$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft File: 7a8emnnZ_ssQeIOv03V_qPcKMtc.mft (raw, json) Hash identifier: rBFx6Z4Gk8hTBrKC+2/Z3HdoxZ5wP5fQ6BGOOLq2vSg= Subject key identifier: 1A:39:FE:F8:4E:79:1B:64:99:79:57:27:4D:FF:C1:20:F6:F1:37:39 Authority key identifier: ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 Certificate issuer: /CN=A91A2F6C/serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Certificate serial: 09A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft Manifest number: 099B Signing time: Thu 12 Jun 2025 19:51:22 +0000 Manifest this update: Thu 12 Jun 2025 19:51:22 +0000 Manifest next update: Thu 19 Jun 2025 19:51:22 +0000 Files and hashes: 1: 7a8emnnZ_ssQeIOv03V_qPcKMtc.crl (hash: FaCeerQ49QZfu4zxN7s0/kgr/hZ7NeFSDfl+1w8+bVM=) 2: FA7CB46C8AB411EA89D83541C4F9AE02.roa (hash: yD0pXJuzsIcwlQVDxXtH8gNE+deycvgoI/IITsyuLRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2465 (0x9a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F6C, serialNumber=EDAF1E9A79D9FECB107883AFD3757FA8F70A32D7 Validity Not Before: Jun 12 19:51:22 2025 GMT Not After : Jun 19 19:51:22 2025 GMT Subject: CN=684b2fba-d8b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dc:12:d0:3a:ec:1b:5c:79:72:34:34:64:60: 4a:32:7b:1b:a2:78:b5:3f:b6:d7:0d:f0:07:be:7c: 17:56:48:d0:4b:ac:de:fa:fb:d3:55:79:df:93:b0: 47:6a:6f:77:5f:93:7f:a0:11:56:46:90:b7:e7:4e: 8a:73:1d:2c:0b:1b:ee:8d:5e:76:e7:fb:55:f2:72: 99:5e:79:ea:1d:ea:26:9e:d1:c3:35:ea:5b:5b:ca: 0b:9a:54:9f:c0:11:83:46:65:b9:e2:3c:c5:12:a0: 1d:36:41:a8:3c:de:15:92:82:fd:49:9d:76:a6:f5: d8:7f:94:f3:e6:f6:bb:68:aa:63:b8:44:f6:73:11: 36:95:69:a4:bd:c2:c2:7f:66:8c:fd:43:cf:85:bd: 27:00:2b:8f:80:2d:a4:e3:9e:58:89:40:85:f0:a9: 41:38:39:84:45:1d:96:1f:b6:b9:81:75:0d:e0:c4: 26:a0:c4:2f:76:12:5f:44:7c:01:e9:77:01:e5:c8: c2:81:46:58:e6:d4:19:9b:fd:f7:fc:a0:4d:54:58: 46:c7:c1:5d:44:2b:e3:8c:33:cd:54:5f:6f:b3:9a: 70:70:db:54:41:24:ac:bd:fd:90:8f:da:f9:76:0f: 8c:3a:6e:19:e9:79:d4:7c:59:67:ff:a3:5e:2a:ad: a4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:39:FE:F8:4E:79:1B:64:99:79:57:27:4D:FF:C1:20:F6:F1:37:39 X509v3 Authority Key Identifier: keyid:ED:AF:1E:9A:79:D9:FE:CB:10:78:83:AF:D3:75:7F:A8:F7:0A:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7a8emnnZ_ssQeIOv03V_qPcKMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F6C/9E31F3B28AB311EA93A6BA3EC4F9AE02/7a8emnnZ_ssQeIOv03V_qPcKMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:78:b4:46:33:72:75:76:da:61:7c:69:84:10:51:64:a3:bf: 2d:3a:eb:c6:f6:da:d5:32:ca:38:78:dc:70:71:8e:04:35:40: 08:d8:47:26:74:4c:60:f5:e1:53:c1:b2:ec:77:c4:a9:16:82: a9:73:b7:2d:5c:c1:cb:38:2a:b9:74:1c:95:47:8b:2e:30:92: 37:7a:56:66:c9:1d:06:93:eb:6c:75:2e:ec:ea:03:53:88:c4: 3a:87:f6:c1:f7:a7:13:a7:0c:5e:de:90:1f:56:d6:04:48:3f: cf:89:81:a6:72:bc:28:72:51:59:d7:b2:c6:a2:67:ee:85:e3: b9:fd:e0:78:13:42:6d:c8:30:bb:61:3b:2f:e3:82:ad:a2:38: 53:90:71:29:31:8a:ad:58:31:5e:1f:f8:95:c7:7d:59:6c:4d: f9:0b:98:89:4c:6e:c5:ea:0d:d4:eb:a5:be:d6:de:6b:c1:42: 86:c6:ea:00:af:99:ce:40:01:7c:bb:4c:54:65:b4:e0:ea:9f: 6e:d8:c8:c3:18:68:b7:07:5b:cb:d2:30:cf:21:af:d5:37:09: 31:d1:bc:13:f7:de:fc:c3:44:81:7e:bd:91:ee:82:4f:29:3e: cd:53:a0:cd:29:27:94:02:f6:19:ac:87:cc:a4:99:be:01:fd: fa:56:d4:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGNkMxMTAvBgNVBAUTKEVEQUYxRTlBNzlEOUZFQ0IxMDc4ODNBRkQzNzU3RkE4 RjcwQTMyRDcwHhcNMjUwNjEyMTk1MTIyWhcNMjUwNjE5MTk1MTIyWjAYMRYwFAYD VQQDEw02ODRiMmZiYS1kOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9wS0DrsG1x5cjQ0ZGBKMnsboni1P7bXDfAHvnwXVkjQS6ze+vvTVXnfk7BH am93X5N/oBFWRpC3506Kcx0sCxvujV525/tV8nKZXnnqHeomntHDNepbW8oLmlSf wBGDRmW54jzFEqAdNkGoPN4VkoL9SZ12pvXYf5Tz5va7aKpjuET2cxE2lWmkvcLC f2aM/UPPhb0nACuPgC2k455YiUCF8KlBODmERR2WH7a5gXUN4MQmoMQvdhJfRHwB 6XcB5cjCgUZY5tQZm/33/KBNVFhGx8FdRCvjjDPNVF9vs5pwcNtUQSSsvf2Qj9r5 dg+MOm4Z6XnUfFln/6NeKq2k1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBo5/vhO eRtkmXlXJ03/wSD28Tc5MB8GA1UdIwQYMBaAFO2vHpp52f7LEHiDr9N1f6j3CjLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY2Qy85RTMxRjNCMjhB QjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9zc1FlSU92MDNWX3FQY0tN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhOGVtbm5aX3NzUWVJT3YwM1ZfcVBjS010Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY2Qy85RTMxRjNCMjhBQjMxMUVBOTNBNkJBM0VDNEY5QUUwMi83YThlbW5uWl9z c1FlSU92MDNWX3FQY0tNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUeLRGM3J1dtphfGmEEFFko78tOuvG9trVMso4eNxwcY4ENUAI2Ecm dExg9eFTwbLsd8SpFoKpc7ctXMHLOCq5dByVR4suMJI3elZmyR0Gk+tsdS7s6gNT iMQ6h/bB96cTpwxe3pAfVtYESD/PiYGmcrwoclFZ17LGomfuheO5/eB4E0JtyDC7 YTsv44KtojhTkHEpMYqtWDFeH/iVx31ZbE35C5iJTG7F6g3U66W+1t5rwUKGxuoA r5nOQAF8u0xUZbTg6p9u2MjDGGi3B1vL0jDPIa/VNwkx0bwT9978w0SBfr2R7oJP KT7NU6DNKSeUAvYZrIfMpJm+Af36VtSj -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:45 2025 by rpki-client