$ rpki-client -vvf rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft File: FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft (raw, json) Hash identifier: OeGeyKQ5KQKxkTuFQO2OcsNc2msb4XLs9YPW8LUDYxo= Subject key identifier: C1:E0:3E:47:EB:F2:E6:43:CA:DE:DC:50:91:07:E7:51:B5:94:8C:7A Authority key identifier: 16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 Certificate issuer: /CN=A91314BC/serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Certificate serial: 020E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft Manifest number: 0201 Signing time: Sat 19 Jul 2025 02:34:31 +0000 Manifest this update: Sat 19 Jul 2025 02:34:31 +0000 Manifest next update: Sat 26 Jul 2025 02:34:31 +0000 Files and hashes: 1: FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl (hash: PI7s1zLBV+lW7orsHYiAQXhUOi8QG0gFiNQCvDDlbt8=) 2: 1083BE64499711EE86AE452DC4F9AE02.roa (hash: slu67F8KWLFn/RxCNvxBYhj1V1Mx5+noN3O9kww2W8Y=) 3: 7DD0E8845A3211EDB637E665C4F9AE02.roa (hash: wtWT4PZFgcn64rOhtqw01Kyp1pjejdqieeode8aJT6o=) 4: 7D0DFE0A5A3211EDB637E665C4F9AE02.roa (hash: K4zq7amWLtDyT+UqSOR4oOsSasN49MRy2b9Pfvweln4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91314BC, serialNumber=168415C0C13401C0D771571DF86F8CD5F8503B14 Validity Not Before: Jul 19 02:34:31 2025 GMT Not After : Jul 26 02:34:31 2025 GMT Subject: CN=687b0437-8a88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c0:cd:36:80:1f:df:fd:5b:b4:5a:6b:0a:a7: 2f:80:af:d8:0d:22:e8:5a:fa:b7:99:dc:43:7e:f8: ca:88:d0:dd:d7:f1:47:f2:73:8f:e3:6e:78:93:09: 08:80:30:64:f7:c4:7b:a0:ec:d5:4d:a4:be:a2:07: 6b:83:0e:3c:aa:7a:70:c9:a4:43:69:f6:5c:8b:ca: 63:77:30:3c:7f:18:f8:bf:2f:99:bf:66:fc:7a:cd: 4a:26:ac:af:2c:3e:9f:e4:cc:5d:84:ba:3b:e0:87: 1e:c0:af:2d:c3:18:4a:55:2b:4f:fc:ca:34:64:18: a4:db:36:d2:e8:53:5a:8f:29:fb:85:8e:ec:e0:7d: 22:40:d6:74:42:e5:73:89:d7:6d:e9:e0:5c:61:62: bd:07:13:a1:0c:48:be:ba:62:bc:0c:24:cd:e2:f6: c7:06:3a:a6:59:a0:be:09:03:ee:fa:b0:50:08:65: f7:1f:74:e2:6a:bd:01:d0:f1:c1:a2:ff:ac:66:df: 59:73:71:7e:cb:6c:2a:b6:8a:a5:a5:ac:1d:bc:82: ba:fd:24:27:18:e0:b2:83:34:95:a1:0d:a0:ed:6a: 46:89:5e:22:28:cc:14:32:f2:c1:35:5d:ee:92:98: 2c:0e:fd:dc:de:a4:56:ff:8b:3a:33:49:81:a2:3a: 47:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E0:3E:47:EB:F2:E6:43:CA:DE:DC:50:91:07:E7:51:B5:94:8C:7A X509v3 Authority Key Identifier: keyid:16:84:15:C0:C1:34:01:C0:D7:71:57:1D:F8:6F:8C:D5:F8:50:3B:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FoQVwME0AcDXcVcd-G-M1fhQOxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91314BC/7FD0166C5A2F11EDA19E5E61C4F9AE02/FoQVwME0AcDXcVcd-G-M1fhQOxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:67:77:9c:d4:c7:30:20:5e:1b:48:9b:20:55:ef:11:53:55: 40:a0:3c:b1:cb:cc:ab:af:47:2f:a9:e8:44:07:fd:6b:95:9a: 2b:5a:97:74:ba:49:ec:0f:68:56:40:c4:c9:fc:9b:02:ba:a7: 8b:69:68:a0:3e:45:30:5a:9f:ad:af:1c:4f:fa:7e:e8:f4:01: 0d:15:1b:8e:4f:37:af:94:53:e0:3b:79:1a:ef:ff:dc:f4:e1: f1:8a:ec:cd:e1:77:c4:7e:58:ae:f2:ec:48:17:53:d2:ea:36: 80:30:64:5a:8f:b0:21:53:ce:7e:c6:bd:86:76:34:05:56:48: bf:f0:cf:36:5d:3b:96:59:bd:73:9d:59:27:46:0d:ca:44:e1: 83:68:55:9c:2c:25:3c:2e:53:c3:a9:76:9f:77:d6:1a:f7:03: 65:e3:c9:e7:5b:03:42:f8:3b:87:97:4d:12:c6:97:8c:d4:6f: c5:34:d1:69:d4:bd:7a:21:f4:eb:0c:7b:61:08:ca:68:b5:4a: 2d:86:8d:27:2d:3d:fc:f6:32:2b:fc:2a:10:fe:88:37:5c:c5: a0:ff:1e:39:8a:98:d7:ce:95:a5:cb:23:0a:33:52:52:6a:02: 2a:43:9e:cb:74:a8:cc:6a:d6:e5:c6:cd:1e:42:aa:30:02:a8: 7f:c5:a7:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0QkMxMTAvBgNVBAUTKDE2ODQxNUMwQzEzNDAxQzBENzcxNTcxREY4NkY4Q0Q1 Rjg1MDNCMTQwHhcNMjUwNzE5MDIzNDMxWhcNMjUwNzI2MDIzNDMxWjAYMRYwFAYD VQQDEw02ODdiMDQzNy04YTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcDNNoAf3/1btFprCqcvgK/YDSLoWvq3mdxDfvjKiNDd1/FH8nOP4254kwkI gDBk98R7oOzVTaS+ogdrgw48qnpwyaRDafZci8pjdzA8fxj4vy+Zv2b8es1KJqyv LD6f5MxdhLo74IcewK8twxhKVStP/Mo0ZBik2zbS6FNajyn7hY7s4H0iQNZ0QuVz iddt6eBcYWK9BxOhDEi+umK8DCTN4vbHBjqmWaC+CQPu+rBQCGX3H3Tiar0B0PHB ov+sZt9Zc3F+y2wqtoqlpawdvIK6/SQnGOCygzSVoQ2g7WpGiV4iKMwUMvLBNV3u kpgsDv3c3qRW/4s6M0mBojpHGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHgPkfr 8uZDyt7cUJEH51G1lIx6MB8GA1UdIwQYMBaAFBaEFcDBNAHA13FXHfhvjNX4UDsU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTRCQy83RkQwMTY2QzVB MkYxMUVEQTE5RTVFNjFDNEY5QUUwMi9Gb1FWd01FMEFjRFhjVmNkLUctTTFmaFFP eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZvUVZ3TUUwQWNEWGNWY2QtRy1NMWZoUU94US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTRCQy83RkQwMTY2QzVBMkYxMUVEQTE5RTVFNjFDNEY5QUUwMi9Gb1FWd01FMEFj RFhjVmNkLUctTTFmaFFPeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkZ3ec1McwIF4bSJsgVe8RU1VAoDyxy8yrr0cvqehEB/1rlZorWpd0 uknsD2hWQMTJ/JsCuqeLaWigPkUwWp+trxxP+n7o9AENFRuOTzevlFPgO3ka7//c 9OHxiuzN4XfEfliu8uxIF1PS6jaAMGRaj7AhU85+xr2GdjQFVki/8M82XTuWWb1z nVknRg3KROGDaFWcLCU8LlPDqXafd9Ya9wNl48nnWwNC+DuHl00SxpeM1G/FNNFp 1L16IfTrDHthCMpotUotho0nLT389jIr/CoQ/og3XMWg/x45ipjXzpWlyyMKM1JS agIqQ57LdKjMatblxs0eQqowAqh/xacG -----END CERTIFICATE-----Generated at Sun Jul 20 11:44:22 2025 by rpki-client