$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: rLW+7nI7PZTOwHRicqljhY7I2kjtsiN9JeI0U9W+abM= Subject key identifier: 71:2B:AA:68:4F:73:84:D3:58:C4:62:3D:AC:4C:24:16:F7:BF:86:E4 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0B8F Signing time: Fri 04 Jul 2025 19:20:54 +0000 Manifest this update: Fri 04 Jul 2025 19:20:54 +0000 Manifest next update: Fri 11 Jul 2025 19:20:54 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: mfeJoUMduBXBEjfgD1NcB0qHvcvAxYiG9gVbqKpV44I=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Jul 4 19:20:54 2025 GMT Not After : Jul 11 19:20:54 2025 GMT Subject: CN=68682996-ef1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:79:31:d6:5a:cf:f3:6c:75:f4:4f:24:b8:82: de:36:e8:a6:01:ce:50:be:71:08:a1:53:bf:f5:c9: e8:66:21:63:cf:a6:36:fc:ed:e3:e2:df:e0:b9:87: 08:c5:48:0d:e0:ac:f1:83:a0:b8:0f:a0:2e:50:67: da:e8:fb:48:19:65:ae:62:ec:21:ca:61:17:5c:99: 7c:a7:e8:88:b1:7e:c8:75:70:2b:06:ca:47:2a:f2: 3d:1e:07:9b:58:80:4c:e8:d9:82:5f:f4:c8:97:e6: 21:51:c8:3d:ba:26:22:ab:93:68:0b:50:96:5b:88: f9:7b:1c:f1:6f:2f:01:36:62:52:1d:e5:26:96:0a: 0d:69:b7:52:6a:ea:40:1f:63:de:6b:3b:f1:c3:d1: f9:f2:43:2f:0c:fc:6e:22:72:19:dd:ee:8e:e5:4d: b1:d1:95:85:77:17:3b:3e:0e:f2:86:59:6c:cb:d1: 58:1b:bd:27:35:1a:ff:42:a6:a7:d4:16:89:ad:bc: bc:5c:7f:e8:ab:41:f8:12:dc:6e:13:58:b4:1b:6e: 9c:f5:ef:1e:06:b9:c2:e9:c6:e1:01:a6:ea:d3:46: 1d:64:37:2e:54:d3:78:0a:3a:21:e8:b0:76:c1:2f: e9:fb:36:75:ce:4d:3a:a5:45:cd:0c:7a:f5:5f:1d: 5d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2B:AA:68:4F:73:84:D3:58:C4:62:3D:AC:4C:24:16:F7:BF:86:E4 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:a0:9d:b9:72:33:cc:7a:7d:5d:73:14:f0:18:4c:04:e6:bb: 86:6d:fd:59:a2:4e:92:86:23:63:9b:08:41:2c:af:9e:0b:98: 2d:00:0c:4e:e2:29:fa:8f:0a:86:f4:1a:0a:61:12:38:7b:03: 67:67:89:6b:fd:35:95:dd:02:b5:f7:34:8e:96:9b:d8:cc:ab: bc:30:d7:45:e4:fc:cd:91:7e:59:67:8f:bd:c6:f2:bb:ef:2c: ac:a3:d1:88:9c:9d:df:17:08:93:39:b8:44:da:55:89:75:3a: a0:74:08:69:e9:77:bd:f7:d8:b3:cd:45:7d:59:1b:01:ff:9e: fa:fe:80:3c:e4:70:c5:0d:f8:cd:52:0c:34:a3:2d:41:de:10: ef:d8:e9:37:4c:45:b5:fe:87:bb:b8:21:f0:10:2a:db:fb:28: f2:ad:60:3b:61:b9:5a:02:3f:85:c4:58:93:73:c6:72:49:4f: 14:37:4e:ec:8e:d8:50:43:96:ef:b2:3c:a6:0a:4b:16:da:ce: f6:ee:87:23:f4:31:18:df:3c:a0:ac:c5:12:b0:13:c9:02:37: dd:43:7a:43:6e:d8:ae:b4:37:f9:a2:37:03:96:52:e1:ec:22: 21:36:4e:55:f7:35:c1:ed:cc:0c:cb:72:03:56:4a:70:1c:e0: 61:7d:81:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUwNzA0MTkyMDU0WhcNMjUwNzExMTkyMDU0WjAYMRYwFAYD VQQDEw02ODY4Mjk5Ni1lZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03kx1lrP82x19E8kuILeNuimAc5QvnEIoVO/9cnoZiFjz6Y2/O3j4t/guYcI xUgN4Kzxg6C4D6AuUGfa6PtIGWWuYuwhymEXXJl8p+iIsX7IdXArBspHKvI9Hgeb WIBM6NmCX/TIl+YhUcg9uiYiq5NoC1CWW4j5exzxby8BNmJSHeUmlgoNabdSaupA H2Peazvxw9H58kMvDPxuInIZ3e6O5U2x0ZWFdxc7Pg7yhllsy9FYG70nNRr/Qqan 1BaJrby8XH/oq0H4EtxuE1i0G26c9e8eBrnC6cbhAabq00YdZDcuVNN4Cjoh6LB2 wS/p+zZ1zk06pUXNDHr1Xx1dXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHErqmhP c4TTWMRiPaxMJBb3v4bkMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9oJ25cjPMen1dcxTwGEwE5ruGbf1Zok6ShiNjmwhBLK+eC5gtAAxO 4in6jwqG9BoKYRI4ewNnZ4lr/TWV3QK19zSOlpvYzKu8MNdF5PzNkX5ZZ4+9xvK7 7yyso9GInJ3fFwiTObhE2lWJdTqgdAhp6Xe999izzUV9WRsB/576/oA85HDFDfjN Ugw0oy1B3hDv2Ok3TEW1/oe7uCHwECrb+yjyrWA7YblaAj+FxFiTc8ZySU8UN07s jthQQ5bvsjymCksW2s727ocj9DEY3zygrMUSsBPJAjfdQ3pDbtiutDf5ojcDllLh 7CIhNk5V9zXB7cwMy3IDVkpwHOBhfYHF -----END CERTIFICATE-----Generated at Sat Jul 5 05:40:06 2025 by rpki-client