$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft File: R2e2k72EYu6vqD2egDydKGtiHcg.mft (raw, json) Hash identifier: 6/Mv+dhhAHGNBWfYleVHBqIecI+Exif7YrdpkcuhsbE= Subject key identifier: C3:AB:6D:74:41:14:C8:98:7A:1E:EF:6D:4C:90:86:8A:46:08:D5:53 Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft Manifest number: 40 Signing time: Thu 03 Jul 2025 07:43:55 +0000 Manifest this update: Thu 03 Jul 2025 07:43:54 +0000 Manifest next update: Thu 10 Jul 2025 07:43:54 +0000 Files and hashes: 1: R2e2k72EYu6vqD2egDydKGtiHcg.crl (hash: jVCZFQ8CCi/iyfRKaCydhVoh3YlM3L4wNgGKUeDUawU=) 2: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (hash: Ya8UAl3AvyfkYqVmnBZyGneXfArx61d1F2XHtbOSrtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: Jul 3 07:43:54 2025 GMT Not After : Jul 10 07:43:54 2025 GMT Subject: CN=686634bb-8b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:17:e1:94:9d:83:cf:da:86:19:11:b0:db:c9: 89:fe:cb:fc:4a:ff:fb:57:ca:bd:e4:06:1a:7f:87: c2:f9:70:a3:be:bf:72:fa:f2:35:e2:dd:2a:8e:8a: 54:8d:a5:bc:72:5e:d9:e0:57:22:2e:aa:55:4a:ef: 79:7b:62:95:da:5a:ab:e5:c0:c6:7d:66:95:b7:06: 86:74:ae:12:27:34:d4:15:27:79:8a:09:bf:59:49: f4:ba:b5:d3:2d:de:4a:65:1e:3b:93:5b:21:88:cc: fc:ea:75:f2:ed:de:2a:28:b9:62:51:16:c4:3b:20: bd:53:09:7d:12:e7:14:cb:2e:ec:59:0d:9c:ed:50: 11:26:79:b3:b9:59:81:b5:57:ad:3a:b0:cb:22:a7: fb:b6:8f:59:f2:c1:93:81:ba:47:c2:1f:ed:9d:c0: 57:4f:97:f2:98:be:9a:37:11:b6:51:a1:5d:ef:66: 3a:c9:16:bb:56:a1:c3:d0:33:69:6e:31:e4:aa:5b: a7:52:6c:dc:46:97:57:50:b6:2b:f4:9a:9a:a8:a6: 24:de:45:bb:b8:23:09:8c:ab:25:2e:ea:67:4d:7a: be:89:73:71:87:ca:25:96:1b:3e:d5:4d:6b:73:29: 8d:75:72:81:5d:a5:7c:ba:68:e7:bc:89:de:62:2a: 24:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:AB:6D:74:41:14:C8:98:7A:1E:EF:6D:4C:90:86:8A:46:08:D5:53 X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:f9:f0:b1:10:39:62:9d:f2:d2:45:35:34:a1:44:58:62:2f: 7e:f7:3b:9b:92:39:ca:cf:61:6d:b6:39:24:95:d6:f7:42:3e: 14:cd:0e:88:31:eb:2d:2d:b6:dc:da:5d:b1:cb:44:39:49:9e: 3a:ab:a3:8f:15:39:25:60:b4:20:b7:1f:8f:a1:8b:1f:04:d7: 72:ed:35:ab:8e:e7:86:06:b0:e7:8a:73:04:47:ab:49:2c:ec: 3d:c0:08:90:87:68:14:e0:5c:69:2d:fa:cf:4b:80:2b:6b:ca: e6:57:c1:ae:81:57:35:f5:ab:cf:e2:bb:97:db:ee:b3:43:17: f8:58:f1:d2:87:56:8a:04:a2:93:f0:57:42:41:21:3b:91:19: 36:f3:8e:dd:ec:41:33:f4:c4:38:b1:e7:37:2e:1f:fd:06:7c: 0f:93:79:3a:54:db:64:ef:75:3f:96:3f:ff:93:c7:97:45:b7: 1e:be:97:b4:93:52:d5:78:59:d9:67:58:2a:33:06:90:77:6f: e4:1e:e9:42:03:18:f8:b9:80:a0:fa:02:54:3a:fd:6e:a8:0a: 6f:c4:fe:82:37:20:85:33:74:89:06:bb:2e:67:28:31:68:d0: f2:61:d1:b2:82:0e:73:a0:8a:91:8e:35:ae:90:ea:af:32:10: 10:73:7d:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUI2QzExMC8GA1UEBRMoNDc2N0I2OTNCRDg0NjJFRUFGQTgzRDlFODAzQzlEMjg2 QjYyMURDODAeFw0yNTA3MDMwNzQzNTRaFw0yNTA3MTAwNzQzNTRaMBgxFjAUBgNV BAMTDTY4NjYzNGJiLThiMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4F+GUnYPP2oYZEbDbyYn+y/xK//tXyr3kBhp/h8L5cKO+v3L68jXi3SqOilSN pbxyXtngVyIuqlVK73l7YpXaWqvlwMZ9ZpW3BoZ0rhInNNQVJ3mKCb9ZSfS6tdMt 3kplHjuTWyGIzPzqdfLt3ioouWJRFsQ7IL1TCX0S5xTLLuxZDZztUBEmebO5WYG1 V606sMsip/u2j1nywZOBukfCH+2dwFdPl/KYvpo3EbZRoV3vZjrJFrtWocPQM2lu MeSqW6dSbNxGl1dQtiv0mpqopiTeRbu4IwmMqyUu6mdNer6Jc3GHyiWWGz7VTWtz KY11coFdpXy6aOe8id5iKiQnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUw6ttdEEU yJh6Hu9tTJCGikYI1VMwHwYDVR0jBBgwFoAUR2e2k72EYu6vqD2egDydKGtiHcgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QjZDL0Q3REIwQTA4RkE1 RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhj Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjJlMms3MkVZdTZ2cUQyZWdEeWRLR3RpSGNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5 QjZDL0Q3REIwQTA4RkE1RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2 dnFEMmVnRHlkS0d0aUhjZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMz58LEQOWKd8tJFNTShRFhiL373O5uSOcrPYW22OSSV1vdCPhTNDogx 6y0tttzaXbHLRDlJnjqro48VOSVgtCC3H4+hix8E13LtNauO54YGsOeKcwRHq0ks 7D3ACJCHaBTgXGkt+s9LgCtryuZXwa6BVzX1q8/iu5fb7rNDF/hY8dKHVooEopPw V0JBITuRGTbzjt3sQTP0xDix5zcuH/0GfA+TeTpU22TvdT+WP/+Tx5dFtx6+l7ST UtV4WdlnWCozBpB3b+Qe6UIDGPi5gKD6AlQ6/W6oCm/E/oI3IIUzdIkGuy5nKDFo 0PJh0bKCDnOgipGONa6Q6q8yEBBzfc0= -----END CERTIFICATE-----Generated at Fri Jul 4 06:58:39 2025 by rpki-client