$ rpki-client -vvf rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft File: 0dZcikMk4of26pFbOfXTYC0eN6Y.mft (raw, json) Hash identifier: 8kvCJyP++8wRQz74uRjSp8z9YlFbb64kZQwe+Bz72Mw= Subject key identifier: D8:54:8D:83:82:6D:00:C6:8D:EB:D0:9B:3E:58:8D:1E:30:CC:D2:D7 Authority key identifier: D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 Certificate issuer: /CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Certificate serial: 182B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft Manifest number: 1819 Signing time: Fri 18 Jul 2025 16:39:44 +0000 Manifest this update: Fri 18 Jul 2025 16:39:44 +0000 Manifest next update: Fri 25 Jul 2025 16:39:44 +0000 Files and hashes: 1: 0dZcikMk4of26pFbOfXTYC0eN6Y.crl (hash: wlVIET/PfavcRWMn5KSmh4LbI5HZJdvUJmO4Au/AGUg=) 2: 8B2EE9667A0911EE934F1262C4F9AE02.roa (hash: c58kYquiR7PhXwHG1m2k+88ex1+jC31dtd+q7AHBr2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6187 (0x182b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91743EF, serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Validity Not Before: Jul 18 16:39:44 2025 GMT Not After : Jul 25 16:39:44 2025 GMT Subject: CN=687a78d0-1584 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7d:d2:a7:1e:10:40:7a:ee:30:e3:1d:b4:74: 31:f7:04:25:c1:5f:e8:5f:11:8b:34:40:1e:fd:96: c6:5d:61:14:ed:d6:31:9c:2b:63:ee:6d:dc:b2:1c: 78:fe:87:20:2b:2d:ea:f3:aa:86:af:1d:20:59:40: 5f:30:ea:07:91:3d:98:16:fb:fb:fb:78:a5:f3:5f: 9e:c6:05:58:8f:63:8c:e6:80:be:77:b7:08:b3:eb: 1f:15:f0:d0:ea:af:b8:8d:bb:66:97:25:03:6f:e9: 32:0e:42:1a:16:9b:46:3a:9f:e7:d4:84:5c:83:31: c9:08:a4:9b:87:86:13:f8:8f:f2:a4:c1:56:71:74: 9d:24:47:bb:b1:80:22:aa:47:38:8a:e1:a7:c6:b5: 4b:15:b8:b3:3b:e5:2e:03:a9:77:4e:ae:f4:64:8e: 38:34:f9:78:d2:fb:ce:88:5a:1b:f1:f7:00:4a:5c: 64:c8:7d:05:6c:40:c7:00:4f:96:73:e8:52:e9:2d: 5e:50:e6:62:8a:0b:2c:46:ab:05:be:67:f3:a6:c1: 60:53:8a:a3:75:37:81:09:4f:83:b2:d4:d6:60:76: 3a:f9:91:02:42:a0:c4:01:5a:4c:11:0d:2a:60:96: 29:1e:09:77:c4:0d:41:16:28:f4:d4:37:09:94:20: 8d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:54:8D:83:82:6D:00:C6:8D:EB:D0:9B:3E:58:8D:1E:30:CC:D2:D7 X509v3 Authority Key Identifier: keyid:D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:8b:8b:08:fe:39:85:59:5d:26:e1:26:08:ba:1e:d0:95:25: d9:58:1a:ae:a3:82:87:3d:b5:98:6b:c9:0a:e0:3c:16:b2:7a: e1:d3:4b:ef:bb:9f:c6:39:45:d0:b6:5c:5b:5a:98:7f:7b:06: 68:3f:08:ad:93:1b:72:14:00:72:2c:bd:44:2b:2d:21:3e:04: 6b:3b:d3:68:1a:93:b2:23:25:b2:57:b1:8a:57:f3:6b:e3:34: be:3d:2b:3b:0e:0a:98:62:47:c3:0f:dd:a4:90:71:47:22:56: 20:8d:2f:31:c3:42:dd:00:3e:5a:db:4e:29:2d:5f:e8:33:60: 0e:07:02:70:58:e8:a2:03:99:87:60:2c:18:fc:2b:89:89:34: 6c:b0:06:bc:fe:ed:11:f4:50:70:52:67:10:76:97:06:a7:cb: b2:5a:46:8c:19:34:aa:b8:57:38:d6:50:b0:25:f2:e8:0f:e5: 5c:24:71:04:c0:01:92:96:74:14:f7:af:8f:65:cb:7b:6f:96: 48:ed:b0:8f:74:df:78:54:e5:de:e3:3d:e9:52:52:17:ed:bb: de:9c:96:d8:56:af:1d:35:40:40:25:cb:fa:d3:e1:45:36:30: 3c:51:58:fc:de:16:9d:6a:ef:fb:5f:cf:2f:81:82:5c:ca:ef: 64:2a:6b:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzRUYxMTAvBgNVBAUTKEQxRDY1QzhBNDMyNEUyODdGNkVBOTE1QjM5RjVEMzYw MkQxRTM3QTYwHhcNMjUwNzE4MTYzOTQ0WhcNMjUwNzI1MTYzOTQ0WjAYMRYwFAYD VQQDEw02ODdhNzhkMC0xNTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX3Spx4QQHruMOMdtHQx9wQlwV/oXxGLNEAe/ZbGXWEU7dYxnCtj7m3cshx4 /ocgKy3q86qGrx0gWUBfMOoHkT2YFvv7+3il81+exgVYj2OM5oC+d7cIs+sfFfDQ 6q+4jbtmlyUDb+kyDkIaFptGOp/n1IRcgzHJCKSbh4YT+I/ypMFWcXSdJEe7sYAi qkc4iuGnxrVLFbizO+UuA6l3Tq70ZI44NPl40vvOiFob8fcASlxkyH0FbEDHAE+W c+hS6S1eUOZiigssRqsFvmfzpsFgU4qjdTeBCU+DstTWYHY6+ZECQqDEAVpMEQ0q YJYpHgl3xA1BFij01DcJlCCNcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhUjYOC bQDGjevQmz5YjR4wzNLXMB8GA1UdIwQYMBaAFNHWXIpDJOKH9uqRWzn102AtHjem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDNFRi9FNkFCQjAxMEJB NDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRvZjI2cEZiT2ZYVFlDMGVO NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBkWmNpa01rNG9mMjZwRmJPZlhUWUMwZU42WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDNFRi9FNkFCQjAxMEJBNDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRv ZjI2cEZiT2ZYVFlDMGVONlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbi4sI/jmFWV0m4SYIuh7QlSXZWBquo4KHPbWYa8kK4DwWsnrh00vv u5/GOUXQtlxbWph/ewZoPwitkxtyFAByLL1EKy0hPgRrO9NoGpOyIyWyV7GKV/Nr 4zS+PSs7DgqYYkfDD92kkHFHIlYgjS8xw0LdAD5a204pLV/oM2AOBwJwWOiiA5mH YCwY/CuJiTRssAa8/u0R9FBwUmcQdpcGp8uyWkaMGTSquFc41lCwJfLoD+VcJHEE wAGSlnQU96+PZct7b5ZI7bCPdN94VOXe4z3pUlIX7bvenJbYVq8dNUBAJcv60+FF NjA8UVj83hadau/7X88vgYJcyu9kKmug -----END CERTIFICATE-----Generated at Sun Jul 20 06:10:09 2025 by rpki-client