$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft File: s9eTeQ4RSsj43IK64zwdkr29tes.mft (raw, json) Hash identifier: t+gwTqnHOZo+AwdPyVkOpNcRoEndfu/V+8uEb6uHDbo= Subject key identifier: D5:D8:CF:95:31:0E:4C:90:7E:3D:42:8C:5B:83:45:B8:AA:C0:D0:97 Authority key identifier: B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB Certificate issuer: /CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Certificate serial: 0862 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft Manifest number: 1A2F Signing time: Wed 02 Jul 2025 17:21:58 +0000 Manifest this update: Wed 02 Jul 2025 17:21:57 +0000 Manifest next update: Wed 09 Jul 2025 17:21:57 +0000 Files and hashes: 1: s9eTeQ4RSsj43IK64zwdkr29tes.crl (hash: kxhsrPU7UZ9XRsRLbR/5/hCr6IWS6DtIUN2TNyIQAUA=) 2: F87AC94C35BB11EDB0314E29C4F9AE02.roa (hash: QQ2kSpkziq7c/OfdUjW7k6le4ABn54sNBVAUYS+VxSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8, serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Validity Not Before: Jul 2 17:21:57 2025 GMT Not After : Jul 9 17:21:57 2025 GMT Subject: CN=68656ab6-2e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9b:68:14:c5:b7:eb:13:b2:b7:0e:8a:34:75: 83:56:49:d4:7c:a2:68:31:3c:15:2d:2f:29:e0:f6: 21:04:84:83:8e:c8:99:5d:15:e6:8d:09:43:c2:41: 15:6b:2b:cc:4d:d0:61:39:37:57:85:c1:0f:53:af: 0d:fe:e8:56:1e:38:8a:74:0e:19:36:9d:d1:ce:f1: b4:6f:72:8f:cf:6c:d8:25:67:c8:4b:44:e1:06:26: e7:2f:43:32:6c:8a:84:c1:2b:cd:50:46:6c:1e:06: c6:91:81:d0:41:53:9c:fa:69:05:3c:d2:52:70:3d: 0b:2c:c4:58:5b:e9:eb:e9:05:a3:54:2a:5a:70:16: bc:de:65:e3:d8:79:4c:f2:e3:3d:ac:24:bc:a8:0a: 7b:10:1d:1b:7e:cd:45:cb:fe:33:1d:49:29:4e:5a: 6b:20:f8:b8:69:26:3a:f3:ce:7b:dd:71:5e:e3:83: 37:c3:50:93:14:72:e4:ea:39:fd:28:fe:9d:2a:8b: 77:77:d6:76:45:cf:60:cc:72:b5:fd:74:a0:9e:65: 19:ce:56:9a:70:97:46:81:40:a4:65:d6:7a:5d:73: f1:a8:d6:f6:f8:df:60:d9:57:30:a0:ef:9c:f8:0c: d7:77:8e:fc:4f:79:2f:42:fa:38:48:a0:eb:5b:7f: 92:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D8:CF:95:31:0E:4C:90:7E:3D:42:8C:5B:83:45:B8:AA:C0:D0:97 X509v3 Authority Key Identifier: keyid:B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:cb:5a:a5:a1:a1:3e:31:6a:b2:f5:3d:e8:ca:1b:10:2f:aa: 2d:3a:ba:e2:b0:cc:df:90:43:03:bd:69:08:76:80:df:13:5a: 2b:c3:fd:2d:fc:eb:27:26:4f:53:1b:aa:26:02:24:75:0b:fa: 63:79:32:5b:49:86:8d:55:72:d3:f6:f0:81:60:b5:33:3b:0e: fb:b2:3d:c8:50:35:3f:aa:15:00:84:b7:13:f5:e8:ef:3b:6f: 62:cc:a7:ed:cd:cf:05:a5:23:9a:78:83:a8:df:c5:33:c9:54: 6d:39:d1:d7:d1:bf:cf:6f:ad:c2:27:dd:0e:4d:6e:d9:ed:a4: 5c:e9:5d:19:54:ce:fb:61:4b:b9:0a:fc:7e:4b:87:a1:62:5f: f5:59:90:8c:20:4f:b4:6d:89:7d:5d:59:f0:19:94:73:59:cf: 91:72:c8:2b:e6:89:ee:03:48:a5:ef:8a:b3:b0:8f:2f:23:e0: 1b:6f:bd:d3:1a:f2:1f:1a:86:ab:e4:28:98:d0:f9:94:0b:d3: 34:a1:9f:eb:3e:13:d8:b7:7b:29:c6:e0:d5:b7:50:65:09:8d: 62:fc:c1:0b:bf:ee:71:fd:63:62:fc:5d:0b:26:a7:6f:a2:7d: 3d:01:d6:b4:2b:80:22:a4:08:39:17:8e:54:d4:45:43:d0:3c: f6:fe:cf:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKEIzRDc5Mzc5MEUxMTRBQzhGOERDODJCQUUzM0MxRDky QkRCREI1RUIwHhcNMjUwNzAyMTcyMTU3WhcNMjUwNzA5MTcyMTU3WjAYMRYwFAYD VQQDEw02ODY1NmFiNi0yZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZtoFMW36xOytw6KNHWDVknUfKJoMTwVLS8p4PYhBISDjsiZXRXmjQlDwkEV ayvMTdBhOTdXhcEPU68N/uhWHjiKdA4ZNp3RzvG0b3KPz2zYJWfIS0ThBibnL0My bIqEwSvNUEZsHgbGkYHQQVOc+mkFPNJScD0LLMRYW+nr6QWjVCpacBa83mXj2HlM 8uM9rCS8qAp7EB0bfs1Fy/4zHUkpTlprIPi4aSY688573XFe44M3w1CTFHLk6jn9 KP6dKot3d9Z2Rc9gzHK1/XSgnmUZzlaacJdGgUCkZdZ6XXPxqNb2+N9g2VcwoO+c +AzXd478T3kvQvo4SKDrW3+SOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXYz5Ux DkyQfj1CjFuDRbiqwNCXMB8GA1UdIwQYMBaAFLPXk3kOEUrI+NyCuuM8HZK9vbXr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNzajQzSUs2NHp3ZGtyMjl0 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M5ZVRlUTRSU3NqNDNJSzY0endka3IyOXRlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNz ajQzSUs2NHp3ZGtyMjl0ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuy1qloaE+MWqy9T3oyhsQL6otOrrisMzfkEMDvWkIdoDfE1orw/0t /OsnJk9TG6omAiR1C/pjeTJbSYaNVXLT9vCBYLUzOw77sj3IUDU/qhUAhLcT9ejv O29izKftzc8FpSOaeIOo38UzyVRtOdHX0b/Pb63CJ90OTW7Z7aRc6V0ZVM77YUu5 Cvx+S4ehYl/1WZCMIE+0bYl9XVnwGZRzWc+Rcsgr5onuA0il74qzsI8vI+Abb73T GvIfGoar5CiY0PmUC9M0oZ/rPhPYt3spxuDVt1BlCY1i/MELv+5x/WNi/F0LJqdv on09Ada0K4AipAg5F45U1EVD0Dz2/s+s -----END CERTIFICATE-----Generated at Thu Jul 3 05:06:46 2025 by rpki-client