$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: sg71Hvagfb8AjIrr8u6fUs+jymbTuuQM/e7nUilDLyo= Subject key identifier: 0F:54:1C:1A:73:20:12:97:E6:64:B3:F9:56:2D:F6:83:E2:86:35:DD Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 103B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 102B Signing time: Sun 20 Jul 2025 14:25:03 +0000 Manifest this update: Sun 20 Jul 2025 14:25:03 +0000 Manifest next update: Sun 27 Jul 2025 14:25:03 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: kvDNFFwXHwCECEFubs3k72GryM+OjKeHc+DGezOvR2k=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:25:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4155 (0x103b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Jul 20 14:25:03 2025 GMT Not After : Jul 27 14:25:03 2025 GMT Subject: CN=687cfc3f-bd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:03:59:d8:b1:79:28:24:7c:65:24:64:4b:42: 98:21:c2:ac:eb:a3:d8:a1:39:02:fe:3a:79:33:e0: d0:ca:0e:33:d3:47:bb:16:d0:db:83:39:2e:ca:f9: b6:ab:b4:9e:34:c8:bb:39:a5:19:5b:ac:bd:d2:a2: 2d:4a:98:8d:07:ae:6b:b7:5c:63:4b:c8:1e:36:d9: 92:3b:ab:05:d4:d3:8c:73:e1:18:69:6f:54:02:f4: a7:f9:d7:4a:14:ab:34:59:9d:9e:1d:b5:83:9c:d0: 52:8d:a9:a2:9a:52:d6:4a:d5:8e:80:54:cf:ef:22: d2:6e:eb:e2:88:1c:a1:f2:8a:b4:d0:ff:76:af:8f: 31:d0:cc:da:1b:08:82:e4:07:f7:13:94:04:ea:4d: 43:73:20:40:07:b7:fe:ce:61:61:9a:39:6b:36:6d: 1c:2f:82:7e:58:d1:fd:ab:02:f2:4b:8f:b1:85:5b: 29:0e:39:a0:a5:f2:19:6b:24:e7:85:19:b0:f4:25: 99:2b:0b:72:57:e8:5f:39:e4:2d:b5:b1:dd:2b:67: 78:ba:41:ff:6f:6e:de:d2:e5:74:5c:43:bf:1c:24: ce:f5:a5:20:aa:ba:29:23:67:ef:a7:03:a6:f0:a0: 2d:4a:36:6b:be:bc:97:f4:66:80:ea:71:df:0f:1d: 50:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:54:1C:1A:73:20:12:97:E6:64:B3:F9:56:2D:F6:83:E2:86:35:DD X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:47:d3:60:c1:bb:95:7f:28:bb:47:0e:c6:18:24:22:95:97: 74:9a:66:a1:28:7e:05:a1:ac:be:82:d1:a6:d0:5e:1d:68:ee: 67:fd:46:a5:c9:06:7f:dc:1a:d5:18:2f:26:f1:40:2c:39:42: 97:3f:31:d5:95:8c:5a:c7:ad:c9:a9:d6:5a:03:2e:87:e3:06: c7:3d:4b:5e:90:df:c8:bb:08:8c:e8:77:01:ce:36:9d:58:de: 1d:61:33:b0:2d:28:b7:d2:96:18:b0:32:02:b3:ef:66:73:24: 48:ea:99:79:62:af:29:5e:57:67:b9:33:f1:6b:f2:99:6c:9d: 51:cf:fd:61:72:99:7e:01:a4:d9:ce:93:9c:57:69:64:2d:7f: 62:f6:f1:09:77:73:0e:0a:0e:c7:93:6b:3d:5f:29:3f:7a:62: 29:0c:ab:32:7b:fe:f2:9b:06:9a:3a:66:11:b3:b0:41:f1:5b: e3:b2:fa:d6:9c:c9:4f:50:fc:d1:17:91:50:d4:cd:6a:6d:13: 47:0e:e3:4c:89:62:e2:03:68:ab:4c:ae:fc:99:1a:f4:3c:d6: ec:a1:5c:02:5d:6f:75:ca:f5:c0:d2:3d:f3:89:13:5d:26:a7: d6:d1:b2:19:69:e7:8d:87:e9:60:8d:24:60:76:8b:e8:e7:d7: bb:99:27:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwNzIwMTQyNTAzWhcNMjUwNzI3MTQyNTAzWjAYMRYwFAYD VQQDEw02ODdjZmMzZi1iZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gNZ2LF5KCR8ZSRkS0KYIcKs66PYoTkC/jp5M+DQyg4z00e7FtDbgzkuyvm2 q7SeNMi7OaUZW6y90qItSpiNB65rt1xjS8geNtmSO6sF1NOMc+EYaW9UAvSn+ddK FKs0WZ2eHbWDnNBSjamimlLWStWOgFTP7yLSbuviiByh8oq00P92r48x0MzaGwiC 5Af3E5QE6k1DcyBAB7f+zmFhmjlrNm0cL4J+WNH9qwLyS4+xhVspDjmgpfIZayTn hRmw9CWZKwtyV+hfOeQttbHdK2d4ukH/b27e0uV0XEO/HCTO9aUgqropI2fvpwOm 8KAtSjZrvryX9GaA6nHfDx1Q6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9UHBpz IBKX5mSz+VYt9oPihjXdMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHR9NgwbuVfyi7Rw7GGCQilZd0mmahKH4Foay+gtGm0F4daO5n/Ual yQZ/3BrVGC8m8UAsOUKXPzHVlYxax63JqdZaAy6H4wbHPUtekN/IuwiM6HcBzjad WN4dYTOwLSi30pYYsDICs+9mcyRI6pl5Yq8pXldnuTPxa/KZbJ1Rz/1hcpl+AaTZ zpOcV2lkLX9i9vEJd3MOCg7Hk2s9Xyk/emIpDKsye/7ymwaaOmYRs7BB8VvjsvrW nMlPUPzRF5FQ1M1qbRNHDuNMiWLiA2irTK78mRr0PNbsoVwCXW91yvXA0j3ziRNd JqfW0bIZaeeNh+lgjSRgdovo59e7mSfp -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:40 2025 by rpki-client