$ rpki-client -vvf rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft File: 1NF3merJyZYrMl_th_kwwurILK8.mft (raw, json) Hash identifier: 4z2Kvcwh9oQJuNF3fmMoAVzXtySWG1Z7yOwpYfzzmMg= Subject key identifier: 86:71:6B:C4:92:BC:13:2B:19:BC:A2:37:E2:2A:00:20:AE:6F:90:6C Authority key identifier: D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF Certificate issuer: /CN=A91970E2/serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Certificate serial: 1C0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft Manifest number: 1BEB Signing time: Sun 20 Jul 2025 16:15:39 +0000 Manifest this update: Sun 20 Jul 2025 16:15:39 +0000 Manifest next update: Sun 27 Jul 2025 16:15:39 +0000 Files and hashes: 1: 1NF3merJyZYrMl_th_kwwurILK8.crl (hash: ER42XcEEf+OCceveL9xGzuv0mt+LW8aI9dIjIS3abKI=) 2: ADB6934A9A4911E7857CA62FC4F9AE02.roa (hash: 7vSMEGE2WKILnDsupDw245nI6InVKo+5RlyNwkMHa0A=) 3: AC8124909A4911E7857CA62FC4F9AE02.roa (hash: gkf5l1306jNCZlXkzkzc37H/VOhptBWvvDD29cbTyo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7178 (0x1c0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91970E2, serialNumber=D4D17799EAC9C9962B325FED87F930C2EAC82CAF Validity Not Before: Jul 20 16:15:39 2025 GMT Not After : Jul 27 16:15:39 2025 GMT Subject: CN=687d162b-271e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6f:57:40:f6:82:f4:be:72:05:8c:b9:bb:4f: 05:77:59:d7:7f:3d:db:16:7d:26:73:a4:15:ac:bb: 7f:43:8e:6f:40:d5:d7:b7:91:71:54:ae:a3:43:67: 3f:9b:22:9e:49:7f:9a:c3:c1:16:0b:f4:aa:06:d1: 84:60:39:94:06:56:51:e3:7c:d9:3b:01:40:fb:aa: e2:af:d3:da:ab:0d:3a:ba:3b:3a:ae:04:7b:c5:5c: 87:b9:ec:93:62:ee:d7:ea:0e:50:a1:90:4c:a9:1a: 8c:89:c7:44:02:ae:2e:46:bf:a0:dd:a8:14:6f:46: 57:43:13:c1:40:eb:b2:40:87:f8:c1:70:11:92:9e: 27:9c:7b:7d:f6:36:7e:8a:05:93:be:14:16:eb:78: 81:83:a8:e7:62:bc:3d:c6:fa:24:23:bd:22:83:97: 21:3b:ec:bf:79:cf:6b:e0:88:3d:32:7b:28:b5:2c: 56:77:60:b1:ca:2d:17:8f:e4:de:a4:a5:0a:75:7c: 99:d6:3e:70:b2:71:5c:37:85:88:0d:50:a8:1a:f3: 56:c2:62:a4:2b:eb:b2:80:2a:32:f8:f9:fd:56:3f: 13:78:3d:7d:f2:c3:b3:ec:2f:0b:e9:f0:d8:df:88: 0c:ae:fa:4c:c5:15:3d:f2:c2:c2:41:61:f2:4d:12: f0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:71:6B:C4:92:BC:13:2B:19:BC:A2:37:E2:2A:00:20:AE:6F:90:6C X509v3 Authority Key Identifier: keyid:D4:D1:77:99:EA:C9:C9:96:2B:32:5F:ED:87:F9:30:C2:EA:C8:2C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NF3merJyZYrMl_th_kwwurILK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91970E2/8101258CF9A811E6A4EFE02EC4F9AE02/1NF3merJyZYrMl_th_kwwurILK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:d0:72:55:b2:2f:be:cf:4a:42:4c:17:7d:20:52:99:56:e6: 24:84:b4:ea:2b:8f:13:ce:af:ab:29:f2:c7:44:c0:83:f8:9c: 81:04:c4:af:20:01:b8:89:08:82:5d:73:08:38:f2:1b:0b:a6: eb:c3:62:5c:d8:b7:d7:3a:c9:14:33:4c:ed:39:bd:00:22:d8: eb:c8:b4:5b:2d:c6:06:d0:fa:0b:98:ba:fa:c5:be:b6:14:b9: 62:ca:91:09:18:01:e6:73:7e:2c:3a:9d:5d:47:e8:7a:fd:ae: 88:df:09:85:28:9c:a9:0a:57:a9:8c:fc:34:f9:6f:26:55:7c: ce:a9:ae:db:9a:a0:ec:29:15:30:0f:ed:a5:93:06:13:36:35: fe:89:e0:82:2b:ee:be:50:f8:7b:59:33:3a:39:fc:f2:ba:fb: b7:fe:23:72:25:07:3e:da:50:46:71:9b:93:8c:02:6c:53:c7: c5:6d:1e:cb:ef:dd:2e:a7:3c:78:7b:ad:bd:05:5d:fb:48:4c: a5:3c:79:8b:d3:da:3c:25:a2:46:ed:da:2b:d8:93:ed:ed:10: a0:41:4e:94:40:3f:c8:77:ff:83:b3:ac:c2:c6:be:62:24:57: 37:3c:d3:7a:63:16:ea:71:5d:b4:ef:70:a8:51:6f:bf:36:83: 2e:b2:3a:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcwRTIxMTAvBgNVBAUTKEQ0RDE3Nzk5RUFDOUM5OTYyQjMyNUZFRDg3RjkzMEMy RUFDODJDQUYwHhcNMjUwNzIwMTYxNTM5WhcNMjUwNzI3MTYxNTM5WjAYMRYwFAYD VQQDEw02ODdkMTYyYi0yNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym9XQPaC9L5yBYy5u08Fd1nXfz3bFn0mc6QVrLt/Q45vQNXXt5FxVK6jQ2c/ myKeSX+aw8EWC/SqBtGEYDmUBlZR43zZOwFA+6rir9Paqw06ujs6rgR7xVyHueyT Yu7X6g5QoZBMqRqMicdEAq4uRr+g3agUb0ZXQxPBQOuyQIf4wXARkp4nnHt99jZ+ igWTvhQW63iBg6jnYrw9xvokI70ig5chO+y/ec9r4Ig9MnsotSxWd2Cxyi0Xj+Te pKUKdXyZ1j5wsnFcN4WIDVCoGvNWwmKkK+uygCoy+Pn9Vj8TeD198sOz7C8L6fDY 34gMrvpMxRU98sLCQWHyTRLwCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZxa8SS vBMrGbyiN+IqACCub5BsMB8GA1UdIwQYMBaAFNTRd5nqycmWKzJf7Yf5MMLqyCyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzBFMi84MTAxMjU4Q0Y5 QTgxMUU2QTRFRkUwMkVDNEY5QUUwMi8xTkYzbWVySnlaWXJNbF90aF9rd3d1cklM SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFORjNtZXJKeVpZck1sX3RoX2t3d3VySUxLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzBFMi84MTAxMjU4Q0Y5QTgxMUU2QTRFRkUwMkVDNEY5QUUwMi8xTkYzbWVySnla WXJNbF90aF9rd3d1cklMSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP0HJVsi++z0pCTBd9IFKZVuYkhLTqK48Tzq+rKfLHRMCD+JyBBMSv IAG4iQiCXXMIOPIbC6brw2Jc2LfXOskUM0ztOb0AItjryLRbLcYG0PoLmLr6xb62 FLliypEJGAHmc34sOp1dR+h6/a6I3wmFKJypClepjPw0+W8mVXzOqa7bmqDsKRUw D+2lkwYTNjX+ieCCK+6+UPh7WTM6Ofzyuvu3/iNyJQc+2lBGcZuTjAJsU8fFbR7L 790upzx4e629BV37SEylPHmL09o8JaJG7dor2JPt7RCgQU6UQD/Id/+Ds6zCxr5i JFc3PNN6YxbqcV2073CoUW+/NoMusjrp -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:01 2025 by rpki-client