$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft File: PoReqE4RAwvCoQYTCJefeYoSET8.mft (raw, json) Hash identifier: U0IxG6UtUKBkwz7z9/YV051kH2UylZRq7ZWodrUyk2E= Subject key identifier: 67:E7:63:E6:AA:C7:D7:95:AA:F6:32:55:37:9F:21:7E:18:71:B7:65 Authority key identifier: 3E:84:5E:A8:4E:11:03:0B:C2:A1:06:13:08:97:9F:79:8A:12:11:3F Certificate issuer: /CN=A91A6BF5/serialNumber=3E845EA84E11030BC2A1061308979F798A12113F Certificate serial: 0C18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft Manifest number: 0C10 Signing time: Sun 20 Jul 2025 18:47:31 +0000 Manifest this update: Sun 20 Jul 2025 18:47:31 +0000 Manifest next update: Sun 27 Jul 2025 18:47:31 +0000 Files and hashes: 1: PoReqE4RAwvCoQYTCJefeYoSET8.crl (hash: y+8IZAaJqkYyZkZsmo+Tk97oyUYLAFlfdZSDN15anOY=) 2: 03EE880413F511EA8D120C65C4F9AE02.roa (hash: RpJ/3A2zXQw9C0hNB2vN4upiPschgzxuaxvOtctAWMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.crl rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3096 (0xc18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6BF5, serialNumber=3E845EA84E11030BC2A1061308979F798A12113F Validity Not Before: Jul 20 18:47:31 2025 GMT Not After : Jul 27 18:47:31 2025 GMT Subject: CN=687d39c3-494e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d6:99:4e:da:a9:bc:ef:04:34:38:df:e3:26: e1:6b:1d:30:3e:4a:f8:19:43:f4:de:da:98:8b:67: ce:2f:e2:01:b5:5e:6c:e8:22:01:12:c5:41:d0:f6: 0c:bd:3d:50:ec:27:ab:f0:89:24:26:f8:1e:c5:a3: d6:b9:cf:63:3b:83:88:0f:e8:15:2c:d1:da:88:3d: 36:bf:46:50:b1:70:f5:d8:4f:fb:0a:da:28:d6:69: 82:cf:63:c8:63:a2:a7:66:f5:79:17:14:bc:96:59: 47:3f:00:14:71:84:0a:75:5e:01:39:84:68:65:ad: 76:7e:54:34:d1:6c:51:a5:09:0b:32:48:4c:96:35: b5:0d:56:9d:05:a0:b2:09:f2:27:4e:19:91:0e:ea: 8e:92:ba:f0:01:70:11:b7:1d:fc:3b:2b:12:74:00: 5a:12:71:01:eb:3b:3e:d0:e6:93:e9:8a:75:92:0f: 0f:c0:67:64:32:43:85:30:0b:36:c8:73:a0:82:b0: f6:c8:f3:c9:ce:b4:9c:79:af:9a:e6:1c:98:9e:81: 85:23:a2:f2:4f:f8:d0:9e:53:86:59:d6:39:14:77: b4:4c:eb:c8:e6:a2:88:0e:d4:2c:09:82:5d:62:65: d3:71:75:d2:47:26:41:32:e5:c6:84:f2:5d:e1:9f: b5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E7:63:E6:AA:C7:D7:95:AA:F6:32:55:37:9F:21:7E:18:71:B7:65 X509v3 Authority Key Identifier: keyid:3E:84:5E:A8:4E:11:03:0B:C2:A1:06:13:08:97:9F:79:8A:12:11:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PoReqE4RAwvCoQYTCJefeYoSET8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6BF5/9D0B422213F311EA80B3745FC4F9AE02/PoReqE4RAwvCoQYTCJefeYoSET8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bf:87:d0:33:4a:aa:ed:c0:d0:d4:c1:55:b1:c3:db:be:2c: 55:b3:d2:d7:c7:04:43:60:3b:7e:91:4e:36:13:08:be:4d:bd: 25:c1:5a:f3:46:36:9b:81:00:20:39:17:71:69:93:c8:ec:f3: 39:ce:80:f3:4e:33:a9:87:24:98:16:09:da:4c:da:2a:9a:f5: ea:da:d8:b4:16:db:f2:8c:b9:a6:35:72:1b:38:fc:9b:19:fe: c4:c4:ae:10:31:4f:6b:12:ac:17:1f:2e:28:f3:5d:1f:97:dd: b5:e5:0f:e8:a5:83:54:66:f5:35:35:ca:92:20:b0:63:d1:bf: 9d:ae:c8:8c:08:26:42:3a:5f:7e:25:10:fb:fe:97:48:b9:f9: 9c:02:b8:ec:a5:8a:0f:1e:11:7d:63:09:25:18:20:f8:87:cd: 4b:25:84:da:fb:47:99:82:c0:8b:73:73:a3:ca:fd:40:88:e3: c8:6b:c6:c5:d8:e8:8d:2a:68:c2:da:d5:62:26:e5:55:c0:58: cc:9e:bd:8c:32:15:d0:d8:2f:a3:0d:48:37:cd:4a:a4:2c:fc: d9:b1:d3:c9:2e:19:18:53:20:8b:ba:ea:cd:5e:e5:91:f9:b5: f5:c8:42:bf:7d:96:a3:9c:de:86:07:07:aa:b7:81:f2:8c:3c: ad:f6:09:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZCRjUxMTAvBgNVBAUTKDNFODQ1RUE4NEUxMTAzMEJDMkExMDYxMzA4OTc5Rjc5 OEExMjExM0YwHhcNMjUwNzIwMTg0NzMxWhcNMjUwNzI3MTg0NzMxWjAYMRYwFAYD VQQDEw02ODdkMzljMy00OTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9aZTtqpvO8ENDjf4ybhax0wPkr4GUP03tqYi2fOL+IBtV5s6CIBEsVB0PYM vT1Q7Cer8IkkJvgexaPWuc9jO4OID+gVLNHaiD02v0ZQsXD12E/7Ctoo1mmCz2PI Y6KnZvV5FxS8lllHPwAUcYQKdV4BOYRoZa12flQ00WxRpQkLMkhMljW1DVadBaCy CfInThmRDuqOkrrwAXARtx38OysSdABaEnEB6zs+0OaT6Yp1kg8PwGdkMkOFMAs2 yHOggrD2yPPJzrScea+a5hyYnoGFI6LyT/jQnlOGWdY5FHe0TOvI5qKIDtQsCYJd YmXTcXXSRyZBMuXGhPJd4Z+1OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfnY+aq x9eVqvYyVTefIX4YcbdlMB8GA1UdIwQYMBaAFD6EXqhOEQMLwqEGEwiXn3mKEhE/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkJGNS85RDBCNDIyMjEz RjMxMUVBODBCMzc0NUZDNEY5QUUwMi9Qb1JlcUU0UkF3dkNvUVlUQ0plZmVZb1NF VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BvUmVxRTRSQXd2Q29RWVRDSmVmZVlvU0VUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkJGNS85RDBCNDIyMjEzRjMxMUVBODBCMzc0NUZDNEY5QUUwMi9Qb1JlcUU0UkF3 dkNvUVlUQ0plZmVZb1NFVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNv4fQM0qq7cDQ1MFVscPbvixVs9LXxwRDYDt+kU42Ewi+Tb0lwVrz RjabgQAgORdxaZPI7PM5zoDzTjOphySYFgnaTNoqmvXq2ti0FtvyjLmmNXIbOPyb Gf7ExK4QMU9rEqwXHy4o810fl9215Q/opYNUZvU1NcqSILBj0b+drsiMCCZCOl9+ JRD7/pdIufmcArjspYoPHhF9YwklGCD4h81LJYTa+0eZgsCLc3Ojyv1AiOPIa8bF 2OiNKmjC2tViJuVVwFjMnr2MMhXQ2C+jDUg3zUqkLPzZsdPJLhkYUyCLuurNXuWR +bX1yEK/fZajnN6GBweqt4HyjDyt9gmS -----END CERTIFICATE-----Generated at Mon Jul 21 07:15:01 2025 by rpki-client