$ rpki-client -vvf rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft File: 7HnRemDtVw7Ge1EWFitgi2C5zUE.mft (raw, json) Hash identifier: 6FhpjXdn3Kgi3xUIF+CZuPNdFtykmttqFCMJ2yaaCPc= Subject key identifier: 73:EA:B2:8F:EB:3B:BC:17:1B:4D:15:61:BE:6A:C9:5D:BF:00:01:3E Authority key identifier: EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 Certificate issuer: /CN=A91C309F/serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft Manifest number: 06AA Signing time: Sat 14 Jun 2025 21:54:19 +0000 Manifest this update: Sat 14 Jun 2025 21:54:19 +0000 Manifest next update: Sat 21 Jun 2025 21:54:19 +0000 Files and hashes: 1: 7HnRemDtVw7Ge1EWFitgi2C5zUE.crl (hash: cMNvBYj5Mh51NHmxRCAbF+8Fo6AoFKsiPwoUPVcjza0=) 2: C144C89ADCF311EC80AD955EC4F9AE02.roa (hash: oHlo3Sofjys47IZ2Ei8IuoMAeL8C2VUTJUZO9aDUVcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C309F, serialNumber=EC79D17A60ED570EC67B5116162B608B60B9CD41 Validity Not Before: Jun 14 21:54:19 2025 GMT Not After : Jun 21 21:54:19 2025 GMT Subject: CN=684def8b-1c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:59:d2:e6:7f:1d:ab:6e:b2:85:47:2b:f4:4f: cc:94:c8:bd:08:c2:b5:73:14:dc:f3:65:1e:fc:a8: a9:5c:76:fd:17:0e:1f:87:7a:ae:29:27:49:cb:99: e6:c1:46:66:00:3b:b0:bf:d8:6f:b1:2b:03:08:85: ce:f2:8d:9d:8e:73:a7:66:c0:21:f5:a6:ae:6f:0b: d7:36:73:20:22:58:3d:28:cc:3a:c0:50:9d:c6:5b: ef:b6:ac:81:c2:21:10:93:80:b5:db:c5:d1:21:e5: e1:87:f1:1f:24:a7:2a:37:cb:91:79:c0:05:92:76: 99:13:23:f2:ab:3d:8b:fc:19:cb:81:d5:6a:d3:e5: 15:98:f6:b6:2e:13:d1:52:75:07:53:90:58:6a:1d: 11:50:0b:9b:2a:cb:17:60:82:98:b4:a8:10:a2:1a: 44:64:f6:40:69:d1:d7:74:15:f0:76:4b:a8:66:d6: bd:8b:a6:97:e7:5c:01:08:fc:9c:d4:f4:c3:c7:88: 68:4a:a9:ea:d1:3e:89:bf:79:45:3a:94:20:88:c8: ba:5e:1a:f3:4b:82:77:42:8f:b2:d1:e1:22:92:cd: ce:97:b7:82:58:92:71:5f:a2:c2:ad:10:9c:94:2c: 57:8e:5e:6c:05:c7:29:f3:df:b4:ec:37:36:c9:8b: fc:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EA:B2:8F:EB:3B:BC:17:1B:4D:15:61:BE:6A:C9:5D:BF:00:01:3E X509v3 Authority Key Identifier: keyid:EC:79:D1:7A:60:ED:57:0E:C6:7B:51:16:16:2B:60:8B:60:B9:CD:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7HnRemDtVw7Ge1EWFitgi2C5zUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C309F/1DB483A469DC11EB9E16091AC4F9AE02/7HnRemDtVw7Ge1EWFitgi2C5zUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:cb:23:7d:dd:9d:4e:27:08:37:7c:23:66:4a:67:3c:83:4b: 98:c3:33:71:f2:ae:88:dd:ec:99:ae:f4:d8:19:fc:19:d1:2b: 8a:c0:fd:27:8d:80:bb:88:42:57:ed:7e:65:ff:f3:95:7a:a9: f5:f7:31:ad:1e:7d:ef:3a:9b:99:6f:ad:91:6b:4a:72:38:0e: 5f:90:6d:39:25:dc:61:41:45:73:70:72:18:a2:48:b2:26:4a: 63:fa:62:72:5e:d3:75:00:32:7e:16:d0:c6:94:eb:26:60:b3: af:98:19:f0:06:a3:ad:5a:ee:36:43:5a:63:88:f2:d5:6d:d3: 69:51:6f:8b:74:f4:96:25:ab:ef:6c:66:c4:c3:de:b6:9c:42: 89:b1:d4:60:b2:3e:57:c6:55:6b:df:59:fa:68:32:03:d4:7a: 70:e2:5e:a6:2a:a3:cc:06:74:9b:4e:04:bc:83:c8:de:bb:f5: 62:c7:c8:f0:7a:e2:b0:8c:56:06:a0:e4:ed:32:21:22:d8:6b: 92:c5:16:36:d5:07:81:1e:a7:a9:9f:a4:74:a8:95:79:60:a5: 93:39:3e:0b:ad:17:8c:bd:46:ae:0f:6f:ce:06:3a:73:21:c1: 5f:45:37:2a:8f:97:5b:e2:f0:11:8a:12:4a:ca:17:49:d4:3c: a1:bc:2c:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwOUYxMTAvBgNVBAUTKEVDNzlEMTdBNjBFRDU3MEVDNjdCNTExNjE2MkI2MDhC NjBCOUNENDEwHhcNMjUwNjE0MjE1NDE5WhcNMjUwNjIxMjE1NDE5WjAYMRYwFAYD VQQDEw02ODRkZWY4Yi0xYzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VnS5n8dq26yhUcr9E/MlMi9CMK1cxTc82Ue/KipXHb9Fw4fh3quKSdJy5nm wUZmADuwv9hvsSsDCIXO8o2djnOnZsAh9aaubwvXNnMgIlg9KMw6wFCdxlvvtqyB wiEQk4C128XRIeXhh/EfJKcqN8uRecAFknaZEyPyqz2L/BnLgdVq0+UVmPa2LhPR UnUHU5BYah0RUAubKssXYIKYtKgQohpEZPZAadHXdBXwdkuoZta9i6aX51wBCPyc 1PTDx4hoSqnq0T6Jv3lFOpQgiMi6XhrzS4J3Qo+y0eEiks3Ol7eCWJJxX6LCrRCc lCxXjl5sBccp89+07Dc2yYv85QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPqso/r O7wXG00VYb5qyV2/AAE+MB8GA1UdIwQYMBaAFOx50Xpg7VcOxntRFhYrYItguc1B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA5Ri8xREI0ODNBNDY5 REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3N0dlMUVXRml0Z2kyQzV6 VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdIblJlbUR0Vnc3R2UxRVdGaXRnaTJDNXpVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzA5Ri8xREI0ODNBNDY5REMxMUVCOUUxNjA5MUFDNEY5QUUwMi83SG5SZW1EdFZ3 N0dlMUVXRml0Z2kyQzV6VUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAyyN93Z1OJwg3fCNmSmc8g0uYwzNx8q6I3eyZrvTYGfwZ0SuKwP0n jYC7iEJX7X5l//OVeqn19zGtHn3vOpuZb62Ra0pyOA5fkG05JdxhQUVzcHIYokiy Jkpj+mJyXtN1ADJ+FtDGlOsmYLOvmBnwBqOtWu42Q1pjiPLVbdNpUW+LdPSWJavv bGbEw962nEKJsdRgsj5XxlVr31n6aDID1Hpw4l6mKqPMBnSbTgS8g8jeu/Vix8jw euKwjFYGoOTtMiEi2GuSxRY21QeBHqepn6R0qJV5YKWTOT4LrReMvUauD2/OBjpz IcFfRTcqj5db4vARihJKyhdJ1DyhvCx0 -----END CERTIFICATE-----Generated at Sun Jun 15 08:37:28 2025 by rpki-client