$ rpki-client -vvf rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft File: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft (raw, json) Hash identifier: n6XkszT7FDZS1pjvQh1jOdcaHrSDi2EhS0TLOJ2sckU= Subject key identifier: 09:C2:A5:69:C7:88:B1:A6:07:58:EA:B3:54:E8:CF:E5:6E:23:16:66 Authority key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 Certificate issuer: /CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Certificate serial: 052C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft Manifest number: 0527 Signing time: Sat 14 Jun 2025 23:17:08 +0000 Manifest this update: Sat 14 Jun 2025 23:17:08 +0000 Manifest next update: Sat 21 Jun 2025 23:17:08 +0000 Files and hashes: 1: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl (hash: 53WgOZLXvv7PyDPg+/kqAUiXtYtK/dlB2etsRgkjDdY=) 2: 7C05ACEE75B311EF83EC6F78C4F9AE02.roa (hash: 4HbuRwfGRyDZiXaifrjrnY5mPijGwg/rzxNxMS6Fugs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D795B, serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Validity Not Before: Jun 14 23:17:08 2025 GMT Not After : Jun 21 23:17:08 2025 GMT Subject: CN=684e02f4-a08b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:57:8e:a8:83:4a:c2:b0:c3:01:36:4e:05:d3: 4b:1b:a0:6c:f8:0b:98:d9:7e:4d:b1:75:c1:d3:f2: 17:a6:f4:71:8f:7d:1c:02:a5:dc:8d:76:52:cc:df: 0b:30:55:d4:ca:e9:60:af:73:c7:be:c8:b1:bd:4d: a0:54:e7:6a:e2:f1:1b:4c:59:f7:77:32:80:38:23: 17:30:14:50:46:b5:a5:38:16:3c:70:46:a4:20:56: b6:d8:64:00:e1:da:68:02:2c:41:ba:2e:95:04:25: 70:43:a7:96:24:0c:1c:02:35:64:16:d5:ea:fe:be: 52:f9:4b:ad:e7:16:34:e7:8a:bb:81:76:6d:4e:21: a7:aa:85:a4:25:0d:22:1e:e0:4b:40:2d:81:20:a0: d5:58:2e:71:97:0d:e1:c6:f5:f7:01:5b:e0:e4:86: 77:b5:72:72:19:a6:e9:1b:af:1b:a8:98:f7:f2:d1: 7c:8e:fb:13:e8:55:c7:4b:b4:58:5c:04:5b:13:58: db:18:e6:0d:f3:27:76:85:36:79:0d:b7:de:0a:40: d1:54:29:b9:29:a3:74:73:de:be:b3:b4:54:0f:cc: e7:ec:17:3e:a6:b0:86:52:0b:3c:44:ce:80:e0:82: 5e:3c:d2:93:98:4e:fa:53:93:ff:b8:58:f6:93:c0: 61:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C2:A5:69:C7:88:B1:A6:07:58:EA:B3:54:E8:CF:E5:6E:23:16:66 X509v3 Authority Key Identifier: keyid:05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:eb:40:0d:22:f7:8b:10:dd:bf:ff:e1:6b:eb:90:a5:62:75: a2:22:fa:63:6a:46:67:7d:f0:51:12:8b:af:29:eb:63:e0:c4: ea:3c:35:5b:3e:6c:98:2c:86:c7:62:ad:b9:57:a0:7b:27:1f: 98:7f:37:8b:1a:97:90:a3:f9:ba:ab:fe:b4:cb:a7:5f:4c:74: 6d:00:24:2f:11:da:8a:96:46:93:dd:63:ac:2d:68:f4:ba:32: f0:ce:39:50:4b:8b:fc:2a:3f:3b:34:a4:e4:7a:4f:67:eb:ec: e9:8d:ef:38:1b:ee:e2:75:e1:d7:bb:da:69:2f:40:77:6e:c2: 35:2a:f2:7f:7e:0c:43:35:f8:26:44:09:ef:99:93:8a:42:1c: 9d:c7:c3:ba:32:19:be:d2:fe:2d:18:d0:84:5d:10:a0:0f:87: ea:0c:43:5a:bb:4e:b0:44:90:fa:45:8b:57:66:22:e4:81:84: 52:73:1d:c8:9f:5b:0e:30:75:c6:16:4b:5b:47:7b:75:de:09: e3:9f:53:c6:0c:37:a9:a9:68:d9:1f:4e:9b:59:cb:d1:d5:ee: 69:c8:97:26:75:9e:29:d4:01:cc:aa:8e:8e:cf:cd:df:99:10: 46:41:59:68:01:10:88:04:55:fb:4d:6d:5a:1e:ab:ae:fd:7b: 60:ed:81:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2M0YyQTY5MDc4 Njc3OTVFRjcwHhcNMjUwNjE0MjMxNzA4WhcNMjUwNjIxMjMxNzA4WjAYMRYwFAYD VQQDEw02ODRlMDJmNC1hMDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFeOqINKwrDDATZOBdNLG6Bs+AuY2X5NsXXB0/IXpvRxj30cAqXcjXZSzN8L MFXUyulgr3PHvsixvU2gVOdq4vEbTFn3dzKAOCMXMBRQRrWlOBY8cEakIFa22GQA 4dpoAixBui6VBCVwQ6eWJAwcAjVkFtXq/r5S+Uut5xY054q7gXZtTiGnqoWkJQ0i HuBLQC2BIKDVWC5xlw3hxvX3AVvg5IZ3tXJyGabpG68bqJj38tF8jvsT6FXHS7RY XARbE1jbGOYN8yd2hTZ5DbfeCkDRVCm5KaN0c96+s7RUD8zn7Bc+prCGUgs8RM6A 4IJePNKTmE76U5P/uFj2k8BhoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnCpWnH iLGmB1jqs1Toz+VuIxZmMB8GA1UdIwQYMBaAFAW+87dkY1bOQJ/FY/KmkHhneV73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzk1Qi9BODhGQjNFMjAw QzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZzNUFuOFZqOHFhUWVHZDVY dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JiN3p0MlJqVnM1QW44Vmo4cWFRZUdkNVh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Nzk1Qi9BODhGQjNFMjAwQzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZz NUFuOFZqOHFhUWVHZDVYdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX60ANIveLEN2//+Fr65ClYnWiIvpjakZnffBREouvKetj4MTqPDVb PmyYLIbHYq25V6B7Jx+YfzeLGpeQo/m6q/60y6dfTHRtACQvEdqKlkaT3WOsLWj0 ujLwzjlQS4v8Kj87NKTkek9n6+zpje84G+7ideHXu9ppL0B3bsI1KvJ/fgxDNfgm RAnvmZOKQhydx8O6Mhm+0v4tGNCEXRCgD4fqDENau06wRJD6RYtXZiLkgYRScx3I n1sOMHXGFktbR3t13gnjn1PGDDepqWjZH06bWcvR1e5pyJcmdZ4p1AHMqo6Oz83f mRBGQVloARCIBFX7TW1aHquu/Xtg7YGT -----END CERTIFICATE-----Generated at Sun Jun 15 17:48:28 2025 by rpki-client