$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft File: _lDDhdnrGeLvoU-jWtpb3qW0VtM.mft (raw, json) Hash identifier: PvLLXynUw0MA0Bt/SqfgHemSZcOIiDNTsHqqXvZQ4HI= Subject key identifier: 88:9A:3C:69:10:D7:7D:F2:06:72:FE:2D:AF:0B:9C:1E:DF:7B:DE:47 Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Certificate serial: 05A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft Manifest number: 0577 Signing time: Fri 04 Jul 2025 23:54:28 +0000 Manifest this update: Fri 04 Jul 2025 23:54:27 +0000 Manifest next update: Fri 11 Jul 2025 23:54:27 +0000 Files and hashes: 1: _lDDhdnrGeLvoU-jWtpb3qW0VtM.crl (hash: 1qT2khXxyhzkleUkCSh0Z3fR6Bh4j48UX6KLLR5iPy0=) 2: 65DFCD4A884D11EE8423C486C4F9AE02.roa (hash: Ji5QHhKyC9d/xw16UVd29SWOnnXI9pwAI1DiN2SnuG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1441 (0x5a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Validity Not Before: Jul 4 23:54:27 2025 GMT Not After : Jul 11 23:54:27 2025 GMT Subject: CN=686869b3-51f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5d:ce:34:45:97:81:bd:6b:14:09:ad:35:67: 32:13:10:62:7a:5e:38:b2:c5:ea:01:37:7f:64:aa: c5:14:42:f0:35:f5:e9:eb:1d:c8:b9:aa:60:35:6d: 31:29:6b:8e:66:35:1e:ad:2b:59:c9:ee:7b:2c:77: 58:7c:5d:4f:b7:15:ac:e2:f6:b2:9f:fe:5a:92:f5: 18:b6:dc:e2:b4:56:c9:59:df:bf:44:77:90:81:14: 74:08:1c:2d:03:58:63:96:b8:c5:9e:40:81:0c:4a: 59:d6:b8:e1:7e:90:b2:2d:6f:db:52:98:e9:12:0b: bd:08:f0:10:2c:d8:e9:bc:15:01:ec:22:2f:69:be: 5d:01:ef:75:4a:c2:72:4b:4f:86:b9:4c:51:8c:3b: 5e:65:4e:14:13:5b:08:03:00:9c:78:36:db:7e:0a: 69:8e:9f:8a:a0:01:4f:d8:a2:9f:02:13:b9:ce:c8: 54:67:62:0e:4b:23:ca:92:e4:f3:7d:94:2f:91:64: 87:2a:f7:18:a4:a5:04:ba:1a:e8:e4:a4:b3:ba:f8: 30:dc:a6:6d:f0:bc:5e:25:e0:9a:d6:00:95:fa:1d: 86:74:0d:9a:f0:85:86:dd:c3:88:2c:93:17:00:6e: 0f:83:30:66:19:82:7d:08:df:e4:04:19:1b:0c:50: 27:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9A:3C:69:10:D7:7D:F2:06:72:FE:2D:AF:0B:9C:1E:DF:7B:DE:47 X509v3 Authority Key Identifier: keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:1c:85:4d:a8:ce:e7:72:41:51:a9:b2:13:1b:62:dc:a4:cc: 82:cc:df:c3:b5:41:77:e5:3d:8f:6b:54:e4:40:cc:04:74:82: 81:28:7f:bc:74:ea:0b:ed:8a:81:f6:ef:c7:68:33:03:42:5d: ce:62:a8:fc:54:0d:6d:3d:18:8a:50:9d:10:1c:d5:db:4e:33: 31:16:b4:0a:89:1f:3a:1e:4b:ea:c0:92:b3:32:6b:ed:8f:74: e2:a4:8a:16:3b:25:f4:c0:81:3e:a3:3b:d4:99:26:bc:63:03: 1b:b9:78:1f:37:13:0a:7f:c3:19:b0:f7:38:b5:74:23:26:87: dd:fd:dc:08:0c:c1:ee:43:60:64:dd:e4:d7:1f:31:71:1d:88: 55:ed:ab:88:f9:c3:e0:00:b2:d4:be:bd:f1:0b:8a:3f:56:11: 20:7e:f7:03:10:4e:cd:5f:8c:f9:ae:ba:8e:01:c9:dc:14:1c: 36:7f:3b:36:72:96:b7:87:ca:93:9d:55:87:15:2c:40:a2:0f: 6d:ed:07:3d:c7:f4:4d:6b:fb:3c:08:57:82:40:39:8a:f3:a9: da:c9:eb:95:34:cd:7a:f8:b9:00:44:58:bb:ad:c3:98:3d:db: 58:f4:3a:3d:b4:ac:15:9d:19:d1:57:35:e5:de:74:73:00:96: 10:d6:04:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjExMTAvBgNVBAUTKEZFNTBDMzg1RDlFQjE5RTJFRkExNEZBMzVBREE1QkRF QTVCNDU2RDMwHhcNMjUwNzA0MjM1NDI3WhcNMjUwNzExMjM1NDI3WjAYMRYwFAYD VQQDEw02ODY4NjliMy01MWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA013ONEWXgb1rFAmtNWcyExBiel44ssXqATd/ZKrFFELwNfXp6x3IuapgNW0x KWuOZjUerStZye57LHdYfF1PtxWs4vayn/5akvUYttzitFbJWd+/RHeQgRR0CBwt A1hjlrjFnkCBDEpZ1rjhfpCyLW/bUpjpEgu9CPAQLNjpvBUB7CIvab5dAe91SsJy S0+GuUxRjDteZU4UE1sIAwCceDbbfgppjp+KoAFP2KKfAhO5zshUZ2IOSyPKkuTz fZQvkWSHKvcYpKUEuhro5KSzuvgw3KZt8LxeJeCa1gCV+h2GdA2a8IWG3cOILJMX AG4PgzBmGYJ9CN/kBBkbDFAn2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiaPGkQ 133yBnL+La8LnB7fe95HMB8GA1UdIwQYMBaAFP5Qw4XZ6xni76FPo1raW96ltFbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMS82NkU0RTRGNkZC NDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdlTHZvVS1qV3RwYjNxVzBW dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sRERoZG5yR2VMdm9VLWpXdHBiM3FXMFZ0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMS82NkU0RTRGNkZCNDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdl THZvVS1qV3RwYjNxVzBWdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzHIVNqM7nckFRqbITG2LcpMyCzN/DtUF35T2Pa1TkQMwEdIKBKH+8 dOoL7YqB9u/HaDMDQl3OYqj8VA1tPRiKUJ0QHNXbTjMxFrQKiR86HkvqwJKzMmvt j3TipIoWOyX0wIE+ozvUmSa8YwMbuXgfNxMKf8MZsPc4tXQjJofd/dwIDMHuQ2Bk 3eTXHzFxHYhV7auI+cPgALLUvr3xC4o/VhEgfvcDEE7NX4z5rrqOAcncFBw2fzs2 cpa3h8qTnVWHFSxAog9t7Qc9x/RNa/s8CFeCQDmK86nayeuVNM16+LkARFi7rcOY PdtY9Do9tKwVnRnRVzXl3nRzAJYQ1gS9 -----END CERTIFICATE-----Generated at Sat Jul 5 01:42:19 2025 by rpki-client