$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: 8RTPkhnAJ4xorKpwoKTcI7REeaELf/jK9hXx4toFTJw= Subject key identifier: 62:E9:03:BA:5C:CB:F2:4F:70:86:AF:F6:CE:D0:F0:BF:54:85:0C:E9 Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0655 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 0653 Signing time: Fri 06 Jun 2025 14:51:14 +0000 Manifest this update: Fri 06 Jun 2025 14:51:13 +0000 Manifest next update: Fri 13 Jun 2025 14:51:13 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: 3kBX+EzpQyn+ycC8cDByIazilr4kMKc5scFd65qNEZ8=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: /bP5RMzdbkL7/5EZqhq7cO3FfNuTY5k1xdEgv+lDTck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 14:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Jun 6 14:51:13 2025 GMT Not After : Jun 13 14:51:13 2025 GMT Subject: CN=68430062-0de9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:95:49:76:03:00:cd:39:a5:51:af:39:be: 19:d8:40:56:1a:65:20:59:30:c5:34:1f:80:69:a8: c4:25:b2:81:f8:de:e2:72:66:35:58:2c:a7:88:e1: 9b:5b:89:e3:67:5c:ed:26:d7:81:f2:ba:e8:81:cf: bc:33:5c:a1:0a:cc:45:40:19:18:89:a3:83:a3:90: b7:90:e8:74:a0:d5:6c:2b:ad:de:43:60:06:70:c3: 90:0a:45:aa:29:cd:71:4e:f8:f8:73:64:92:c3:40: 91:a0:38:34:eb:19:4a:ea:74:bf:db:46:d1:b2:01: 13:9f:0b:d3:d0:65:12:cd:07:fb:f0:b8:db:85:0d: 8c:7b:c9:69:af:f0:55:04:d1:27:5a:fc:25:d8:25: fb:41:27:a0:2d:1a:20:94:0b:47:38:91:68:68:6c: 27:18:9a:cc:ac:0d:4d:30:18:bb:9e:1d:46:72:8b: 8e:66:66:b0:eb:14:a9:7e:35:a2:27:56:b7:15:f3: e6:e5:ba:3e:7b:e5:23:af:3e:88:fb:3f:e2:f3:c5: fc:6f:e1:db:f2:6d:96:31:21:19:6d:3d:3e:74:5e: d8:c5:9c:c7:22:a7:a0:9f:f6:3d:a7:0c:35:6e:21: ca:d5:62:1c:17:4f:fe:b8:65:f4:7f:ab:d2:69:f5: f0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E9:03:BA:5C:CB:F2:4F:70:86:AF:F6:CE:D0:F0:BF:54:85:0C:E9 X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ad:e7:66:5f:43:61:ac:05:93:46:5c:d4:f9:cc:ba:03:a6: c0:72:d0:10:b2:28:8a:b3:7e:31:46:3a:de:ee:a4:c4:df:ab: d1:85:e1:0b:74:fc:a3:e3:81:e9:e8:7f:c3:b3:80:12:66:f2: 83:fc:72:dc:dd:7b:77:6c:d2:9d:ee:66:df:82:11:f3:07:28: c7:25:ae:ea:1b:c2:38:cd:85:61:23:54:41:1b:04:c4:01:88: 71:1f:ee:3b:c7:fe:6d:c1:28:cd:1e:49:bc:c9:51:84:4f:8b: b2:4d:4e:74:15:7e:23:9d:10:f2:ff:68:1a:b8:25:ae:7b:53: c0:94:c1:70:e1:dc:67:5e:15:68:5d:48:7d:b3:aa:c5:a0:02: 77:92:96:a1:04:82:0e:1f:84:19:ad:61:44:bb:5e:44:9d:ab: 40:99:29:63:95:9b:0a:b8:45:51:a3:9d:ad:1f:8f:34:99:ba: 82:aa:02:85:61:27:7d:17:9d:4f:c8:0c:09:45:c7:fa:28:de: de:4e:f3:5b:a9:64:79:87:4f:71:ff:5d:48:f0:67:a0:6c:25: 9a:eb:31:e9:24:f8:33:5c:a2:01:35:46:e3:c5:2e:f4:c4:9f: 8d:11:c3:5e:26:77:66:df:30:bc:da:ed:be:78:8d:93:c5:4c: bf:48:46:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUwNjA2MTQ1MTEzWhcNMjUwNjEzMTQ1MTEzWjAYMRYwFAYD VQQDEw02ODQzMDA2Mi0wZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sKVSXYDAM05pVGvOb4Z2EBWGmUgWTDFNB+AaajEJbKB+N7icmY1WCyniOGb W4njZ1ztJteB8rrogc+8M1yhCsxFQBkYiaODo5C3kOh0oNVsK63eQ2AGcMOQCkWq Kc1xTvj4c2SSw0CRoDg06xlK6nS/20bRsgETnwvT0GUSzQf78LjbhQ2Me8lpr/BV BNEnWvwl2CX7QSegLRoglAtHOJFoaGwnGJrMrA1NMBi7nh1GcouOZmaw6xSpfjWi J1a3FfPm5bo+e+Ujrz6I+z/i88X8b+Hb8m2WMSEZbT0+dF7YxZzHIqegn/Y9pww1 biHK1WIcF0/+uGX0f6vSafXwOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLpA7pc y/JPcIav9s7Q8L9UhQzpMB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1redmX0NhrAWTRlzU+cy6A6bActAQsiiKs34xRjre7qTE36vRheEL dPyj44Hp6H/Ds4ASZvKD/HLc3Xt3bNKd7mbfghHzByjHJa7qG8I4zYVhI1RBGwTE AYhxH+47x/5twSjNHkm8yVGET4uyTU50FX4jnRDy/2gauCWue1PAlMFw4dxnXhVo XUh9s6rFoAJ3kpahBIIOH4QZrWFEu15EnatAmSljlZsKuEVRo52tH480mbqCqgKF YSd9F51PyAwJRcf6KN7eTvNbqWR5h09x/11I8GegbCWa6zHpJPgzXKIBNUbjxS70 xJ+NEcNeJndm3zC82u2+eI2TxUy/SEZI -----END CERTIFICATE-----Generated at Sat Jun 7 06:39:16 2025 by rpki-client