$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: /n08zL6uEwNhuwST3caNg4f804+rGv3HE5oDxiMqhSQ= Subject key identifier: 45:EC:CC:67:F1:C0:E7:F7:EB:50:33:02:0E:5E:2D:5C:28:92:8B:37 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 01F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 01EA Signing time: Sat 19 Jul 2025 02:54:09 +0000 Manifest this update: Sat 19 Jul 2025 02:54:09 +0000 Manifest next update: Sat 26 Jul 2025 02:54:09 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: 0O0wozuGWq9zGnD13GDuiDemZhfmB8cmgra/9oXqoeE=) 2: A216EC4E3C7911F0B25C0585C4F9AE02.roa (hash: vKLf2rHEIG3SZoTwG/5Mh6FH3VoQv1z4rOoGSmOI4Fs=) 3: 91BCB8BC622411F0BF290F6CC4F9AE02.roa (hash: c39va5p2TwsZXgwRmgVn98Um+b/TzdVtcPd6WdZZhGA=) 4: 8361CB4E5AE611F0963E5C62C4F9AE02.roa (hash: M4WGtwFkPwUoSWIULQ4yxINkgXWufBIM4+UZEpcRmO4=) 5: B856D46C3B9611F0B2363C74C4F9AE02.roa (hash: h/qcaSqjY8kiFIGM/MMPsHobkpAe/EdAmdDLkkpjgjM=) 6: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (hash: LcCehnLIRoCgjwwcDQ7TUr2n1e7iAgFU0iCoo79xeiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 501 (0x1f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Jul 19 02:54:09 2025 GMT Not After : Jul 26 02:54:09 2025 GMT Subject: CN=687b08d1-18d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a3:06:f1:2a:8e:a8:4b:be:2a:cc:4d:26:ef: db:e0:cf:16:0f:a8:e5:cc:e9:4a:db:0f:6c:f0:5a: 30:f3:52:29:af:c7:4a:17:12:cd:fe:3d:ab:b4:6f: b1:fd:2e:d7:aa:73:99:a5:87:05:76:3f:89:9d:91: 6f:c1:54:00:fb:8c:dd:27:a5:79:df:89:86:12:7b: 7c:cc:6d:2b:24:07:b2:ea:31:3d:e8:f1:4a:ec:df: bc:f3:83:ec:1f:ef:5f:be:50:e4:bb:c2:d3:8f:08: 59:07:00:53:fa:cb:a5:72:e8:87:ed:e7:5b:58:fe: be:c2:9c:b8:b1:f4:2e:db:ca:98:69:01:0e:cd:61: e4:42:30:c0:fa:7b:fb:2d:0d:46:17:68:50:a6:30: ab:e6:54:8f:55:3f:71:62:92:0d:98:cf:a8:61:1a: 78:ec:a1:9d:f7:2e:6f:a1:7a:95:90:66:6f:65:a4: 10:ef:d1:b5:cc:27:80:c7:0c:88:3a:ea:5d:55:61: c8:aa:79:67:2f:15:20:dd:1e:52:89:2e:fa:1d:9b: 99:2d:80:06:40:c5:e5:5d:7e:b9:04:67:83:0b:36: 89:88:9f:e2:c8:7a:c1:0f:bb:15:51:31:f7:11:5b: 45:27:7b:ab:95:59:15:78:0f:25:d8:ae:1f:ae:f8: dd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EC:CC:67:F1:C0:E7:F7:EB:50:33:02:0E:5E:2D:5C:28:92:8B:37 X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:34:56:5b:7c:d9:73:f8:60:7c:13:40:2a:74:f4:39:9e:ba: 5e:69:58:4d:f7:5b:6c:2c:36:0f:38:f0:24:20:a8:75:04:39: 10:71:2f:dd:a3:9d:ae:28:64:b1:75:1a:b2:0d:cc:1b:a5:aa: 67:49:88:26:8a:e4:d8:28:e6:70:ad:f1:90:c8:6b:17:71:0f: 97:cc:1d:a1:e5:b4:bb:fe:91:c2:05:c4:97:31:65:c6:fe:ee: cd:75:2e:ee:bd:f2:e0:52:ac:03:a1:9d:99:00:d4:05:7f:1a: 90:ca:98:4b:b1:7b:34:59:a0:85:5f:94:57:23:8d:6c:5b:d2: 9e:fb:b4:cd:ab:2e:10:e9:9d:a7:73:9d:0d:3b:b4:20:08:a1: dd:de:ad:c8:3e:21:7a:2f:87:f1:24:d7:d7:77:f8:02:5d:7b: d8:8f:ff:3e:91:a2:7a:29:1c:b1:0b:ab:20:df:2c:7b:ee:11: 05:d6:fe:d0:6b:e8:7e:1d:37:d2:0a:46:6e:c9:c2:d4:3a:d5: 68:27:75:42:db:7c:5a:4e:b6:a9:f3:5a:1d:25:c2:b1:e8:d3: 99:ea:e7:a8:20:9d:9b:ac:ab:81:c2:a5:6e:6d:a2:13:8b:d6: 55:f2:63:23:b9:ff:ef:36:fa:70:fd:89:73:20:fc:5e:f7:e8: 28:7e:40:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUwNzE5MDI1NDA5WhcNMjUwNzI2MDI1NDA5WjAYMRYwFAYD VQQDEw02ODdiMDhkMS0xOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66MG8SqOqEu+KsxNJu/b4M8WD6jlzOlK2w9s8Fow81Ipr8dKFxLN/j2rtG+x /S7XqnOZpYcFdj+JnZFvwVQA+4zdJ6V534mGEnt8zG0rJAey6jE96PFK7N+884Ps H+9fvlDku8LTjwhZBwBT+sulcuiH7edbWP6+wpy4sfQu28qYaQEOzWHkQjDA+nv7 LQ1GF2hQpjCr5lSPVT9xYpINmM+oYRp47KGd9y5voXqVkGZvZaQQ79G1zCeAxwyI OupdVWHIqnlnLxUg3R5SiS76HZuZLYAGQMXlXX65BGeDCzaJiJ/iyHrBD7sVUTH3 EVtFJ3urlVkVeA8l2K4frvjdIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXszGfx wOf361AzAg5eLVwokos3MB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1NFZbfNlz+GB8E0AqdPQ5nrpeaVhN91tsLDYPOPAkIKh1BDkQcS/d o52uKGSxdRqyDcwbpapnSYgmiuTYKOZwrfGQyGsXcQ+XzB2h5bS7/pHCBcSXMWXG /u7NdS7uvfLgUqwDoZ2ZANQFfxqQyphLsXs0WaCFX5RXI41sW9Ke+7TNqy4Q6Z2n c50NO7QgCKHd3q3IPiF6L4fxJNfXd/gCXXvYj/8+kaJ6KRyxC6sg3yx77hEF1v7Q a+h+HTfSCkZuycLUOtVoJ3VC23xaTrap81odJcKx6NOZ6ueoIJ2brKuBwqVubaIT i9ZV8mMjuf/vNvpw/YlzIPxe9+gofkBt -----END CERTIFICATE-----Generated at Sun Jul 20 15:14:09 2025 by rpki-client