$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft File: tBNlbNepj73iI3_FMUyf9-jxoJ4.mft (raw, json) Hash identifier: LOwomigJyFoWtVYVUiAKqvb6kfYmWbmxs4mpZiGcn4o= Subject key identifier: 52:5E:0C:34:FD:D7:D5:9D:A2:08:68:FC:89:33:A3:E5:D8:6B:7C:22 Authority key identifier: B4:13:65:6C:D7:A9:8F:BD:E2:23:7F:C5:31:4C:9F:F7:E8:F1:A0:9E Certificate issuer: /CN=A91A5252/serialNumber=B413656CD7A98FBDE2237FC5314C9FF7E8F1A09E Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft Manifest number: 06F7 Signing time: Sun 20 Jul 2025 22:04:01 +0000 Manifest this update: Sun 20 Jul 2025 22:04:01 +0000 Manifest next update: Sun 27 Jul 2025 22:04:01 +0000 Files and hashes: 1: tBNlbNepj73iI3_FMUyf9-jxoJ4.crl (hash: c3aYSCovvZa1G78qfNuUauz3FYZud/AvDHAqEuoYMnw=) 2: B61AFCF654A411EB88DE1D23C4F9AE02.roa (hash: NhhtAZYHbi3OfuXlyk66ji/E3ItRuOfQUaOAVkaAmDI=) 3: 4DB43F043E6611ECBD788C16C4F9AE02.roa (hash: ing2Wn3yGuRf8bHPBaTCd2sus9ikor0GkhqqDA1X+gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.crl rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:04:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5252, serialNumber=B413656CD7A98FBDE2237FC5314C9FF7E8F1A09E Validity Not Before: Jul 20 22:04:01 2025 GMT Not After : Jul 27 22:04:01 2025 GMT Subject: CN=687d67d1-21d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0c:e4:81:3f:f6:ca:77:8c:d6:e2:f5:34:bd: 17:3b:b4:69:8a:85:38:f0:a3:5b:e1:21:0f:7b:29: 53:30:c8:4b:65:d3:7f:1d:49:16:39:33:77:26:48: d6:3b:a4:70:b8:79:7c:8f:ec:9c:da:81:51:c6:f0: 46:3f:bb:68:c9:0c:e9:97:32:e5:5f:0d:98:09:47: 48:a3:eb:f4:8a:d2:d5:b9:25:26:2e:b8:96:0c:85: fb:5e:43:ce:fb:4e:cc:e2:f7:cf:27:62:e5:37:14: 98:b6:59:78:29:e8:1e:49:b6:af:0c:23:db:d8:8e: 1a:9e:48:48:08:83:3b:fb:57:b7:dd:75:ed:e8:ed: 04:b8:5e:46:da:7a:64:a7:07:12:ca:cd:97:e4:51: fc:ae:ec:75:85:99:2a:dc:1e:4a:c0:31:c4:48:24: ca:78:be:0d:35:9d:55:4a:f5:f2:7d:c3:82:d8:42: c2:25:88:3c:04:61:e8:38:a5:e8:98:31:4e:fd:41: 6c:37:ab:d4:20:c0:0e:12:9f:2e:1c:b0:18:6a:df: 09:3a:21:92:61:f7:64:30:f4:b4:5e:70:1d:e6:3b: 7e:49:de:25:4b:d4:f7:61:cf:62:97:ea:91:a3:b5: 09:d3:13:ed:34:f8:37:15:28:b8:99:43:93:5c:76: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5E:0C:34:FD:D7:D5:9D:A2:08:68:FC:89:33:A3:E5:D8:6B:7C:22 X509v3 Authority Key Identifier: keyid:B4:13:65:6C:D7:A9:8F:BD:E2:23:7F:C5:31:4C:9F:F7:E8:F1:A0:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBNlbNepj73iI3_FMUyf9-jxoJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5252/CD163BCA54A211EBBF621E1EC4F9AE02/tBNlbNepj73iI3_FMUyf9-jxoJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:e9:ec:c8:c8:20:2c:9a:d4:db:48:4c:95:5d:e8:56:42:6d: 0b:21:c8:30:8d:1f:0d:08:9e:49:11:f3:eb:bb:90:43:73:6c: a8:ec:c4:e0:85:c8:64:14:81:c7:e6:c1:a6:05:d5:20:6a:95: a9:d2:e5:80:78:a8:14:19:bb:81:ba:10:23:bd:67:b9:3a:1d: d5:2d:ad:fb:7d:08:60:dd:8f:0e:6c:a9:75:b2:ad:45:b0:df: db:fc:6d:8a:98:51:d3:ce:2a:66:ef:a0:73:30:45:12:59:e3: 03:ac:07:20:a2:68:99:bd:3a:83:9e:45:b8:76:3b:dd:e3:d0: 17:db:3b:6e:5a:75:dc:3a:4d:a9:a2:40:a8:c1:50:79:38:07: 07:68:f4:e8:41:05:93:d4:03:45:19:de:29:9c:b9:10:20:ea: 9f:9a:13:eb:1b:b5:62:4b:b1:4f:d4:e8:13:c9:a6:d8:76:2f: ac:c3:4b:0a:8a:76:a3:6f:04:50:0c:d6:fb:47:2b:f1:73:23: 1c:77:a8:b5:5c:51:73:e3:ab:3d:a1:9a:ee:22:d9:76:06:49: 40:21:c9:dc:a5:46:58:fe:cb:fb:62:0b:e6:ef:dd:e4:ba:9f: e8:74:e5:16:2f:60:73:bf:c1:64:71:21:58:04:f5:0b:a7:b6: cd:e0:d7:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUyNTIxMTAvBgNVBAUTKEI0MTM2NTZDRDdBOThGQkRFMjIzN0ZDNTMxNEM5RkY3 RThGMUEwOUUwHhcNMjUwNzIwMjIwNDAxWhcNMjUwNzI3MjIwNDAxWjAYMRYwFAYD VQQDEw02ODdkNjdkMS0yMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QzkgT/2yneM1uL1NL0XO7RpioU48KNb4SEPeylTMMhLZdN/HUkWOTN3JkjW O6RwuHl8j+yc2oFRxvBGP7toyQzplzLlXw2YCUdIo+v0itLVuSUmLriWDIX7XkPO +07M4vfPJ2LlNxSYtll4KegeSbavDCPb2I4ankhICIM7+1e33XXt6O0EuF5G2npk pwcSys2X5FH8rux1hZkq3B5KwDHESCTKeL4NNZ1VSvXyfcOC2ELCJYg8BGHoOKXo mDFO/UFsN6vUIMAOEp8uHLAYat8JOiGSYfdkMPS0XnAd5jt+Sd4lS9T3Yc9il+qR o7UJ0xPtNPg3FSi4mUOTXHZOHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJeDDT9 19Wdogho/Ikzo+XYa3wiMB8GA1UdIwQYMBaAFLQTZWzXqY+94iN/xTFMn/fo8aCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTI1Mi9DRDE2M0JDQTU0 QTIxMUVCQkY2MjFFMUVDNEY5QUUwMi90Qk5sYk5lcGo3M2lJM19GTVV5Zjktanhv SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCTmxiTmVwajczaUkzX0ZNVXlmOS1qeG9KNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTI1Mi9DRDE2M0JDQTU0QTIxMUVCQkY2MjFFMUVDNEY5QUUwMi90Qk5sYk5lcGo3 M2lJM19GTVV5ZjktanhvSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB06ezIyCAsmtTbSEyVXehWQm0LIcgwjR8NCJ5JEfPru5BDc2yo7MTg hchkFIHH5sGmBdUgapWp0uWAeKgUGbuBuhAjvWe5Oh3VLa37fQhg3Y8ObKl1sq1F sN/b/G2KmFHTzipm76BzMEUSWeMDrAcgomiZvTqDnkW4djvd49AX2ztuWnXcOk2p okCowVB5OAcHaPToQQWT1ANFGd4pnLkQIOqfmhPrG7ViS7FP1OgTyabYdi+sw0sK inajbwRQDNb7RyvxcyMcd6i1XFFz46s9oZruItl2BklAIcncpUZY/sv7Ygvm793k up/odOUWL2Bzv8FkcSFYBPULp7bN4Ncb -----END CERTIFICATE-----Generated at Tue Jul 22 05:13:44 2025 by rpki-client