$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft File: nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft (raw, json) Hash identifier: o1EJwH5s82auYc8NyJQEu0yKiFQ+OQla0EhW8VaQmAA= Subject key identifier: 3C:B6:94:1F:9D:C6:29:A6:F4:2D:2A:1E:02:11:AD:1E:E3:C6:3F:4B Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft Manifest number: 04E9 Signing time: Sat 19 Jul 2025 00:11:37 +0000 Manifest this update: Sat 19 Jul 2025 00:11:36 +0000 Manifest next update: Sat 26 Jul 2025 00:11:36 +0000 Files and hashes: 1: nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl (hash: 4ZiVRgmS6YZZu87kRyNKoqnL4tfShe2u5oDRG0DyiuE=) 2: 02B1B85C4FF011F0A7613D29C4F9AE02.roa (hash: MPdYxKLEgsHSE3gXMmZ+N+jD7YVn+vMQFPEzoJGTHe0=) 3: D6250A324B6C11F094D55267C4F9AE02.roa (hash: 5vZdk5y5hH66cnJuPPqq7B41lwttMEzlOwASta3uWrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Jul 19 00:11:36 2025 GMT Not After : Jul 26 00:11:36 2025 GMT Subject: CN=687ae2b8-00e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:0b:91:37:ce:8d:34:bc:0b:bd:55:6d:dc:9a: 5e:50:92:76:cd:ff:b6:c0:f5:f9:3b:5f:28:75:57: e5:18:03:ad:a0:16:c3:b8:9b:a9:b5:0b:80:5a:98: 06:72:be:c4:48:17:4e:f2:f1:e7:3c:99:4b:a9:e5: ff:d9:d6:31:50:59:15:c6:e5:96:fd:cb:23:b4:87: 32:29:97:7f:3f:e1:c6:1c:12:7c:3b:64:20:0e:94: 4d:66:52:29:dc:04:88:34:13:74:52:e5:fc:c3:28: 0e:6b:10:56:b6:0a:94:a3:fc:bf:b7:55:9a:06:65: 12:02:a7:f3:29:95:61:85:bd:be:a5:a5:8b:46:c6: 66:17:ea:0e:0c:ed:3f:36:b7:dc:70:88:da:4c:84: f2:ab:05:73:4a:87:12:69:03:82:e9:c7:6f:62:64: 13:31:62:bc:28:09:2a:ba:88:26:08:57:92:95:0b: 5c:03:f4:02:08:d3:b8:3b:dc:52:e6:b7:fa:7f:b7: 67:3c:ec:af:a9:f2:cd:25:29:b9:92:43:f8:fc:b3: 3b:b2:ab:4c:1f:91:55:c6:62:5c:18:d2:c5:86:4e: d2:22:e2:1d:2c:39:35:b0:db:80:8e:a0:03:2a:3a: 42:b7:f1:ac:fe:5d:9a:be:35:e2:c8:a0:44:1c:51: 8d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B6:94:1F:9D:C6:29:A6:F4:2D:2A:1E:02:11:AD:1E:E3:C6:3F:4B X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:06:3f:62:78:23:31:99:62:94:c9:71:37:8e:6c:e8:22:11: 89:6c:70:7d:d4:66:87:63:df:3b:57:8c:5e:24:26:00:67:a3: 67:9e:e5:e8:d3:82:13:42:88:1c:83:a7:dc:4d:b4:a6:1f:4a: d5:65:d7:bc:d8:75:fd:13:c9:97:24:a6:cc:bc:9b:eb:cf:12: 94:9f:37:51:70:c1:fd:d6:a7:75:50:4f:26:2c:17:e7:00:59: ba:8e:67:6d:4e:3c:c0:a8:fd:61:6d:5a:6d:8a:b4:fd:53:46: f3:17:fd:81:5f:e8:98:f6:fc:81:fc:a6:47:8a:a3:84:81:71: 05:c2:e6:fe:82:29:94:52:de:4f:b5:5d:86:dc:9e:de:c4:bb: 11:c6:99:62:4b:c0:6e:39:1b:5f:12:77:b2:13:31:ed:9f:be: 25:54:d9:b2:73:fb:c8:f6:38:0f:25:52:01:31:7b:65:f4:c0: 9b:7b:e9:bb:36:6f:7f:8a:02:e8:73:6e:80:4d:9d:07:cf:53: 46:22:b7:dd:f4:21:de:de:27:29:e5:b1:f4:fa:50:cf:e8:1c: 03:28:6c:e5:b1:93:ff:10:36:fb:32:d4:ce:02:f7:45:b4:4a: 75:fb:ee:4d:54:96:59:36:01:7d:fe:b9:b2:3f:86:77:e7:5d: 8b:7d:0b:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUwNzE5MDAxMTM2WhcNMjUwNzI2MDAxMTM2WjAYMRYwFAYD VQQDEw02ODdhZTJiOC0wMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1guRN86NNLwLvVVt3JpeUJJ2zf+2wPX5O18odVflGAOtoBbDuJuptQuAWpgG cr7ESBdO8vHnPJlLqeX/2dYxUFkVxuWW/csjtIcyKZd/P+HGHBJ8O2QgDpRNZlIp 3ASINBN0UuX8wygOaxBWtgqUo/y/t1WaBmUSAqfzKZVhhb2+paWLRsZmF+oODO0/ NrfccIjaTITyqwVzSocSaQOC6cdvYmQTMWK8KAkquogmCFeSlQtcA/QCCNO4O9xS 5rf6f7dnPOyvqfLNJSm5kkP4/LM7sqtMH5FVxmJcGNLFhk7SIuIdLDk1sNuAjqAD KjpCt/Gs/l2avjXiyKBEHFGNGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDy2lB+d ximm9C0qHgIRrR7jxj9LMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhENC8yRjU4RTQ3MjJFNTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0 VTVaNURLY3lQVG9KQnY3WUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEBj9ieCMxmWKUyXE3jmzoIhGJbHB91GaHY987V4xeJCYAZ6NnnuXo 04ITQogcg6fcTbSmH0rVZde82HX9E8mXJKbMvJvrzxKUnzdRcMH91qd1UE8mLBfn AFm6jmdtTjzAqP1hbVptirT9U0bzF/2BX+iY9vyB/KZHiqOEgXEFwub+gimUUt5P tV2G3J7exLsRxpliS8BuORtfEneyEzHtn74lVNmyc/vI9jgPJVIBMXtl9MCbe+m7 Nm9/igLoc26ATZ0Hz1NGIrfd9CHe3icp5bH0+lDP6BwDKGzlsZP/EDb7MtTOAvdF tEp1++5NVJZZNgF9/rmyP4Z3512LfQvh -----END CERTIFICATE-----Generated at Sun Jul 20 22:34:37 2025 by rpki-client