$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: hKqBlBpySM9PzJhttrr2FODHZms/X54iRdPTKz/QlZI= Subject key identifier: 1A:5D:58:3C:C2:7B:6C:4D:06:D8:6F:1E:87:82:32:E1:3D:F0:12:3F Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05D3 Signing time: Wed 02 Jul 2025 23:20:45 +0000 Manifest this update: Wed 02 Jul 2025 23:20:44 +0000 Manifest next update: Wed 09 Jul 2025 23:20:44 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: n9FaDqFfaYYHJ27a5cenWebpmxjBmsxcIva2AHAG8Ns=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Jul 2 23:20:44 2025 GMT Not After : Jul 9 23:20:44 2025 GMT Subject: CN=6865becc-799d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:46:cb:da:c8:83:41:89:62:71:ad:d3:72: 5f:74:0e:15:9c:19:99:00:8f:6e:59:41:6a:9d:05: 46:7e:d1:c8:5d:ac:99:b1:31:0c:e6:55:1d:66:93: fb:af:55:f0:c1:2a:6c:94:6a:f4:92:a3:c8:1b:d6: 09:3c:60:8f:8b:cd:a6:11:2a:c6:c6:6a:f3:16:44: c9:1d:d1:ac:77:81:c6:e1:db:06:38:d7:80:6e:60: 6f:be:e0:d6:2a:70:91:07:58:cc:39:d5:b4:76:c9: 98:96:92:35:18:de:81:fa:22:a4:7c:9c:4e:1a:c2: a6:56:88:71:e1:4d:8a:8a:85:d7:bd:8f:93:05:50: 01:d5:52:1b:a0:b2:ad:e5:56:32:63:3a:cc:e2:6a: 46:8e:da:e0:96:4a:21:db:ab:4f:0c:71:36:ad:36: 68:8f:5b:be:de:de:3e:9f:7f:bf:84:74:66:25:9b: 97:1a:25:ff:e8:3d:f7:07:22:ca:2f:7a:d7:59:11: c7:63:cd:0e:42:da:2a:49:82:c2:0a:14:9e:b5:63: 7e:a7:89:ed:b0:e2:4c:8e:fa:8c:78:60:fc:69:e4: 3c:3d:46:95:8e:3a:c2:7b:aa:5a:e0:9b:4d:f9:63: 7d:ae:a1:7c:77:04:53:53:a2:b4:44:25:c1:46:10: e8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:5D:58:3C:C2:7B:6C:4D:06:D8:6F:1E:87:82:32:E1:3D:F0:12:3F X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:bc:68:94:f4:cd:49:e5:4b:44:f0:ea:f2:a8:64:df:c1:9a: e4:5f:cc:d0:6d:d5:d0:f3:ad:82:27:51:44:ac:64:b4:d7:d8: 8a:b2:30:9a:8b:6f:24:ae:68:d1:2c:33:02:5b:a0:82:78:5d: 02:33:db:22:d1:90:d4:a6:d7:ab:a8:a7:71:ef:ea:d9:b3:38: 48:fe:f1:90:1f:8f:0b:1b:06:ec:f9:b0:e8:82:3c:d5:4c:24: 5d:f4:a4:ab:41:af:4a:b0:65:7a:bd:39:e8:1c:f2:81:cd:5b: cc:c2:76:fd:bd:d5:75:10:f3:e1:0e:53:09:c4:34:54:31:b8: 54:28:43:8d:6b:a3:eb:47:3b:a0:95:0e:93:f2:b2:d8:52:28: d2:34:39:98:2b:e5:cb:67:fc:a1:33:33:9e:0e:ee:44:82:bc: f3:d9:5d:1e:8b:f4:86:fa:3e:b5:3c:f3:7e:c9:77:58:d5:aa: bf:1f:ba:17:5a:d2:fd:9f:ac:6b:62:06:33:bb:e9:27:13:85: 1a:2b:73:cd:6a:fa:82:56:8e:65:1b:fe:26:59:c3:bf:32:6a: 7a:d2:79:31:01:a6:c0:65:81:18:e9:c5:ec:e5:c4:81:5e:44: 55:d7:d3:c1:7c:71:02:f9:76:88:af:94:59:12:71:c5:d9:af: fc:46:85:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwNzAyMjMyMDQ0WhcNMjUwNzA5MjMyMDQ0WjAYMRYwFAYD VQQDEw02ODY1YmVjYy03OTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzFGy9rIg0GJYnGt03JfdA4VnBmZAI9uWUFqnQVGftHIXayZsTEM5lUdZpP7 r1XwwSpslGr0kqPIG9YJPGCPi82mESrGxmrzFkTJHdGsd4HG4dsGONeAbmBvvuDW KnCRB1jMOdW0dsmYlpI1GN6B+iKkfJxOGsKmVohx4U2KioXXvY+TBVAB1VIboLKt 5VYyYzrM4mpGjtrglkoh26tPDHE2rTZoj1u+3t4+n3+/hHRmJZuXGiX/6D33ByLK L3rXWRHHY80OQtoqSYLCChSetWN+p4ntsOJMjvqMeGD8aeQ8PUaVjjrCe6pa4JtN +WN9rqF8dwRTU6K0RCXBRhDoiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpdWDzC e2xNBthvHoeCMuE98BI/MB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKvGiU9M1J5UtE8OryqGTfwZrkX8zQbdXQ862CJ1FErGS019iKsjCa i28krmjRLDMCW6CCeF0CM9si0ZDUpterqKdx7+rZszhI/vGQH48LGwbs+bDogjzV TCRd9KSrQa9KsGV6vTnoHPKBzVvMwnb9vdV1EPPhDlMJxDRUMbhUKEONa6PrRzug lQ6T8rLYUijSNDmYK+XLZ/yhMzOeDu5Egrzz2V0ei/SG+j61PPN+yXdY1aq/H7oX WtL9n6xrYgYzu+knE4UaK3PNavqCVo5lG/4mWcO/Mmp60nkxAabAZYEY6cXs5cSB XkRV19PBfHEC+XaIr5RZEnHF2a/8RoXC -----END CERTIFICATE-----Generated at Fri Jul 4 08:26:42 2025 by rpki-client