$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: IuEbcJn3r68MKxoYYrOAofp3Boa7/P6K89G51QofFIg= Subject key identifier: BE:C3:8A:99:34:0F:28:28:1D:49:5B:88:BE:A9:C7:23:61:75:8F:AE Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: 6C Signing time: Tue 01 Jul 2025 07:44:34 +0000 Manifest this update: Tue 01 Jul 2025 07:44:33 +0000 Manifest next update: Tue 08 Jul 2025 07:44:33 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: PHTiq4VrBW/e1FrP1gPNhEQTrQXIGheu1tttLndXsjM=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Jul 1 07:44:33 2025 GMT Not After : Jul 8 07:44:33 2025 GMT Subject: CN=686391e1-c460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c4:1a:71:e6:5d:f6:cc:59:49:2f:fc:f7:1c: 23:2c:0d:33:85:89:e7:1e:84:75:46:ea:2c:bd:f9: e8:9f:a0:a6:f7:65:e4:4a:aa:5b:ec:05:be:e4:25: 03:65:2e:ba:61:a5:d2:c7:89:34:bc:68:a3:24:e1: 80:25:0b:3a:f9:0e:51:fc:68:07:53:81:7f:36:9c: cb:0b:d3:c4:59:62:9e:ff:fd:89:bd:f3:4c:33:cf: f4:81:7d:e5:d7:a5:9d:e8:85:81:0d:8f:6a:dc:22: d2:c3:49:a0:53:ee:05:b9:d0:36:1b:8f:6f:e0:97: 82:d6:ac:6b:b4:78:8f:e4:33:2e:83:2c:24:29:97: 9a:0e:bd:ca:b2:cb:fa:39:48:25:48:69:0d:21:2b: 28:08:cc:26:b0:37:d8:be:85:3c:b8:6b:07:e1:30: 13:da:3e:70:9c:8b:5a:c1:31:ef:cb:cc:d2:89:31: df:20:03:86:20:87:07:2b:7f:09:d1:05:bc:a8:37: d1:46:02:16:e9:fa:5b:97:d6:04:27:1a:1e:b5:8d: 42:74:d6:5b:c8:92:f4:7b:de:bf:be:7d:9d:05:c5: c8:ad:3a:ef:44:48:a2:09:98:8f:99:48:3b:21:fb: aa:83:f4:ad:51:39:8d:55:9a:3e:60:5b:8f:5f:ae: 93:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C3:8A:99:34:0F:28:28:1D:49:5B:88:BE:A9:C7:23:61:75:8F:AE X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:00:a5:6d:2e:a8:d4:4d:a5:d2:98:88:e0:59:bb:87:7c:f7: 99:f0:4a:e0:8e:99:77:32:0e:bd:ea:94:52:ce:3a:82:9d:09: 54:d3:dc:2a:03:86:a0:d7:69:bb:cf:e4:1f:29:5f:c2:49:30: 94:8d:1b:7e:97:0d:d3:4c:1b:b7:72:e0:f9:fd:a4:eb:09:1f: dd:1d:87:fc:95:2a:51:b3:0e:fc:3b:0e:b9:da:5a:92:d7:74: cf:98:08:25:76:db:f5:83:f7:6f:17:f4:f5:94:d0:d4:4c:33: 8c:17:18:20:f1:fc:1c:c3:4f:2e:a8:05:b5:85:c1:86:11:bb: 66:99:78:2a:c4:b4:7a:49:93:ee:69:86:fb:9b:7b:4c:b1:ff: 45:a8:d1:2d:7d:60:8f:03:17:60:34:f1:a2:a4:70:30:42:2f: 12:b7:06:28:f2:c6:1d:9f:25:92:77:d7:68:c7:31:29:d7:dc: 4e:ea:d3:93:a7:86:f6:21:95:00:31:69:20:8b:46:79:f2:2b: 45:ac:26:04:df:f2:41:cb:ba:6d:c8:de:8c:9d:62:79:3b:54: 36:fb:ef:63:6e:25:3e:06:43:d4:b5:84:a4:07:c8:fb:92:b9: b5:fb:78:d0:9c:94:85:a2:f2:ea:c4:7d:99:af:31:19:ae:fa: 7c:3a:09:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoNkYzRTAyNjIwMEQ1NTM5RjI3RTBGM0FBNTBEMzIwQTI0 NTI4RDU3RDAeFw0yNTA3MDEwNzQ0MzNaFw0yNTA3MDgwNzQ0MzNaMBgxFjAUBgNV BAMTDTY4NjM5MWUxLWM0NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWxBpx5l32zFlJL/z3HCMsDTOFiecehHVG6iy9+eifoKb3ZeRKqlvsBb7kJQNl LrphpdLHiTS8aKMk4YAlCzr5DlH8aAdTgX82nMsL08RZYp7//Ym980wzz/SBfeXX pZ3ohYENj2rcItLDSaBT7gW50DYbj2/gl4LWrGu0eI/kMy6DLCQpl5oOvcqyy/o5 SCVIaQ0hKygIzCawN9i+hTy4awfhMBPaPnCci1rBMe/LzNKJMd8gA4YghwcrfwnR BbyoN9FGAhbp+luX1gQnGh61jUJ01lvIkvR73r++fZ0FxcitOu9ESKIJmI+ZSDsh +6qD9K1ROY1Vmj5gW49frpMvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvsOKmTQP KCgdSVuIvqnHI2F1j64wHwYDVR0jBBgwFoAUbz4CYgDVU58n4POqUNMgokUo1X0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBL0ZGRjJFNkE4QjYz MDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFY MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYno0Q1lnRFZVNThuNFBPcVVOTWdva1VvMVgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 MzJBL0ZGRjJFNkE4QjYzMDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4 bjRQT3FVTk1nb2tVbzFYMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUApW0uqNRNpdKYiOBZu4d895nwSuCOmXcyDr3qlFLOOoKdCVTT3CoD hqDXabvP5B8pX8JJMJSNG36XDdNMG7dy4Pn9pOsJH90dh/yVKlGzDvw7DrnaWpLX dM+YCCV22/WD928X9PWU0NRMM4wXGCDx/BzDTy6oBbWFwYYRu2aZeCrEtHpJk+5p hvube0yx/0Wo0S19YI8DF2A08aKkcDBCLxK3Bijyxh2fJZJ312jHMSnX3E7q05On hvYhlQAxaSCLRnnyK0WsJgTf8kHLum3I3oydYnk7VDb772NuJT4GQ9S1hKQHyPuS ubX7eNCclIWi8urEfZmvMRmu+nw6Cak= -----END CERTIFICATE-----Generated at Wed Jul 2 13:06:08 2025 by rpki-client