$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: zoZBnpW22nRg4vu19vsLb2Xauk42cJdqEpSbns1rUEA= Subject key identifier: 82:33:33:42:FC:48:D1:9E:3D:E4:A8:9E:C4:3A:D7:1D:13:B6:60:A1 Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0659 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 0657 Signing time: Sat 14 Jun 2025 14:47:31 +0000 Manifest this update: Sat 14 Jun 2025 14:47:31 +0000 Manifest next update: Sat 21 Jun 2025 14:47:31 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: N31Qu2CyZ639Q8oEULunTs1rqMOV3ecT6EFMvHE7BTA=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: /bP5RMzdbkL7/5EZqhq7cO3FfNuTY5k1xdEgv+lDTck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1625 (0x659) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Jun 14 14:47:31 2025 GMT Not After : Jun 21 14:47:31 2025 GMT Subject: CN=684d8b83-f519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a0:fe:2c:ca:75:ed:26:91:6e:7f:b5:5c:6c: d0:96:86:f8:f2:24:0f:92:ab:d2:8c:9d:55:41:66: 7e:85:58:f6:fb:91:5d:1a:ef:3d:4f:79:7d:9e:cf: 69:95:39:b4:03:f5:83:6f:97:1e:36:86:f9:78:86: bf:6f:6e:6c:47:81:ac:06:f0:24:e4:30:b9:c2:a4: 03:ca:66:4c:c2:d8:15:fe:c1:51:95:66:7d:f5:6d: 7a:ff:f3:03:9b:c6:d7:e7:44:90:45:4f:4d:00:f7: c1:a8:5b:51:76:bf:c3:1c:ae:33:51:16:99:1d:4d: a4:a1:a9:79:a8:5f:12:91:fd:c5:71:0e:3b:c9:e9: d0:c5:1c:8b:12:ca:7b:95:3f:af:f6:e9:8e:29:30: 2e:d6:ae:2e:70:ec:42:8e:1e:9b:21:92:fa:95:70: fb:66:27:0e:72:8e:61:69:6d:11:85:e8:d0:43:1b: eb:8d:c8:4b:4e:1a:2c:77:e2:89:e2:df:0e:c9:26: fd:d5:95:37:49:f1:32:b6:48:3d:ac:b0:d3:49:45: d1:a0:fb:e5:56:1c:23:44:64:b7:a0:50:f3:a2:1b: 15:7a:6e:27:fa:30:25:11:df:cf:62:42:cd:ab:f6: 54:36:c4:fb:d4:26:cf:b3:bc:16:dc:72:ed:d4:71: 93:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:33:33:42:FC:48:D1:9E:3D:E4:A8:9E:C4:3A:D7:1D:13:B6:60:A1 X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e3:cc:20:68:b7:9f:c9:f0:2a:bd:a1:39:97:21:10:6f:24: c4:78:fa:df:05:a1:08:19:ad:dd:14:d6:57:2f:03:64:86:8b: 3d:31:1c:6d:16:e0:b6:8d:27:22:54:1a:7e:26:ce:28:0a:8f: 8a:97:61:b4:e4:c9:81:1d:e3:d9:c7:35:07:e0:e4:b3:08:87: 0e:a7:61:38:51:8a:c0:24:20:9b:d6:d3:e4:b4:81:a7:7f:42: 6b:a6:b5:7f:6a:59:b6:42:55:a0:a3:83:84:ec:2b:e8:4c:d2: f8:4f:c3:57:66:38:47:36:25:f9:25:28:96:71:3f:5d:ce:3b: be:43:dd:e7:82:fe:b1:93:5c:59:e5:da:5b:c8:9a:54:5b:e8: 36:cb:f9:fd:72:59:b6:85:96:fb:a3:9a:08:e2:cb:64:b5:fd: 7d:b6:38:6c:8b:f8:53:50:2e:28:c7:4a:20:f5:66:ea:3a:e6: b7:38:7a:74:22:b5:45:4e:a0:71:d8:50:ed:fa:34:f9:5c:e9: fb:80:4e:a7:5d:01:cf:24:48:21:85:4b:a2:b4:90:9f:2e:de: f3:c3:38:80:72:67:e9:69:88:01:30:c3:cf:67:2b:7f:1a:3f: 08:9f:a6:8e:d3:ad:0c:ca:2a:93:e4:36:dd:5e:99:89:e6:cf: 9d:c8:9b:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUwNjE0MTQ0NzMxWhcNMjUwNjIxMTQ0NzMxWjAYMRYwFAYD VQQDEw02ODRkOGI4My1mNTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6D+LMp17SaRbn+1XGzQlob48iQPkqvSjJ1VQWZ+hVj2+5FdGu89T3l9ns9p lTm0A/WDb5ceNob5eIa/b25sR4GsBvAk5DC5wqQDymZMwtgV/sFRlWZ99W16//MD m8bX50SQRU9NAPfBqFtRdr/DHK4zURaZHU2koal5qF8Skf3FcQ47yenQxRyLEsp7 lT+v9umOKTAu1q4ucOxCjh6bIZL6lXD7ZicOco5haW0RhejQQxvrjchLThosd+KJ 4t8OySb91ZU3SfEytkg9rLDTSUXRoPvlVhwjRGS3oFDzohsVem4n+jAlEd/PYkLN q/ZUNsT71CbPs7wW3HLt1HGTMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIzM0L8 SNGePeSonsQ61x0TtmChMB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/48wgaLefyfAqvaE5lyEQbyTEePrfBaEIGa3dFNZXLwNkhos9MRxt FuC2jSciVBp+Js4oCo+Kl2G05MmBHePZxzUH4OSzCIcOp2E4UYrAJCCb1tPktIGn f0JrprV/alm2QlWgo4OE7CvoTNL4T8NXZjhHNiX5JSiWcT9dzju+Q93ngv6xk1xZ 5dpbyJpUW+g2y/n9clm2hZb7o5oI4stktf19tjhsi/hTUC4ox0og9WbqOua3OHp0 IrVFTqBx2FDt+jT5XOn7gE6nXQHPJEghhUuitJCfLt7zwziAcmfpaYgBMMPPZyt/ Gj8In6aO060MyiqT5DbdXpmJ5s+dyJu2 -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:00 2025 by rpki-client