$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft File: 7IKxn5B5ht6zu4AtInPQNNFBSy0.mft (raw, json) Hash identifier: pc9iwnWBYUj6XnMX3Sa9kBob/XnchHRqMrdPszzpeyM= Subject key identifier: 17:64:A3:03:AA:C5:E2:B8:70:EB:F6:99:05:AC:9A:F4:98:0A:D1:68 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft Manifest number: 0BB5 Signing time: Sat 14 Jun 2025 18:47:34 +0000 Manifest this update: Sat 14 Jun 2025 18:47:34 +0000 Manifest next update: Sat 21 Jun 2025 18:47:34 +0000 Files and hashes: 1: 7IKxn5B5ht6zu4AtInPQNNFBSy0.crl (hash: d7rpjId+9iKU/e0gJCdDg+tUeCCgUvx2lZtHWGUVOqg=) 2: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (hash: ygQ6vfqXgCOjWaI/M9+8sSQcLe6CReohgnbLpV4rvKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA, serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Jun 14 18:47:34 2025 GMT Not After : Jun 21 18:47:34 2025 GMT Subject: CN=684dc3c6-fac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c5:c4:72:30:14:5c:0c:46:c8:7e:37:5b:2e: 6b:44:f8:53:69:a4:c5:6c:55:ce:26:d8:44:2d:ab: 53:18:1c:a1:f9:9e:f1:52:ed:6f:2d:b3:76:70:3e: 63:83:b1:dc:80:3d:79:8f:2f:50:fa:6a:f9:11:32: 7d:13:d6:96:60:f0:0f:d0:13:2d:b4:f9:bb:62:5b: f8:0b:71:b3:ec:04:6c:a2:3e:ce:ba:46:cf:b6:4b: f9:b7:d9:7f:db:ca:09:ed:43:16:67:4c:2b:35:60: ae:00:84:7d:56:9a:0f:6e:e0:a0:d3:4d:89:74:01: e5:9e:af:b4:1c:d7:c6:18:4c:ae:8d:07:67:15:3f: ac:df:87:ba:f8:05:0b:8b:b5:56:2a:e8:15:6b:0e: b4:3e:03:3f:5b:ac:74:9d:35:9f:83:76:08:0e:7d: a6:91:e0:e9:1e:4b:c2:12:c5:8a:06:fb:10:a8:79: 60:30:27:e4:be:9b:fd:ad:f3:b5:d9:cc:7b:b7:52: 9c:cb:0a:d4:fd:63:46:76:07:a0:7f:4f:04:4f:43: ad:df:40:9e:ff:c4:8b:91:84:ba:df:88:78:cb:7d: 9b:ae:ec:ba:06:69:d3:9d:96:9d:99:08:10:c1:a7: 0d:eb:fc:af:7d:26:2c:4f:af:8d:f8:d3:60:4a:68: 10:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:64:A3:03:AA:C5:E2:B8:70:EB:F6:99:05:AC:9A:F4:98:0A:D1:68 X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:83:dd:98:53:79:c1:cf:8e:aa:6c:a6:b6:97:2c:56:41:6f: 2e:f2:d7:18:21:86:95:8d:93:39:0f:3f:94:64:60:87:40:77: 5a:f1:16:4f:64:73:14:bf:2c:05:94:ca:c1:97:34:b0:20:d4: ca:43:2a:c8:2e:1b:e8:22:56:37:43:a4:45:28:0d:20:66:ff: 1b:d9:6f:d7:a4:55:ca:94:b9:02:0f:af:1b:27:90:97:6d:bf: 7f:2b:a5:33:20:2d:61:11:bd:17:13:88:e7:aa:d3:b2:64:41: 41:66:f0:6d:95:f2:69:13:b7:3d:ba:d2:77:f9:6a:ab:6d:8d: 04:99:2c:74:29:d2:be:a3:0c:92:6f:35:84:3a:03:5e:1f:67: ed:b2:87:47:f8:c2:ab:5d:a1:ca:14:e6:04:06:6f:f2:c9:08: 1a:26:19:56:a0:6c:39:10:35:8b:68:83:89:f9:06:5b:be:95: bc:31:ef:38:54:6f:6e:6b:10:ef:86:de:28:20:a3:de:03:d6: b1:4f:dd:2d:e0:16:49:1d:b9:67:d1:cf:73:35:11:54:c2:f7: f5:e8:73:1f:40:6c:b4:22:21:7b:f1:b3:90:72:d7:75:95:2c: 68:ed:e1:c6:32:c0:c0:df:12:14:61:c6:67:13:36:2b:04:8f: 21:ba:7c:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjUwNjE0MTg0NzM0WhcNMjUwNjIxMTg0NzM0WjAYMRYwFAYD VQQDEw02ODRkYzNjNi1mYWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcXEcjAUXAxGyH43Wy5rRPhTaaTFbFXOJthELatTGByh+Z7xUu1vLbN2cD5j g7HcgD15jy9Q+mr5ETJ9E9aWYPAP0BMttPm7Ylv4C3Gz7ARsoj7OukbPtkv5t9l/ 28oJ7UMWZ0wrNWCuAIR9VpoPbuCg002JdAHlnq+0HNfGGEyujQdnFT+s34e6+AUL i7VWKugVaw60PgM/W6x0nTWfg3YIDn2mkeDpHkvCEsWKBvsQqHlgMCfkvpv9rfO1 2cx7t1KcywrU/WNGdgegf08ET0Ot30Ce/8SLkYS634h4y32bruy6BmnTnZadmQgQ wacN6/yvfSYsT6+N+NNgSmgQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdkowOq xeK4cOv2mQWsmvSYCtFoMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNDQS84MTM4NjA0NjIxODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0 Nnp1NEF0SW5QUU5ORkJTeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4g92YU3nBz46qbKa2lyxWQW8u8tcYIYaVjZM5Dz+UZGCHQHda8RZP ZHMUvywFlMrBlzSwINTKQyrILhvoIlY3Q6RFKA0gZv8b2W/XpFXKlLkCD68bJ5CX bb9/K6UzIC1hEb0XE4jnqtOyZEFBZvBtlfJpE7c9utJ3+WqrbY0EmSx0KdK+owyS bzWEOgNeH2ftsodH+MKrXaHKFOYEBm/yyQgaJhlWoGw5EDWLaIOJ+QZbvpW8Me84 VG9uaxDvht4oIKPeA9axT90t4BZJHbln0c9zNRFUwvf16HMfQGy0IiF78bOQctd1 lSxo7eHGMsDA3xIUYcZnEzYrBI8hunzf -----END CERTIFICATE-----Generated at Sun Jun 15 09:30:45 2025 by rpki-client