$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: KxhVy2aYN7IJYK/z0P1xlTnaj1vCkBc60zZigA4p5+Q= Subject key identifier: AA:2F:A6:9E:E8:B4:6D:21:E8:6F:8C:D8:D7:1C:CC:68:85:39:77:9D Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B1E Signing time: Fri 30 May 2025 19:25:58 +0000 Manifest this update: Fri 30 May 2025 19:25:57 +0000 Manifest next update: Fri 06 Jun 2025 19:25:57 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: 2r0lEenQDsA5sxdZT+AOZDBhwguCW4kqW661VhH5kMo=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: NJ+vu7BB1LSL5IyZI4sxWSXiQvL3uuiHK69WI9ypRDY=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: 1Gen1/T5J9VcUP7yeBxePtjlwSEPjuywH9LIrIKtzGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2860 (0xb2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: May 30 19:25:57 2025 GMT Not After : Jun 6 19:25:57 2025 GMT Subject: CN=683a0645-9ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7e:39:e7:4a:e1:c5:6a:90:d0:4c:7d:bc:52: 15:7d:af:e6:77:86:9d:be:9e:23:8b:e8:8c:f3:31: b6:80:8a:fd:ff:32:14:83:0b:21:d9:77:ce:1b:07: 61:81:a4:bd:b9:72:ac:21:80:9e:6e:7d:c7:61:5a: e5:21:a1:6b:c1:02:10:9a:12:2d:c7:3e:14:ae:7b: b8:8c:ec:ab:26:0a:b2:69:f7:14:bf:a1:8a:c7:3c: a0:af:74:e4:8e:cc:d8:a7:5f:7e:1b:5c:ea:4e:92: de:d6:d8:92:54:75:9e:42:63:d9:ca:d6:92:72:d2: fe:c9:69:1c:22:91:d1:d2:ef:25:55:a1:37:29:6f: 26:89:79:72:32:b9:06:d6:7e:60:e4:2d:b8:9d:98: c4:cb:c1:5b:d8:e3:d5:87:39:49:e7:9d:b0:b2:8c: 63:82:f3:a1:54:6f:66:46:30:78:f2:aa:09:64:b6: 60:86:7d:54:97:93:49:7b:9a:1a:c3:99:1e:64:f3: d1:76:59:cf:02:da:99:99:72:a9:30:32:8b:56:d3: 11:3a:3f:a8:c9:ef:4c:1c:62:f8:96:40:e8:29:8d: 78:31:90:a7:75:6f:1b:7c:d7:06:3a:59:df:c9:78: 6b:6b:08:18:05:70:28:44:e8:63:7c:40:4b:7e:ad: 85:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2F:A6:9E:E8:B4:6D:21:E8:6F:8C:D8:D7:1C:CC:68:85:39:77:9D X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:01:fd:76:0e:ae:c2:0e:ac:23:74:84:c4:92:66:14:c0:f7: 58:51:4b:b3:f5:cc:ee:27:fd:07:be:c6:5a:65:fe:df:33:8b: e0:64:8c:5c:14:d4:7a:db:52:3d:d2:43:4d:e8:0c:56:13:91: 03:df:dc:23:17:cc:42:17:49:1f:86:4b:bc:31:13:26:0b:77: 89:b0:24:6e:97:c1:da:ee:4e:c9:88:37:ae:6c:14:d2:6c:53: 0a:67:07:3d:92:93:00:62:a6:91:8d:7e:45:1b:e4:b3:53:16: 63:51:64:2e:d6:7d:85:bc:0f:f8:8f:48:18:e5:c2:6a:cb:22: ab:51:68:af:7b:cb:33:7a:b4:2a:f3:4a:43:ce:44:60:f2:2f: 53:8a:02:d6:c1:db:dd:57:2c:28:56:fd:df:9c:be:da:33:c4: a9:91:4f:96:cc:9c:0b:37:25:50:d3:20:18:f3:bf:b4:da:2d: 83:b5:51:52:e1:8a:43:b9:54:ae:8b:81:1f:20:c9:e3:40:55: 65:fa:55:99:a4:b9:96:70:e5:4d:18:15:81:c5:fe:5b:54:c5: 5b:e2:80:1c:5f:44:a4:00:b7:89:15:e8:66:57:aa:07:18:27: 8d:de:ea:0c:0b:a9:47:d6:5a:2a:4a:50:16:ff:47:9a:92:2d: f4:34:52:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwNTMwMTkyNTU3WhcNMjUwNjA2MTkyNTU3WjAYMRYwFAYD VQQDEw02ODNhMDY0NS05Y2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyn4550rhxWqQ0Ex9vFIVfa/md4advp4ji+iM8zG2gIr9/zIUgwsh2XfOGwdh gaS9uXKsIYCebn3HYVrlIaFrwQIQmhItxz4Urnu4jOyrJgqyafcUv6GKxzygr3Tk jszYp19+G1zqTpLe1tiSVHWeQmPZytaSctL+yWkcIpHR0u8lVaE3KW8miXlyMrkG 1n5g5C24nZjEy8Fb2OPVhzlJ552wsoxjgvOhVG9mRjB48qoJZLZghn1Ul5NJe5oa w5keZPPRdlnPAtqZmXKpMDKLVtMROj+oye9MHGL4lkDoKY14MZCndW8bfNcGOlnf yXhrawgYBXAoROhjfEBLfq2FpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKovpp7o tG0h6G+M2NcczGiFOXedMB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Af12Dq7CDqwjdITEkmYUwPdYUUuz9czuJ/0HvsZaZf7fM4vgZIxc FNR621I90kNN6AxWE5ED39wjF8xCF0kfhku8MRMmC3eJsCRul8Ha7k7JiDeubBTS bFMKZwc9kpMAYqaRjX5FG+SzUxZjUWQu1n2FvA/4j0gY5cJqyyKrUWive8szerQq 80pDzkRg8i9TigLWwdvdVywoVv3fnL7aM8SpkU+WzJwLNyVQ0yAY87+02i2DtVFS 4YpDuVSui4EfIMnjQFVl+lWZpLmWcOVNGBWBxf5bVMVb4oAcX0SkALeJFehmV6oH GCeN3uoMC6lH1loqSlAW/0eaki30NFKE -----END CERTIFICATE-----Generated at Sat May 31 15:48:30 2025 by rpki-client