$ rpki-client -vvf rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft File: h19AAhxtQ7BO_olKf8FcxPbtibo.mft (raw, json) Hash identifier: jQztj2YJsk9nLd+0uW0flWnw58ajfWtLE48ScbGCqXI= Subject key identifier: 33:E3:A7:22:65:32:71:2E:8A:0E:83:5C:32:8A:07:78:DA:5B:C0:75 Authority key identifier: 87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA Certificate issuer: /CN=A91151C9/serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Certificate serial: 17FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft Manifest number: 17E2 Signing time: Fri 18 Jul 2025 16:41:19 +0000 Manifest this update: Fri 18 Jul 2025 16:41:18 +0000 Manifest next update: Fri 25 Jul 2025 16:41:18 +0000 Files and hashes: 1: h19AAhxtQ7BO_olKf8FcxPbtibo.crl (hash: JL+H5fsWtXusOq+MIFa4WRft/2DhzS/EhkzG0kWPbic=) 2: A652A68C3DB911EFACDF8C75C4F9AE02.roa (hash: EjdNTbAyftBJxtIBKhAk8tku0Xw6VBdJSMgPHoN2SG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6138 (0x17fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91151C9, serialNumber=875F40021C6D43B04EFE894A7FC15CC4F6ED89BA Validity Not Before: Jul 18 16:41:18 2025 GMT Not After : Jul 25 16:41:18 2025 GMT Subject: CN=687a792f-9cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:51:76:d8:3a:68:15:15:65:7a:04:05:4f:7d: f2:50:69:94:6a:81:73:f3:8f:a0:74:54:12:c1:2b: b4:8d:e9:10:bc:2f:ac:89:08:70:80:94:ab:51:ab: 56:9d:24:42:9e:b3:10:fa:82:61:ea:91:89:68:31: fe:a3:70:1b:57:c3:b8:c2:2e:f3:e1:41:b7:1e:f4: 40:92:1c:61:b4:db:7b:93:fc:de:f4:84:3a:5b:c1: 33:03:7e:2e:30:d2:42:c9:f0:44:a2:a1:d6:60:f1: 74:87:fb:a8:88:32:cd:93:0a:40:b1:9e:e8:df:37: e8:c4:04:d0:cb:86:8a:f1:84:ac:65:89:c6:a3:e4: ed:a1:7b:04:7d:4a:34:e9:08:ee:af:54:35:4f:8d: 45:fb:6c:a8:cd:9f:2c:1e:7a:55:71:59:51:a0:b6: aa:58:34:4d:75:e0:be:e1:2f:e0:81:1f:24:b6:c8: 89:ca:6e:55:ec:16:5d:0f:a7:18:54:cc:03:e5:53: 8a:b6:57:98:fa:48:c2:29:6c:27:e6:6c:ba:69:e8: ff:8c:47:9d:87:f0:06:b3:e6:33:a0:17:fa:ac:c5: 1d:5d:c2:9b:8c:52:df:59:c1:b3:2f:b9:df:47:be: 81:37:91:fb:99:d8:c9:20:e5:7b:c5:dd:9a:de:4f: 68:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E3:A7:22:65:32:71:2E:8A:0E:83:5C:32:8A:07:78:DA:5B:C0:75 X509v3 Authority Key Identifier: keyid:87:5F:40:02:1C:6D:43:B0:4E:FE:89:4A:7F:C1:5C:C4:F6:ED:89:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h19AAhxtQ7BO_olKf8FcxPbtibo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91151C9/C300C2CEC6FA11E7AAABCC0BC4F9AE02/h19AAhxtQ7BO_olKf8FcxPbtibo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:4e:32:6f:d7:f3:ed:b8:1e:7f:71:57:6f:d3:55:61:33:2e: 71:97:eb:cf:d8:51:73:48:c0:d5:3b:e0:ff:b6:3f:88:76:96: a9:89:73:84:66:6b:b1:24:97:ff:69:c4:b7:df:33:c8:97:6a: 33:3b:3d:13:90:60:c2:4f:08:e6:56:82:5c:9e:7d:48:cd:bc: 19:58:aa:e7:ec:a5:c1:63:8c:a5:ff:85:7a:6f:df:11:7c:58: 78:39:38:e7:f9:b5:9f:17:11:f3:c5:c3:1c:db:4d:c5:5a:86: 15:2e:92:40:b0:3e:0f:e9:48:da:b7:94:d9:b7:e0:c0:ce:6d: e7:1c:7a:d7:9d:cb:f8:8a:42:a8:42:88:c5:af:cd:70:a5:51: 0e:14:80:ea:5d:5a:21:71:0f:35:61:32:5a:60:31:eb:26:28: 89:f9:d7:a2:11:f8:78:1b:6b:f8:29:0e:82:b2:18:64:c1:53: 1b:ab:f1:b8:8e:92:ea:b5:7a:b0:76:1f:ad:a2:0e:81:7d:51: c1:26:96:34:10:6d:73:aa:ca:1c:96:16:2c:41:ad:36:b3:1e: 35:bb:9d:73:9c:28:80:37:92:c4:2f:f0:04:97:cd:be:36:8c: 0f:3d:76:7f:8c:5c:76:dd:e0:b4:6b:ad:b1:7c:be:07:41:b0: 14:12:2b:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxQzkxMTAvBgNVBAUTKDg3NUY0MDAyMUM2RDQzQjA0RUZFODk0QTdGQzE1Q0M0 RjZFRDg5QkEwHhcNMjUwNzE4MTY0MTE4WhcNMjUwNzI1MTY0MTE4WjAYMRYwFAYD VQQDEw02ODdhNzkyZi05Y2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FF22DpoFRVlegQFT33yUGmUaoFz84+gdFQSwSu0jekQvC+siQhwgJSrUatW nSRCnrMQ+oJh6pGJaDH+o3AbV8O4wi7z4UG3HvRAkhxhtNt7k/ze9IQ6W8EzA34u MNJCyfBEoqHWYPF0h/uoiDLNkwpAsZ7o3zfoxATQy4aK8YSsZYnGo+TtoXsEfUo0 6Qjur1Q1T41F+2yozZ8sHnpVcVlRoLaqWDRNdeC+4S/ggR8ktsiJym5V7BZdD6cY VMwD5VOKtleY+kjCKWwn5my6aej/jEedh/AGs+YzoBf6rMUdXcKbjFLfWcGzL7nf R76BN5H7mdjJIOV7xd2a3k9orQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPjpyJl MnEuig6DXDKKB3jaW8B1MB8GA1UdIwQYMBaAFIdfQAIcbUOwTv6JSn/BXMT27Ym6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTFDOS9DMzAwQzJDRUM2 RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3Qk9fb2xLZjhGY3hQYnRp Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gxOUFBaHh0UTdCT19vbEtmOEZjeFBidGliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTFDOS9DMzAwQzJDRUM2RkExMUU3QUFBQkNDMEJDNEY5QUUwMi9oMTlBQWh4dFE3 Qk9fb2xLZjhGY3hQYnRpYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZTjJv1/PtuB5/cVdv01VhMy5xl+vP2FFzSMDVO+D/tj+IdpapiXOE ZmuxJJf/acS33zPIl2ozOz0TkGDCTwjmVoJcnn1IzbwZWKrn7KXBY4yl/4V6b98R fFh4OTjn+bWfFxHzxcMc203FWoYVLpJAsD4P6Ujat5TZt+DAzm3nHHrXncv4ikKo QojFr81wpVEOFIDqXVohcQ81YTJaYDHrJiiJ+deiEfh4G2v4KQ6CshhkwVMbq/G4 jpLqtXqwdh+tog6BfVHBJpY0EG1zqsoclhYsQa02sx41u51znCiAN5LEL/AEl82+ NowPPXZ/jFx23eC0a62xfL4HQbAUEivH -----END CERTIFICATE-----Generated at Sun Jul 20 06:45:36 2025 by rpki-client