$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: dmWYQMKOcGXUkxFpPn9m0Bve2H57A6PRQyu8OK1qr+4= Subject key identifier: 9D:93:45:FB:61:4A:F4:71:31:B1:77:BE:46:D6:1C:85:A2:23:28:E3 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 01F4 Signing time: Mon 21 Jul 2025 02:33:45 +0000 Manifest this update: Mon 21 Jul 2025 02:33:45 +0000 Manifest next update: Mon 28 Jul 2025 02:33:45 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: /h6JbQRXp24K9KUNe2msOWqYGRdww1/eUNDVBryD+mw=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: ZxJWdKT+dhhJyfungVSpx3334JD5sGMO+S5A+zHFl74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0, serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: Jul 21 02:33:45 2025 GMT Not After : Jul 28 02:33:45 2025 GMT Subject: CN=687da709-41ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:34:b8:01:69:7b:e8:f3:32:43:74:9e:6c:80: 14:cb:35:dd:e1:0d:f7:86:21:61:9f:d8:71:75:a4: a6:27:e2:03:f3:df:e6:45:a7:b8:1a:4d:20:a6:57: 9e:5b:41:33:22:ff:56:cb:a1:58:b3:42:69:06:55: a3:c0:af:e3:f7:54:b6:e2:62:0c:3a:0f:e2:6e:c7: bf:e0:2d:96:25:21:56:c7:74:5b:f1:69:ca:d6:4d: 72:95:11:9f:4a:27:bb:8f:d6:df:0a:81:d2:c4:f7: 3a:74:2d:54:c0:b2:82:22:52:c1:c7:41:10:a4:50: cc:8a:4d:b3:31:41:f9:41:cb:c0:01:5a:ef:cd:bd: 3d:52:6f:12:cb:f9:22:c6:a3:ed:b9:d2:e9:ee:7f: 4c:31:7d:35:7f:3d:16:16:d3:c1:7a:9a:05:c1:fc: 01:39:5b:f8:4a:8d:fb:d4:6b:0b:c8:a6:8a:bf:f1: 86:7a:6b:ad:f8:b2:6e:4e:3a:54:a3:5d:1b:e5:9f: 7e:30:f8:47:b7:8e:eb:6c:2c:fe:a4:29:cb:1f:5e: c0:6e:60:54:e3:6d:72:30:75:bb:7f:06:88:ce:9d: 4b:7c:2e:c5:01:bd:e5:d2:54:b1:f4:78:49:da:1a: ea:11:a0:eb:f8:d3:ef:e1:82:92:ff:29:69:8a:7c: 94:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:93:45:FB:61:4A:F4:71:31:B1:77:BE:46:D6:1C:85:A2:23:28:E3 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:df:0c:3d:03:5a:0c:c6:4f:f8:b0:d8:52:52:58:c9:81:e8: 76:d3:51:7f:5e:b2:8d:ad:ea:bc:ff:c2:cd:3c:57:bf:7e:e1: 8f:2b:eb:63:0c:2a:9d:55:8b:06:44:88:9d:34:2e:1e:03:f5: d9:23:9f:ae:c1:74:81:1e:12:75:2b:4b:a3:4d:6b:13:65:5c: 0a:fd:8e:c1:30:ad:4a:d8:64:e0:6f:ca:6d:3f:6a:86:65:35: c1:c9:ab:9e:1a:3e:fe:e7:89:fc:d9:3a:d4:e6:12:2f:cf:2b: 1a:64:a7:ae:16:99:03:29:11:08:f7:15:e1:83:4e:0c:75:4f: 2b:9d:11:b9:06:b0:58:60:37:56:84:07:11:8d:b6:b6:f5:4b: 05:55:45:ff:b8:fa:07:1b:ef:30:81:ee:ae:fa:d5:77:a2:c1: 60:8c:23:03:91:b1:31:61:08:ec:ef:1b:1a:4c:a8:47:12:fc: 80:f6:f3:02:1f:13:1e:4a:35:38:37:04:ab:42:33:81:9b:96: 28:c7:15:db:8e:47:8f:7a:eb:1e:86:38:fe:02:17:a6:22:82: 84:88:ce:14:dd:93:16:15:c7:cc:81:fc:83:03:b2:cf:32:e9: 10:aa:9b:63:60:dc:40:e3:d6:0b:9b:53:79:1d:35:0b:f6:a9: df:6a:fb:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjUwNzIxMDIzMzQ1WhcNMjUwNzI4MDIzMzQ1WjAYMRYwFAYD VQQDEw02ODdkYTcwOS00MWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDS4AWl76PMyQ3SebIAUyzXd4Q33hiFhn9hxdaSmJ+ID89/mRae4Gk0gplee W0EzIv9Wy6FYs0JpBlWjwK/j91S24mIMOg/ibse/4C2WJSFWx3Rb8WnK1k1ylRGf Sie7j9bfCoHSxPc6dC1UwLKCIlLBx0EQpFDMik2zMUH5QcvAAVrvzb09Um8Sy/ki xqPtudLp7n9MMX01fz0WFtPBepoFwfwBOVv4So371GsLyKaKv/GGemut+LJuTjpU o10b5Z9+MPhHt47rbCz+pCnLH17AbmBU421yMHW7fwaIzp1LfC7FAb3l0lSx9HhJ 2hrqEaDr+NPv4YKS/ylpinyUrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2TRfth SvRxMbF3vkbWHIWiIyjjMB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY3ww9A1oMxk/4sNhSUljJgeh201F/XrKNreq8/8LNPFe/fuGPK+tj DCqdVYsGRIidNC4eA/XZI5+uwXSBHhJ1K0ujTWsTZVwK/Y7BMK1K2GTgb8ptP2qG ZTXByaueGj7+54n82TrU5hIvzysaZKeuFpkDKREI9xXhg04MdU8rnRG5BrBYYDdW hAcRjba29UsFVUX/uPoHG+8wge6u+tV3osFgjCMDkbExYQjs7xsaTKhHEvyA9vMC HxMeSjU4NwSrQjOBm5YoxxXbjkePeusehjj+AhemIoKEiM4U3ZMWFcfMgfyDA7LP MukQqptjYNxA49YLm1N5HTUL9qnfavuC -----END CERTIFICATE-----Generated at Mon Jul 21 06:20:57 2025 by rpki-client