$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: C8iuHxvsNA3hjtjTtFENb4hvD70QufiSwZHTzAvz3s4= Subject key identifier: C0:6E:24:53:D7:15:EE:1B:64:C0:3A:6C:15:E0:04:49:F6:FB:81:5D Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: BE Signing time: Thu 03 Jul 2025 06:07:07 +0000 Manifest this update: Thu 03 Jul 2025 06:07:07 +0000 Manifest next update: Thu 10 Jul 2025 06:07:07 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: 5/qSYXqTJq2gqDODGW5LU+bqxZvaxQxzM3Rz2Bzu508=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Jul 3 06:07:07 2025 GMT Not After : Jul 10 06:07:07 2025 GMT Subject: CN=68661e0b-6e8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:df:fd:44:68:56:af:e6:ee:83:6c:75:47: 40:6a:e8:a7:9e:4e:c6:c8:02:4a:bc:39:5d:0f:27: 59:cd:2c:ca:0a:3b:2c:be:cd:ab:1d:87:ca:e2:de: 56:3c:df:b6:76:4b:ba:88:a6:82:57:b4:df:92:14: 39:ee:21:bb:c8:6f:a9:eb:2c:c3:9e:92:38:61:20: 67:1b:b1:16:f7:43:ab:e8:e4:21:21:42:73:25:c6: e3:f0:11:24:7a:2a:f6:9f:4c:97:20:3b:f3:6e:7e: fa:d9:64:b4:fc:37:db:7c:10:8e:fb:9b:45:a8:72: a3:87:1e:c0:fb:d4:dc:b9:58:21:fd:2b:83:43:c3: 16:c1:b1:96:02:12:6c:29:6e:11:c8:18:bd:fa:66: c8:78:97:2c:33:33:49:7d:5f:90:ff:8d:36:46:2b: 3a:f9:f4:d1:f2:1b:95:47:e8:38:45:1d:78:90:c0: db:c2:06:e1:40:6b:f0:90:bc:ae:19:1c:70:36:69: ed:a1:9d:d1:96:4d:0a:ee:26:e5:10:aa:9c:fe:48: 8b:59:b4:53:aa:bd:fc:69:ea:fd:32:0d:65:7e:68: 96:e5:89:8d:15:f4:67:b9:7b:75:08:9e:78:ad:eb: 0a:2a:5b:7e:df:9d:bf:d4:1c:34:29:72:27:b0:3e: f6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6E:24:53:D7:15:EE:1B:64:C0:3A:6C:15:E0:04:49:F6:FB:81:5D X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:26:33:c6:0e:c2:91:fa:5b:59:e1:f9:39:77:6e:0b:7f:f6: 51:57:77:fc:ef:d2:e9:6f:a2:81:48:65:b1:08:5a:b0:77:79: a6:a4:68:96:89:2c:68:37:0a:d7:d1:23:62:c1:5b:35:bf:22: a6:40:42:1a:ae:6e:fc:bd:6b:12:39:e1:6c:9a:22:2e:cc:1e: 57:c9:7d:a1:8f:11:d1:b2:0e:55:10:74:f1:a4:de:13:cb:c0: cf:6b:0d:91:bc:ff:06:f3:bc:f6:30:97:10:e8:4d:c5:cf:bf: 5e:0f:ec:03:ee:92:5e:5b:70:9d:7f:0b:2a:b7:02:fa:e4:37: 36:01:fe:0d:ab:10:f4:9c:0a:8a:cd:67:80:d8:5d:22:29:60: a8:e9:00:61:64:f0:d3:fd:b1:23:90:08:70:bf:97:9c:85:26: 43:72:79:18:7a:1c:a7:14:98:b8:18:4f:f4:14:04:4e:16:03: 6e:d4:9c:08:b4:74:f9:99:46:22:bb:28:27:96:81:59:20:3b: 99:d6:fe:c4:d8:4c:66:66:4b:8e:7a:c4:a8:88:31:0d:cd:6b: e9:8a:92:cd:5d:b3:3b:b5:05:78:ef:51:9b:c5:a4:56:99:2a: 41:0b:62:09:6d:6f:ea:1f:b6:3a:10:7d:d2:2a:22:db:f8:d2: 34:ed:1e:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwNzAzMDYwNzA3WhcNMjUwNzEwMDYwNzA3WjAYMRYwFAYD VQQDEw02ODY2MWUwYi02ZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUnf/URoVq/m7oNsdUdAauinnk7GyAJKvDldDydZzSzKCjssvs2rHYfK4t5W PN+2dku6iKaCV7TfkhQ57iG7yG+p6yzDnpI4YSBnG7EW90Or6OQhIUJzJcbj8BEk eir2n0yXIDvzbn762WS0/DfbfBCO+5tFqHKjhx7A+9TcuVgh/SuDQ8MWwbGWAhJs KW4RyBi9+mbIeJcsMzNJfV+Q/402Ris6+fTR8huVR+g4RR14kMDbwgbhQGvwkLyu GRxwNmntoZ3Rlk0K7iblEKqc/kiLWbRTqr38aer9Mg1lfmiW5YmNFfRnuXt1CJ54 resKKlt+352/1Bw0KXInsD72twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBuJFPX Fe4bZMA6bBXgBEn2+4FdMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHJjPGDsKR+ltZ4fk5d24Lf/ZRV3f879Lpb6KBSGWxCFqwd3mmpGiW iSxoNwrX0SNiwVs1vyKmQEIarm78vWsSOeFsmiIuzB5XyX2hjxHRsg5VEHTxpN4T y8DPaw2RvP8G87z2MJcQ6E3Fz79eD+wD7pJeW3CdfwsqtwL65Dc2Af4NqxD0nAqK zWeA2F0iKWCo6QBhZPDT/bEjkAhwv5echSZDcnkYehynFJi4GE/0FAROFgNu1JwI tHT5mUYiuygnloFZIDuZ1v7E2ExmZkuOesSoiDENzWvpipLNXbM7tQV471GbxaRW mSpBC2IJbW/qH7Y6EH3SKiLb+NI07R60 -----END CERTIFICATE-----Generated at Thu Jul 3 21:35:06 2025 by rpki-client