$ rpki-client -vvf rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft File: I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft (raw, json) Hash identifier: tU3lNwXLwvrL67MqzzWUP8dofdHmLaWQyD2dNEqOCRE= Subject key identifier: 5D:91:30:37:2C:E5:66:11:09:E0:C1:D4:8D:33:73:DF:9F:1D:52:13 Authority key identifier: 23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 Certificate issuer: /CN=A91122B3/serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft Manifest number: AF Signing time: Sat 19 Jul 2025 06:17:28 +0000 Manifest this update: Sat 19 Jul 2025 06:17:27 +0000 Manifest next update: Sat 26 Jul 2025 06:17:27 +0000 Files and hashes: 1: I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl (hash: S3ioslQ3+NN2PLPT0xLLV+cCcjr+229bk8THxvt/SlE=) 2: AA5E96065B9F11EF9F1B175DC4F9AE02.roa (hash: 835GCMndjNXvDx8DWI9YwArs6Gdw+YBn2q/Ep2PzpX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91122B3, serialNumber=23C0B2D7ACE109D3DFE83AEBEF2EA3149C5CAC17 Validity Not Before: Jul 19 06:17:27 2025 GMT Not After : Jul 26 06:17:27 2025 GMT Subject: CN=687b3877-12d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9b:70:52:50:a7:99:e4:97:02:b9:43:2d:4a: 68:51:65:35:0c:88:90:2a:87:42:7d:7e:53:54:dc: 16:3f:62:56:06:c8:0b:e0:92:ac:d9:a2:b4:43:24: 3d:9c:8d:5a:49:16:ab:71:03:e6:8d:7d:e8:23:9a: 8b:fc:1d:56:15:cc:f4:83:b1:30:ee:d4:6d:28:97: e9:e6:95:20:2a:8c:ec:ce:96:87:92:2d:b4:68:13: 3d:5d:d2:d2:da:99:48:e4:88:a3:22:c2:15:14:c1: 15:ef:87:21:c8:1a:2a:24:3f:45:67:38:33:b9:b2: 17:ac:49:f8:ed:ee:d2:b2:8a:ab:67:f2:51:9b:b3: d4:e9:c6:af:42:8c:bd:29:2b:02:46:be:83:82:ba: a6:f8:fb:68:c9:0a:fd:21:cd:01:22:4d:93:f3:9c: 7b:7a:df:96:0b:30:4d:cd:21:f3:38:bb:00:39:39: 53:d2:86:95:34:14:79:50:49:eb:d6:1e:9f:8c:70: 3b:c4:ae:39:df:e0:29:95:60:87:50:97:da:dc:5a: 15:60:c5:65:21:10:f5:90:39:3a:62:95:0d:fa:66: e4:45:5f:96:90:9a:93:af:84:fe:d6:72:5d:18:04: 52:a3:fb:6c:77:ac:89:f3:df:2d:a2:a2:8d:7d:7e: 47:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:91:30:37:2C:E5:66:11:09:E0:C1:D4:8D:33:73:DF:9F:1D:52:13 X509v3 Authority Key Identifier: keyid:23:C0:B2:D7:AC:E1:09:D3:DF:E8:3A:EB:EF:2E:A3:14:9C:5C:AC:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8Cy16zhCdPf6Drr7y6jFJxcrBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91122B3/5E4D47625B9F11EFA14BBB5CC4F9AE02/I8Cy16zhCdPf6Drr7y6jFJxcrBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:7a:20:e4:12:d6:5e:a7:25:a7:17:f6:a6:4c:18:54:db:b6: 9d:e5:7a:93:95:9f:8c:23:92:11:f4:a4:e5:66:7c:d6:6d:98: 0e:c5:8b:8c:e6:31:cb:44:5c:a3:e7:64:cc:b6:46:32:cd:c8: d8:52:1f:41:9f:93:47:57:b0:38:fd:9c:08:d4:01:db:9b:ed: ad:89:d4:fa:57:bd:47:3e:90:b2:64:6a:be:0c:32:01:e6:72: 1f:44:a6:02:b3:9d:68:d7:91:d9:f3:8b:48:c9:05:fa:c2:4f: 71:33:58:aa:42:0d:e6:7e:01:af:51:f0:b9:32:1f:ff:23:ba: 49:cc:a5:bd:5c:9a:3b:4e:08:b5:96:d6:2b:95:77:c3:62:3b: af:48:52:00:ea:22:56:e6:e8:bc:dc:23:8c:3e:82:3e:ff:91: 1f:03:d9:41:67:b3:d4:e7:00:ac:bc:2a:35:39:06:e6:4a:12: 03:c4:e5:4f:45:e2:7d:ec:f8:37:3e:c2:a5:ce:d1:32:87:33: ef:67:40:88:89:be:f4:10:db:20:ad:29:80:ba:e1:7a:b2:f6: 8a:f9:cd:36:f6:a3:98:10:2a:b7:f9:0a:9d:da:75:ad:15:93: bc:99:6b:a4:d9:8c:85:47:94:37:e7:f7:84:ed:9c:06:f7:96: e8:1e:95:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIyQjMxMTAvBgNVBAUTKDIzQzBCMkQ3QUNFMTA5RDNERkU4M0FFQkVGMkVBMzE0 OUM1Q0FDMTcwHhcNMjUwNzE5MDYxNzI3WhcNMjUwNzI2MDYxNzI3WjAYMRYwFAYD VQQDEw02ODdiMzg3Ny0xMmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApptwUlCnmeSXArlDLUpoUWU1DIiQKodCfX5TVNwWP2JWBsgL4JKs2aK0QyQ9 nI1aSRarcQPmjX3oI5qL/B1WFcz0g7Ew7tRtKJfp5pUgKozszpaHki20aBM9XdLS 2plI5IijIsIVFMEV74chyBoqJD9FZzgzubIXrEn47e7SsoqrZ/JRm7PU6cavQoy9 KSsCRr6Dgrqm+PtoyQr9Ic0BIk2T85x7et+WCzBNzSHzOLsAOTlT0oaVNBR5UEnr 1h6fjHA7xK453+AplWCHUJfa3FoVYMVlIRD1kDk6YpUN+mbkRV+WkJqTr4T+1nJd GARSo/tsd6yJ898toqKNfX5H1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF2RMDcs 5WYRCeDB1I0zc9+fHVITMB8GA1UdIwQYMBaAFCPAstes4QnT3+g66+8uoxScXKwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjJCMy81RTRENDc2MjVC OUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENkUGY2RHJyN3k2akZKeGNy QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4Q3kxNnpoQ2RQZjZEcnI3eTZqRkp4Y3JCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjJCMy81RTRENDc2MjVCOUYxMUVGQTE0QkJCNUNDNEY5QUUwMi9JOEN5MTZ6aENk UGY2RHJyN3k2akZKeGNyQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMeiDkEtZepyWnF/amTBhU27ad5XqTlZ+MI5IR9KTlZnzWbZgOxYuM 5jHLRFyj52TMtkYyzcjYUh9Bn5NHV7A4/ZwI1AHbm+2tidT6V71HPpCyZGq+DDIB 5nIfRKYCs51o15HZ84tIyQX6wk9xM1iqQg3mfgGvUfC5Mh//I7pJzKW9XJo7Tgi1 ltYrlXfDYjuvSFIA6iJW5ui83COMPoI+/5EfA9lBZ7PU5wCsvCo1OQbmShIDxOVP ReJ97Pg3PsKlztEyhzPvZ0CIib70ENsgrSmAuuF6svaK+c029qOYECq3+Qqd2nWt FZO8mWuk2YyFR5Q35/eE7ZwG95boHpUR -----END CERTIFICATE-----Generated at Sun Jul 20 11:18:58 2025 by rpki-client