$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft File: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft (raw, json) Hash identifier: tjR+E/qUdNgRrH8RlinY5JdeRQt4h+O6xRP2BT+z4oA= Subject key identifier: 72:88:5E:12:21:6B:80:F8:68:24:ED:D1:67:D4:56:D8:EE:50:38:10 Authority key identifier: ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 Certificate issuer: /CN=A91E04ED/serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft Manifest number: 0654 Signing time: Thu 12 Jun 2025 22:12:30 +0000 Manifest this update: Thu 12 Jun 2025 22:12:30 +0000 Manifest next update: Thu 19 Jun 2025 22:12:30 +0000 Files and hashes: 1: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl (hash: xTAXNhXpgqwzRWQYZKat7LnUkSplu75t/kfK9gtn7+I=) 2: 0665D2328D1A11EB80593760C4F9AE02.roa (hash: 9RcU5RMIguV5RGzPowAleQQk2yHbByHLcaosyfn/YYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04ED, serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Validity Not Before: Jun 12 22:12:30 2025 GMT Not After : Jun 19 22:12:30 2025 GMT Subject: CN=684b50ce-bc66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5b:f5:ca:4a:af:29:53:fd:67:65:2c:9b:f4: 51:45:fb:1c:59:55:ee:77:f1:5a:de:5c:90:71:e7: 44:ad:4e:07:a1:86:ce:04:df:85:90:16:0d:11:9d: df:a5:4f:0c:5d:18:50:0f:99:37:9b:58:d9:55:4f: ed:63:85:fd:af:bc:b0:57:0a:28:1b:46:20:44:1c: 7f:9d:fb:51:82:e5:83:2a:dc:46:4d:c0:c5:12:64: 27:d3:ae:81:1a:f5:29:05:59:89:96:a9:2c:e6:4d: f4:6b:1b:7c:56:62:60:c6:14:37:e0:7d:74:43:21: e3:d9:4f:d8:36:19:bd:e6:a9:39:fb:2f:94:b5:4c: cb:4f:e3:5f:bd:8e:19:5f:5a:1c:b2:48:8e:00:cc: 2d:4e:ea:74:cf:f9:e2:48:1a:c0:40:3f:21:af:a6: 7d:eb:e0:0e:ae:7f:56:5b:82:f8:16:4c:6f:5d:8c: d2:6f:ec:bc:03:61:9c:a9:c3:fc:a9:58:f1:6c:18: 4e:e2:20:a1:15:56:aa:40:1b:1b:d6:71:13:41:c9: 88:28:e8:2b:46:39:11:f3:2f:82:8c:5a:60:1f:ff: 0d:fe:0a:f8:8e:48:5f:46:d7:c0:c6:3a:30:29:14: 76:98:d3:d8:4b:f6:ff:10:31:71:65:92:c1:c0:2a: 04:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:88:5E:12:21:6B:80:F8:68:24:ED:D1:67:D4:56:D8:EE:50:38:10 X509v3 Authority Key Identifier: keyid:ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:48:a4:3c:bb:9a:1f:2e:bb:45:31:70:aa:2d:fc:6a:a8:d6: 07:ac:ea:29:b2:ed:9d:52:80:0d:c1:ce:1b:9f:f7:29:bc:00: a3:19:4b:6a:77:62:52:e1:80:85:2d:08:30:07:f4:94:b1:72: b9:d7:1b:67:34:05:65:8e:9a:49:a0:74:9f:1d:7b:4c:f2:92: ee:ed:b7:98:5e:4b:59:88:f7:8d:b3:21:4c:da:81:b3:a0:c4: ff:c7:09:15:c3:93:49:84:5a:11:5a:c2:40:9f:64:de:db:7e: 71:79:1a:27:f9:f3:cd:78:7c:d6:89:cb:d5:76:72:7e:24:38: d9:ea:e5:cc:eb:17:d9:28:1c:30:a0:e4:de:92:6f:7d:c3:20: b5:19:25:e5:41:ec:a0:ee:7a:eb:7b:87:e0:49:b6:82:e5:40: 17:34:7e:cd:b5:d1:da:d1:54:60:54:28:e9:f7:03:cf:07:65: 90:bd:f9:8e:46:a6:4e:9e:55:bc:ef:16:0d:76:cd:d6:a1:ca: d0:6c:3a:75:0e:41:9e:7e:af:f0:87:a2:07:38:04:42:07:33: 7f:a7:0a:b9:44:2c:8c:de:c3:08:f5:b3:b0:35:5a:2e:d7:fa: be:69:e5:78:8b:82:46:b5:ad:7e:14:d3:22:c1:8b:0f:8c:64: 3a:68:4b:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RUQxMTAvBgNVBAUTKEVEQTJBQUJCNDAyMTJFQjNDMDkyQUFFQUYxNTE0MkE3 NjlFRjU5MDcwHhcNMjUwNjEyMjIxMjMwWhcNMjUwNjE5MjIxMjMwWjAYMRYwFAYD VQQDEw02ODRiNTBjZS1iYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVv1ykqvKVP9Z2Usm/RRRfscWVXud/Fa3lyQcedErU4HoYbOBN+FkBYNEZ3f pU8MXRhQD5k3m1jZVU/tY4X9r7ywVwooG0YgRBx/nftRguWDKtxGTcDFEmQn066B GvUpBVmJlqks5k30axt8VmJgxhQ34H10QyHj2U/YNhm95qk5+y+UtUzLT+NfvY4Z X1ocskiOAMwtTup0z/niSBrAQD8hr6Z96+AOrn9WW4L4FkxvXYzSb+y8A2GcqcP8 qVjxbBhO4iChFVaqQBsb1nETQcmIKOgrRjkR8y+CjFpgH/8N/gr4jkhfRtfAxjow KRR2mNPYS/b/EDFxZZLBwCoE2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKIXhIh a4D4aCTt0WfUVtjuUDgQMB8GA1UdIwQYMBaAFO2iqrtAIS6zwJKq6vFRQqdp71kH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRFRC9EQkU5MEJBQzhE MTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExyUEFrcXJxOFZGQ3AybnZX UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhS3F1MEFoTHJQQWtxcnE4VkZDcDJudldRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRFRC9EQkU5MEJBQzhEMTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExy UEFrcXJxOFZGQ3AybnZXUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2SKQ8u5ofLrtFMXCqLfxqqNYHrOopsu2dUoANwc4bn/cpvACjGUtq d2JS4YCFLQgwB/SUsXK51xtnNAVljppJoHSfHXtM8pLu7beYXktZiPeNsyFM2oGz oMT/xwkVw5NJhFoRWsJAn2Te235xeRon+fPNeHzWicvVdnJ+JDjZ6uXM6xfZKBww oOTekm99wyC1GSXlQeyg7nrre4fgSbaC5UAXNH7NtdHa0VRgVCjp9wPPB2WQvfmO RqZOnlW87xYNds3WocrQbDp1DkGefq/wh6IHOARCBzN/pwq5RCyM3sMI9bOwNVou 1/q+aeV4i4JGta1+FNMiwYsPjGQ6aEuM -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:52 2025 by rpki-client