$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: AMM05J8tpN/7BaBItl1R2F9phW43HQ52/j51R4uIFn4= Subject key identifier: EE:DB:0B:EC:13:FC:3D:90:34:2F:66:CE:5A:09:A0:FF:4B:3B:69:D8 Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 015D Signing time: Mon 21 Jul 2025 04:07:00 +0000 Manifest this update: Mon 21 Jul 2025 04:06:59 +0000 Manifest next update: Mon 28 Jul 2025 04:06:59 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: pPoHljFdh0qimvA1nodePGLGpFOsA71/2sFuKKIuSgM=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: jAD/7lg+++i+O4y1RlntCcfLaxTpo5Pzuq6OqBjjXF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Jul 21 04:06:59 2025 GMT Not After : Jul 28 04:06:59 2025 GMT Subject: CN=687dbce3-39d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:ce:ba:19:e6:cf:53:1b:ba:ab:ac:fc:25: 93:ab:c6:36:9b:91:44:e7:a3:e2:fe:33:78:1e:d9: ea:d8:84:f7:3b:27:21:33:92:51:b0:55:1b:22:08: fe:46:52:08:07:e1:c8:84:70:74:c4:68:03:47:c0: 05:27:46:61:9b:60:2c:80:c3:0d:f1:e0:c4:45:14: 54:2c:3c:17:d3:f9:00:57:b3:78:b1:24:8e:e6:74: ec:33:fe:59:09:aa:a6:d8:81:28:ac:49:48:14:b9: 7d:ef:4f:ec:43:0b:8e:f6:aa:2e:2d:8d:02:9d:3c: 6b:93:fb:a1:37:73:20:ce:32:cc:8a:c2:55:a4:13: d9:42:8b:70:1e:5f:f9:73:b0:56:2b:83:1a:63:e5: 40:08:1c:5e:76:ee:18:0d:9a:84:3b:ee:2d:fb:25: d1:cd:1c:6c:d5:ab:bf:e4:4a:1e:74:ec:ad:c9:7b: e2:da:9b:8b:e0:ac:81:7b:9e:43:ad:6f:ed:69:3b: 61:28:a3:2d:69:46:1d:7f:1e:9f:de:4b:30:97:c5: 67:2a:af:83:a2:7a:fb:28:e9:2f:8c:bf:c2:1f:2d: 7f:9e:7b:0b:30:c3:ed:07:3f:1d:5b:22:36:c4:e0: 94:04:95:22:6d:c0:f1:a5:8b:ac:ee:65:9d:67:e1: c4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DB:0B:EC:13:FC:3D:90:34:2F:66:CE:5A:09:A0:FF:4B:3B:69:D8 X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:3d:fc:33:98:42:d2:05:d9:51:fa:62:55:0d:cd:95:14:c2: 03:db:05:e1:77:ea:e0:03:f2:3e:09:e4:0f:cf:3b:3e:4e:c7: 9f:0e:18:9f:ec:c4:b7:54:1f:d6:e7:ad:ad:52:bc:61:c0:a1: 67:b9:61:67:0c:03:84:c4:fc:d3:4c:5c:ad:4c:03:17:b2:31: 96:a4:9e:95:ab:d9:db:33:ef:d3:2b:10:52:b1:77:7a:f2:ae: 95:34:4c:1b:b7:ba:1e:90:5c:5c:5d:ce:1b:e8:c4:e5:20:d5: f6:71:67:06:f2:3c:12:9d:46:93:6b:26:0a:94:f9:f5:d6:65: 21:f3:f1:07:80:23:e3:0f:46:9f:71:40:5c:20:17:90:5b:20: 30:25:72:3a:fb:b8:6d:fc:0c:4d:24:da:04:1e:19:06:7d:88: d2:66:c7:18:0a:5f:92:21:1f:39:86:55:71:e4:62:eb:05:c9: 40:6e:62:4d:0d:80:b5:3b:57:c9:32:f6:6f:0a:03:2f:5a:13: 0d:2a:c0:f8:1b:be:0d:92:e7:9d:3c:9f:5e:0f:c0:3e:0a:1b: 60:6f:23:96:d0:cb:ed:c1:bb:e2:39:b2:ec:18:45:50:7f:48: 3a:2f:fc:9f:5d:ae:d3:b6:cb:be:27:50:4f:00:ee:41:06:0d: c2:29:7e:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjUwNzIxMDQwNjU5WhcNMjUwNzI4MDQwNjU5WjAYMRYwFAYD VQQDEw02ODdkYmNlMy0zOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwn7Ouhnmz1Mbuqus/CWTq8Y2m5FE56Pi/jN4Htnq2IT3OychM5JRsFUbIgj+ RlIIB+HIhHB0xGgDR8AFJ0Zhm2AsgMMN8eDERRRULDwX0/kAV7N4sSSO5nTsM/5Z Caqm2IEorElIFLl970/sQwuO9qouLY0CnTxrk/uhN3MgzjLMisJVpBPZQotwHl/5 c7BWK4MaY+VACBxedu4YDZqEO+4t+yXRzRxs1au/5EoedOytyXvi2puL4KyBe55D rW/taTthKKMtaUYdfx6f3kswl8VnKq+Donr7KOkvjL/CHy1/nnsLMMPtBz8dWyI2 xOCUBJUibcDxpYus7mWdZ+HEqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7bC+wT /D2QNC9mzloJoP9LO2nYMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPPfwzmELSBdlR+mJVDc2VFMID2wXhd+rgA/I+CeQPzzs+TsefDhif 7MS3VB/W562tUrxhwKFnuWFnDAOExPzTTFytTAMXsjGWpJ6Vq9nbM+/TKxBSsXd6 8q6VNEwbt7oekFxcXc4b6MTlINX2cWcG8jwSnUaTayYKlPn11mUh8/EHgCPjD0af cUBcIBeQWyAwJXI6+7ht/AxNJNoEHhkGfYjSZscYCl+SIR85hlVx5GLrBclAbmJN DYC1O1fJMvZvCgMvWhMNKsD4G74NkuedPJ9eD8A+ChtgbyOW0MvtwbviObLsGEVQ f0g6L/yfXa7Ttsu+J1BPAO5BBg3CKX4m -----END CERTIFICATE-----Generated at Mon Jul 21 05:44:49 2025 by rpki-client