$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft File: b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json) Hash identifier: jXSiWAbULqK68CQIBJEaMGrCKiqLo9nWYBjgd+7+q8w= Subject key identifier: 99:D0:AD:65:04:F9:59:0D:31:02:55:71:4F:E3:E4:EB:BA:70:F7:82 Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 Certificate issuer: /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft Manifest number: 7F Signing time: Wed 23 Jul 2025 07:02:36 +0000 Manifest this update: Wed 23 Jul 2025 07:02:35 +0000 Manifest next update: Wed 30 Jul 2025 07:02:35 +0000 Files and hashes: 1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: BLufFAk62jxbq4GnH6n6l8c2lNKffzNCF/L7keI87a8=) 2: 31E9AEC6E30411EFBC0C3B2CC4F9AE02.roa (hash: iUCXkP/k8vFDK+xe4w0gGSkxJOnd/FNj32EaA1KJbt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Validity Not Before: Jul 23 07:02:35 2025 GMT Not After : Jul 30 07:02:35 2025 GMT Subject: CN=6880890b-522f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e1:5a:70:18:bf:a8:0d:22:28:80:db:a2:29: bf:c8:50:d6:d9:3f:c9:64:ac:69:6c:7e:7d:df:4d: 9e:be:de:f7:20:ad:69:fa:d0:70:03:62:96:54:4c: 75:37:33:13:69:8e:45:59:80:85:3d:24:d3:6a:e5: 21:39:ef:1f:42:86:7a:e0:59:64:d6:1c:14:ea:22: 9c:5c:84:ce:72:71:70:81:e9:f2:d0:ff:9b:94:27: c4:b3:98:14:27:4e:24:5b:13:69:1f:67:ee:73:cf: 01:76:7c:66:24:1d:b0:ba:ec:c7:da:86:d1:21:75: 70:f2:df:36:06:8a:3f:c1:00:dd:9c:7d:55:c3:43: 3a:12:98:1f:bf:c7:98:65:39:3a:70:db:2c:20:6f: b6:98:49:30:a2:b9:05:bd:d1:df:c8:1b:3a:87:16: de:2b:92:23:59:07:6d:22:75:34:a8:f0:f7:18:7d: 57:52:92:a3:02:fa:09:34:ee:29:a1:e9:1f:56:fd: aa:bf:15:cd:b3:68:ff:ac:54:53:7b:48:9b:b1:6d: f1:73:59:1d:bc:d7:56:f5:ab:c0:81:95:6a:7c:83: c9:51:21:64:55:3a:29:95:db:3c:bd:93:e9:ce:93: bc:90:86:2b:ad:03:37:84:d7:f0:27:dd:44:9c:1c: 4b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D0:AD:65:04:F9:59:0D:31:02:55:71:4F:E3:E4:EB:BA:70:F7:82 X509v3 Authority Key Identifier: keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d2:02:81:7f:61:8a:8d:77:2f:70:18:4c:04:8f:f9:cf:a7: 4c:3e:a4:74:f9:41:03:b2:71:bc:75:41:ea:0c:6e:07:7c:3a: 47:71:99:0c:50:58:f6:3b:e6:6d:ef:9a:fe:9c:7c:a8:25:f8: bf:4c:f5:86:85:e4:0b:6d:55:c8:6d:03:95:ca:e0:07:9f:12: 46:72:a7:20:33:f8:5a:fb:10:b9:95:1d:23:3b:1a:56:c9:48: f1:d6:af:b4:ba:ed:aa:48:31:6b:49:3c:3a:4e:4f:68:2e:f2: 6c:0c:1e:53:fa:7f:84:d4:d8:f0:d8:c4:c8:c7:ca:db:6d:89: 58:e0:c0:a9:35:98:63:85:a5:5d:22:58:74:83:53:c0:d8:8c: c0:ab:b9:0a:df:0b:0f:cc:08:89:ff:a8:33:4e:49:a7:8c:b5: a6:16:aa:db:95:5b:04:77:a5:7d:22:46:9a:73:fd:e7:1a:d1: 2c:a4:f8:bc:29:45:1b:d6:58:01:62:5a:62:2b:50:4d:44:1e: ac:bf:0a:5e:26:25:26:69:64:c8:c9:5f:fe:57:3a:25:bf:3d: a2:ab:ac:a6:aa:31:55:a0:08:98:f9:29:5a:e5:ec:06:c4:32: a5:2c:22:24:4f:21:a6:41:50:cb:f4:d6:56:ac:d9:c8:23:99: 2e:a5:eb:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2RTQxMTAvBgNVBAUTKDZGN0U1OEQwODk2Mzg5RjdFN0ZFNEU4Nzk1QUE1NTVE NUM1NTUxODgwHhcNMjUwNzIzMDcwMjM1WhcNMjUwNzMwMDcwMjM1WjAYMRYwFAYD VQQDEw02ODgwODkwYi01MjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuFacBi/qA0iKIDboim/yFDW2T/JZKxpbH59302evt73IK1p+tBwA2KWVEx1 NzMTaY5FWYCFPSTTauUhOe8fQoZ64Flk1hwU6iKcXITOcnFwgeny0P+blCfEs5gU J04kWxNpH2fuc88BdnxmJB2wuuzH2obRIXVw8t82Boo/wQDdnH1Vw0M6Epgfv8eY ZTk6cNssIG+2mEkworkFvdHfyBs6hxbeK5IjWQdtInU0qPD3GH1XUpKjAvoJNO4p oekfVv2qvxXNs2j/rFRTe0ibsW3xc1kdvNdW9avAgZVqfIPJUSFkVToplds8vZPp zpO8kIYrrQM3hNfwJ91EnBxLZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnQrWUE +VkNMQJVcU/j5Ou6cPeCMB8GA1UdIwQYMBaAFG9+WNCJY4n35/5Oh5WqVV1cVVGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zQUJBODBBQUE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9iMzVZMElsamlmZm5fazZIbGFwVlhWeFZV WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzNVkwSWxqaWZmbl9rNkhsYXBWWFZ4VlVZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zQUJBODBBQUE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9iMzVZMElsamlm Zm5fazZIbGFwVlhWeFZVWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe0gKBf2GKjXcvcBhMBI/5z6dMPqR0+UEDsnG8dUHqDG4HfDpHcZkM UFj2O+Zt75r+nHyoJfi/TPWGheQLbVXIbQOVyuAHnxJGcqcgM/ha+xC5lR0jOxpW yUjx1q+0uu2qSDFrSTw6Tk9oLvJsDB5T+n+E1Njw2MTIx8rbbYlY4MCpNZhjhaVd Ilh0g1PA2IzAq7kK3wsPzAiJ/6gzTkmnjLWmFqrblVsEd6V9Ikaac/3nGtEspPi8 KUUb1lgBYlpiK1BNRB6svwpeJiUmaWTIyV/+Vzolvz2iq6ymqjFVoAiY+Sla5ewG xDKlLCIkTyGmQVDL9NZWrNnII5kupeuv -----END CERTIFICATE-----Generated at Wed Jul 23 12:19:50 2025 by rpki-client