$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft File: W2pwDO4aU9VRnlolxk0a0ro3zac.mft (raw, json) Hash identifier: 5lspciEHGGq5ToGkLksfxMUZ/7F3myToud9xklBWWys= Subject key identifier: 59:47:FF:EA:FD:4C:01:C8:62:D5:B2:B8:A9:4E:F3:D8:A2:BE:F5:E9 Authority key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 Certificate issuer: /CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft Manifest number: 0279 Signing time: Sat 19 Jul 2025 02:08:22 +0000 Manifest this update: Sat 19 Jul 2025 02:08:22 +0000 Manifest next update: Sat 26 Jul 2025 02:08:22 +0000 Files and hashes: 1: W2pwDO4aU9VRnlolxk0a0ro3zac.crl (hash: +tNX8RP67rXzEgW1dS90qDGdlS/Buiuz3dTlvUtjfjM=) 2: 53AA673C16A911ED88058C80C4F9AE02.roa (hash: TZ/n2fdCp6It0G4ugsLwMjkFuDgasyyKStMAe77+R34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAB94, serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Validity Not Before: Jul 19 02:08:22 2025 GMT Not After : Jul 26 02:08:22 2025 GMT Subject: CN=687afe16-6e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d7:5e:f9:10:0c:41:18:92:ed:e8:29:75:58: 51:c9:01:5d:f7:97:6d:73:13:9f:db:83:e2:5a:58: 49:55:28:b9:3c:8a:8c:7a:56:a9:b0:82:12:9f:66: 3e:bb:3b:dc:ef:8e:9a:ba:ea:11:d7:79:46:80:aa: ea:59:52:2b:ca:0d:32:f2:82:8a:df:75:96:14:2e: 79:88:d4:98:75:2d:cd:77:2e:c0:18:67:19:ac:dc: 75:52:06:4e:90:4a:40:24:ff:cf:93:a9:50:10:93: 27:ec:69:5a:dd:0f:0b:d7:4f:ab:d9:75:38:b1:9b: 89:66:5e:b6:96:97:60:47:7c:7f:af:03:d9:d8:f1: 05:6f:c9:cf:d7:33:6e:3e:3b:c0:1b:31:92:4f:1b: 51:e3:f9:af:ba:ec:6e:68:97:73:f3:59:68:ab:ea: dd:8a:a4:c1:42:df:2b:78:35:94:25:88:0e:5d:48: d9:be:5a:60:1c:8b:76:48:1a:10:cb:10:c0:4f:ff: b2:5d:56:9b:5f:2c:cc:03:1e:e4:dc:18:3e:2a:b2: 49:6f:bb:da:25:2b:67:7c:7a:c4:cb:ef:bc:9e:62: c7:e5:b4:60:df:61:87:13:16:73:c0:7e:e9:64:6a: f3:c4:2c:d9:e1:c5:51:ff:c4:de:28:f0:c9:cd:f6: 59:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:47:FF:EA:FD:4C:01:C8:62:D5:B2:B8:A9:4E:F3:D8:A2:BE:F5:E9 X509v3 Authority Key Identifier: keyid:5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:06:b2:3c:96:8d:84:ca:06:d0:78:41:cf:4a:c9:e3:ce:ae: 67:dd:bf:64:7a:4f:cf:67:24:a9:93:1d:1e:74:ff:c0:66:eb: c6:4e:89:de:97:dd:d8:96:35:b7:0b:8b:a3:97:dd:c4:f2:fb: 85:fa:c5:90:d0:98:37:fa:e5:a2:9c:1a:e5:e5:82:a2:b1:10: 89:67:1d:b1:a0:07:b7:7b:b7:f7:05:07:0f:85:51:7b:c8:58: f9:3e:5c:5b:30:20:05:39:68:65:d3:02:12:d1:48:75:63:1a: 65:8d:ea:a6:a1:7f:c8:d9:5c:03:fe:8a:9a:b1:ad:cb:2d:50: 1c:49:af:b6:57:2c:e8:fb:6f:02:35:15:82:da:d9:b7:52:01: 8d:1f:6c:d6:0a:40:c7:75:43:ef:e0:0e:65:74:1b:03:cc:7d: 5a:61:16:b2:18:07:66:f2:16:be:61:96:e9:11:53:45:d3:35: 55:bc:e1:47:27:81:c9:af:ec:18:87:e6:34:05:75:1f:38:0f: 98:3c:eb:92:5a:6b:d5:5d:29:d3:22:56:a4:04:74:b2:da:c4: b1:fa:29:71:bd:5a:e3:66:10:3a:52:e1:c4:b0:db:c2:50:a0: f2:6b:53:ba:3b:ce:26:68:d2:13:33:7c:5e:93:06:40:e6:c2: 4d:0e:12:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCOTQxMTAvBgNVBAUTKDVCNkE3MDBDRUUxQTUzRDU1MTlFNUEyNUM2NEQxQUQy QkEzN0NEQTcwHhcNMjUwNzE5MDIwODIyWhcNMjUwNzI2MDIwODIyWjAYMRYwFAYD VQQDEw02ODdhZmUxNi02ZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNde+RAMQRiS7egpdVhRyQFd95dtcxOf24PiWlhJVSi5PIqMelapsIISn2Y+ uzvc746auuoR13lGgKrqWVIryg0y8oKK33WWFC55iNSYdS3Ndy7AGGcZrNx1UgZO kEpAJP/Pk6lQEJMn7Gla3Q8L10+r2XU4sZuJZl62lpdgR3x/rwPZ2PEFb8nP1zNu PjvAGzGSTxtR4/mvuuxuaJdz81loq+rdiqTBQt8reDWUJYgOXUjZvlpgHIt2SBoQ yxDAT/+yXVabXyzMAx7k3Bg+KrJJb7vaJStnfHrEy++8nmLH5bRg32GHExZzwH7p ZGrzxCzZ4cVR/8TeKPDJzfZZ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlH/+r9 TAHIYtWyuKlO89iivvXpMB8GA1UdIwQYMBaAFFtqcAzuGlPVUZ5aJcZNGtK6N82n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUI5NC83MDcwMjNGQTE2 QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5VlJubG9seGswYTBybzN6 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cycHdETzRhVTlWUm5sb2x4azBhMHJvM3phYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUI5NC83MDcwMjNGQTE2QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5 VlJubG9seGswYTBybzN6YWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzBrI8lo2EygbQeEHPSsnjzq5n3b9kek/PZySpkx0edP/AZuvGTone l93YljW3C4ujl93E8vuF+sWQ0Jg3+uWinBrl5YKisRCJZx2xoAe3e7f3BQcPhVF7 yFj5PlxbMCAFOWhl0wIS0Uh1YxpljeqmoX/I2VwD/oqasa3LLVAcSa+2Vyzo+28C NRWC2tm3UgGNH2zWCkDHdUPv4A5ldBsDzH1aYRayGAdm8ha+YZbpEVNF0zVVvOFH J4HJr+wYh+Y0BXUfOA+YPOuSWmvVXSnTIlakBHSy2sSx+ilxvVrjZhA6UuHEsNvC UKDya1O6O84maNITM3xekwZA5sJNDhIQ -----END CERTIFICATE-----Generated at Sun Jul 20 11:22:38 2025 by rpki-client