$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: FYcyELISAxwYRmnE5X7pmAgaaomnGbgQg8L7FZ3RxxM= Subject key identifier: 2C:4A:AA:60:9B:82:03:DE:D6:37:3F:0F:42:7C:4B:73:C0:C1:5B:33 Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 079D Signing time: Fri 18 Jul 2025 21:36:44 +0000 Manifest this update: Fri 18 Jul 2025 21:36:43 +0000 Manifest next update: Fri 25 Jul 2025 21:36:43 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: NrkoJ+2jISNt0kglLZrrd+P4JX8m9pouVShdoTo5V9c=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:36:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Jul 18 21:36:43 2025 GMT Not After : Jul 25 21:36:43 2025 GMT Subject: CN=687abe6b-26d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:04:df:b9:5a:1c:b0:d9:e8:27:c3:0e:47:f8: 51:56:de:18:8c:78:f7:0a:68:a2:34:91:04:52:c9: 29:b1:2b:48:a5:2b:fc:aa:5a:b4:52:8e:74:45:e6: af:5a:4e:21:3b:2a:9f:3c:fa:ac:a1:20:34:17:7f: eb:f9:de:e7:5e:dc:c8:41:69:cb:0f:6d:b6:b5:64: ca:7a:42:09:5a:c6:59:1b:59:03:bf:9c:f4:1b:85: 83:d2:fc:b9:6e:ad:0a:38:0d:b0:5a:a5:ed:be:ec: f8:40:66:e6:58:b8:93:22:93:42:ad:13:b2:64:ea: 0c:c3:c5:ab:20:7c:00:15:b9:02:58:c6:84:86:46: d0:6b:7b:7c:af:0a:48:c8:05:20:54:55:19:f1:66: b2:29:24:8b:50:9a:76:f6:7e:2e:d7:8f:60:a2:28: 7a:33:51:d5:94:dd:9e:f3:78:65:65:88:31:b1:b0: c6:42:50:13:7a:30:56:e8:75:76:89:ac:67:6c:a8: 49:44:e2:8f:10:63:bf:3a:1e:de:9e:6a:1f:39:c3: 31:ad:09:e3:ae:56:df:a4:31:37:b8:12:75:d1:21: 40:33:b5:26:d4:cb:bb:38:a2:b8:45:d7:e3:3c:3b: 07:2e:92:1c:89:39:e2:49:8f:59:21:4d:f0:39:cf: 8f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4A:AA:60:9B:82:03:DE:D6:37:3F:0F:42:7C:4B:73:C0:C1:5B:33 X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:8c:14:e7:d0:1b:d8:5e:1b:74:5f:8a:79:49:be:5e:ab:f4: 75:d0:c5:86:33:b2:cb:fa:4f:2c:e1:c7:f9:ab:9f:68:de:95: eb:3b:b8:37:90:ff:17:f9:c6:b7:41:bc:6f:52:8e:f7:3d:06: 95:e9:ad:b1:63:d7:74:b3:48:4d:05:46:48:74:34:69:ec:7b: 2e:da:cb:7e:28:95:0c:d6:80:fb:90:cd:05:45:0e:82:61:87: c1:eb:d7:a4:5d:f7:6b:e8:4f:0a:e8:78:fb:d1:b3:06:11:65: d5:dd:d0:5d:f3:01:bf:a3:b6:1d:22:8d:b9:60:43:ba:23:d8: 32:8e:93:8b:9f:da:39:63:cf:33:44:f0:77:ad:e9:40:fd:4b: c9:14:3f:65:ed:a3:ca:f2:ac:7b:45:71:38:f0:50:b2:99:cb: ea:61:ec:77:0d:d1:90:6c:22:88:19:d5:d1:35:71:74:7f:c1: 89:c9:eb:41:61:3d:56:ff:75:5a:e5:ae:ad:2a:b2:67:8a:7c: b5:4a:55:83:b9:9b:28:39:24:dc:40:eb:82:c2:9d:d4:ba:1d: e2:6e:f7:42:0c:01:80:0b:f8:00:85:1e:3d:d1:5f:9e:6b:71: 2b:1e:28:05:67:aa:ae:86:05:e4:8a:a9:da:8f:c1:50:c2:33: d9:ff:6d:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwNzE4MjEzNjQzWhcNMjUwNzI1MjEzNjQzWjAYMRYwFAYD VQQDEw02ODdhYmU2Yi0yNmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ATfuVocsNnoJ8MOR/hRVt4YjHj3CmiiNJEEUskpsStIpSv8qlq0Uo50Reav Wk4hOyqfPPqsoSA0F3/r+d7nXtzIQWnLD222tWTKekIJWsZZG1kDv5z0G4WD0vy5 bq0KOA2wWqXtvuz4QGbmWLiTIpNCrROyZOoMw8WrIHwAFbkCWMaEhkbQa3t8rwpI yAUgVFUZ8WayKSSLUJp29n4u149goih6M1HVlN2e83hlZYgxsbDGQlATejBW6HV2 iaxnbKhJROKPEGO/Oh7enmofOcMxrQnjrlbfpDE3uBJ10SFAM7Um1Mu7OKK4Rdfj PDsHLpIciTniSY9ZIU3wOc+PeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxKqmCb ggPe1jc/D0J8S3PAwVszMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9jBTn0BvYXht0X4p5Sb5eq/R10MWGM7LL+k8s4cf5q59o3pXrO7g3 kP8X+ca3QbxvUo73PQaV6a2xY9d0s0hNBUZIdDRp7Hsu2st+KJUM1oD7kM0FRQ6C YYfB69ekXfdr6E8K6Hj70bMGEWXV3dBd8wG/o7YdIo25YEO6I9gyjpOLn9o5Y88z RPB3relA/UvJFD9l7aPK8qx7RXE48FCymcvqYex3DdGQbCKIGdXRNXF0f8GJyetB YT1W/3Va5a6tKrJniny1SlWDuZsoOSTcQOuCwp3Uuh3ibvdCDAGAC/gAhR490V+e a3ErHigFZ6quhgXkiqnaj8FQwjPZ/22K -----END CERTIFICATE-----Generated at Sun Jul 20 22:40:19 2025 by rpki-client