$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: /JRdziUER/+jKRgGtMCYpcMEvjNu18Djk12O7howWjI= Subject key identifier: 4B:35:31:A8:95:7D:89:2F:BF:AF:74:D2:10:13:E9:A2:2D:98:5F:E9 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 05F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 05F2 Signing time: Sun 20 Jul 2025 23:05:22 +0000 Manifest this update: Sun 20 Jul 2025 23:05:21 +0000 Manifest next update: Sun 27 Jul 2025 23:05:21 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: JkQ6bVD6QB29BiL+n9gMwWPai3DaxS0it7S+eIWlYO0=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: IADvK+KgV5vnYxJ4wHU1Xtz8TSGee8Bm5ZckrfzrChM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:05:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Jul 20 23:05:21 2025 GMT Not After : Jul 27 23:05:21 2025 GMT Subject: CN=687d7632-f215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:03:2c:0c:c6:d5:81:5d:29:00:2c:6b:81:e9: b9:d1:b8:96:a3:bc:b8:28:39:86:82:47:3e:dd:e9: f2:ab:86:ba:48:6c:08:a0:81:12:bf:92:e2:91:ee: eb:af:82:a2:4e:c7:b5:90:87:8f:27:53:f2:17:b1: 27:7c:fb:5c:f2:e1:fd:f6:71:02:22:74:ef:27:61: 3b:e5:46:59:f4:50:e1:25:a5:2d:ea:4c:c5:1a:76: 6e:c9:12:9f:a5:93:06:0d:7d:09:fb:f6:8a:db:1d: f0:2e:cd:69:88:12:ac:9d:5a:8b:97:97:3c:2c:17: 63:ae:a3:2e:46:c9:10:f2:7b:e9:85:df:a6:d7:30: 31:8c:13:2a:8c:82:4c:58:1a:f4:a9:91:62:99:9e: 95:af:7f:d6:55:15:b6:07:64:5a:f0:24:17:07:f6: 6f:e1:5f:93:31:af:fc:c3:9a:97:32:38:28:62:8a: b7:39:12:fd:af:bc:bf:5c:88:10:11:71:a1:e5:ed: bb:4a:e4:51:b2:82:4c:78:31:f1:9e:00:e7:e7:e4: 76:b7:83:d2:44:90:9d:fb:a7:d1:56:6e:23:a1:34: e6:22:c1:a4:4a:b7:96:0f:78:b1:37:93:c0:96:cb: 79:ac:0a:f9:ad:a2:33:29:82:57:e9:d4:df:8d:e4: ca:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:35:31:A8:95:7D:89:2F:BF:AF:74:D2:10:13:E9:A2:2D:98:5F:E9 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:08:47:77:ca:42:78:06:ba:72:4a:f5:cb:7e:19:2c:33:77: bb:2f:13:4b:4e:06:33:37:d9:33:0a:9b:36:87:ed:be:ef:43: 80:be:8b:1a:e9:cb:0b:d8:90:97:75:49:6a:d7:e9:6f:50:fa: b8:f3:b0:82:9c:93:fc:74:92:eb:0e:47:cf:b3:bc:a2:ea:84: 01:fd:8a:e5:99:62:1f:77:c0:8b:ac:aa:19:02:06:b8:ee:97: a9:b6:67:cf:ed:e8:31:37:15:30:8f:70:e5:86:d1:17:75:1b: b3:a6:db:e2:80:c1:6b:c9:b1:09:70:b3:5f:07:78:77:30:6d: 8b:9f:c3:b4:c4:9a:6f:47:79:21:d8:6a:46:b7:2b:74:9f:08: f8:bb:3b:16:aa:af:a2:db:80:dc:fd:fb:46:c5:bc:c5:d4:0d: 17:5c:8e:6b:62:b1:03:9d:a4:ce:3e:a2:44:41:42:14:24:46: 9a:59:a4:2e:91:55:c9:a4:7d:7f:b5:79:ea:d9:7f:d5:42:9b: e3:c4:13:ec:7b:18:3d:90:05:de:60:72:1d:b1:29:4e:7f:3e: be:d1:a3:f1:9a:11:33:ec:f4:54:b3:1d:91:5e:99:41:ce:e9: 75:0c:4f:57:80:ea:c7:9b:56:ad:fc:c8:51:6e:1b:5a:f6:05: 14:90:f2:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjUwNzIwMjMwNTIxWhcNMjUwNzI3MjMwNTIxWjAYMRYwFAYD VQQDEw02ODdkNzYzMi1mMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8AMsDMbVgV0pACxrgem50biWo7y4KDmGgkc+3enyq4a6SGwIoIESv5Like7r r4KiTse1kIePJ1PyF7EnfPtc8uH99nECInTvJ2E75UZZ9FDhJaUt6kzFGnZuyRKf pZMGDX0J+/aK2x3wLs1piBKsnVqLl5c8LBdjrqMuRskQ8nvphd+m1zAxjBMqjIJM WBr0qZFimZ6Vr3/WVRW2B2Ra8CQXB/Zv4V+TMa/8w5qXMjgoYoq3ORL9r7y/XIgQ EXGh5e27SuRRsoJMeDHxngDn5+R2t4PSRJCd+6fRVm4joTTmIsGkSreWD3ixN5PA lst5rAr5raIzKYJX6dTfjeTK9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEs1MaiV fYkvv6900hAT6aItmF/pMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHCEd3ykJ4BrpySvXLfhksM3e7LxNLTgYzN9kzCps2h+2+70OAvosa 6csL2JCXdUlq1+lvUPq487CCnJP8dJLrDkfPs7yi6oQB/YrlmWIfd8CLrKoZAga4 7peptmfP7egxNxUwj3DlhtEXdRuzptvigMFrybEJcLNfB3h3MG2Ln8O0xJpvR3kh 2GpGtyt0nwj4uzsWqq+i24Dc/ftGxbzF1A0XXI5rYrEDnaTOPqJEQUIUJEaaWaQu kVXJpH1/tXnq2X/VQpvjxBPsexg9kAXeYHIdsSlOfz6+0aPxmhEz7PRUsx2RXplB zul1DE9XgOrHm1at/MhRbhta9gUUkPIo -----END CERTIFICATE-----Generated at Mon Jul 21 05:53:30 2025 by rpki-client