$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft File: exrifTz1FJnFBW59qHNmXk5BUXk.mft (raw, json) Hash identifier: Qqrw65fjodGzDMTss8FIYTxGgDAuYCNyJ3HBfQ3PdrY= Subject key identifier: 09:AF:0A:55:1A:B5:7B:44:9E:79:7A:54:1D:18:3C:3E:2D:EE:5D:B8 Authority key identifier: 7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79 Certificate issuer: /CN=A91AB193/serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft Manifest number: F5 Signing time: Sat 19 Jul 2025 05:30:59 +0000 Manifest this update: Sat 19 Jul 2025 05:30:59 +0000 Manifest next update: Sat 26 Jul 2025 05:30:59 +0000 Files and hashes: 1: exrifTz1FJnFBW59qHNmXk5BUXk.crl (hash: qvXsZWZg/c2aI6bQNRZzsdh4dS0iVDupFMPsGgdazw0=) 2: 0E3462143D2D11EFA4B90A1EC4F9AE02.roa (hash: 8YLAmzfkAq7wWaHxcBzfEAiWvy9p4CNzd9sT8leEWdE=) 3: AC82414A392511EF88F70D39C4F9AE02.roa (hash: wtDTYViLvQ71y8LfCWrpB6kCmz/GyFN75jh6EmmBpDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB193, serialNumber=7B1AE27D3CF51499C5056E7DA873665E4E415179 Validity Not Before: Jul 19 05:30:59 2025 GMT Not After : Jul 26 05:30:59 2025 GMT Subject: CN=687b2d93-5373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:43:d2:f1:72:b0:b2:06:dc:42:8e:09:e2:ea: b2:79:42:96:4c:8b:7b:67:af:6a:a8:52:f5:41:f8: 31:04:1c:e8:38:a3:80:7c:4c:0f:5c:9d:b5:7a:1b: 4c:e5:10:e6:9c:a4:b3:c9:1e:84:9a:c4:60:74:73: 41:8e:b3:b8:c2:ab:6a:08:eb:d9:4f:0c:19:46:60: ff:55:85:f2:97:6b:16:f1:64:dc:98:81:1f:ea:b7: 59:33:01:25:a0:d3:41:8e:fb:8e:e5:4c:2f:e9:4d: 77:09:3c:17:ce:0a:e3:9f:37:d1:0c:57:4e:eb:97: 09:4a:32:21:bd:97:43:d8:a8:56:f3:f8:71:48:50: 2e:8f:f6:22:f2:d3:d1:09:1f:04:94:7a:00:b3:df: 0f:59:67:b6:d8:0e:b9:0e:a6:8d:ba:88:0f:0c:c0: 58:e1:9d:dd:43:96:f3:96:46:7a:bd:45:0b:fe:b7: b2:2c:59:4e:d1:6e:2f:bf:b4:7f:dc:72:bb:38:06: 4a:65:f7:42:30:2f:32:e6:8c:0b:16:38:a5:f6:89: 5a:d0:83:6d:5d:c1:a1:1b:2f:d3:e7:a9:6d:7e:97: 90:65:82:a7:ec:31:2c:0f:ad:54:ab:a1:8e:20:38: 88:b7:5e:42:33:b6:c2:86:91:83:79:dd:83:0d:53: 20:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AF:0A:55:1A:B5:7B:44:9E:79:7A:54:1D:18:3C:3E:2D:EE:5D:B8 X509v3 Authority Key Identifier: keyid:7B:1A:E2:7D:3C:F5:14:99:C5:05:6E:7D:A8:73:66:5E:4E:41:51:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exrifTz1FJnFBW59qHNmXk5BUXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB193/93D4E490F63111EE9ACBE221C4F9AE02/exrifTz1FJnFBW59qHNmXk5BUXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:dc:fe:3c:89:97:a7:a8:ef:39:0c:d4:de:16:d7:f5:83:50: 87:a3:ca:84:d9:78:42:7f:a3:59:34:26:da:ed:4c:6b:c4:76: 70:dc:02:7f:b3:d3:ed:e4:84:fc:37:1d:56:b3:66:d9:79:4f: 65:00:52:32:e5:a6:c9:3f:78:93:8d:aa:ba:33:ee:d7:67:a1: 1f:d6:1b:02:1f:80:77:9f:9c:4c:b1:51:6d:12:d9:6e:ea:7a: 70:00:5f:11:30:1d:2f:71:0d:41:86:41:cb:e0:5c:d9:4b:94: e3:a9:5d:39:15:a3:75:04:84:11:f6:3a:a9:98:3a:6d:0d:d3: b5:86:b3:ff:7c:32:c3:7d:80:eb:c8:a2:61:6f:82:bd:86:6e: 5d:2a:22:9b:44:dc:02:56:03:47:40:59:29:aa:e8:fc:a5:4d: 07:a8:7f:97:e5:b6:ac:47:4e:3f:49:b6:cd:33:2e:c8:15:20: 73:7d:ed:e4:aa:0a:c0:b5:f9:5d:68:81:fd:2d:6d:eb:39:9d: dc:c1:1f:79:8c:57:45:8a:18:07:0b:8b:c4:5d:16:b3:53:24: 4a:86:68:f3:a2:01:24:17:5c:c5:8f:27:c8:15:ac:a3:0e:66: 6d:01:32:64:fb:e4:15:d5:cd:7d:be:35:dc:12:16:fc:d2:f0: 57:0a:45:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIxOTMxMTAvBgNVBAUTKDdCMUFFMjdEM0NGNTE0OTlDNTA1NkU3REE4NzM2NjVF NEU0MTUxNzkwHhcNMjUwNzE5MDUzMDU5WhcNMjUwNzI2MDUzMDU5WjAYMRYwFAYD VQQDEw02ODdiMmQ5My01MzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUPS8XKwsgbcQo4J4uqyeUKWTIt7Z69qqFL1QfgxBBzoOKOAfEwPXJ21ehtM 5RDmnKSzyR6EmsRgdHNBjrO4wqtqCOvZTwwZRmD/VYXyl2sW8WTcmIEf6rdZMwEl oNNBjvuO5Uwv6U13CTwXzgrjnzfRDFdO65cJSjIhvZdD2KhW8/hxSFAuj/Yi8tPR CR8ElHoAs98PWWe22A65DqaNuogPDMBY4Z3dQ5bzlkZ6vUUL/reyLFlO0W4vv7R/ 3HK7OAZKZfdCMC8y5owLFjil9ola0INtXcGhGy/T56ltfpeQZYKn7DEsD61Uq6GO IDiIt15CM7bChpGDed2DDVMgpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmvClUa tXtEnnl6VB0YPD4t7l24MB8GA1UdIwQYMBaAFHsa4n089RSZxQVufahzZl5OQVF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjE5My85M0Q0RTQ5MEY2 MzExMUVFOUFDQkUyMjFDNEY5QUUwMi9leHJpZlR6MUZKbkZCVzU5cUhObVhrNUJV WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4cmlmVHoxRkpuRkJXNTlxSE5tWGs1QlVYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjE5My85M0Q0RTQ5MEY2MzExMUVFOUFDQkUyMjFDNEY5QUUwMi9leHJpZlR6MUZK bkZCVzU5cUhObVhrNUJVWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb3P48iZenqO85DNTeFtf1g1CHo8qE2XhCf6NZNCba7UxrxHZw3AJ/ s9Pt5IT8Nx1Ws2bZeU9lAFIy5abJP3iTjaq6M+7XZ6Ef1hsCH4B3n5xMsVFtEtlu 6npwAF8RMB0vcQ1BhkHL4FzZS5TjqV05FaN1BIQR9jqpmDptDdO1hrP/fDLDfYDr yKJhb4K9hm5dKiKbRNwCVgNHQFkpquj8pU0HqH+X5basR04/SbbNMy7IFSBzfe3k qgrAtfldaIH9LW3rOZ3cwR95jFdFihgHC4vEXRazUyRKhmjzogEkF1zFjyfIFayj DmZtATJk++QV1c19vjXcEhb80vBXCkVq -----END CERTIFICATE-----Generated at Sun Jul 20 10:41:28 2025 by rpki-client