$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: 68iNjPb3tsJkMzBbPtEBJsvcNbrQid1t06RMCoBihpE= Subject key identifier: DF:AA:74:D4:BB:7D:88:72:C7:5E:EA:AA:B6:E4:BF:36:37:34:EF:19 Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0BE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2C77 Signing time: Mon 30 Jun 2025 16:36:33 +0000 Manifest this update: Mon 30 Jun 2025 16:36:32 +0000 Manifest next update: Mon 07 Jul 2025 16:36:32 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: iobMJ5Z6SD646/oeTi49oFy5rIstN+Nn+c5uoIVs6Vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 16:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Jun 30 16:36:32 2025 GMT Not After : Jul 7 16:36:32 2025 GMT Subject: CN=6862bd10-795d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:82:77:46:9a:ae:ce:a4:db:81:4c:65:17:eb: f7:5d:9e:63:a6:ef:da:53:99:59:e0:7b:7b:96:52: 62:eb:d4:9e:e9:8a:a2:d1:36:65:ee:d2:ef:ae:e9: 15:d8:63:ad:78:06:a5:e7:c2:d2:ef:73:b4:3b:6d: ac:82:ce:7f:06:90:65:92:d4:d0:02:38:cd:bc:c6: 8e:3b:f1:39:d8:25:49:00:39:ae:2d:d7:b0:99:4b: 9c:68:44:c7:f7:48:18:f0:ae:d4:bf:7d:bb:c9:3c: c2:f5:83:c1:58:44:11:a5:61:62:7a:7a:bd:43:4f: d0:ee:07:7e:85:64:b5:fe:18:1d:2e:a0:25:34:2b: dc:47:40:96:a0:a1:a9:18:bb:28:f3:6b:3e:3e:31: 6e:de:c8:82:fd:3c:1c:3e:e5:1e:90:08:f5:b7:39: f4:58:fa:64:8b:9f:65:50:e6:3b:9b:80:0d:d2:87: 83:42:83:02:d4:c6:51:59:2a:fc:22:6d:8a:6f:5d: e7:f6:07:31:1e:3c:7e:aa:93:f7:46:d2:90:fe:e9: 39:b1:61:e0:2e:e5:6e:5b:1c:24:16:51:c7:e4:73: e9:4a:e2:cf:63:ff:bf:25:6e:06:37:20:c8:b8:df: fe:34:0a:50:dd:7e:68:ad:4f:24:cc:e3:8f:c9:75: bf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:AA:74:D4:BB:7D:88:72:C7:5E:EA:AA:B6:E4:BF:36:37:34:EF:19 X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:8b:7c:a4:53:73:c1:9f:c4:a3:57:0f:19:b2:a3:aa:9f:7e: 24:a0:4f:08:18:ac:6a:d4:e6:b2:74:32:43:51:61:0d:4b:20: 4f:07:b2:c6:c8:5a:a6:8d:0b:3d:34:6c:81:46:ce:89:70:c0: 9e:1d:01:fc:9c:c5:ea:1f:ff:06:62:7e:99:e4:84:9c:fb:69: 7c:f0:7d:ce:ad:72:c1:60:70:48:81:2d:07:f9:26:ba:42:83: 76:28:6b:1f:8a:39:dc:97:9a:7d:59:d7:6b:e0:91:90:f9:aa: 86:93:c0:4b:2e:d7:91:0b:98:7d:14:3b:46:3a:dc:c2:f6:f6: 2b:aa:9c:4a:de:c7:81:d2:e1:3e:0e:74:2b:bc:b0:58:3f:5c: 97:7d:08:4f:7e:89:76:ec:43:42:b0:ca:7c:05:b8:d0:5d:f8: e0:a3:18:0a:89:ef:d5:3a:a1:75:f5:bb:59:ed:95:c0:4a:36: 4e:45:94:98:ac:ef:c8:b4:15:07:45:ea:aa:51:32:8b:0a:ec: 76:1e:88:65:f4:b8:91:3e:bc:f6:1d:1f:8f:b7:73:34:1b:96: e5:af:30:5a:25:3f:1d:c8:84:53:f3:18:4c:78:ce:cc:77:4e: 5e:7f:f1:2a:98:12:7a:1d:4c:a0:43:3d:11:5c:09:14:e5:fb: 20:4a:11:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUwNjMwMTYzNjMyWhcNMjUwNzA3MTYzNjMyWjAYMRYwFAYD VQQDEw02ODYyYmQxMC03OTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkIJ3RpquzqTbgUxlF+v3XZ5jpu/aU5lZ4Ht7llJi69Se6Yqi0TZl7tLvrukV 2GOteAal58LS73O0O22sgs5/BpBlktTQAjjNvMaOO/E52CVJADmuLdewmUucaETH 90gY8K7Uv327yTzC9YPBWEQRpWFienq9Q0/Q7gd+hWS1/hgdLqAlNCvcR0CWoKGp GLso82s+PjFu3siC/TwcPuUekAj1tzn0WPpki59lUOY7m4AN0oeDQoMC1MZRWSr8 Im2Kb13n9gcxHjx+qpP3RtKQ/uk5sWHgLuVuWxwkFlHH5HPpSuLPY/+/JW4GNyDI uN/+NApQ3X5orU8kzOOPyXW/BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+qdNS7 fYhyx17qqrbkvzY3NO8ZMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFi3ykU3PBn8SjVw8ZsqOqn34koE8IGKxq1OaydDJDUWENSyBPB7LG yFqmjQs9NGyBRs6JcMCeHQH8nMXqH/8GYn6Z5ISc+2l88H3OrXLBYHBIgS0H+Sa6 QoN2KGsfijncl5p9Wddr4JGQ+aqGk8BLLteRC5h9FDtGOtzC9vYrqpxK3seB0uE+ DnQrvLBYP1yXfQhPfol27ENCsMp8BbjQXfjgoxgKie/VOqF19btZ7ZXASjZORZSY rO/ItBUHReqqUTKLCux2Hohl9LiRPrz2HR+Pt3M0G5blrzBaJT8dyIRT8xhMeM7M d05ef/EqmBJ6HUygQz0RXAkU5fsgShGZ -----END CERTIFICATE-----Generated at Wed Jul 2 07:34:01 2025 by rpki-client