$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: TNEz/iyYETkB0UfQwgJ5umN4f5L20ZMw3oV9eBNJWkw= Subject key identifier: 6A:75:80:78:53:CB:15:A2:94:D2:52:91:5E:63:12:8E:BB:D8:B3:9B Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0B9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0B96 Signing time: Fri 18 Jul 2025 19:10:39 +0000 Manifest this update: Fri 18 Jul 2025 19:10:39 +0000 Manifest next update: Fri 25 Jul 2025 19:10:39 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: 2479o9WUIf8E+ZiIHNfkzojmKasPmTjNPEA5Aumu3t0=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2972 (0xb9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Jul 18 19:10:39 2025 GMT Not After : Jul 25 19:10:39 2025 GMT Subject: CN=687a9c2f-06cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1a:34:23:18:39:db:59:e0:9f:84:fe:de:a0: 95:68:d8:e8:f8:b6:d0:b9:33:7a:37:a9:5d:0a:7a: 11:b3:b2:2f:da:58:c5:3d:ed:12:4d:ac:ab:52:7a: c4:c1:d3:f8:80:3e:92:e9:4d:0f:df:93:9a:07:43: f3:d4:2b:31:ea:21:b8:2b:00:91:38:c5:3d:71:a0: d8:d4:95:f2:96:2c:2a:20:58:b7:a8:bc:35:a6:67: 63:26:c8:84:90:5b:da:d7:79:96:ab:0b:34:24:98: 05:9e:61:c5:2a:bf:06:6f:93:49:e7:77:30:b3:9b: 77:89:39:4e:83:e0:79:59:f3:84:59:24:9e:5d:64: 38:5f:7b:c9:d2:0f:a1:9d:85:d3:a5:92:e5:d0:14: e1:0d:cb:86:af:06:08:e9:0d:2a:e9:f1:7c:6e:a3: ec:c5:00:4d:00:60:26:da:92:5b:e6:ea:04:6c:c4: 2e:d7:3a:05:04:8e:53:d9:3c:79:c2:cb:08:52:d6: 8d:bd:59:d0:c5:30:2d:23:18:f9:07:4c:21:97:f5: d4:29:8a:e2:f2:e5:e2:47:b9:8e:51:51:3a:d8:86: 98:e2:31:ea:ad:5a:de:1c:0f:89:ca:ca:ad:31:f4: d8:75:65:77:ac:0e:c7:a6:f3:94:95:7c:b8:1e:c6: 7b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:75:80:78:53:CB:15:A2:94:D2:52:91:5E:63:12:8E:BB:D8:B3:9B X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:92:95:25:d3:cd:6f:89:d5:23:d9:e8:cc:62:87:67:65:d1: 8e:a1:10:14:86:45:99:46:fc:bf:88:f6:3a:f1:66:b2:80:16: 30:78:a4:c8:f5:ed:c8:63:4d:d9:e9:b2:a8:0f:99:06:2e:2d: e7:91:43:b8:35:4a:7a:7c:21:1a:c7:8f:af:f5:8a:c4:e2:57: 2d:c0:ca:97:dd:f5:fb:e8:01:98:7c:99:ee:6e:5c:d4:ae:cd: 46:ef:4c:6c:29:fc:70:7f:d4:e9:ff:14:1b:88:bf:81:c2:96: bf:8f:32:e0:b2:fa:fb:56:c1:4c:ea:f6:18:e9:9f:73:1b:ad: 17:f0:08:89:1e:0e:63:47:a6:b5:a7:69:14:e3:cb:9d:f1:09: 84:0e:99:a0:c3:1d:3c:5e:06:6e:5b:90:71:d9:fa:7a:e6:f6: 61:c4:8f:dc:31:9b:cf:4c:32:d9:f0:b0:94:46:ec:1c:df:2f: d6:d5:37:53:92:40:c5:78:82:05:09:ff:0a:36:ef:26:cb:2b: 35:e6:78:2b:ea:09:c8:6b:30:5f:fd:e4:46:48:c2:80:04:59: 06:45:7b:a1:c6:00:3b:87:76:01:40:62:c9:6a:b1:47:29:32: 19:87:c1:37:02:f7:a1:42:ff:0a:18:1d:65:2c:c7:61:6f:57: 9e:7c:99:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUwNzE4MTkxMDM5WhcNMjUwNzI1MTkxMDM5WjAYMRYwFAYD VQQDEw02ODdhOWMyZi0wNmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxo0Ixg521ngn4T+3qCVaNjo+LbQuTN6N6ldCnoRs7Iv2ljFPe0STayrUnrE wdP4gD6S6U0P35OaB0Pz1Csx6iG4KwCROMU9caDY1JXyliwqIFi3qLw1pmdjJsiE kFva13mWqws0JJgFnmHFKr8Gb5NJ53cws5t3iTlOg+B5WfOEWSSeXWQ4X3vJ0g+h nYXTpZLl0BThDcuGrwYI6Q0q6fF8bqPsxQBNAGAm2pJb5uoEbMQu1zoFBI5T2Tx5 wssIUtaNvVnQxTAtIxj5B0whl/XUKYri8uXiR7mOUVE62IaY4jHqrVreHA+Jysqt MfTYdWV3rA7HpvOUlXy4HsZ79wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGp1gHhT yxWilNJSkV5jEo672LObMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxkpUl081vidUj2ejMYodnZdGOoRAUhkWZRvy/iPY68WaygBYweKTI 9e3IY03Z6bKoD5kGLi3nkUO4NUp6fCEax4+v9YrE4lctwMqX3fX76AGYfJnublzU rs1G70xsKfxwf9Tp/xQbiL+Bwpa/jzLgsvr7VsFM6vYY6Z9zG60X8AiJHg5jR6a1 p2kU48ud8QmEDpmgwx08XgZuW5Bx2fp65vZhxI/cMZvPTDLZ8LCURuwc3y/W1TdT kkDFeIIFCf8KNu8myys15ngr6gnIazBf/eRGSMKABFkGRXuhxgA7h3YBQGLJarFH KTIZh8E3AvehQv8KGB1lLMdhb1eefJkJ -----END CERTIFICATE-----Generated at Sun Jul 20 03:42:25 2025 by rpki-client