2:B2:08:9B:7A:02:E0:38 Authority key identifier: B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 Certificate issuer: /CN=A91EF17A/serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft Manifest number: C6 Signing time: Thu 03 Jul 2025 06:07:33 +0000 Manifest this update: Thu 03 Jul 2025 06:07:33 +0000 Manifest next update: Thu 10 Jul 2025 06:07:33 +0000 Files and hashes: 1: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl (hash: 8FysuIOgfYQcESdYNIjvV6q10LZ1e2T2k4wp8cZ5fAU=) 2: B4F165084F1F11EFA3B1F709C4F9AE02.roa (hash: 6g7DJTli/YH5hSeeCwQn1OlBs7GZnC1wNbHw8krPxSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF17A, serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Validity Not Before: Jul 3 06:07:33 2025 GMT Not After : Jul 10 06:07:33 2025 GMT Subject: CN=68661e25-c9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:27:05:c5:ae:e9:05:40:73:9a:cb:1b:ed:38: 6a:85:db:59:f6:50:f6:ae:10:a4:a1:a3:36:34:09: b4:fd:a6:26:07:1d:a7:86:c5:a3:77:cd:46:a5:5d: 8a:90:4f:ad:4c:02:8f:7d:00:87:ef:f7:df:b4:82: 8b:cb:41:c0:b5:73:27:9e:fc:0d:d0:f6:3e:fb:ee: 85:74:62:65:56:2d:db:0b:3a:0b:c0:d9:37:df:00: ce:2d:e8:f3:f6:7e:8b:c9:77:26:03:21:dc:79:86: 0a:1f:ca:00:b6:0d:28:1d:b1:a7:0b:bf:67:d6:65: 63:e1:53:bf:94:67:50:d9:06:f3:32:97:d6:a4:47: 74:5c:28:58:7e:d8:30:70:2f:64:8f:b8:9e:c1:11: 6b:f1:4f:b3:83:15:d6:37:cc:31:0f:7f:30:7e:fb: ce:c8:73:df:33:6b:29:bc:c7:29:70:14:23:d2:a6: 3b:38:d0:92:2c:fa:31:b9:29:4e:ec:6c:be:c4:0b: 60:2c:3b:2e:3c:91:57:79:84:5e:8b:d9:27:da:e3: ae:ca:d3:ed:4a:70:26:b9:42:e5:33:31:e4:4c:d5: 28:90:fd:ce:d7:c7:aa:44:4c:b4:33:64:73:df:01: d3:24:ed:40:fa:eb:17:31:40:83:26:96:d0:23:b0: 2c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B2:1E:49:E5:07:BA:06:9F:23:C7:C3:E2:B2:08:9B:7A:02:E0:38 X509v3 Authority Key Identifier: keyid:B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:af:62:98:a9:c7:27:e1:3f:7d:0e:3f:b9:15:b7:8b:ac:48: db:10:75:da:34:45:f7:c0:1a:e8:7e:d1:e6:8b:5a:0e:77:9c: 8c:ba:e5:f9:39:1a:01:05:31:6a:18:fe:d3:31:1e:8f:2b:0b: ce:9f:47:09:b2:59:8d:fd:d1:32:ed:f4:d7:c2:ef:f6:78:2b: c9:0b:e7:0f:64:ce:59:66:aa:48:25:85:57:9a:db:5e:3e:00: bd:d5:7a:58:84:3c:03:b0:7a:10:68:16:04:17:3a:78:e5:ff: 2c:e5:c7:d1:a2:c0:8b:72:3e:b8:fa:1b:90:ae:1c:df:42:1d: d9:76:ba:bc:55:e2:8c:d3:da:5e:f5:57:94:59:c6:da:4c:e2: 6d:8e:ad:f8:ad:bf:ae:53:83:23:40:6a:7d:04:a2:f9:03:db: 96:f9:7d:fc:4c:c7:ae:69:80:51:fc:70:76:a4:13:93:cf:d3: d1:e5:f4:c2:5f:95:c8:f9:9e:c9:b7:a7:b8:53:e6:48:7c:65: 3b:c2:2a:22:a2:7f:ec:0e:7a:76:95:6f:9f:d2:06:f4:47:60: 63:7c:99:f3:3e:75:b2:14:df:d0:a1:ce:92:23:80:4a:ce:b9: 72:ba:ba:ae:3e:26:fc:d8:eb:0c:03:ff:cb:04:08:f9:da:cf: a8:7f:d4:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxN0ExMTAvBgNVBAUTKEIzRUZBN0Q2QUUxOTlEMTQ1ODJERDRFQ0I5MTYzQTND OUQ4NDE3NTkwHhcNMjUwNzAzMDYwNzMzWhcNMjUwNzEwMDYwNzMzWjAYMRYwFAYD VQQDEw02ODY2MWUyNS1jOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1icFxa7pBUBzmssb7ThqhdtZ9lD2rhCkoaM2NAm0/aYmBx2nhsWjd81GpV2K kE+tTAKPfQCH7/fftIKLy0HAtXMnnvwN0PY+++6FdGJlVi3bCzoLwNk33wDOLejz 9n6LyXcmAyHceYYKH8oAtg0oHbGnC79n1mVj4VO/lGdQ2QbzMpfWpEd0XChYftgw cC9kj7iewRFr8U+zgxXWN8wxD38wfvvOyHPfM2spvMcpcBQj0qY7ONCSLPoxuSlO 7Gy+xAtgLDsuPJFXeYRei9kn2uOuytPtSnAmuULlMzHkTNUokP3O18eqREy0M2Rz 3wHTJO1A+usXMUCDJpbQI7AsQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuyHknl B7oGnyPHw+KyCJt6AuA4MB8GA1UdIwQYMBaAFLPvp9auGZ0UWC3U7LkWOjydhBdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE3QS83NEJCMjREMjNG NUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5SUllMZFRzdVJZNlBKMkVG MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtLW4xcTRablJSWUxkVHN1Ulk2UEoyRUYxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE3QS83NEJCMjREMjNGNUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5S UllMZFRzdVJZNlBKMkVGMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADr2KYqccn4T99Dj+5FbeLrEjbEHXaNEX3wBroftHmi1oOd5yMuuX5 ORoBBTFqGP7TMR6PKwvOn0cJslmN/dEy7fTXwu/2eCvJC+cPZM5ZZqpIJYVXmtte PgC91XpYhDwDsHoQaBYEFzp45f8s5cfRosCLcj64+huQrhzfQh3Zdrq8VeKM09pe 9VeUWcbaTOJtjq34rb+uU4MjQGp9BKL5A9uW+X38TMeuaYBR/HB2pBOTz9PR5fTC X5XI+Z7Jt6e4U+ZIfGU7wioion/sDnp2lW+f0gb0R2BjfJnzPnWyFN/Qoc6SI4BK zrlyurquPib82OsMA//LBAj52s+of9Rm -----END CERTIFICATE-----Generated at Sat Jul 5 01:32:00 2025 by rpki-client