$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: RmuJDnGNpwePAhLgQhuHCJ48K3Xbbbj7KLocepUjNYs= Subject key identifier: 12:B6:12:1A:9D:AC:D3:5E:D9:FF:9D:6F:54:1B:93:83:88:B7:07:C1 Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 03AE Signing time: Mon 21 Jul 2025 00:58:19 +0000 Manifest this update: Mon 21 Jul 2025 00:58:17 +0000 Manifest next update: Mon 28 Jul 2025 00:58:17 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: jw7JV6RCipUY3yDNyr5JW7ksqUG57AtYsbvY2AsSsOw=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: IKsBlPoiBaV1Y/8FMivKysodYXv24LUe7kGHbrSaUFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A, serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Jul 21 00:58:17 2025 GMT Not After : Jul 28 00:58:17 2025 GMT Subject: CN=687d90aa-2462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:5a:7a:65:7f:52:90:c2:c0:43:1c:04:e6: d1:1a:93:dd:ad:89:50:b2:ae:5b:20:96:2a:8c:66: fc:7e:23:3d:e2:da:39:79:ea:95:af:fa:15:4d:e0: 23:03:15:ed:90:63:ab:d0:c6:08:d1:80:ae:7c:76: 87:ae:ce:8f:aa:2a:c2:b2:94:81:4e:73:cc:6d:1b: b2:18:88:35:e1:2b:9d:1d:0a:c7:f0:76:4d:e2:17: 58:a3:6e:3d:2c:a0:1b:b3:1a:c2:a2:41:0c:1e:19: fc:d9:61:c9:2d:d8:1d:97:e6:3b:ac:15:6b:5d:db: b3:a1:9d:ee:3c:1c:48:b2:aa:23:e6:33:0f:f9:06: 4b:9a:8d:7c:1b:c7:eb:fa:67:b9:2c:66:c4:fc:6a: 6a:41:9d:a0:1a:1f:34:95:a5:51:b9:55:fc:a7:74: c8:68:77:38:60:53:04:4c:29:48:88:05:9a:da:69: 63:31:88:24:29:f1:0a:18:87:10:cc:0e:7e:2e:50: 98:9a:0a:68:e8:7f:0b:55:fd:e0:22:c3:80:6f:6d: 0a:5a:ee:99:f3:7c:94:ac:f4:23:9f:5e:0e:77:12: bd:96:3e:ed:05:96:1d:04:e3:e9:bc:cf:fe:93:36: 0e:0f:24:51:44:34:dd:66:0c:c1:92:aa:e1:23:fc: 55:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B6:12:1A:9D:AC:D3:5E:D9:FF:9D:6F:54:1B:93:83:88:B7:07:C1 X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:93:08:2f:46:6a:93:b4:51:2a:95:ce:15:d9:4a:c7:35:98: ec:93:a2:d9:c1:31:69:7d:d5:a7:64:e5:56:f1:98:a1:be:a8: 98:a0:78:33:01:45:d8:c8:50:51:74:9f:8e:f4:7f:89:96:66: 6c:12:fd:31:f9:55:dc:d1:24:c9:80:e3:3d:5d:13:d1:69:1e: 7d:5c:2e:f9:ce:55:2b:e8:c9:b7:2a:ef:5f:e4:9e:c0:a2:d9: d0:b8:52:93:d8:51:34:5a:8f:61:7f:3e:9a:a4:ce:4f:62:a2: e7:7d:0a:ae:1e:3e:89:a0:4c:44:11:8d:44:f6:4d:99:46:be: f2:fe:c0:54:06:37:11:40:36:62:1a:ff:db:b6:88:a1:c9:a7: ee:61:d8:4f:f5:4b:31:46:5e:c1:e1:31:c6:67:73:a8:89:fc: 3d:e2:74:ee:46:ed:bb:f9:cf:d3:2a:ea:c0:37:95:51:2a:6a: 6e:57:11:81:c7:e6:1e:0a:80:46:cf:44:08:d1:48:4a:47:06: 95:62:c6:45:cd:f9:75:99:90:86:e0:37:09:c5:d2:c9:3d:38: c4:75:90:f5:79:39:55:ea:96:c6:ce:67:74:7d:d1:96:85:e9: 88:3f:f8:46:1a:81:cc:5b:04:80:dd:a7:e6:7a:25:b2:7b:e1: 1c:a6:6f:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjUwNzIxMDA1ODE3WhcNMjUwNzI4MDA1ODE3WjAYMRYwFAYD VQQDEw02ODdkOTBhYS0yNDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWhaemV/UpDCwEMcBObRGpPdrYlQsq5bIJYqjGb8fiM94to5eeqVr/oVTeAj AxXtkGOr0MYI0YCufHaHrs6PqirCspSBTnPMbRuyGIg14SudHQrH8HZN4hdYo249 LKAbsxrCokEMHhn82WHJLdgdl+Y7rBVrXduzoZ3uPBxIsqoj5jMP+QZLmo18G8fr +me5LGbE/GpqQZ2gGh80laVRuVX8p3TIaHc4YFMETClIiAWa2mljMYgkKfEKGIcQ zA5+LlCYmgpo6H8LVf3gIsOAb20KWu6Z83yUrPQjn14OdxK9lj7tBZYdBOPpvM/+ kzYODyRRRDTdZgzBkqrhI/xVjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBK2Ehqd rNNe2f+db1Qbk4OItwfBMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWkwgvRmqTtFEqlc4V2UrHNZjsk6LZwTFpfdWnZOVW8ZihvqiYoHgz AUXYyFBRdJ+O9H+JlmZsEv0x+VXc0STJgOM9XRPRaR59XC75zlUr6Mm3Ku9f5J7A otnQuFKT2FE0Wo9hfz6apM5PYqLnfQquHj6JoExEEY1E9k2ZRr7y/sBUBjcRQDZi Gv/btoihyafuYdhP9UsxRl7B4THGZ3Ooifw94nTuRu27+c/TKurAN5VRKmpuVxGB x+YeCoBGz0QI0UhKRwaVYsZFzfl1mZCG4DcJxdLJPTjEdZD1eTlV6pbGzmd0fdGW hemIP/hGGoHMWwSA3afmeiWye+Ecpm+6 -----END CERTIFICATE-----Generated at Mon Jul 21 09:09:44 2025 by rpki-client