$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: 63MoHtIPCIVbrffc+EM7NqpelhsVXDZ/zx18vnZUafI= Subject key identifier: 39:91:73:14:4C:9A:11:12:44:52:EE:06:69:B2:00:D4:BA:BC:72:CD Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 292B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 290B Signing time: Fri 18 Jul 2025 15:42:07 +0000 Manifest this update: Fri 18 Jul 2025 15:42:07 +0000 Manifest next update: Fri 25 Jul 2025 15:42:07 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: 5eOdSAQGMMJ7SOpjJWXbiYO26D+YlIvPR0MbUtzSYss=) 2: F4246CDA561811E98A165872C4F9AE02.roa (hash: C/PaFQfpTy7SRBE+0XzPzL+bck/ugVag2KSCjWGbACs=) 3: 5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa (hash: NPaRLQzlfeRDFfVjFZGdCoMjhFrE57rsZhCE/YcIOww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10539 (0x292b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517, serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: Jul 18 15:42:07 2025 GMT Not After : Jul 25 15:42:07 2025 GMT Subject: CN=687a6b4f-690e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:15:fa:b0:0f:72:a2:19:63:86:2d:61:d9: ad:6d:77:34:7b:c4:b8:3e:5b:e8:6d:f3:06:23:47: a7:44:2b:49:bd:4f:ff:48:0a:0b:a3:82:cc:59:65: 0a:33:82:65:da:90:f3:a5:fe:5a:c3:2f:b3:aa:12: 84:92:e8:54:cb:0a:55:58:f4:c6:45:04:2c:8a:97: f0:ff:ca:65:45:5d:65:f3:e3:2b:ac:03:6f:7e:34: e7:6a:ed:86:c1:0f:4c:2a:1f:9d:f0:a4:07:2b:89: a2:e6:ed:66:14:02:03:1c:1f:e6:f3:93:7d:9b:7b: 1c:57:26:d5:4c:0b:12:08:05:32:44:0b:5a:ba:ef: 75:65:c0:6f:a2:c6:19:61:ca:13:aa:e5:6c:e5:06: 5d:64:c4:1d:91:36:21:83:f6:13:b6:b9:28:5f:0b: fc:5d:89:ad:95:c4:71:fc:dd:4e:1a:eb:76:17:12: 59:ca:d2:a4:45:88:79:5c:e6:2b:c8:49:9a:f9:20: 39:6f:65:fb:3f:4a:a8:45:84:95:e6:10:b3:5e:95: 22:73:6f:54:a6:52:3a:10:b3:e1:d0:23:66:63:25: 2b:74:de:8e:15:ac:87:57:a2:1b:1a:de:b3:ec:c3: 6f:6f:01:81:fe:ae:82:c4:09:64:4c:29:b7:38:26: 20:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:91:73:14:4C:9A:11:12:44:52:EE:06:69:B2:00:D4:BA:BC:72:CD X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:c4:66:92:41:d9:04:3a:9a:a6:cb:8a:fd:a7:cc:5f:c1:5f: c2:3a:9f:5a:b9:5e:84:84:ce:b1:03:34:c3:6b:d6:0f:56:a2: c7:bf:73:bd:f1:e5:01:52:08:45:11:08:74:a7:ca:91:0f:a8: 6f:a2:5e:cd:6c:3b:7a:ea:17:18:21:99:1c:78:27:c5:30:59: c9:23:4e:39:46:ef:87:8c:1f:eb:69:bf:52:df:23:9d:bc:38: da:d5:c2:ef:28:0f:e1:84:41:e1:d0:ea:d9:05:e4:34:5a:d2: 96:fa:61:3c:7e:1e:ac:44:22:28:82:31:41:1a:9d:d1:ad:78: 6c:84:00:fd:20:60:75:9f:cb:c7:5e:91:e6:12:86:95:70:07: e0:b2:e0:c1:96:4c:d9:c3:a1:d3:86:98:70:4e:08:15:73:62: c9:ad:14:52:d0:bf:e6:05:0a:35:6a:e0:84:7e:d2:2b:8e:7d: 8e:82:3f:0b:26:4f:fb:e0:f7:a8:74:a5:3f:e7:96:e4:da:55: 9f:04:fb:06:d8:78:97:0d:8b:ca:22:4d:49:a5:42:00:0c:bf: bf:54:7f:24:e7:a7:39:1d:4c:11:40:d3:cb:60:ed:29:d5:ee: bc:f0:ed:7f:cc:e5:2a:5b:d3:59:4f:0e:d2:32:46:7e:eb:73: ae:d1:f6:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjUwNzE4MTU0MjA3WhcNMjUwNzI1MTU0MjA3WjAYMRYwFAYD VQQDEw02ODdhNmI0Zi02OTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHwV+rAPcqIZY4YtYdmtbXc0e8S4PlvobfMGI0enRCtJvU//SAoLo4LMWWUK M4Jl2pDzpf5awy+zqhKEkuhUywpVWPTGRQQsipfw/8plRV1l8+MrrANvfjTnau2G wQ9MKh+d8KQHK4mi5u1mFAIDHB/m85N9m3scVybVTAsSCAUyRAtauu91ZcBvosYZ YcoTquVs5QZdZMQdkTYhg/YTtrkoXwv8XYmtlcRx/N1OGut2FxJZytKkRYh5XOYr yEma+SA5b2X7P0qoRYSV5hCzXpUic29UplI6ELPh0CNmYyUrdN6OFayHV6IbGt6z 7MNvbwGB/q6CxAlkTCm3OCYgKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmRcxRM mhESRFLuBmmyANS6vHLNMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRxGaSQdkEOpqmy4r9p8xfwV/COp9auV6EhM6xAzTDa9YPVqLHv3O9 8eUBUghFEQh0p8qRD6hvol7NbDt66hcYIZkceCfFMFnJI045Ru+HjB/rab9S3yOd vDja1cLvKA/hhEHh0OrZBeQ0WtKW+mE8fh6sRCIogjFBGp3RrXhshAD9IGB1n8vH XpHmEoaVcAfgsuDBlkzZw6HThphwTggVc2LJrRRS0L/mBQo1auCEftIrjn2Ogj8L Jk/74PeodKU/55bk2lWfBPsG2HiXDYvKIk1JpUIADL+/VH8k56c5HUwRQNPLYO0p 1e688O1/zOUqW9NZTw7SMkZ+63Ou0fZF -----END CERTIFICATE-----Generated at Sun Jul 20 12:15:50 2025 by rpki-client