$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: z/Krot9gG5Z5Efqq3q26U7/nUGQNDfTGK9wnpcTBs1g= Subject key identifier: EF:24:F1:4B:5B:93:2A:E0:51:60:D8:25:66:61:27:D2:AC:A6:A5:18 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B25 Signing time: Thu 12 Jun 2025 19:01:29 +0000 Manifest this update: Thu 12 Jun 2025 19:01:28 +0000 Manifest next update: Thu 19 Jun 2025 19:01:28 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: clskpTVm0gZKnc8p4xhJx26da4lBXEGQkdhvSMV+NXM=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Jun 12 19:01:28 2025 GMT Not After : Jun 19 19:01:28 2025 GMT Subject: CN=684b2408-1e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:99:03:f9:c0:98:d7:37:3d:e6:c9:84:fa:78: 4a:b4:ea:97:7f:68:81:8f:8f:e0:fc:20:b9:5e:2b: 14:21:2c:19:b7:3f:cf:13:e1:37:ee:ac:b3:70:c3: e7:3c:76:9f:10:30:7a:93:7a:19:c9:0a:86:e7:b5: e8:76:07:55:b7:d1:70:e1:67:21:2a:0e:9c:52:4f: 75:7d:8b:db:52:d2:17:fb:c9:79:38:64:1b:30:92: 41:21:ca:e2:c0:bd:85:33:16:7d:01:dd:cb:a3:b5: 0a:60:20:22:3a:ad:3a:a9:07:ec:8b:ac:01:ae:f5: 8c:ed:69:bc:01:8e:0f:1e:7f:93:ba:5a:13:99:93: 10:af:43:58:b8:3d:02:9c:3e:2d:93:f8:aa:b4:63: 81:7d:7a:27:8d:fd:7b:b7:95:02:28:bb:c9:a9:c7: 78:4d:63:0a:d7:f4:c8:52:7f:81:f2:61:6d:f6:ec: 69:5e:cc:35:f4:de:f0:70:4a:6f:0d:3f:a2:27:df: aa:5a:8f:37:44:88:53:b2:2c:28:7a:11:e7:6b:13: f3:36:6b:d0:a0:96:f8:77:06:aa:c9:b3:d5:1d:e0: bd:5f:15:41:db:ec:27:ef:33:13:f7:ab:0a:1f:a7: 29:31:b4:4a:00:41:7c:d2:ef:d0:2e:c5:ea:6f:4f: d0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:24:F1:4B:5B:93:2A:E0:51:60:D8:25:66:61:27:D2:AC:A6:A5:18 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f1:40:c6:03:62:66:46:55:cf:d9:0e:72:28:2e:7a:7e:ca: 89:1f:2e:ae:c4:ce:11:62:e9:bc:14:fd:f0:8e:ba:2c:a3:6a: f6:53:f3:35:1a:99:88:69:af:36:f3:10:9a:4a:8e:10:c0:7b: c1:ed:bf:99:0b:79:b0:2a:7f:e2:e3:5e:b1:8b:7d:db:3d:20: 01:9c:8d:7b:2a:a0:d9:03:35:40:74:17:33:0d:44:a5:70:28: ce:32:5a:11:d0:50:21:ad:66:c5:9a:ec:68:cb:75:a8:a1:36: fe:3e:c0:24:e2:17:86:f8:59:7b:08:26:bf:6d:7b:67:b4:8f: b1:1d:47:09:fe:7e:9d:69:93:ed:85:a0:5f:73:65:fd:95:3c: e5:4e:0d:f1:e9:95:0c:db:87:f5:ac:b1:52:a7:88:d1:ce:49: f0:3e:fc:3c:c3:47:4f:59:f0:50:f4:77:14:88:26:ad:f8:df: 62:13:61:d8:79:86:ce:d6:3c:c9:d1:dd:f9:ae:59:b3:0d:8c: 87:77:c5:d5:9a:6a:ac:bc:95:78:fe:95:16:ef:82:f4:99:0a: b4:be:a0:9a:b2:88:14:49:25:0f:d0:b2:8d:ad:ee:9e:42:61: 88:39:9f:2a:65:ad:64:0e:42:70:31:67:b3:2e:bb:02:85:aa: 44:f4:ef:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwNjEyMTkwMTI4WhcNMjUwNjE5MTkwMTI4WjAYMRYwFAYD VQQDEw02ODRiMjQwOC0xZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8pkD+cCY1zc95smE+nhKtOqXf2iBj4/g/CC5XisUISwZtz/PE+E37qyzcMPn PHafEDB6k3oZyQqG57XodgdVt9Fw4WchKg6cUk91fYvbUtIX+8l5OGQbMJJBIcri wL2FMxZ9Ad3Lo7UKYCAiOq06qQfsi6wBrvWM7Wm8AY4PHn+TuloTmZMQr0NYuD0C nD4tk/iqtGOBfXonjf17t5UCKLvJqcd4TWMK1/TIUn+B8mFt9uxpXsw19N7wcEpv DT+iJ9+qWo83RIhTsiwoehHnaxPzNmvQoJb4dwaqybPVHeC9XxVB2+wn7zMT96sK H6cpMbRKAEF80u/QLsXqb0/QbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8k8Utb kyrgUWDYJWZhJ9KspqUYMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO8UDGA2JmRlXP2Q5yKC56fsqJHy6uxM4RYum8FP3wjroso2r2U/M1 GpmIaa828xCaSo4QwHvB7b+ZC3mwKn/i416xi33bPSABnI17KqDZAzVAdBczDUSl cCjOMloR0FAhrWbFmuxoy3WooTb+PsAk4heG+Fl7CCa/bXtntI+xHUcJ/n6daZPt haBfc2X9lTzlTg3x6ZUM24f1rLFSp4jRzknwPvw8w0dPWfBQ9HcUiCat+N9iE2HY eYbO1jzJ0d35rlmzDYyHd8XVmmqsvJV4/pUW74L0mQq0vqCasogUSSUP0LKNre6e QmGIOZ8qZa1kDkJwMWezLrsChapE9O+S -----END CERTIFICATE-----Generated at Sat Jun 14 19:11:37 2025 by rpki-client