$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft File: g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json) Hash identifier: 6bLorNsITr2iHjGx0V1yB4cKmfv/NznNt9iGG4cBHRM= Subject key identifier: 32:93:33:99:B5:2D:A8:40:7D:CE:D8:08:04:AA:9D:CA:0B:3E:49:D1 Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft Manifest number: 01D9 Signing time: Tue 05 Aug 2025 03:12:53 +0000 Manifest this update: Tue 05 Aug 2025 03:12:52 +0000 Manifest next update: Tue 12 Aug 2025 03:12:52 +0000 Files and hashes: 1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: IySyqwLPtIfNTEBrp4DbgaGuFd9Ws0RBvIbh1M+lxgk=) 2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: yz7MYEbOgQ8Al3poUxihFYnUX5uLUR4cvOqS22MeFsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA, serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: Aug 5 03:12:52 2025 GMT Not After : Aug 12 03:12:52 2025 GMT Subject: CN=689176b4-ac15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:17:d7:13:e5:bc:68:9c:d4:76:c0:ad:9b: 70:c5:4f:4a:7d:3d:ce:8a:50:d7:50:47:00:dd:e1: 57:c6:ba:a4:69:66:9a:16:ae:66:1d:b3:99:07:ee: 7c:f6:06:8c:d3:e2:7a:a7:fe:91:3e:48:89:af:29: 5c:29:d2:cd:f0:96:41:9a:f5:24:13:b6:75:cc:5b: 6a:a5:2b:0d:76:7c:38:f7:dd:78:30:a4:d6:0b:2b: 57:47:d9:bc:a1:e5:4e:fb:a8:2e:f8:5a:99:5d:56: bb:3d:56:1e:eb:3f:6e:61:62:e0:19:02:27:11:67: 4d:38:4d:32:18:12:49:09:6e:41:a4:e4:1d:2f:a5: 99:15:65:44:30:e4:f0:2f:05:99:70:08:4a:78:e9: ab:3b:8a:ac:12:4e:39:27:fd:d8:93:c4:9b:2d:c3: c1:05:04:08:06:63:55:57:85:83:47:5b:32:0c:3a: a3:d0:a6:de:a9:74:05:a1:56:4a:32:b5:13:9e:3a: 9c:90:24:24:42:b5:31:5c:6e:3a:14:c9:02:ac:8f: ad:65:0c:76:9f:4e:ad:08:20:2b:2f:65:3d:c0:d6: 99:a8:f3:b4:5d:2f:75:95:f7:ad:84:96:fe:53:50: 07:95:0b:8c:9c:e7:5e:09:a9:2e:f9:23:a0:eb:9d: f6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:93:33:99:B5:2D:A8:40:7D:CE:D8:08:04:AA:9D:CA:0B:3E:49:D1 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b2:48:40:b2:0b:4b:a0:ed:3d:69:7f:e0:ff:08:69:a5:f3: 04:ae:39:ff:8d:8f:63:5e:01:ee:34:a0:3e:a7:15:54:91:c8: ea:e2:12:e3:aa:77:a9:62:7a:f3:51:cc:ac:2f:1a:fb:f9:8d: f5:a7:13:dc:50:ae:48:1c:01:28:21:9c:8c:26:54:f4:15:f4: c4:1c:e9:df:8a:cd:88:d2:27:63:ff:5a:76:5d:31:b8:b9:c5: 0e:41:c0:5b:a8:c2:53:f4:f0:76:74:dd:46:39:df:82:63:0c: 9c:2f:92:5b:7b:1a:d4:c3:12:75:bb:87:db:ed:35:e2:b3:ef: ad:74:08:ee:ea:86:68:63:c7:bd:5c:45:36:ff:08:4d:21:54: c6:12:61:d9:a7:6e:0f:ad:27:db:ab:84:3b:f3:88:cf:72:d6: cd:14:ca:18:56:ca:d8:02:d2:c2:35:cf:f4:5f:ca:e3:5d:bb: e1:27:d4:c1:af:e6:6a:17:ef:02:4b:dd:7e:1d:bc:41:f4:f3: a5:d8:2b:9b:72:47:3b:59:c1:a0:42:7f:e9:0e:fe:25:2c:87: 6f:06:97:48:92:d1:c4:ba:87:ac:02:f8:71:fb:85:40:f2:03: 40:7f:b9:2f:25:19:e3:86:10:78:5b:1d:3e:b4:4c:93:e0:a2: 54:b0:40:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjUwODA1MDMxMjUyWhcNMjUwODEyMDMxMjUyWjAYMRYwFAYD VQQDEw02ODkxNzZiNC1hYzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtUX1xPlvGic1HbArZtwxU9KfT3OilDXUEcA3eFXxrqkaWaaFq5mHbOZB+58 9gaM0+J6p/6RPkiJrylcKdLN8JZBmvUkE7Z1zFtqpSsNdnw49914MKTWCytXR9m8 oeVO+6gu+FqZXVa7PVYe6z9uYWLgGQInEWdNOE0yGBJJCW5BpOQdL6WZFWVEMOTw LwWZcAhKeOmrO4qsEk45J/3Yk8SbLcPBBQQIBmNVV4WDR1syDDqj0KbeqXQFoVZK MrUTnjqckCQkQrUxXG46FMkCrI+tZQx2n06tCCArL2U9wNaZqPO0XS91lfethJb+ U1AHlQuMnOdeCaku+SOg6532zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKTM5m1 LahAfc7YCASqncoLPknRMB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjRCQS9DNzNFMTg0NDlDOUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2 T05ZTFRfb3VfMW9ZOGR6V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArskhAsgtLoO09aX/g/whppfMErjn/jY9jXgHuNKA+pxVUkcjq4hLj qnepYnrzUcysLxr7+Y31pxPcUK5IHAEoIZyMJlT0FfTEHOnfis2I0idj/1p2XTG4 ucUOQcBbqMJT9PB2dN1GOd+CYwycL5JbexrUwxJ1u4fb7TXis++tdAju6oZoY8e9 XEU2/whNIVTGEmHZp24PrSfbq4Q784jPctbNFMoYVsrYAtLCNc/0X8rjXbvhJ9TB r+ZqF+8CS91+HbxB9POl2Cubckc7WcGgQn/pDv4lLIdvBpdIktHEuoesAvhx+4VA 8gNAf7kvJRnjhhB4Wx0+tEyT4KJUsEBN -----END CERTIFICATE-----Generated at Wed Aug 6 14:14:57 2025 by rpki-client