$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft File: G7ThccrEGeYWe6On1yU8dhYxoo0.mft (raw, json) Hash identifier: uzmbhl9NZT//ts70UGwHByCOnWRRjCDP+ajHI9j7h+0= Subject key identifier: 69:21:1B:53:EE:56:49:BE:EA:03:5D:8F:4F:06:0A:07:57:77:F7:B9 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft Manifest number: 2B Signing time: Fri 13 Jun 2025 06:39:30 +0000 Manifest this update: Fri 13 Jun 2025 06:39:30 +0000 Manifest next update: Fri 20 Jun 2025 06:39:30 +0000 Files and hashes: 1: G7ThccrEGeYWe6On1yU8dhYxoo0.crl (hash: xJ5KevEW3QoyqsWbHfnz06MNMnb2aFQmgNrwcfNSMq0=) 2: 2031308808A111F09B131E5BC4F9AE02.roa (hash: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Jun 13 06:39:30 2025 GMT Not After : Jun 20 06:39:30 2025 GMT Subject: CN=684bc7a2-54e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:22:6e:40:36:e9:18:90:8e:43:93:95:8a:76: 90:c0:08:57:3b:5a:ed:e1:f6:e3:43:e4:bd:93:3f: 7b:c1:a4:72:76:cc:a7:dc:3e:0a:8b:d3:df:7e:21: 98:95:8e:61:cd:20:93:cf:c1:0c:53:f6:d8:17:e6: c5:4f:d6:f9:fd:8f:cd:a6:99:9f:08:64:c5:89:3f: a1:82:ba:53:73:c8:40:a6:e6:b7:4f:3b:6e:7b:fd: dc:c1:5e:d2:d7:42:1e:fb:cc:1b:bc:d2:ac:76:c6: c6:9f:a8:5f:bb:04:dc:1f:67:ab:4a:aa:dc:12:c1: 7b:f5:ee:ff:df:7b:5c:7e:61:82:59:42:b1:cc:a7: ef:48:1f:79:b9:e5:b4:9f:33:d0:6d:3d:2f:b7:67: 7f:6e:29:6b:dc:d9:bf:52:d3:44:40:37:f8:ae:d4: 90:8b:d3:01:27:ba:74:e3:5f:3e:5b:3c:44:bd:3f: 73:0a:55:fb:bd:2d:ea:cf:28:22:2b:46:0e:5e:a7: 52:e2:5f:5c:f5:23:41:b4:b7:51:0d:5b:4c:74:70: 4c:92:78:26:4d:24:59:99:a4:0b:a2:4b:4d:51:80: 3e:f7:0b:c2:52:30:b0:d5:23:f4:bf:62:1c:fe:27: 85:c6:f3:63:5f:1d:35:bd:65:fe:6b:f5:e8:4a:b5: 88:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:21:1B:53:EE:56:49:BE:EA:03:5D:8F:4F:06:0A:07:57:77:F7:B9 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:eb:23:b9:65:6f:31:58:08:60:a1:56:74:ef:9e:ac:a8:24: 80:78:6b:72:92:5a:cb:e9:04:b3:72:9f:f4:68:9f:82:98:c3: e2:9c:7d:15:d2:2f:fa:0d:2d:bf:06:d4:a5:69:5e:9b:c7:36: bc:34:58:40:5f:84:3c:5f:c2:66:91:39:42:ff:07:53:95:70: 0d:c6:b1:99:da:9a:9b:61:b6:db:04:63:b0:67:01:5c:1d:3d: 5b:5f:87:34:9b:c7:23:34:7e:e4:99:42:e1:23:82:c7:15:13: a9:d4:42:b0:79:b0:b5:5c:79:50:c2:b6:50:1d:6e:a7:ac:8c: 68:22:08:9c:b4:bd:0e:8a:63:00:7f:6f:c3:d7:76:46:97:62: 64:f4:db:07:e3:0e:d4:e1:2c:93:ef:d8:4a:d6:c5:bb:bf:4c: 60:f4:1c:97:af:2c:e1:55:13:b9:fc:c7:67:84:a4:78:5c:cc: 9e:41:4b:ab:5c:14:6e:48:43:9a:4c:8f:50:e3:95:d9:d4:ef: 3a:5e:e6:7b:08:88:40:95:d2:a1:b9:07:1c:17:ca:b9:65:69: 32:bf:fa:5c:cc:52:b4:f3:44:80:3c:7d:b9:cc:88:41:7b:6d: d9:84:75:f5:15:6f:e7:2f:0d:28:14:08:43:b7:e3:f6:ea:95: 2d:00:39:ca -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA2MTMwNjM5MzBaFw0yNTA2MjAwNjM5MzBaMBgxFjAUBgNV BAMTDTY4NGJjN2EyLTU0ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmIm5ANukYkI5Dk5WKdpDACFc7Wu3h9uND5L2TP3vBpHJ2zKfcPgqL099+IZiV jmHNIJPPwQxT9tgX5sVP1vn9j82mmZ8IZMWJP6GCulNzyECm5rdPO257/dzBXtLX Qh77zBu80qx2xsafqF+7BNwfZ6tKqtwSwXv17v/fe1x+YYJZQrHMp+9IH3m55bSf M9BtPS+3Z39uKWvc2b9S00RAN/iu1JCL0wEnunTjXz5bPES9P3MKVfu9LerPKCIr Rg5ep1LiX1z1I0G0t1ENW0x0cEySeCZNJFmZpAuiS01RgD73C8JSMLDVI/S/Yhz+ J4XG82NfHTW9Zf5r9ehKtYhPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaSEbU+5W Sb7qA12PTwYKB1d397kwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1 OUNBL0E5RjI3MjJFMDhBMDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZ V2U2T24xeVU4ZGhZeG9vMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAETrI7llbzFYCGChVnTvnqyoJIB4a3KSWsvpBLNyn/Ron4KYw+KcfRXS L/oNLb8G1KVpXpvHNrw0WEBfhDxfwmaROUL/B1OVcA3GsZnampthttsEY7BnAVwd PVtfhzSbxyM0fuSZQuEjgscVE6nUQrB5sLVceVDCtlAdbqesjGgiCJy0vQ6KYwB/ b8PXdkaXYmT02wfjDtThLJPv2ErWxbu/TGD0HJevLOFVE7n8x2eEpHhczJ5BS6tc FG5IQ5pMj1DjldnU7zpe5nsIiECV0qG5BxwXyrllaTK/+lzMUrTzRIA8fbnMiEF7 bdmEdfUVb+cvDSgUCEO34/bqlS0AOco= -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:56 2025 by rpki-client