$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft File: ldQuwvRot-OPlYyPupMYARfcJuA.mft (raw, json) Hash identifier: BOLVsJCcDjgZhWNGxOmKCOh0k2wVldPBgnekWRYRHiU= Subject key identifier: 45:AF:75:1D:54:CA:2C:74:5E:71:29:8C:18:BC:59:4C:70:C2:91:C1 Authority key identifier: 95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 Certificate issuer: /CN=A91A7F6A/serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft Manifest number: 45 Signing time: Sat 19 Jul 2025 07:49:05 +0000 Manifest this update: Sat 19 Jul 2025 07:49:05 +0000 Manifest next update: Sat 26 Jul 2025 07:49:05 +0000 Files and hashes: 1: ldQuwvRot-OPlYyPupMYARfcJuA.crl (hash: kB8iRceILqIluYPkVA2tc22vYr5giNehkBZrrskxN5E=) 2: F8C2A4E4359311F08C686E1BC4F9AE02.roa (hash: vSYTG4FiK7ZLm+rL5F5xQfklb4JbIfkyGEDj5czTJUY=) 3: B3849A9A359311F09B54926FC4F9AE02.roa (hash: Y+aC1xM6nmmoKwU/+TkwylgFTc7TBvkghCXTXAy84ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F6A, serialNumber=95D42EC2F468B7E38F958C8FBA93180117DC26E0 Validity Not Before: Jul 19 07:49:05 2025 GMT Not After : Jul 26 07:49:05 2025 GMT Subject: CN=687b4df1-d8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:76:b3:50:fa:76:15:95:00:98:d0:8a:cc:78: 31:43:4c:5c:f2:00:30:6c:46:08:12:d2:48:3a:f1: 5d:28:42:ae:cd:c0:da:06:a0:d0:87:55:53:fb:16: 6a:20:5b:3f:b7:91:8a:87:13:e7:46:68:f3:e7:e2: c1:71:36:76:37:a4:97:5e:42:7e:9c:e3:31:06:e7: 66:04:16:4c:a9:c9:90:5b:9b:af:ee:89:62:ee:99: 50:a4:bb:10:6a:7e:1f:53:89:7c:c0:92:e3:f3:50: 2a:d7:72:8d:d0:7c:65:95:9b:1e:62:3d:da:1b:65: a1:14:b3:e3:64:b4:c5:20:ed:48:a1:99:5f:9b:28: 9a:e1:46:8d:b2:44:88:dd:fd:e7:25:ac:ca:22:71: 26:49:db:79:e5:1b:36:13:ed:f6:cc:6c:a6:67:bd: 80:12:5c:66:db:66:0f:f1:3c:c5:52:8a:38:83:0d: 55:c6:3c:1d:a8:70:b1:df:34:e7:0a:bd:f8:79:31: ef:8a:28:9e:8b:91:7b:e0:3b:90:ee:b7:bf:66:65: bd:5f:a7:58:80:38:6d:a9:ff:a5:cf:bd:59:6d:9a: c0:cb:50:fa:d4:a9:4a:7f:1e:15:f7:87:ed:03:80: ff:ed:25:24:1c:cf:65:b7:cc:02:41:ca:c7:d3:bb: 5f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AF:75:1D:54:CA:2C:74:5E:71:29:8C:18:BC:59:4C:70:C2:91:C1 X509v3 Authority Key Identifier: keyid:95:D4:2E:C2:F4:68:B7:E3:8F:95:8C:8F:BA:93:18:01:17:DC:26:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldQuwvRot-OPlYyPupMYARfcJuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F6A/7A5298760AF011F08531D43CC4F9AE02/ldQuwvRot-OPlYyPupMYARfcJuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:d9:5e:9c:4f:ad:fe:e4:21:3c:d4:21:18:e6:73:cf:02:3a: 67:4c:ed:1d:e3:ee:74:a4:76:51:04:e6:c0:7c:1a:6d:8d:1e: 1e:d9:d9:c4:1e:09:30:a3:6d:e5:a8:32:71:df:9b:f8:81:3c: 51:9d:e6:4d:cd:0a:79:b4:e4:12:bd:d7:6f:3a:ce:a6:30:a0: bb:5c:89:19:50:9b:44:95:4b:15:e5:fb:7e:6e:0a:42:f1:31: 2a:4a:57:e7:a9:34:4b:c1:27:9d:df:bc:c4:4f:33:67:c1:64: fc:f2:18:20:e4:96:e9:a7:57:a8:df:56:25:1f:38:97:2f:a1: c7:85:d2:85:17:82:90:21:05:c6:8f:37:8f:e6:37:91:48:84: f9:a7:7a:cb:58:b1:63:53:28:10:e4:9b:71:12:ce:0c:57:6a: c6:1f:d1:c7:da:4f:44:a9:46:b0:7d:fd:e9:38:e7:ca:02:4e: 68:05:64:b0:96:d8:19:06:1f:1a:d9:2f:dd:02:d2:c1:56:dc: 29:c6:09:7d:14:38:1a:fa:23:88:1b:3c:e2:57:82:c1:2f:15: 89:02:c3:e7:af:01:48:6d:b6:06:15:f6:11:b9:fe:a8:aa:b4: 77:60:90:25:f1:57:96:39:f2:83:a8:76:69:e6:64:29:de:56: d4:2c:3b:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB N0Y2QTExMC8GA1UEBRMoOTVENDJFQzJGNDY4QjdFMzhGOTU4QzhGQkE5MzE4MDEx N0RDMjZFMDAeFw0yNTA3MTkwNzQ5MDVaFw0yNTA3MjYwNzQ5MDVaMBgxFjAUBgNV BAMTDTY4N2I0ZGYxLWQ4YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD3drNQ+nYVlQCY0IrMeDFDTFzyADBsRggS0kg68V0oQq7NwNoGoNCHVVP7Fmog Wz+3kYqHE+dGaPPn4sFxNnY3pJdeQn6c4zEG52YEFkypyZBbm6/uiWLumVCkuxBq fh9TiXzAkuPzUCrXco3QfGWVmx5iPdobZaEUs+NktMUg7UihmV+bKJrhRo2yRIjd /eclrMoicSZJ23nlGzYT7fbMbKZnvYASXGbbZg/xPMVSijiDDVXGPB2ocLHfNOcK vfh5Me+KKJ6LkXvgO5Dut79mZb1fp1iAOG2p/6XPvVltmsDLUPrUqUp/HhX3h+0D gP/tJSQcz2W3zAJBysfTu1/zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURa91HVTK LHRecSmMGLxZTHDCkcEwHwYDVR0jBBgwFoAUldQuwvRot+OPlYyPupMYARfcJuAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3RjZBLzdBNTI5ODc2MEFG MDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1PUGxZeVB1cE1ZQVJmY0p1 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbGRRdXd2Um90LU9QbFl5UHVwTVlBUmZjSnVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 RjZBLzdBNTI5ODc2MEFGMDExRjA4NTMxRDQzQ0M0RjlBRTAyL2xkUXV3dlJvdC1P UGxZeVB1cE1ZQVJmY0p1QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHHZXpxPrf7kITzUIRjmc88COmdM7R3j7nSkdlEE5sB8Gm2NHh7Z2cQe CTCjbeWoMnHfm/iBPFGd5k3NCnm05BK91286zqYwoLtciRlQm0SVSxXl+35uCkLx MSpKV+epNEvBJ53fvMRPM2fBZPzyGCDklumnV6jfViUfOJcvoceF0oUXgpAhBcaP N4/mN5FIhPmnestYsWNTKBDkm3ESzgxXasYf0cfaT0SpRrB9/ek458oCTmgFZLCW 2BkGHxrZL90C0sFW3CnGCX0UOBr6I4gbPOJXgsEvFYkCw+evAUhttgYV9hG5/qiq tHdgkCXxV5Y58oOodmnmZCneVtQsO/w= -----END CERTIFICATE-----Generated at Sun Jul 20 07:33:21 2025 by rpki-client