$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft File: t0ZCTjTomeFM0znQc7tfSRj9B4c.mft (raw, json) Hash identifier: 8+tO/bnc4L6vA9SgChn3AR6K0BRxglwyv22umoFtHlM= Subject key identifier: 77:A7:F6:C7:08:B7:44:99:FE:34:FD:1A:0A:AA:00:73:9D:25:5B:28 Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft Manifest number: 2A Signing time: Sun 15 Jun 2025 06:51:48 +0000 Manifest this update: Sun 15 Jun 2025 06:51:47 +0000 Manifest next update: Sun 22 Jun 2025 06:51:47 +0000 Files and hashes: 1: t0ZCTjTomeFM0znQc7tfSRj9B4c.crl (hash: 7JiQ7jpG4vGrTAzAt3c0cABz1AZbWfg5XJaeM32R0o8=) 2: 675707260BDA11F0A768300AC4F9AE02.roa (hash: wilBGqna+OfcXED1b/uTuE5R5bjXwDBDwAo+DwpXl+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Jun 15 06:51:47 2025 GMT Not After : Jun 22 06:51:47 2025 GMT Subject: CN=684e6d83-0570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:20:76:54:8e:9d:76:9c:ea:34:e7:64:ca: 59:e5:b6:24:f8:ad:95:75:83:8a:f1:f0:54:9d:5c: ed:ae:07:7b:88:78:5f:f6:b4:0c:64:81:3a:f5:62: d3:dd:0f:3e:8a:09:96:ff:62:64:e3:77:eb:1b:79: f0:09:a0:15:22:ac:7c:f2:5f:32:39:b9:37:50:d6: ec:b1:f7:eb:cd:60:99:c5:a1:49:9e:b6:e8:51:1b: f8:a9:ea:05:84:60:cb:b0:a2:cc:82:21:9c:d9:c7: 79:1e:4b:a3:86:55:d6:2b:ac:f2:8d:ab:ea:e5:b5: 90:09:0c:8c:92:97:6c:ca:45:db:21:68:f3:9c:ea: 45:a8:58:9a:e5:cf:9f:4f:86:47:6c:e4:0a:52:98: e0:14:10:05:13:19:4e:83:a0:ee:9f:d2:e7:de:ce: 20:8b:6e:6f:c4:3c:45:8e:fb:40:bf:a5:c4:e2:c3: 30:96:ed:ce:dd:82:99:fd:44:d9:b2:45:b3:9c:8f: ba:3d:55:95:77:dd:db:56:1e:9e:f9:6b:45:49:4f: e3:a4:f2:b1:ef:d5:1a:65:62:b4:98:16:48:aa:51: c0:b9:b2:10:35:8f:7c:5d:86:39:e7:e3:54:c1:95: fa:bf:c3:e9:ac:ba:52:69:76:76:e2:a2:c6:ea:02: cb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A7:F6:C7:08:B7:44:99:FE:34:FD:1A:0A:AA:00:73:9D:25:5B:28 X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8f:dd:1a:06:5d:0d:14:3d:d6:d0:f4:74:20:65:1d:35:7f: 9e:b1:c4:2a:78:f3:c0:ae:23:da:42:35:9b:34:03:40:a5:e2: 09:8c:34:e4:1b:d1:b7:cd:78:70:29:8f:d2:00:7f:fe:fc:14: 10:6d:48:fb:59:55:a0:53:48:7d:ca:88:7a:f8:70:5a:18:61: d8:29:d6:18:88:39:d4:02:29:73:2f:ce:a7:6a:1b:73:29:35: 57:bb:71:bb:0f:1e:f6:37:09:4a:79:39:17:bb:99:f5:c2:1f: 70:8e:9e:59:94:29:55:8f:56:77:7b:bc:b8:6b:ba:0a:c6:39: 1a:7e:2d:ef:c5:7b:80:b5:c8:24:fc:cf:ba:1d:35:ef:0a:c4: 18:d4:58:d0:2e:bc:81:85:a5:f7:8d:3b:ef:83:87:36:6e:10: ab:df:0b:4d:03:68:f5:12:f9:fc:24:5a:49:c3:f0:38:f9:a1: 91:b1:43:0d:33:c0:70:1b:45:f9:8e:ed:2e:bc:89:dc:28:f5: 17:e7:b3:c6:a6:e6:d6:1d:f1:3f:4b:7f:9a:49:c0:b8:0e:f9: 27:af:41:a1:da:f4:07:84:f8:4f:9b:6d:dd:3f:2d:40:64:54: 4d:fb:c3:40:95:85:6c:ad:fd:5f:67:7f:42:97:27:c9:a1:e2: 5f:ad:be:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoQjc0NjQyNEUzNEU4OTlFMTRDRDMzOUQwNzNCQjVGNDkx OEZEMDc4NzAeFw0yNTA2MTUwNjUxNDdaFw0yNTA2MjIwNjUxNDdaMBgxFjAUBgNV BAMTDTY4NGU2ZDgzLTA1NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpoSB2VI6ddpzqNOdkylnltiT4rZV1g4rx8FSdXO2uB3uIeF/2tAxkgTr1YtPd Dz6KCZb/YmTjd+sbefAJoBUirHzyXzI5uTdQ1uyx9+vNYJnFoUmetuhRG/ip6gWE YMuwosyCIZzZx3keS6OGVdYrrPKNq+rltZAJDIySl2zKRdshaPOc6kWoWJrlz59P hkds5ApSmOAUEAUTGU6DoO6f0ufeziCLbm/EPEWO+0C/pcTiwzCW7c7dgpn9RNmy RbOcj7o9VZV33dtWHp75a0VJT+Ok8rHv1RplYrSYFkiqUcC5shA1j3xdhjnn41TB lfq/w+msulJpdnbiosbqAss1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd6f2xwi3 RJn+NP0aCqoAc50lWygwHwYDVR0jBBgwFoAUt0ZCTjTomeFM0znQc7tfSRj9B4cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDLzkzNkI0MzMyMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDBaQ1RqVG9tZUZNMHpuUWM3dGZTUmo5QjRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDLzkzNkI0MzMyMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVG TTB6blFjN3RmU1JqOUI0Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADSP3RoGXQ0UPdbQ9HQgZR01f56xxCp488CuI9pCNZs0A0Cl4gmMNOQb 0bfNeHApj9IAf/78FBBtSPtZVaBTSH3KiHr4cFoYYdgp1hiIOdQCKXMvzqdqG3Mp NVe7cbsPHvY3CUp5ORe7mfXCH3COnlmUKVWPVnd7vLhrugrGORp+Le/Fe4C1yCT8 z7odNe8KxBjUWNAuvIGFpfeNO++DhzZuEKvfC00DaPUS+fwkWknD8Dj5oZGxQw0z wHAbRfmO7S68idwo9Rfns8am5tYd8T9Lf5pJwLgO+SevQaHa9AeE+E+bbd0/LUBk VE37w0CVhWyt/V9nf0KXJ8mh4l+tvrk= -----END CERTIFICATE-----Generated at Sun Jun 15 09:40:27 2025 by rpki-client