$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: 26E1h8gocoQ46IKeZbXPeOWmhe/Dz4kpPszcBr4ofRc= Subject key identifier: 08:A6:EA:11:80:A0:4E:83:C0:39:E7:60:A9:C9:C0:8B:AE:39:B1:6C Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 6B Signing time: Fri 13 Jun 2025 05:54:55 +0000 Manifest this update: Fri 13 Jun 2025 05:54:54 +0000 Manifest next update: Fri 20 Jun 2025 05:54:54 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: kxdKIwEumQ/hdJ/EyzUdaLL+f+jzaQeKNxSTuSfIsXY=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: CcfcyuDgdAXzM0C7pRrcqcGTmtCQX9kXzhcOgKQTSNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7, serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Jun 13 05:54:54 2025 GMT Not After : Jun 20 05:54:54 2025 GMT Subject: CN=684bbd2e-c207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ff:79:f5:3f:3c:a5:d4:95:37:e4:b8:15:3c: 6a:84:c2:71:dd:ba:b1:a8:cd:d6:a7:d4:a1:ef:f0: d9:2d:ef:00:a7:a5:ca:13:10:25:bb:57:50:4b:94: c8:85:3c:38:72:19:34:72:7a:8e:34:47:12:d4:95: 99:41:32:3a:8b:e5:94:99:70:27:68:59:67:32:04: 5b:7e:df:70:6e:59:5c:af:02:82:0c:72:4c:b0:cd: e7:6f:9a:71:5e:45:2d:8b:6a:28:97:35:c0:2d:d8: fa:e1:5f:27:8c:49:b3:a6:de:a9:ba:38:25:f5:b3: 49:ef:64:9b:d9:93:f0:64:fe:60:7e:2d:61:ee:27: 57:b7:c0:a8:08:e3:38:cf:5c:0e:c9:fa:e6:16:37: 28:c5:1e:13:f8:27:65:4a:20:85:b4:a8:1d:ba:71: 66:79:cb:8a:04:3a:0c:c9:af:22:02:b0:29:79:49: f9:6d:13:45:0e:8a:eb:52:f1:49:07:ad:38:57:fa: 4a:71:3f:d9:b0:ae:d8:b3:bd:62:de:63:61:a2:70: a0:74:ec:79:19:72:36:c4:e9:c2:72:52:3a:2d:2b: 3d:3f:c6:64:89:e2:2b:f8:61:1f:45:bb:d8:64:34: 2e:c9:54:b4:f3:a0:eb:ef:dd:d3:e5:4e:f0:44:2b: d8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A6:EA:11:80:A0:4E:83:C0:39:E7:60:A9:C9:C0:8B:AE:39:B1:6C X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:75:6f:32:5f:d2:b2:b4:50:b4:6d:6c:51:b1:b3:75:d6:99: fc:6a:b6:33:04:84:e4:d2:c2:9f:e2:a2:64:1b:fb:60:04:b4: b9:ba:a9:6d:0c:e1:33:23:c8:40:0c:38:27:21:b8:71:a5:64: ec:9b:ca:cf:03:d6:ba:f7:a7:f2:4c:c2:e7:5c:c6:2c:41:b7: cb:66:2f:85:8b:8b:f6:c1:0b:fd:60:65:b3:e9:8b:f0:61:3a: ef:1d:64:eb:e9:26:0d:d7:68:be:df:61:77:da:29:95:4f:e3: 93:4e:7e:b0:94:23:89:51:69:fc:17:30:31:c4:7e:b1:12:05: 45:f8:51:fe:0f:88:16:c4:66:b4:94:8c:2f:b3:a7:a3:f4:98: 9b:3f:ca:2d:77:12:de:64:20:f2:1c:92:ef:99:da:ee:8f:4d: d5:d9:4a:d0:70:88:54:4e:6a:6a:21:c9:58:53:1d:7f:2a:99: 9f:15:b0:66:47:b2:d2:49:2e:38:a9:36:73:a3:11:69:d2:47: dc:dc:67:fd:a0:02:dd:24:36:de:97:79:ce:54:8b:8b:14:76: 58:a7:1f:20:bb:90:32:0b:c4:ea:8e:e0:56:df:92:45:95:62: ce:f9:af:79:85:51:06:33:26:ec:29:2f:33:ec:03:2a:d1:65: 08:15:02:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNTA2MTMwNTU0NTRaFw0yNTA2MjAwNTU0NTRaMBgxFjAUBgNV BAMTDTY4NGJiZDJlLWMyMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh/3n1Pzyl1JU35LgVPGqEwnHdurGozdan1KHv8Nkt7wCnpcoTECW7V1BLlMiF PDhyGTRyeo40RxLUlZlBMjqL5ZSZcCdoWWcyBFt+33BuWVyvAoIMckywzedvmnFe RS2LaiiXNcAt2PrhXyeMSbOm3qm6OCX1s0nvZJvZk/Bk/mB+LWHuJ1e3wKgI4zjP XA7J+uYWNyjFHhP4J2VKIIW0qB26cWZ5y4oEOgzJryICsCl5SfltE0UOiutS8UkH rThX+kpxP9mwrtizvWLeY2GicKB07HkZcjbE6cJyUjotKz0/xmSJ4iv4YR9Fu9hk NC7JVLTzoOvv3dPlTvBEK9inAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCKbqEYCg ToPAOedgqcnAi645sWwwHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEB1bzJf0rK0ULRtbFGxs3XWmfxqtjMEhOTSwp/iomQb+2AEtLm6qW0M 4TMjyEAMOCchuHGlZOybys8D1rr3p/JMwudcxixBt8tmL4WLi/bBC/1gZbPpi/Bh Ou8dZOvpJg3XaL7fYXfaKZVP45NOfrCUI4lRafwXMDHEfrESBUX4Uf4PiBbEZrSU jC+zp6P0mJs/yi13Et5kIPIcku+Z2u6PTdXZStBwiFROamohyVhTHX8qmZ8VsGZH stJJLjipNnOjEWnSR9zcZ/2gAt0kNt6Xec5Ui4sUdlinHyC7kDILxOqO4FbfkkWV Ys75r3mFUQYzJuwpLzPsAyrRZQgVApA= -----END CERTIFICATE-----Generated at Sat Jun 14 17:52:44 2025 by rpki-client