$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft File: _nQHcdbqABLeOHBW-Iy-3TbEqGA.mft (raw, json) Hash identifier: K4mDuzBaXb2SAKuqMGesIEU+XMfFx2GdwojPC/UJESA= Subject key identifier: 1D:0E:F5:71:B4:2A:3E:ED:1A:BC:6D:80:3D:25:5F:08:7C:25:B4:08 Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 Certificate issuer: /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft Manifest number: 018F Signing time: Mon 21 Jul 2025 03:33:30 +0000 Manifest this update: Mon 21 Jul 2025 03:33:29 +0000 Manifest next update: Mon 28 Jul 2025 03:33:29 +0000 Files and hashes: 1: _nQHcdbqABLeOHBW-Iy-3TbEqGA.crl (hash: rSsi+aZ3JRyHjt5fSAu1VqEGEcI5dN1h5eKkh1I7e2Y=) 2: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (hash: eMm1aATtYTxr8yulbbTqFy3KIRD0+Hc1f6QKDsCg/8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889A4, serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Validity Not Before: Jul 21 03:33:29 2025 GMT Not After : Jul 28 03:33:29 2025 GMT Subject: CN=687db50a-3a51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:df:3d:c9:6b:c9:99:f1:c2:f1:92:c8:a1:6f: ed:d0:4d:05:77:99:28:75:ed:27:8e:16:8d:ae:22: a4:87:ce:07:30:9c:c4:9b:84:cd:24:31:c0:60:04: a8:23:82:32:49:d0:3d:e5:fe:1b:b3:99:4d:ad:6a: ea:fb:3c:3d:87:65:90:9a:8b:5c:1b:f9:19:34:7d: 30:68:ac:73:3a:84:75:0d:d4:50:2c:10:54:ee:3f: bb:2b:8c:e1:d2:52:54:3c:2f:7d:f6:e3:59:5e:1d: 05:d4:0f:11:5c:74:7e:9c:9a:02:80:cc:2f:da:09: 38:01:87:2b:0c:28:20:9c:8b:9a:44:2e:c5:e5:be: 36:8f:df:03:67:26:b4:ef:2a:9f:b1:72:4d:38:e7: 5c:92:07:04:cb:42:cb:5e:b2:0a:f4:00:bd:8c:d2: 22:eb:4b:6a:84:f3:1a:82:68:eb:e8:de:ae:80:07: 9d:98:b7:34:db:70:aa:74:76:02:4d:7e:10:e0:4b: 49:3f:61:d2:44:1d:23:71:33:42:5b:f3:63:52:4a: 0b:04:04:34:22:2c:a9:81:f9:ae:8e:b8:23:92:57: 03:cb:51:dc:ee:82:c7:e6:c9:70:15:e2:bd:1f:90: 40:60:4f:6c:c5:37:5b:03:03:77:49:26:56:6a:71: bc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0E:F5:71:B4:2A:3E:ED:1A:BC:6D:80:3D:25:5F:08:7C:25:B4:08 X509v3 Authority Key Identifier: keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:15:47:21:62:65:7e:d8:3e:37:ab:19:b9:d9:97:92:f2:74: bb:4a:7f:b0:84:de:8a:7b:16:dc:7b:23:21:36:e7:a7:44:2d: 7d:5a:d4:33:79:0e:53:24:bf:b3:58:a6:59:6f:e1:ae:56:b2: d1:b7:53:e2:c4:ad:ef:4d:e4:22:e7:97:8b:21:a8:8a:0b:c4: c0:82:80:2e:f5:01:12:20:f4:8e:2d:42:1a:1c:ce:03:e9:24: 48:e3:2b:e5:70:48:45:4d:c4:8d:5a:32:25:72:31:20:69:ff: d4:c6:6f:0f:ec:36:8b:11:f1:c4:a7:b6:ba:1f:ac:66:0e:fb: d8:24:47:cf:22:86:92:3b:fb:d0:8c:16:70:72:62:94:f1:ab: 8c:6a:fc:78:32:46:b3:6e:b4:ad:51:da:80:d3:aa:09:e9:f0: 99:a9:4e:4c:c2:7b:de:0e:87:0a:ec:0a:49:03:5a:d3:05:2b: e7:c0:95:e4:86:61:6e:b1:62:7a:be:6a:d1:dc:c8:1b:61:ef: 99:8c:cc:aa:2f:e1:a4:7c:58:44:03:62:47:e7:bd:97:f4:b0: d9:2f:d5:23:90:21:00:5d:dc:47:2f:2e:8b:a6:86:30:77:29: 4b:80:84:c3:5d:a8:a6:8c:2c:1f:48:c2:d3:b5:aa:52:b8:18: b3:84:3b:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE MzZDNEE4NjAwHhcNMjUwNzIxMDMzMzI5WhcNMjUwNzI4MDMzMzI5WjAYMRYwFAYD VQQDEw02ODdkYjUwYS0zYTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3t89yWvJmfHC8ZLIoW/t0E0Fd5kode0njhaNriKkh84HMJzEm4TNJDHAYASo I4IySdA95f4bs5lNrWrq+zw9h2WQmotcG/kZNH0waKxzOoR1DdRQLBBU7j+7K4zh 0lJUPC999uNZXh0F1A8RXHR+nJoCgMwv2gk4AYcrDCggnIuaRC7F5b42j98DZya0 7yqfsXJNOOdckgcEy0LLXrIK9AC9jNIi60tqhPMagmjr6N6ugAedmLc023CqdHYC TX4Q4EtJP2HSRB0jcTNCW/NjUkoLBAQ0IiypgfmujrgjklcDy1Hc7oLH5slwFeK9 H5BAYE9sxTdbAwN3SSZWanG83QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0O9XG0 Kj7tGrxtgD0lXwh8JbQIMB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0 RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlBNC8yN0EyNUE1NjA0RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFC TGVPSEJXLUl5LTNUYkVxR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALFUchYmV+2D43qxm52ZeS8nS7Sn+whN6KexbceyMhNuenRC19WtQz eQ5TJL+zWKZZb+GuVrLRt1PixK3vTeQi55eLIaiKC8TAgoAu9QESIPSOLUIaHM4D 6SRI4yvlcEhFTcSNWjIlcjEgaf/Uxm8P7DaLEfHEp7a6H6xmDvvYJEfPIoaSO/vQ jBZwcmKU8auMavx4MkazbrStUdqA06oJ6fCZqU5MwnveDocK7ApJA1rTBSvnwJXk hmFusWJ6vmrR3MgbYe+ZjMyqL+GkfFhEA2JH572X9LDZL9UjkCEAXdxHLy6LpoYw dylLgITDXaimjCwfSMLTtapSuBizhDtB -----END CERTIFICATE-----Generated at Tue Jul 22 05:10:07 2025 by rpki-client