$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: WxvHeLDYGxusmgZYlmn1lfR+3IDIcqlE9ZskL6j/bww= Subject key identifier: B2:51:FC:11:51:E1:56:96:39:EB:E4:37:C1:9D:21:93:D1:66:02:6D Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05E6 Signing time: Mon 30 Jun 2025 23:18:59 +0000 Manifest this update: Mon 30 Jun 2025 23:18:59 +0000 Manifest next update: Mon 07 Jul 2025 23:18:59 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: BrgWkpz7Phs8+bqAeHCKvTOcpDuBnijZnSajlmClCsg=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1515 (0x5eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Jun 30 23:18:59 2025 GMT Not After : Jul 7 23:18:59 2025 GMT Subject: CN=68631b63-affd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4e:be:bb:97:c4:1e:8f:32:49:17:e1:15:7a: 25:0c:a9:c9:b2:b8:eb:a0:f2:ee:43:21:e2:17:03: 2c:35:c8:10:55:19:bd:4e:4a:7b:5e:34:60:77:f0: f3:c3:b5:55:7f:f1:57:0e:d6:6f:09:ce:51:74:41: 9a:70:ed:d4:40:b9:fa:55:d9:19:75:d4:63:12:4a: 23:1d:7a:a2:a7:1a:f6:e2:b0:33:d7:03:c4:f5:fa: a4:94:88:a6:a9:aa:9a:e5:64:be:d0:b4:a3:23:25: 84:f0:c7:c0:a6:38:a5:d9:c2:ec:6b:c9:61:d2:10: e6:c3:77:4a:fe:4e:cf:f6:9e:d1:33:9c:47:18:69: 08:e5:09:ff:13:67:bd:a5:6b:fb:68:e7:c9:d1:6e: 96:1e:ff:e5:c1:2c:f1:75:fa:89:67:7f:bc:7e:40: 2d:a4:9e:f7:27:6c:45:c7:b4:2f:5e:cb:5e:9f:e2: e0:a2:42:77:36:7f:19:ba:d8:b5:74:73:52:54:87: 3c:f1:9a:5f:c6:39:b3:27:bd:94:3b:7b:7b:88:6d: e0:74:ff:7a:0f:de:03:86:20:dc:0a:ff:0d:1d:a8: 57:1f:78:b1:23:00:9c:ff:96:95:5d:35:c3:47:7c: f7:56:d5:dd:3f:40:03:34:2b:6d:bc:fe:3d:f2:c5: cb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:51:FC:11:51:E1:56:96:39:EB:E4:37:C1:9D:21:93:D1:66:02:6D X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:09:02:0d:d9:8f:90:3d:a4:d6:e9:35:91:38:d3:40:4b:39: de:15:ac:8c:3f:d0:2a:c1:26:10:d6:c4:e5:23:45:67:2d:c4: df:32:2d:d2:a4:d0:5c:9b:3e:bf:cd:56:3e:74:c5:97:be:fa: 91:8d:ae:c4:5a:78:1f:0a:ca:5f:39:4b:ba:41:4f:e2:9a:f9: ea:ff:6a:d6:b2:59:55:bc:ff:21:96:3e:c1:1c:e0:c4:ed:07: ea:d0:76:bc:d9:94:c5:b5:8c:26:c9:9f:2f:19:a7:88:1e:a6: 20:8f:26:4d:a8:bf:c7:96:b2:71:3c:38:d3:7e:2e:7a:38:9f: 90:92:9e:17:1a:33:b7:3a:b8:04:d4:fe:bf:45:ed:68:3f:64: e4:69:0f:b6:e5:7b:72:03:bf:38:db:07:f5:31:31:a8:3a:16: a0:c3:02:ca:33:3e:9c:ae:7e:89:14:e6:df:5f:b0:14:38:c7: 00:d6:34:5d:cd:6f:40:ff:1f:47:54:8a:8a:86:c3:ce:26:eb: d0:8a:c8:69:4c:60:61:9a:7a:a0:0e:d4:52:8a:fa:b6:d9:78: 88:12:04:c8:bb:06:5d:6f:7d:53:ac:11:9b:0b:29:e8:2d:c5: 38:1a:44:24:0c:cc:5f:18:6a:e0:c1:60:34:87:ec:b2:57:3b: bc:df:72:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNjMwMjMxODU5WhcNMjUwNzA3MjMxODU5WjAYMRYwFAYD VQQDEw02ODYzMWI2My1hZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU6+u5fEHo8ySRfhFXolDKnJsrjroPLuQyHiFwMsNcgQVRm9Tkp7XjRgd/Dz w7VVf/FXDtZvCc5RdEGacO3UQLn6VdkZddRjEkojHXqipxr24rAz1wPE9fqklIim qaqa5WS+0LSjIyWE8MfApjil2cLsa8lh0hDmw3dK/k7P9p7RM5xHGGkI5Qn/E2e9 pWv7aOfJ0W6WHv/lwSzxdfqJZ3+8fkAtpJ73J2xFx7QvXsten+LgokJ3Nn8Zuti1 dHNSVIc88ZpfxjmzJ72UO3t7iG3gdP96D94DhiDcCv8NHahXH3ixIwCc/5aVXTXD R3z3VtXdP0ADNCttvP498sXLfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJR/BFR 4VaWOevkN8GdIZPRZgJtMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbCQIN2Y+QPaTW6TWRONNASzneFayMP9AqwSYQ1sTlI0VnLcTfMi3S pNBcmz6/zVY+dMWXvvqRja7EWngfCspfOUu6QU/imvnq/2rWsllVvP8hlj7BHODE 7Qfq0Ha82ZTFtYwmyZ8vGaeIHqYgjyZNqL/HlrJxPDjTfi56OJ+Qkp4XGjO3OrgE 1P6/Re1oP2TkaQ+25XtyA7842wf1MTGoOhagwwLKMz6crn6JFObfX7AUOMcA1jRd zW9A/x9HVIqKhsPOJuvQishpTGBhmnqgDtRSivq22XiIEgTIuwZdb31TrBGbCyno LcU4GkQkDMxfGGrgwWA0h+yyVzu833KL -----END CERTIFICATE-----Generated at Tue Jul 1 20:37:53 2025 by rpki-client