$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: bykdDnCW81coVbRBbWnId0LpvZROX6vZlKDrXAr+6Ik= Subject key identifier: 48:FA:1D:9E:0A:C2:90:D5:B3:C2:52:94:0F:51:4B:EA:52:70:68:AF Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07B3 Signing time: Sat 14 Jun 2025 20:56:49 +0000 Manifest this update: Sat 14 Jun 2025 20:56:49 +0000 Manifest next update: Sat 21 Jun 2025 20:56:49 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: FwrbpGYm0fQSkqAUgqEoiEpQ2xUlWHLiBoJPJmi0LXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Jun 14 20:56:49 2025 GMT Not After : Jun 21 20:56:49 2025 GMT Subject: CN=684de211-2afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e9:b9:0a:72:03:c9:d6:58:05:b1:97:0f:4a: f3:39:b0:ef:15:cc:00:03:d4:f5:9f:79:98:68:f0: 52:a4:84:27:2b:93:fa:c9:25:cd:80:45:d1:8f:14: 50:44:5a:73:e2:e0:2b:6b:bd:a6:68:71:59:66:76: a0:bb:44:f9:fa:74:a4:3f:f8:fc:a0:0d:b5:56:fd: 6f:b3:d0:f6:fb:a0:82:97:87:54:fd:e5:ea:9b:cd: 9e:23:c4:0c:1b:72:8b:38:c8:a5:7f:4a:83:9c:71: 8d:55:e7:74:da:39:31:1c:ab:6d:75:47:19:5d:6f: 43:1b:a1:71:d5:9d:02:10:ee:6d:4a:a9:28:25:23: 56:7a:be:89:43:a0:ef:10:9f:01:9e:62:7c:a7:69: a9:73:60:b0:b9:e3:d0:0c:7f:40:d6:15:32:a4:71: ce:f7:26:1f:81:00:69:34:ee:a7:95:14:95:d0:d3: c3:73:e3:95:53:94:e1:f2:49:69:2d:ef:aa:46:d2: 24:d3:c1:f4:1f:19:93:fe:4d:9d:23:ec:dc:63:21: ad:46:d8:cb:5c:06:12:e5:ef:15:52:df:16:4a:02: 94:24:09:e0:37:f2:a2:7c:7b:38:30:25:01:eb:60: 3d:da:5b:4b:e5:b6:e5:02:c2:ce:89:6b:d4:4b:0b: 9d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:FA:1D:9E:0A:C2:90:D5:B3:C2:52:94:0F:51:4B:EA:52:70:68:AF X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:c1:7c:c4:7f:08:31:19:d7:15:61:47:ec:67:67:12:4c:d0: 11:30:ef:cc:da:bc:74:b9:22:df:63:07:90:fb:b5:94:71:0c: a4:83:8a:21:18:9f:d8:5e:90:13:34:a5:5f:9f:79:0e:af:fa: 3f:43:f4:e8:bd:14:c1:91:72:95:00:0d:25:e7:da:b9:4c:31: 5a:66:67:28:79:e7:7c:fd:1a:5e:29:90:06:0d:79:4d:2c:60: 45:c5:35:56:f6:f5:c1:d8:b3:d7:dd:eb:c5:48:00:17:07:ab: be:c1:97:ce:0a:86:28:05:02:ab:88:8d:1d:46:10:a1:90:c6: 9a:83:8d:4e:42:91:22:fc:33:6f:87:1e:d3:b1:cc:4f:8e:ad: 99:c4:14:72:84:1b:e9:ae:9c:44:ea:1e:62:bf:60:7e:64:9c: 09:49:af:49:af:bc:60:aa:00:53:39:9d:b5:34:59:6e:4f:8f: 95:51:ff:60:9a:e8:49:0f:7e:a0:dd:87:b6:06:d3:41:50:bb: 9f:c2:a6:20:22:7c:bc:2c:39:da:ef:f0:68:23:9a:c6:2c:b5: e0:9f:56:31:37:66:dc:79:6f:87:da:96:25:81:bf:32:82:d7: fa:a8:27:89:a3:a0:ab:fc:b5:0a:dd:5e:26:03:ca:3f:00:dc: a4:aa:f2:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUwNjE0MjA1NjQ5WhcNMjUwNjIxMjA1NjQ5WjAYMRYwFAYD VQQDEw02ODRkZTIxMS0yYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1em5CnIDydZYBbGXD0rzObDvFcwAA9T1n3mYaPBSpIQnK5P6ySXNgEXRjxRQ RFpz4uAra72maHFZZnagu0T5+nSkP/j8oA21Vv1vs9D2+6CCl4dU/eXqm82eI8QM G3KLOMilf0qDnHGNVed02jkxHKttdUcZXW9DG6Fx1Z0CEO5tSqkoJSNWer6JQ6Dv EJ8BnmJ8p2mpc2CwuePQDH9A1hUypHHO9yYfgQBpNO6nlRSV0NPDc+OVU5Th8klp Le+qRtIk08H0HxmT/k2dI+zcYyGtRtjLXAYS5e8VUt8WSgKUJAngN/KifHs4MCUB 62A92ltL5bblAsLOiWvUSwud/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEj6HZ4K wpDVs8JSlA9RS+pScGivMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIwXzEfwgxGdcVYUfsZ2cSTNARMO/M2rx0uSLfYweQ+7WUcQykg4oh GJ/YXpATNKVfn3kOr/o/Q/TovRTBkXKVAA0l59q5TDFaZmcoeed8/RpeKZAGDXlN LGBFxTVW9vXB2LPX3evFSAAXB6u+wZfOCoYoBQKriI0dRhChkMaag41OQpEi/DNv hx7TscxPjq2ZxBRyhBvprpxE6h5iv2B+ZJwJSa9Jr7xgqgBTOZ21NFluT4+VUf9g muhJD36g3Ye2BtNBULufwqYgIny8LDna7/BoI5rGLLXgn1YxN2bceW+H2pYlgb8y gtf6qCeJo6Cr/LUK3V4mA8o/ANykqvIl -----END CERTIFICATE-----Generated at Sun Jun 15 09:58:27 2025 by rpki-client