$ rpki-client -vvf rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft File: _dVXSqazoje0NmmVfYUzlZPcHpo.mft (raw, json) Hash identifier: a/qWVwnO21hdwMZ6d0wfo1QqWfnw6P7tVKKAfAFVIgU= Subject key identifier: DF:51:24:CB:83:49:29:93:CD:40:64:90:26:25:E7:E8:8C:53:00:E5 Authority key identifier: FD:D5:57:4A:A6:B3:A2:37:B4:36:69:95:7D:85:33:95:93:DC:1E:9A Certificate issuer: /CN=A91F609C/serialNumber=FDD5574AA6B3A237B43669957D85339593DC1E9A Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft Manifest number: 02A2 Signing time: Thu 03 Jul 2025 01:55:33 +0000 Manifest this update: Thu 03 Jul 2025 01:55:32 +0000 Manifest next update: Thu 10 Jul 2025 01:55:32 +0000 Files and hashes: 1: _dVXSqazoje0NmmVfYUzlZPcHpo.crl (hash: 0v1orq3dmz9dOdSOpnF9PQh3Ze3HSW+MoWQnlJNXKNQ=) 2: 06E87B54046711ED95A3495FC4F9AE02.roa (hash: 5x89WekcpnY5fvShaZ35VDRztPc3dfKuIiSt+uKfQig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.crl rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F609C, serialNumber=FDD5574AA6B3A237B43669957D85339593DC1E9A Validity Not Before: Jul 3 01:55:32 2025 GMT Not After : Jul 10 01:55:32 2025 GMT Subject: CN=6865e315-0e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2e:e9:83:de:40:f0:41:58:6e:a8:b8:e2:b3: 55:bd:14:dd:46:d6:13:ae:c4:75:2a:e0:a8:db:ad: 92:07:f3:d8:a5:eb:5a:a5:ff:65:fb:40:fe:4f:df: 7a:cb:34:43:45:d2:e6:c4:36:f6:dd:14:e5:96:aa: a6:21:e1:14:57:60:ba:95:21:49:d1:b2:0e:23:6d: 17:e8:5e:60:56:54:e7:6b:d6:d8:ae:63:91:ed:9c: e4:be:85:ce:52:ea:b5:23:52:db:5f:c3:ee:45:df: 03:7f:fe:35:27:b8:aa:1e:ed:b9:f2:3d:80:c1:63: b0:77:01:ee:73:c3:48:06:b2:dc:23:8c:d3:0e:a9: 42:ef:52:72:a5:28:63:74:fc:53:2d:49:6e:9e:d7: ab:6d:f5:ae:9e:31:cb:a4:89:91:67:76:0c:f6:b3: 96:7a:0e:c3:b5:88:a5:d7:b8:96:c3:68:81:20:19: e2:1e:0c:83:7d:b5:96:3d:dd:b3:9b:a0:b3:fe:af: 1a:bd:e4:07:4b:5f:a5:26:26:e3:77:b9:b4:c7:14: fc:d7:1a:20:3c:9b:8e:45:93:31:5c:ff:83:8a:05: d2:89:ca:6e:4b:bb:e8:c4:e3:19:bc:fa:ef:42:89: 05:90:75:2a:13:ef:a4:21:07:5b:ca:04:6a:03:bc: 93:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:51:24:CB:83:49:29:93:CD:40:64:90:26:25:E7:E8:8C:53:00:E5 X509v3 Authority Key Identifier: keyid:FD:D5:57:4A:A6:B3:A2:37:B4:36:69:95:7D:85:33:95:93:DC:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dVXSqazoje0NmmVfYUzlZPcHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F609C/0AA57C6C046511ED9C85F15EC4F9AE02/_dVXSqazoje0NmmVfYUzlZPcHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:bc:36:13:cd:e3:bf:47:2e:84:68:f2:78:6d:71:8a:33:18: 2f:99:94:e3:b7:ad:46:53:cd:58:2f:06:b3:9c:eb:3f:ee:72: 32:2d:d5:98:c3:cd:c3:1b:b8:b4:b8:ec:51:76:2b:12:b2:b6: b8:ee:58:10:ff:a4:23:04:61:9f:e3:d5:06:e0:05:15:95:3f: a6:b6:4f:67:13:62:71:a8:b3:ca:1c:87:2b:e0:01:27:80:4c: 08:97:11:8b:25:83:3a:0b:af:17:cc:da:85:fe:5c:21:d9:9e: b9:d9:5c:07:a9:d0:1e:d3:42:cb:25:54:0b:1c:d1:7a:99:89: ff:14:dd:16:24:80:36:41:d0:88:d9:3c:a2:fa:29:37:69:26: 61:81:19:2d:6c:3d:d6:76:17:d6:fd:f9:e8:19:08:dd:66:c8: 32:88:d3:82:21:0c:6f:45:76:93:6d:e2:9f:51:55:38:ae:93: 7a:6a:5d:18:b0:a0:34:a3:c5:a6:94:25:97:c7:30:0a:84:ef: 4f:af:01:b7:8b:80:2e:14:83:e7:19:d5:0b:46:37:a0:07:0e: 36:67:f0:d8:09:f6:31:83:a5:96:2e:89:a7:db:5e:11:ba:7c: f2:db:49:f9:dd:6a:8c:ef:1d:a4:54:64:a1:61:db:c1:75:c8: 89:2f:9f:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwOUMxMTAvBgNVBAUTKEZERDU1NzRBQTZCM0EyMzdCNDM2Njk5NTdEODUzMzk1 OTNEQzFFOUEwHhcNMjUwNzAzMDE1NTMyWhcNMjUwNzEwMDE1NTMyWjAYMRYwFAYD VQQDEw02ODY1ZTMxNS0wZTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4y7pg95A8EFYbqi44rNVvRTdRtYTrsR1KuCo262SB/PYpetapf9l+0D+T996 yzRDRdLmxDb23RTllqqmIeEUV2C6lSFJ0bIOI20X6F5gVlTna9bYrmOR7ZzkvoXO Uuq1I1LbX8PuRd8Df/41J7iqHu258j2AwWOwdwHuc8NIBrLcI4zTDqlC71JypShj dPxTLUlunterbfWunjHLpImRZ3YM9rOWeg7DtYil17iWw2iBIBniHgyDfbWWPd2z m6Cz/q8aveQHS1+lJibjd7m0xxT81xogPJuORZMxXP+DigXSicpuS7voxOMZvPrv QokFkHUqE++kIQdbygRqA7yTjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9RJMuD SSmTzUBkkCYl5+iMUwDlMB8GA1UdIwQYMBaAFP3VV0qms6I3tDZplX2FM5WT3B6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA5Qy8wQUE1N0M2QzA0 NjUxMUVEOUM4NUYxNUVDNEY5QUUwMi9fZFZYU3Fhem9qZTBObW1WZllVemxaUGNI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19kVlhTcWF6b2plME5tbVZmWVV6bFpQY0hwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA5Qy8wQUE1N0M2QzA0NjUxMUVEOUM4NUYxNUVDNEY5QUUwMi9fZFZYU3Fhem9q ZTBObW1WZllVemxaUGNIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByvDYTzeO/Ry6EaPJ4bXGKMxgvmZTjt61GU81YLwaznOs/7nIyLdWY w83DG7i0uOxRdisSsra47lgQ/6QjBGGf49UG4AUVlT+mtk9nE2JxqLPKHIcr4AEn gEwIlxGLJYM6C68XzNqF/lwh2Z652VwHqdAe00LLJVQLHNF6mYn/FN0WJIA2QdCI 2Tyi+ik3aSZhgRktbD3WdhfW/fnoGQjdZsgyiNOCIQxvRXaTbeKfUVU4rpN6al0Y sKA0o8WmlCWXxzAKhO9PrwG3i4AuFIPnGdULRjegBw42Z/DYCfYxg6WWLomn214R unzy20n53WqM7x2kVGShYdvBdciJL5/P -----END CERTIFICATE-----Generated at Thu Jul 3 07:38:48 2025 by rpki-client