$ rpki-client -vvf rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft File: Sn0mxMvxZwAkXWf79pULcSkYmTk.mft (raw, json) Hash identifier: k0g4/iHhbWoi2czzElI9JealEJ1LTQWo8zaDlrlYzTM= Subject key identifier: 6E:6C:31:65:E1:80:0B:73:89:9E:29:8D:A6:AC:B6:DB:84:A8:71:B5 Authority key identifier: 4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 Certificate issuer: /CN=A91839CF/serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft Manifest number: 7C Signing time: Sat 19 Jul 2025 06:59:15 +0000 Manifest this update: Sat 19 Jul 2025 06:59:14 +0000 Manifest next update: Sat 26 Jul 2025 06:59:14 +0000 Files and hashes: 1: Sn0mxMvxZwAkXWf79pULcSkYmTk.crl (hash: 5UdyRv0aFNOo9DOqDEguRSitTELo/UkmZqFp3nNMnTw=) 2: 305EB30EA98D11EF8C023466C4F9AE02.roa (hash: mTvWjDqRpjoE4gToiz3x8YclXADkkIN+m00HGh0rTzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91839CF, serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Validity Not Before: Jul 19 06:59:14 2025 GMT Not After : Jul 26 06:59:14 2025 GMT Subject: CN=687b4243-dad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:c0:77:4c:04:f9:00:ed:c8:a2:b7:32:94: b5:53:0e:fd:07:18:4f:dc:dd:bf:9b:06:34:7c:4b: b2:cc:d6:e2:f9:17:73:38:fe:9f:fa:ad:1e:7f:58: 53:c6:37:c1:e8:2b:91:88:79:61:a2:f9:aa:d2:a1: fc:2d:14:4e:c0:92:af:87:78:04:45:7e:b4:7c:eb: c5:d2:21:0b:57:a5:42:74:de:9b:2a:a4:ea:7b:fa: 04:55:4e:61:8c:80:32:b9:bc:05:76:df:81:36:4d: 80:5a:37:05:a6:fe:8b:ff:28:5e:37:e2:e7:ae:6f: a9:ce:ed:8a:b2:fc:1d:77:d6:21:ed:7b:69:ce:16: 83:d0:3a:26:bb:ab:a8:61:36:ef:a4:2c:c0:eb:34: 63:e5:48:63:ce:7a:4f:64:f9:7d:ec:f5:82:04:d8: c5:c2:39:c3:26:34:20:42:53:25:ae:f0:2a:ac:ea: 3c:fb:9e:84:57:0c:5c:85:0f:f6:1d:66:34:34:19: 52:23:bc:fd:eb:74:a9:ae:cb:97:23:d5:9a:69:1f: 22:61:c5:4b:54:b7:1b:72:49:e5:38:89:af:7a:8a: 06:9d:2d:90:1e:76:5d:6f:4b:d0:ea:71:1a:29:25: d7:0c:83:b9:18:0b:ac:f4:95:ca:9e:2d:a9:3e:98: ed:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6C:31:65:E1:80:0B:73:89:9E:29:8D:A6:AC:B6:DB:84:A8:71:B5 X509v3 Authority Key Identifier: keyid:4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:da:33:18:6a:6b:49:6b:b0:77:f7:d3:78:04:18:ea:27:c7: 83:18:18:d5:9d:02:d0:8e:2d:39:02:1f:9a:89:35:85:b4:24: 22:d5:98:8f:94:e0:73:e9:a7:b5:d8:15:a5:84:9e:03:e6:56: 31:f2:53:0b:16:eb:8f:5b:7c:45:25:59:4a:a6:f9:58:bd:a4: 26:90:1c:10:1f:e8:c0:bb:09:5e:b4:59:3f:29:b9:7b:91:e5: 4f:bc:b3:d2:be:f0:03:b6:42:61:a5:c9:d4:7a:e2:49:2f:42: 36:ad:26:54:c8:90:7e:0e:9a:2e:f8:03:00:f0:68:0d:66:8f: 49:a0:6f:e8:fb:60:fa:da:ce:0d:5f:d1:b6:4b:be:c3:fd:ee: d8:a6:78:1a:c0:80:0b:fd:24:cf:e8:8f:2b:79:00:2e:c1:90: 87:3b:64:db:3d:71:28:de:d7:ca:97:22:7e:e9:94:12:cf:74: 58:b6:87:de:19:6d:8f:a9:24:4b:65:2a:d2:1a:5d:31:ea:fa: 97:5a:e6:ae:14:f9:af:d7:84:be:21:af:b7:d7:1e:0a:16:0b: d3:1b:a8:56:7c:a4:38:ab:d3:33:61:78:16:2c:11:b1:98:25: e6:ab:21:93:2b:da:63:c7:f2:48:87:c2:c2:68:d6:c5:6f:59: d4:51:e9:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzlDRjExMC8GA1UEBRMoNEE3RDI2QzRDQkYxNjcwMDI0NUQ2N0ZCRjY5NTBCNzEy OTE4OTkzOTAeFw0yNTA3MTkwNjU5MTRaFw0yNTA3MjYwNjU5MTRaMBgxFjAUBgNV BAMTDTY4N2I0MjQzLWRhZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB2sB3TAT5AO3IorcylLVTDv0HGE/c3b+bBjR8S7LM1uL5F3M4/p/6rR5/WFPG N8HoK5GIeWGi+arSofwtFE7Akq+HeARFfrR868XSIQtXpUJ03psqpOp7+gRVTmGM gDK5vAV234E2TYBaNwWm/ov/KF434ueub6nO7Yqy/B131iHte2nOFoPQOia7q6hh Nu+kLMDrNGPlSGPOek9k+X3s9YIE2MXCOcMmNCBCUyWu8Cqs6jz7noRXDFyFD/Yd ZjQ0GVIjvP3rdKmuy5cj1ZppHyJhxUtUtxtySeU4ia96igadLZAedl1vS9DqcRop JdcMg7kYC6z0lcqeLak+mO1PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbmwxZeGA C3OJnimNpqy224SocbUwHwYDVR0jBBgwFoAUSn0mxMvxZwAkXWf79pULcSkYmTkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzOUNGLzRERjJCRTUyQTk4 QzExRUZCQTA2ODg2NEM0RjlBRTAyL1NuMG14TXZ4WndBa1hXZjc5cFVMY1NrWW1U ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU24wbXhNdnhad0FrWFdmNzlwVUxjU2tZbVRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz OUNGLzRERjJCRTUyQTk4QzExRUZCQTA2ODg2NEM0RjlBRTAyL1NuMG14TXZ4WndB a1hXZjc5cFVMY1NrWW1Uay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALjaMxhqa0lrsHf303gEGOonx4MYGNWdAtCOLTkCH5qJNYW0JCLVmI+U 4HPpp7XYFaWEngPmVjHyUwsW649bfEUlWUqm+Vi9pCaQHBAf6MC7CV60WT8puXuR 5U+8s9K+8AO2QmGlydR64kkvQjatJlTIkH4Omi74AwDwaA1mj0mgb+j7YPrazg1f 0bZLvsP97timeBrAgAv9JM/ojyt5AC7BkIc7ZNs9cSje18qXIn7plBLPdFi2h94Z bY+pJEtlKtIaXTHq+pda5q4U+a/XhL4hr7fXHgoWC9MbqFZ8pDir0zNheBYsEbGY JearIZMr2mPH8kiHwsJo1sVvWdRR6fo= -----END CERTIFICATE-----Generated at Sun Jul 20 06:16:09 2025 by rpki-client