$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: Y29QXq4xfRFXL1deNU0WvoA/x1JiCmsa3330eRZx0zk= Subject key identifier: 1E:18:B0:B1:E9:6F:0D:88:AB:B5:48:DE:6C:30:43:56:EF:88:0B:73 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 01E1 Signing time: Tue 01 Jul 2025 03:07:26 +0000 Manifest this update: Tue 01 Jul 2025 03:07:25 +0000 Manifest next update: Tue 08 Jul 2025 03:07:25 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: A0tvS+XVm8R1A1iG6sJRTLvisMg43tQNreCSBe0zX7M=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:07:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Jul 1 03:07:25 2025 GMT Not After : Jul 8 03:07:25 2025 GMT Subject: CN=686350ee-6a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7f:84:dc:04:fc:93:75:8e:69:88:bc:f5:82: be:c1:fc:35:05:2a:8e:f8:ad:fa:85:b5:ba:44:48: 94:f7:df:7c:cf:f9:3f:1a:af:b5:18:35:07:08:16: c9:6c:ee:2b:c3:eb:2f:bd:3f:18:2f:75:f9:1d:ff: 8c:8e:fd:d5:e5:06:cf:a9:5e:c2:35:82:57:5f:62: 94:f0:d3:34:af:52:d4:0c:3a:2a:59:4d:f6:e3:3e: 83:b6:48:7a:41:79:ad:4c:83:1b:1b:36:89:3f:05: 72:66:de:16:80:de:3d:3c:37:e4:77:67:05:04:06: c4:33:68:85:07:75:90:a0:59:78:c5:24:eb:36:00: d4:ce:49:d3:ad:8c:36:15:c4:a6:15:2c:99:a2:80: 85:bc:82:a8:34:3c:e3:7c:85:91:02:6f:cd:54:bd: 8c:a8:99:b4:15:ff:38:f1:80:d8:70:26:42:03:70: ba:80:b5:d0:3b:7d:25:3e:d3:e2:2f:9e:99:16:58: d1:7c:8a:4b:0f:7a:c7:c6:b1:ba:21:0b:63:d4:32: a4:a4:15:17:c9:35:4a:84:cc:01:71:19:b8:b4:4c: 35:29:8c:68:1c:64:95:0b:70:27:34:5c:39:64:2f: d1:06:36:da:2a:8d:c5:c8:ac:55:dd:b4:6c:39:a9: 6d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:18:B0:B1:E9:6F:0D:88:AB:B5:48:DE:6C:30:43:56:EF:88:0B:73 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:0c:1f:ea:9b:64:67:82:24:02:43:70:3f:2f:c1:ab:15:3a: 1f:82:ce:68:82:19:f4:62:cf:cd:e1:1e:96:b2:dc:9a:61:dc: 6f:86:b0:5a:58:04:a5:47:b5:31:9b:6f:e2:c5:73:49:45:9c: 5c:4b:20:77:c9:36:9d:8b:08:3c:74:50:95:7e:d7:07:42:8d: 02:b5:bd:cb:03:ca:7d:4a:26:a7:e4:a3:c3:df:7b:6d:c9:6b: d9:0e:b4:ab:9d:ec:a9:f9:6a:cb:d4:81:f7:0b:aa:56:17:e3: 77:cf:18:6f:c1:23:cc:06:7c:6c:33:c5:1f:c4:b8:2f:b4:de: 6e:09:1b:ce:71:69:d2:2e:1e:19:d0:7a:f3:8c:d0:8d:e2:ec: 1f:03:9f:60:15:33:d9:36:1e:d3:ac:09:f5:40:ad:52:e7:56: 07:2b:9e:25:97:c4:1c:3f:e0:e1:74:57:a0:2b:d9:fa:24:16: 42:14:71:dc:81:05:c2:70:36:9f:dc:44:04:0a:2e:58:6e:55: 16:2e:26:f5:14:b5:74:6b:b7:9b:4c:5b:8c:22:fb:0e:67:bc: f5:f3:5d:17:05:c0:b2:19:63:0a:15:8d:05:56:ac:83:95:f0: 72:47:0b:a0:02:3c:e7:03:20:b6:49:27:b6:19:1f:0b:e3:f8: 4c:6f:56:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUwNzAxMDMwNzI1WhcNMjUwNzA4MDMwNzI1WjAYMRYwFAYD VQQDEw02ODYzNTBlZS02YTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH+E3AT8k3WOaYi89YK+wfw1BSqO+K36hbW6REiU9998z/k/Gq+1GDUHCBbJ bO4rw+svvT8YL3X5Hf+Mjv3V5QbPqV7CNYJXX2KU8NM0r1LUDDoqWU324z6Dtkh6 QXmtTIMbGzaJPwVyZt4WgN49PDfkd2cFBAbEM2iFB3WQoFl4xSTrNgDUzknTrYw2 FcSmFSyZooCFvIKoNDzjfIWRAm/NVL2MqJm0Ff848YDYcCZCA3C6gLXQO30lPtPi L56ZFljRfIpLD3rHxrG6IQtj1DKkpBUXyTVKhMwBcRm4tEw1KYxoHGSVC3AnNFw5 ZC/RBjbaKo3FyKxV3bRsOaltqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4YsLHp bw2Iq7VI3mwwQ1bviAtzMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjDB/qm2RngiQCQ3A/L8GrFTofgs5oghn0Ys/N4R6WstyaYdxvhrBa WASlR7Uxm2/ixXNJRZxcSyB3yTadiwg8dFCVftcHQo0Ctb3LA8p9Sian5KPD33tt yWvZDrSrneyp+WrL1IH3C6pWF+N3zxhvwSPMBnxsM8UfxLgvtN5uCRvOcWnSLh4Z 0HrzjNCN4uwfA59gFTPZNh7TrAn1QK1S51YHK54ll8QcP+DhdFegK9n6JBZCFHHc gQXCcDaf3EQECi5YblUWLib1FLV0a7ebTFuMIvsOZ7z1810XBcCyGWMKFY0FVqyD lfByRwugAjznAyC2SSe2GR8L4/hMb1Z/ -----END CERTIFICATE-----Generated at Wed Jul 2 02:00:06 2025 by rpki-client