$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: hy8MjprdP908RQQR2iwnT18gIKNt7e970hGCKdVRTgg= Subject key identifier: 94:BD:B3:1D:F4:7D:4B:D2:EA:28:65:DD:CF:EB:EC:5A:4B:23:72:16 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 089D Signing time: Fri 04 Jul 2025 20:54:52 +0000 Manifest this update: Fri 04 Jul 2025 20:54:52 +0000 Manifest next update: Fri 11 Jul 2025 20:54:52 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: L+QD5nisApJvPaCH5FSdnoTKk0pi9rmLikXI3E0d/8Q=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: z3K04y8FAXseRSAao3Z4/OGvZnmija66bg8pyXugrIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2215 (0x8a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Jul 4 20:54:52 2025 GMT Not After : Jul 11 20:54:52 2025 GMT Subject: CN=68683f9c-afad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:01:71:0f:93:05:69:7c:af:a4:e8:81:8e:1c: a7:86:d7:e2:10:cc:75:88:80:49:90:fe:40:2d:fc: f3:4a:bf:7f:1b:cb:3a:5b:4e:10:8d:4b:19:8e:ba: e2:79:5d:7f:dc:bc:c5:09:2b:81:54:56:d0:dd:d2: 00:62:76:64:b7:47:c0:eb:99:d6:0c:c5:a1:bb:17: 1a:ba:a1:88:5b:a9:1c:95:cf:d3:89:65:a5:a3:4d: 56:35:e5:b0:52:bb:23:d0:a7:81:c0:1c:17:ab:ba: 0e:c6:35:74:2f:e8:15:b7:93:62:4c:49:d1:a8:bc: 36:b2:da:93:d9:bd:37:83:ca:5d:f8:f4:6c:0a:44: 28:81:ef:f3:f6:78:67:bf:85:6a:d5:f5:28:42:93: 03:88:9b:85:f4:1b:f5:14:40:49:dc:8f:59:e6:2f: c1:9f:de:ed:8f:7c:2e:4c:7c:74:c6:7c:f0:16:3c: 46:56:aa:c1:05:11:c1:8d:7c:a5:eb:60:77:5e:2d: 95:cf:f3:a5:1e:b0:3c:55:5d:19:08:9a:e9:9a:83: f1:09:9d:cb:61:00:0f:dd:2d:db:6e:36:41:44:89: a0:56:27:5c:d7:ec:8a:0a:de:8c:5b:46:af:bf:e2: de:2a:87:9b:45:cb:5c:8f:0c:b3:7a:25:38:27:54: f9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BD:B3:1D:F4:7D:4B:D2:EA:28:65:DD:CF:EB:EC:5A:4B:23:72:16 X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b9:22:25:84:6d:0b:a0:cb:3f:e1:0c:8e:79:c8:8e:ef:9c: 32:0f:94:f4:ab:dd:45:f0:3a:70:de:dc:73:36:40:d4:44:a8: 71:bf:7d:97:29:2f:24:38:e1:ce:13:0a:61:f8:62:47:b0:aa: 3b:84:a9:be:e4:e8:d9:54:56:7d:99:6c:d2:62:0f:fa:a2:be: 33:1b:83:0e:c0:7b:f4:e9:d8:1c:de:73:ad:db:e8:62:02:1a: 1c:5e:32:5f:0e:f4:7e:3d:3c:6e:59:b9:c6:21:a2:56:a3:15: 42:e1:7b:19:d9:95:35:30:47:b2:e9:dc:05:e8:e6:00:82:21: ec:d9:8a:be:f0:8b:3a:bf:9c:62:48:74:37:bb:e2:b4:bb:6b: 56:12:2b:96:91:6e:bd:24:14:d5:74:c9:3e:7d:a3:85:f0:82: 30:0e:d0:c4:59:bb:42:f2:c0:b3:57:87:60:9b:70:d1:c8:3a: f1:c1:18:8e:e0:b4:56:4f:7f:fc:43:1c:fc:3b:8f:2e:ff:bd: bf:e9:ce:c7:3c:63:af:c4:b3:f4:ce:56:fa:aa:35:51:a1:bb: e2:a8:c7:3d:6a:15:6a:6a:ba:4f:83:40:21:f3:0c:21:9d:6e: a8:d5:4d:c1:f9:63:42:60:a4:e2:8a:26:74:7d:fc:80:f9:19: ac:c6:33:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUwNzA0MjA1NDUyWhcNMjUwNzExMjA1NDUyWjAYMRYwFAYD VQQDEw02ODY4M2Y5Yy1hZmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gFxD5MFaXyvpOiBjhynhtfiEMx1iIBJkP5ALfzzSr9/G8s6W04QjUsZjrri eV1/3LzFCSuBVFbQ3dIAYnZkt0fA65nWDMWhuxcauqGIW6kclc/TiWWlo01WNeWw Ursj0KeBwBwXq7oOxjV0L+gVt5NiTEnRqLw2stqT2b03g8pd+PRsCkQoge/z9nhn v4Vq1fUoQpMDiJuF9Bv1FEBJ3I9Z5i/Bn97tj3wuTHx0xnzwFjxGVqrBBRHBjXyl 62B3Xi2Vz/OlHrA8VV0ZCJrpmoPxCZ3LYQAP3S3bbjZBRImgVidc1+yKCt6MW0av v+LeKoebRctcjwyzeiU4J1T5ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJS9sx30 fUvS6ihl3c/r7FpLI3IWMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfuSIlhG0LoMs/4QyOeciO75wyD5T0q91F8Dpw3txzNkDURKhxv32X KS8kOOHOEwph+GJHsKo7hKm+5OjZVFZ9mWzSYg/6or4zG4MOwHv06dgc3nOt2+hi AhocXjJfDvR+PTxuWbnGIaJWoxVC4XsZ2ZU1MEey6dwF6OYAgiHs2Yq+8Is6v5xi SHQ3u+K0u2tWEiuWkW69JBTVdMk+faOF8IIwDtDEWbtC8sCzV4dgm3DRyDrxwRiO 4LRWT3/8Qxz8O48u/72/6c7HPGOvxLP0zlb6qjVRobviqMc9ahVqarpPg0Ah8wwh nW6o1U3B+WNCYKTiiiZ0ffyA+RmsxjPH -----END CERTIFICATE-----Generated at Sun Jul 6 11:42:58 2025 by rpki-client