$ rpki-client -vvf rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft File: Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft (raw, json) Hash identifier: yGDXlJFK2udaDB1+EyRGanhjKPkxv2Vd+BzOhFC97cs= Subject key identifier: A1:04:13:E9:61:3E:2F:B0:5D:AD:D0:E1:EF:69:0E:A4:5D:4A:DB:EB Authority key identifier: 37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 Certificate issuer: /CN=A91142EA/serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft Manifest number: 1F79 Signing time: Fri 18 Jul 2025 16:11:18 +0000 Manifest this update: Fri 18 Jul 2025 16:11:18 +0000 Manifest next update: Fri 25 Jul 2025 16:11:18 +0000 Files and hashes: 1: Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl (hash: KGXZs15QK4P/PjK22qIFZIiTq8tFEuY49Y6cej2qlp4=) 2: 9FD12146ED7211ED8A92041CC4F9AE02.roa (hash: oRm2blLyiJS/QAfKc6f3YExIUJkkRHUJrPUQp9W2Q+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91142EA, serialNumber=372F1C7761B1DDC8328C50BAD0EEEDCD99F2E4F2 Validity Not Before: Jul 18 16:11:18 2025 GMT Not After : Jul 25 16:11:18 2025 GMT Subject: CN=687a7226-d559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f1:7b:5c:76:20:61:a3:4d:c5:8e:d1:2b:fa: 82:93:47:54:dc:af:b3:02:92:3e:fc:72:e1:a5:c2: 11:24:f5:79:ba:b9:62:b1:4e:5a:f4:61:05:b0:1d: 86:81:c7:6f:c6:20:40:84:5f:6a:e7:98:cd:e5:ed: 10:a1:f4:b7:5e:9d:0a:ec:d2:24:a9:2b:f4:fc:af: ab:12:29:1c:6c:e7:5d:01:ff:4e:49:67:69:58:98: 4d:b3:b9:bd:e1:f5:30:22:9d:29:6f:78:8e:1c:42: 3c:60:64:cf:50:ff:5c:29:e8:00:e4:08:93:a1:2c: f2:85:2f:50:7d:c2:6a:b0:a4:0d:94:84:3b:6b:d3: 54:a1:fe:fe:c2:31:19:91:03:77:24:88:ba:cd:bb: cd:3c:d4:64:09:f7:ef:e0:7f:0f:af:ad:c4:41:4f: bf:81:d9:94:1a:be:97:c0:94:94:51:ad:fa:ef:fd: 3d:16:d0:8f:ed:04:79:76:1b:4a:7c:f5:3b:34:dd: 58:13:88:9d:d1:ca:8c:b1:99:00:27:67:e1:67:1a: ab:51:00:c1:5a:5f:51:74:8f:c9:96:d9:5e:e6:ec: 47:75:d4:71:a7:04:64:df:c3:9e:72:77:67:c4:e6: fa:2d:e6:16:cf:a1:12:bd:f6:62:c5:87:e0:1a:e3: 29:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:04:13:E9:61:3E:2F:B0:5D:AD:D0:E1:EF:69:0E:A4:5D:4A:DB:EB X509v3 Authority Key Identifier: keyid:37:2F:1C:77:61:B1:DD:C8:32:8C:50:BA:D0:EE:ED:CD:99:F2:E4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ny8cd2Gx3cgyjFC60O7tzZny5PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91142EA/F5332D7E84C311E6B9821A81C4F9AE02/Ny8cd2Gx3cgyjFC60O7tzZny5PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:41:8b:aa:a0:86:a5:e0:31:ac:c9:dd:c6:b0:ec:86:73:fd: 4d:11:aa:a5:22:f1:3c:49:cc:05:c6:c6:18:6e:79:57:d2:d7: 6f:38:66:e1:b4:ce:f0:58:60:a3:c6:25:39:72:82:65:75:eb: c1:f6:c6:14:db:8e:e4:b3:3c:14:60:88:86:06:26:3e:24:f8: 9b:ad:c9:7b:c5:a2:3a:df:7d:f6:2e:7a:a0:09:97:b4:54:50: cd:1b:cc:e9:e5:ee:b3:51:7e:14:3c:fd:9d:96:0a:89:38:b1: d2:6c:cb:60:82:54:84:8f:8b:7a:a9:49:1e:31:ec:56:7c:03: 51:bf:71:cb:0d:03:01:eb:b8:39:54:4f:73:57:74:24:57:2c: 46:dd:ce:4a:5e:b7:55:bd:da:3b:ca:75:5c:d1:cf:fb:f2:8a: d3:44:00:ed:3c:07:8a:a6:66:f7:bb:33:d2:c7:a2:07:94:0e: a3:5a:55:5a:ac:f8:38:9d:8c:28:a6:b8:58:49:f0:c3:c9:f9: 59:1c:00:b5:76:b6:a7:77:37:bf:45:ee:a0:b4:6b:fb:e2:1f: f4:13:a0:d0:46:a1:47:a5:bb:cd:03:c9:04:03:b8:62:82:93: 1a:bb:97:03:28:a6:b2:58:41:e2:f3:a3:30:cd:72:7b:49:f6: 04:21:4c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQyRUExMTAvBgNVBAUTKDM3MkYxQzc3NjFCMUREQzgzMjhDNTBCQUQwRUVFRENE OTlGMkU0RjIwHhcNMjUwNzE4MTYxMTE4WhcNMjUwNzI1MTYxMTE4WjAYMRYwFAYD VQQDEw02ODdhNzIyNi1kNTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPF7XHYgYaNNxY7RK/qCk0dU3K+zApI+/HLhpcIRJPV5urlisU5a9GEFsB2G gcdvxiBAhF9q55jN5e0QofS3Xp0K7NIkqSv0/K+rEikcbOddAf9OSWdpWJhNs7m9 4fUwIp0pb3iOHEI8YGTPUP9cKegA5AiToSzyhS9QfcJqsKQNlIQ7a9NUof7+wjEZ kQN3JIi6zbvNPNRkCffv4H8Pr63EQU+/gdmUGr6XwJSUUa367/09FtCP7QR5dhtK fPU7NN1YE4id0cqMsZkAJ2fhZxqrUQDBWl9RdI/Jltle5uxHddRxpwRk38Oecndn xOb6LeYWz6ESvfZixYfgGuMpnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEEE+lh Pi+wXa3Q4e9pDqRdStvrMB8GA1UdIwQYMBaAFDcvHHdhsd3IMoxQutDu7c2Z8uTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDJFQS9GNTMzMkQ3RTg0 QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNjZ3lqRkM2ME83dHpabnk1 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055OGNkMkd4M2NneWpGQzYwTzd0elpueTVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDJFQS9GNTMzMkQ3RTg0QzMxMUU2Qjk4MjFBODFDNEY5QUUwMi9OeThjZDJHeDNj Z3lqRkM2ME83dHpabnk1UEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnQYuqoIal4DGsyd3GsOyGc/1NEaqlIvE8ScwFxsYYbnlX0tdvOGbh tM7wWGCjxiU5coJldevB9sYU247kszwUYIiGBiY+JPibrcl7xaI63332LnqgCZe0 VFDNG8zp5e6zUX4UPP2dlgqJOLHSbMtgglSEj4t6qUkeMexWfANRv3HLDQMB67g5 VE9zV3QkVyxG3c5KXrdVvdo7ynVc0c/78orTRADtPAeKpmb3uzPSx6IHlA6jWlVa rPg4nYwoprhYSfDDyflZHAC1drandze/Re6gtGv74h/0E6DQRqFHpbvNA8kEA7hi gpMau5cDKKayWEHi86MwzXJ7SfYEIUwe -----END CERTIFICATE-----Generated at Sun Jul 20 16:49:56 2025 by rpki-client