$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft File: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft (raw, json) Hash identifier: dWOTGG3vaDaUdRtlnPcwAbqJ/cu2DPi8Hfkeqi4DAH4= Subject key identifier: 8E:8C:12:46:B3:2B:7A:CD:E4:15:1E:8D:18:47:0A:B3:76:04:73:97 Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 065D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft Manifest number: 0650 Signing time: Tue 22 Jul 2025 22:57:08 +0000 Manifest this update: Tue 22 Jul 2025 22:57:07 +0000 Manifest next update: Tue 29 Jul 2025 22:57:07 +0000 Files and hashes: 1: 1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl (hash: 1sSOcVKm6bbMGB26KEvTlhfzWFlW/uj6RVeIBxxLORo=) 2: D78A16ECCAC311EC910B8C20C4F9AE02.roa (hash: oJo0EldVtMJvTJnA4FpJe7JGIUD/xhTk+VY6Q3vUpoY=) 3: D6692528CAC311EC910B8C20C4F9AE02.roa (hash: ZgaT6NUPSJGrS2FDGhXNf1URQXdcMTQg5TCptCSVeas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897, serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Jul 22 22:57:07 2025 GMT Not After : Jul 29 22:57:07 2025 GMT Subject: CN=68801744-da49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:48:71:d4:e2:b3:7f:1b:1f:16:95:cd:fb:b2: a5:8b:ad:4e:4d:35:5d:67:54:76:42:f3:03:af:03: 8e:1e:73:7e:29:4c:8c:ba:fa:a5:48:d7:56:fc:4d: c3:ac:0d:7f:28:fc:7f:f2:0f:9d:3b:00:d6:55:17: 35:64:87:f7:d2:b1:cd:82:dd:1e:fe:df:f6:fb:b6: ab:6c:a6:7e:2d:42:4d:d0:db:8a:e0:a4:52:0a:6c: d8:59:e7:b8:46:62:a0:08:23:ef:f4:90:6c:1a:92: 75:f1:e6:97:e4:31:2a:4f:f8:9c:af:68:88:c7:17: d9:b8:9a:d0:0e:6f:4f:5b:ac:50:3c:90:8e:8a:7b: ca:47:72:c1:8c:ff:62:a2:cc:52:20:92:d7:aa:95: 6c:b4:a1:cd:63:0f:45:44:ba:ac:5f:bc:3c:d6:5f: f3:4e:7d:0c:99:2b:82:c2:7b:f1:77:29:8b:d5:0a: f3:2a:f0:98:2c:fb:01:3b:05:e4:ca:25:d5:6a:3c: ab:19:bb:21:ff:89:05:2d:31:df:46:5f:d3:a5:09: 2c:a3:da:fc:15:4b:44:53:88:60:8d:c7:71:af:51: de:48:44:d5:84:39:ff:a6:33:0a:28:e6:6c:f2:ac: 30:dd:6a:03:03:75:93:15:d9:0c:83:05:57:2b:5d: a2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:8C:12:46:B3:2B:7A:CD:E4:15:1E:8D:18:47:0A:B3:76:04:73:97 X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:89:72:3f:62:ae:05:f1:50:ce:c4:6f:fd:85:eb:8c:b8:17: 8c:25:83:be:5c:5d:b3:42:92:f4:6b:5c:b9:d9:d6:8e:b6:68: 79:20:df:1a:99:a0:0d:eb:98:2b:ac:9a:ea:ff:b8:77:6f:a9: fa:39:0f:91:8b:a5:3e:29:1d:3e:e0:69:cf:16:29:bb:ed:05: 33:d1:00:51:73:3a:47:14:51:b1:47:df:7b:2c:b2:6d:55:57: 40:5d:c8:29:69:2b:05:bf:82:05:a5:40:78:a3:09:1b:e5:1b: 36:ac:ae:d9:8e:df:b7:e5:f4:19:11:30:38:27:e3:86:38:a2: 09:1b:ea:47:8a:af:7f:65:3a:53:c1:56:55:31:12:18:af:d0: 28:a3:1f:0e:70:db:4d:2b:49:b2:dc:ca:5b:df:11:46:30:b1: 2a:a3:25:3b:84:7f:fa:eb:cd:a9:6b:7b:c9:62:25:f0:09:dc: fd:92:a0:26:11:91:02:77:1d:f1:a2:4e:89:da:16:cb:53:d7: 99:a7:a3:c4:65:de:18:fb:72:2d:ce:7d:db:4b:0f:25:f4:2f: 25:ea:e5:86:5c:a4:c0:01:f7:0c:dd:da:06:4b:30:89:a2:6f: 99:2e:ea:a1:9a:77:cb:ed:e6:77:62:c0:f7:d1:6c:32:b5:47: 7a:d7:7d:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjUwNzIyMjI1NzA3WhcNMjUwNzI5MjI1NzA3WjAYMRYwFAYD VQQDEw02ODgwMTc0NC1kYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEhx1OKzfxsfFpXN+7Kli61OTTVdZ1R2QvMDrwOOHnN+KUyMuvqlSNdW/E3D rA1/KPx/8g+dOwDWVRc1ZIf30rHNgt0e/t/2+7arbKZ+LUJN0NuK4KRSCmzYWee4 RmKgCCPv9JBsGpJ18eaX5DEqT/icr2iIxxfZuJrQDm9PW6xQPJCOinvKR3LBjP9i osxSIJLXqpVstKHNYw9FRLqsX7w81l/zTn0MmSuCwnvxdymL1QrzKvCYLPsBOwXk yiXVajyrGbsh/4kFLTHfRl/TpQkso9r8FUtEU4hgjcdxr1HeSETVhDn/pjMKKOZs 8qww3WoDA3WTFdkMgwVXK12iNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6MEkaz K3rN5BUejRhHCrN2BHOXMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTg5Ny9FMUQxMTc3MDk1QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4 VHhTUzBHTGJEWkdVNmZVSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADiXI/Yq4F8VDOxG/9heuMuBeMJYO+XF2zQpL0a1y52daOtmh5IN8a maAN65grrJrq/7h3b6n6OQ+Ri6U+KR0+4GnPFim77QUz0QBRczpHFFGxR997LLJt VVdAXcgpaSsFv4IFpUB4owkb5Rs2rK7Zjt+35fQZETA4J+OGOKIJG+pHiq9/ZTpT wVZVMRIYr9Aoox8OcNtNK0my3Mpb3xFGMLEqoyU7hH/6682pa3vJYiXwCdz9kqAm EZECdx3xok6J2hbLU9eZp6PEZd4Y+3Itzn3bSw8l9C8l6uWGXKTAAfcM3doGSzCJ om+ZLuqhmnfL7eZ3YsD30WwytUd6130O -----END CERTIFICATE-----Generated at Wed Jul 23 02:23:37 2025 by rpki-client