$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft File: B82dMe1hhir1A-UglCjHyyfqiB8.mft (raw, json) Hash identifier: XmtjTmhWdkw+xbNOKCEVsyjLyznHQO1HfvrX7R1/dgQ= Subject key identifier: 4B:14:05:77:E2:FB:56:62:9F:0A:32:F3:3A:7E:DC:CA:9F:D3:DB:DF Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Certificate serial: 07FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft Manifest number: 07F5 Signing time: Mon 30 Jun 2025 21:10:08 +0000 Manifest this update: Mon 30 Jun 2025 21:10:08 +0000 Manifest next update: Mon 07 Jul 2025 21:10:08 +0000 Files and hashes: 1: B82dMe1hhir1A-UglCjHyyfqiB8.crl (hash: axXW3tUjnGfV69BloSTRm3D25qLreD90nN4XhgFAX7w=) 2: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (hash: LwXV2swiHkwzhmRJHgtxVwl/mp8FDjhnbQvKS2GLsds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD609, serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Validity Not Before: Jun 30 21:10:08 2025 GMT Not After : Jul 7 21:10:08 2025 GMT Subject: CN=6862fd30-bfbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:19:b9:46:13:e9:08:fd:11:4c:ed:c6:f2:68: 71:1e:24:36:de:12:d0:80:78:a4:2f:b2:ad:d0:bf: 65:b1:06:f0:75:7c:f4:0f:70:d1:a3:94:12:d1:32: f2:9f:10:e8:bb:43:4f:f2:95:e3:00:17:43:3e:54: e1:a2:d4:96:3c:26:78:95:12:9c:e3:06:15:e1:ce: c9:e9:86:47:fd:5d:4b:a9:03:58:77:63:7c:65:e2: ca:ad:77:5f:9e:0b:1b:66:fe:34:81:26:0e:fb:1b: 7e:0a:c1:83:dc:1e:17:08:73:88:59:12:46:5c:70: 8a:2a:c0:60:4d:bb:db:31:03:e8:17:09:e3:2e:97: 14:85:20:ea:71:4f:31:e0:bf:c6:1f:9d:28:7d:00: d9:e7:95:1b:33:b1:8a:06:c3:e8:0b:66:8b:43:28: d2:fc:0d:38:22:ed:c2:92:63:96:6d:4b:fa:5c:0d: 81:72:d1:c0:a2:fa:2d:37:b4:fd:8e:b0:61:78:b1: 15:93:e7:11:e6:5e:a1:bd:9d:ea:29:dd:a8:99:ef: 07:f9:b3:50:9d:39:71:be:1e:b5:01:e1:b8:28:03: c3:86:18:aa:6f:83:c7:6b:a9:c2:ee:54:08:6c:28: 64:52:c8:81:1d:b9:4d:a5:5d:8e:b5:23:85:b3:89: 07:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:14:05:77:E2:FB:56:62:9F:0A:32:F3:3A:7E:DC:CA:9F:D3:DB:DF X509v3 Authority Key Identifier: keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:22:db:5e:76:78:f9:70:8f:fd:63:22:db:5e:21:13:bf:4e: 3b:b2:0e:dc:94:48:d0:7f:d7:46:89:cc:56:4a:65:19:d5:bf: 91:3b:ca:ef:4f:6d:6f:f9:82:1d:06:f6:81:34:11:4c:8b:dd: ac:e7:d1:da:b3:37:3e:f5:e4:ed:c8:1c:16:a5:99:5f:54:1f: 99:c2:9c:f2:f1:63:cf:a8:56:e6:61:13:45:e9:29:dd:a3:23: 6f:5b:06:2d:64:40:09:33:55:02:73:54:29:a0:34:b0:74:a4: 63:49:78:72:f3:ef:12:c8:76:84:85:ea:d8:78:5b:a6:e3:32: 80:02:e0:2f:01:a4:90:7b:8c:92:61:b3:a5:95:5d:c0:14:90: be:c6:1a:d0:bc:37:2e:50:3a:07:5b:47:5c:ee:7c:ab:1a:14: 5b:9b:90:af:c1:16:ce:77:8a:c2:75:fb:fd:b4:2c:7c:2a:cb: 52:75:19:2e:e5:14:89:62:96:e6:0b:06:de:a3:30:6b:5d:30: 28:0c:d3:c1:bf:6d:1c:64:2e:08:c9:47:fb:ba:15:d4:37:83: 12:dd:28:3a:31:65:5a:b5:8d:c1:ad:18:85:b6:5d:de:3d:da: fa:43:53:1a:d3:33:43:f4:85:20:d8:e2:06:07:c2:b0:35:77: 59:dd:81:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2MDkxMTAvBgNVBAUTKDA3Q0Q5RDMxRUQ2MTg2MkFGNTAzRTUyMDk0MjhDN0NC MjdFQTg4MUYwHhcNMjUwNjMwMjExMDA4WhcNMjUwNzA3MjExMDA4WjAYMRYwFAYD VQQDEw02ODYyZmQzMC1iZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Rm5RhPpCP0RTO3G8mhxHiQ23hLQgHikL7Kt0L9lsQbwdXz0D3DRo5QS0TLy nxDou0NP8pXjABdDPlThotSWPCZ4lRKc4wYV4c7J6YZH/V1LqQNYd2N8ZeLKrXdf ngsbZv40gSYO+xt+CsGD3B4XCHOIWRJGXHCKKsBgTbvbMQPoFwnjLpcUhSDqcU8x 4L/GH50ofQDZ55UbM7GKBsPoC2aLQyjS/A04Iu3CkmOWbUv6XA2BctHAovotN7T9 jrBheLEVk+cR5l6hvZ3qKd2ome8H+bNQnTlxvh61AeG4KAPDhhiqb4PHa6nC7lQI bChkUsiBHblNpV2OtSOFs4kHHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsUBXfi +1Zinwoy8zp+3Mqf09vfMB8GA1UdIwQYMBaAFAfNnTHtYYYq9QPlIJQox8sn6ogf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDYwOS8wQzYwOUI5Q0VD MTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhpcjFBLVVnbENqSHl5ZnFp QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I4MmRNZTFoaGlyMUEtVWdsQ2pIeXlmcWlCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDYwOS8wQzYwOUI5Q0VDMTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhp cjFBLVVnbENqSHl5ZnFpQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNIttednj5cI/9YyLbXiETv047sg7clEjQf9dGicxWSmUZ1b+RO8rv T21v+YIdBvaBNBFMi92s59Haszc+9eTtyBwWpZlfVB+Zwpzy8WPPqFbmYRNF6Snd oyNvWwYtZEAJM1UCc1QpoDSwdKRjSXhy8+8SyHaEherYeFum4zKAAuAvAaSQe4yS YbOllV3AFJC+xhrQvDcuUDoHW0dc7nyrGhRbm5CvwRbOd4rCdfv9tCx8KstSdRku 5RSJYpbmCwbeozBrXTAoDNPBv20cZC4IyUf7uhXUN4MS3Sg6MWVatY3BrRiFtl3e Pdr6Q1Ma0zND9IUg2OIGB8KwNXdZ3YG7 -----END CERTIFICATE-----Generated at Tue Jul 1 18:43:59 2025 by rpki-client