$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: OwlsG4EB+ts+M38gh1i27JCqP+3Iia6vAUONXbfrOYc= Subject key identifier: DF:90:F4:9F:EC:9E:E1:B1:33:4B:D3:F6:FA:88:43:D2:BE:1F:73:D9 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 01B8 Signing time: Sun 29 Jun 2025 02:16:21 +0000 Manifest this update: Sun 29 Jun 2025 02:16:20 +0000 Manifest next update: Sun 06 Jul 2025 02:16:20 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: 1v832WizTsBd7ySw4d3slACm7yS7LBH+sGMArgS78uk=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 02:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: Jun 29 02:16:20 2025 GMT Not After : Jul 6 02:16:20 2025 GMT Subject: CN=6860a1f5-0cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:70:e1:9d:65:61:cc:54:20:f2:81:c3:e8:4b: dc:a5:c3:38:18:fc:48:01:e2:f7:b2:d2:f5:1d:72: 61:6c:34:66:35:7d:d1:9d:66:68:86:a6:fe:90:7c: 6d:3d:f6:65:54:08:a8:43:f1:74:db:d4:35:c0:26: 14:4c:a0:31:71:d7:e4:87:35:b8:5b:ac:1c:b4:7b: a9:36:a5:bc:7a:40:f6:6d:de:2a:0f:cd:1f:5c:24: f1:3a:6f:ae:09:98:a2:5d:0a:90:c9:5c:d5:52:58: c5:bd:fa:37:b4:67:20:df:f8:51:0f:fa:f5:0b:7d: 81:f4:12:6a:55:d2:7a:ba:4e:5b:64:0a:25:d0:a2: e6:1b:43:a2:e6:cb:2d:c9:96:e3:0b:4b:38:07:65: 5c:3f:19:6e:84:62:f0:71:77:96:d9:19:d4:bd:5f: 30:cb:95:da:26:ec:d4:b1:22:ec:67:08:fe:61:7b: 6f:68:fd:68:27:e2:79:95:13:69:c4:bb:13:92:31: b0:22:60:74:84:b9:8f:0a:24:c7:3f:92:15:aa:ac: 4b:7f:6c:95:ac:8b:ec:83:22:35:bb:71:20:a1:3e: 55:02:f2:fa:3d:4f:98:0b:bd:77:b7:d0:34:5e:04: 21:8f:5a:e6:fd:6a:6c:21:ef:48:a3:83:2f:ff:80: a5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:90:F4:9F:EC:9E:E1:B1:33:4B:D3:F6:FA:88:43:D2:BE:1F:73:D9 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:36:6f:0f:cb:32:0c:9f:4b:2d:cf:4c:2f:dd:23:87:42:1e: 01:a6:58:ab:f4:e7:35:c0:1b:3b:e3:ca:8a:b0:9a:73:2e:9f: bf:4c:84:d9:88:5e:b9:dd:c2:e0:f7:16:25:dd:95:7f:48:ce: 83:3f:6e:66:28:c9:15:4d:65:75:16:99:61:bf:03:7e:5d:7b: 54:ea:df:2f:1d:6f:6c:e4:b3:27:05:bc:94:95:aa:b1:5c:9c: 67:ec:3d:fa:69:7b:73:c7:0a:dc:fa:41:40:bc:4a:a4:f7:9e: 92:ce:0f:1d:a8:18:d7:75:27:14:ff:e0:a9:12:5e:5e:b2:2a: 6c:9a:4c:ee:bf:98:38:88:c0:e7:13:6f:c8:e8:ef:93:2e:44: 8b:c3:48:e1:dd:e2:72:2d:c9:ed:99:a2:7d:bd:96:fa:92:a6: 3a:f1:83:1a:15:fb:ce:89:47:78:3d:9e:39:33:7d:aa:f1:86: 35:4a:82:25:af:bd:68:2e:39:ab:c9:f0:5f:13:18:b3:de:01: 31:72:1a:31:a3:4e:95:40:4c:67:d1:f1:f0:01:15:2f:6f:f1: cd:d3:9e:62:48:93:6b:65:9c:02:c7:b4:78:4b:99:c6:1f:d7: 08:62:63:de:60:91:9b:66:fb:d7:f5:d2:9f:00:34:42:20:e2: 34:db:d4:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwNjI5MDIxNjIwWhcNMjUwNzA2MDIxNjIwWjAYMRYwFAYD VQQDEw02ODYwYTFmNS0wY2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nDhnWVhzFQg8oHD6EvcpcM4GPxIAeL3stL1HXJhbDRmNX3RnWZohqb+kHxt PfZlVAioQ/F029Q1wCYUTKAxcdfkhzW4W6wctHupNqW8ekD2bd4qD80fXCTxOm+u CZiiXQqQyVzVUljFvfo3tGcg3/hRD/r1C32B9BJqVdJ6uk5bZAol0KLmG0Oi5sst yZbjC0s4B2VcPxluhGLwcXeW2RnUvV8wy5XaJuzUsSLsZwj+YXtvaP1oJ+J5lRNp xLsTkjGwImB0hLmPCiTHP5IVqqxLf2yVrIvsgyI1u3EgoT5VAvL6PU+YC713t9A0 XgQhj1rm/WpsIe9Io4Mv/4ClxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+Q9J/s nuGxM0vT9vqIQ9K+H3PZMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvNm8PyzIMn0stz0wv3SOHQh4Bplir9Oc1wBs748qKsJpzLp+/TITZ iF653cLg9xYl3ZV/SM6DP25mKMkVTWV1FplhvwN+XXtU6t8vHW9s5LMnBbyUlaqx XJxn7D36aXtzxwrc+kFAvEqk956Szg8dqBjXdScU/+CpEl5esipsmkzuv5g4iMDn E2/I6O+TLkSLw0jh3eJyLcntmaJ9vZb6kqY68YMaFfvOiUd4PZ45M32q8YY1SoIl r71oLjmryfBfExiz3gExchoxo06VQExn0fHwARUvb/HN055iSJNrZZwCx7R4S5nG H9cIYmPeYJGbZvvX9dKfADRCIOI029RS -----END CERTIFICATE-----Generated at Mon Jun 30 18:16:27 2025 by rpki-client