$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft File: 24aQ9k5_gyrPw6am6EIdQXfIlPY.mft (raw, json) Hash identifier: ELxMKbog8Clq/qultY9AvKaB77fR1DwE/ewQhvmGjFc= Subject key identifier: D5:55:12:8A:D2:56:94:4D:9D:C1:4F:B4:16:58:BC:9B:FB:00:78:AC Authority key identifier: DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 Certificate issuer: /CN=A91F0FAA/serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft Manifest number: 018D Signing time: Tue 01 Jul 2025 03:56:33 +0000 Manifest this update: Tue 01 Jul 2025 03:56:33 +0000 Manifest next update: Tue 08 Jul 2025 03:56:33 +0000 Files and hashes: 1: 24aQ9k5_gyrPw6am6EIdQXfIlPY.crl (hash: hTdv34Eu7cbo0WzE0iWNJZJKzCc1lszm0n3ifE20nH8=) 2: 6B5723D8F89F11ED8F29921CC4F9AE02.roa (hash: SdXEUbD7bDMQhTYpbl9h+rsPxGL65X2f3Ma+s3etM2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FAA, serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Validity Not Before: Jul 1 03:56:33 2025 GMT Not After : Jul 8 03:56:33 2025 GMT Subject: CN=68635c71-6b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bf:14:c3:1a:5e:dd:24:6e:68:b0:2b:50:9a: 6c:65:24:cc:1b:39:38:5d:93:a2:d6:b7:19:6f:39: 62:da:e5:8f:16:87:a0:b8:f0:b2:ae:cf:d5:da:00: 0e:16:23:5a:95:21:98:f3:78:5b:7d:ce:d4:c1:8c: ff:e8:9f:cf:41:b2:89:9c:a2:87:90:73:27:62:38: 9d:23:dc:f2:a3:9a:83:3c:f4:4a:cf:56:25:dc:b8: d6:98:19:20:96:f3:6e:68:57:3a:d2:90:7a:8c:fa: 14:0f:50:86:b5:0a:26:9a:b9:2b:c9:0d:3f:fb:dc: 2b:ee:99:54:76:3e:a9:f6:2c:76:5b:9f:07:ad:10: 6f:29:d8:2d:9c:1d:64:6e:5e:bd:5a:34:81:30:fb: 32:dd:3e:f6:8c:5d:6f:ca:7d:85:ad:7a:c8:45:3e: 6d:5b:c3:a4:94:39:e2:59:62:b4:9b:ce:c4:ef:20: e9:18:6d:e5:89:a2:a2:e7:e8:37:6f:e7:e3:43:bc: 53:2a:28:6f:8d:f5:13:8b:24:40:22:b6:15:76:f8: fd:74:31:5d:61:6e:93:05:ee:38:ed:e4:57:5b:1e: 8f:41:59:17:49:3d:77:84:96:d0:4a:85:2f:d7:6b: 46:3c:5b:9e:a2:0a:bf:66:60:d8:03:32:3a:e3:35: 20:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:55:12:8A:D2:56:94:4D:9D:C1:4F:B4:16:58:BC:9B:FB:00:78:AC X509v3 Authority Key Identifier: keyid:DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ac:94:e4:53:47:ef:70:c2:3e:90:dc:9d:8d:13:08:13:db: 08:a4:8f:3f:b0:67:ae:be:d1:60:26:97:34:61:20:39:0e:a6: bd:ae:8b:ee:4b:22:f9:22:62:69:fb:8e:fe:5e:00:10:c3:95: 47:3e:bd:29:63:95:2f:05:35:71:72:46:2b:c2:94:82:31:b6: c9:94:af:55:88:c3:ce:23:5d:4e:0e:83:6e:a4:20:d6:bc:9e: ba:ef:3d:0c:bb:e7:33:94:e4:2a:01:fc:6f:bb:09:86:9f:67: 53:19:db:9a:c8:81:0e:d3:a6:f4:88:09:1b:b1:ef:6a:6e:a0: dd:b2:e8:2e:71:7e:d1:5e:0c:5b:46:58:27:90:21:02:c4:0d: a2:e6:a2:b8:a0:1a:ed:84:35:6f:e8:9d:eb:ff:01:b5:ce:bf: c0:77:1c:d8:b6:62:24:d0:2e:90:9f:8a:18:b5:02:22:95:c0: 25:c7:44:26:b3:ab:c2:e7:6e:f8:98:27:c5:4a:02:cd:bd:88: a7:54:dd:43:bb:ca:81:18:6f:cc:bf:a8:d0:de:ee:0d:49:46: 2d:22:52:4c:81:b4:a8:a0:7b:e5:3d:02:40:bb:5c:a7:cc:77: c4:1a:1b:e3:e2:b6:77:25:8a:62:a2:52:1c:79:3c:b8:d9:2f: 3f:aa:08:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQUExMTAvBgNVBAUTKERCODY5MEY2NEU3RjgzMkFDRkMzQTZBNkU4NDIxRDQx NzdDODk0RjYwHhcNMjUwNzAxMDM1NjMzWhcNMjUwNzA4MDM1NjMzWjAYMRYwFAYD VQQDEw02ODYzNWM3MS02Yjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub8Uwxpe3SRuaLArUJpsZSTMGzk4XZOi1rcZbzli2uWPFoeguPCyrs/V2gAO FiNalSGY83hbfc7UwYz/6J/PQbKJnKKHkHMnYjidI9zyo5qDPPRKz1Yl3LjWmBkg lvNuaFc60pB6jPoUD1CGtQommrkryQ0/+9wr7plUdj6p9ix2W58HrRBvKdgtnB1k bl69WjSBMPsy3T72jF1vyn2FrXrIRT5tW8OklDniWWK0m87E7yDpGG3liaKi5+g3 b+fjQ7xTKihvjfUTiyRAIrYVdvj9dDFdYW6TBe447eRXWx6PQVkXST13hJbQSoUv 12tGPFueogq/ZmDYAzI64zUgHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVVEorS VpRNncFPtBZYvJv7AHisMB8GA1UdIwQYMBaAFNuGkPZOf4Mqz8OmpuhCHUF3yJT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZBQS9GRTEwMUNDQ0Y4 OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5clB3NmFtNkVJZFFYZkls UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI0YVE5azVfZ3lyUHc2YW02RUlkUVhmSWxQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZBQS9GRTEwMUNDQ0Y4OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5 clB3NmFtNkVJZFFYZklsUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMrJTkU0fvcMI+kNydjRMIE9sIpI8/sGeuvtFgJpc0YSA5Dqa9rovu SyL5ImJp+47+XgAQw5VHPr0pY5UvBTVxckYrwpSCMbbJlK9ViMPOI11ODoNupCDW vJ667z0Mu+czlOQqAfxvuwmGn2dTGduayIEO06b0iAkbse9qbqDdsugucX7RXgxb RlgnkCECxA2i5qK4oBrthDVv6J3r/wG1zr/AdxzYtmIk0C6Qn4oYtQIilcAlx0Qm s6vC5274mCfFSgLNvYinVN1Du8qBGG/Mv6jQ3u4NSUYtIlJMgbSooHvlPQJAu1yn zHfEGhvj4rZ3JYpiolIceTy42S8/qgjJ -----END CERTIFICATE-----Generated at Wed Jul 2 16:04:41 2025 by rpki-client