$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: 8lTivRgEGlEVsQljPgmkiCXpudbO2WSJRd5hg0MJHO4= Subject key identifier: 87:E3:72:05:89:56:13:15:20:44:66:55:9C:5D:C6:58:C1:C0:A3:D3 Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 0176 Signing time: Sat 19 Jul 2025 04:03:21 +0000 Manifest this update: Sat 19 Jul 2025 04:03:20 +0000 Manifest next update: Sat 26 Jul 2025 04:03:20 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: JkfMNYXFBLqJfFtjzRW0fV7SqsZUlenGFNu+Nhr6MW0=) 2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: ed3VnRz1sRChg/cFQmGXFi6QslMtcDU5X1xXHCQiW6k=) 3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Jul 19 04:03:20 2025 GMT Not After : Jul 26 04:03:20 2025 GMT Subject: CN=687b1909-b485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:46:59:9b:a6:76:ae:66:e0:e1:0a:48:a0: aa:8d:39:df:ca:16:92:69:98:bf:b8:37:42:a4:1b: 00:99:8d:64:55:f6:98:3d:a8:e1:a7:b8:e7:3c:b4: 03:10:8c:58:db:3c:4b:12:e8:2e:0a:59:c5:e3:21: 8e:64:f7:75:26:52:f0:e0:36:25:a0:5d:e1:f5:cc: d4:69:b6:5d:20:50:1f:ad:96:d4:77:5c:15:15:ff: 25:8b:75:5b:1b:6a:fc:e4:bb:df:65:95:2c:2f:58: a4:e7:79:73:69:af:ed:14:1e:cd:52:64:3f:6c:15: 2e:15:fe:51:07:3e:a0:3f:79:08:a4:1f:91:4f:5c: 8c:4e:32:6c:b1:f3:d1:d7:b8:73:35:53:df:18:d9: ff:5b:a7:9f:57:98:b2:21:58:e3:c3:9a:d2:3a:80: 01:ab:62:25:4b:ae:38:c7:df:64:e8:c0:83:bb:5e: a4:0e:65:61:c1:ed:a9:1f:47:7c:24:4b:28:17:3c: b2:4a:8f:3c:01:49:6e:a4:04:c9:9e:78:36:b9:af: 86:94:99:18:2e:f5:8d:9b:01:89:b6:d9:00:37:1e: c6:52:40:cb:97:30:0d:97:92:e7:d2:7d:f0:5e:af: 93:7d:de:b9:f2:96:18:97:0a:9c:1c:b4:0a:90:91: 01:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E3:72:05:89:56:13:15:20:44:66:55:9C:5D:C6:58:C1:C0:A3:D3 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:5b:4a:37:af:6e:f4:57:60:60:52:b9:b2:2c:8c:99:b4:d1: 03:2d:54:4b:77:63:43:23:c1:40:d4:55:f0:d6:9a:a5:cc:77: 13:e6:18:6a:e5:d2:cf:df:4c:63:4d:75:15:a1:61:8c:5b:e7: d2:79:37:fe:d4:65:27:18:60:fe:f7:b7:e1:88:ab:ba:48:f5: 33:df:ba:2c:51:f1:07:7f:98:0a:ee:0c:0c:61:73:75:8a:f8: 7e:f1:c7:34:86:b8:0a:6b:60:f1:27:03:9d:90:03:ab:a8:25: 5b:59:67:5c:0b:32:b8:45:fd:37:f4:67:9b:b0:58:94:ba:7d: 48:21:38:16:bf:6c:68:20:12:5d:eb:39:7d:d5:39:9c:9b:c9: 2e:8b:75:98:a5:9e:0a:b1:cb:b8:8e:8c:bf:35:37:84:57:79: 54:ae:94:99:c9:95:e1:5a:e6:d8:b1:10:ae:41:c0:e8:bc:1a: f3:2d:f3:06:0a:4b:12:e4:0c:a8:6f:77:05:c7:fa:a4:a1:0a: 4d:20:03:b9:df:3d:aa:d6:79:31:56:02:3b:8b:1d:19:b9:89: 2a:51:d9:46:2c:55:08:fa:68:6f:ad:a5:d0:e2:4a:ed:0c:96: 87:ab:a7:34:07:97:42:c7:b0:f7:44:81:38:a5:93:23:23:79: c5:20:c0:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUwNzE5MDQwMzIwWhcNMjUwNzI2MDQwMzIwWjAYMRYwFAYD VQQDEw02ODdiMTkwOS1iNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxthGWZumdq5m4OEKSKCqjTnfyhaSaZi/uDdCpBsAmY1kVfaYPajhp7jnPLQD EIxY2zxLEuguClnF4yGOZPd1JlLw4DYloF3h9czUabZdIFAfrZbUd1wVFf8li3Vb G2r85LvfZZUsL1ik53lzaa/tFB7NUmQ/bBUuFf5RBz6gP3kIpB+RT1yMTjJssfPR 17hzNVPfGNn/W6efV5iyIVjjw5rSOoABq2IlS644x99k6MCDu16kDmVhwe2pH0d8 JEsoFzyySo88AUlupATJnng2ua+GlJkYLvWNmwGJttkANx7GUkDLlzANl5Ln0n3w Xq+Tfd658pYYlwqcHLQKkJEBbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfjcgWJ VhMVIERmVZxdxljBwKPTMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXW0o3r270V2BgUrmyLIyZtNEDLVRLd2NDI8FA1FXw1pqlzHcT5hhq 5dLP30xjTXUVoWGMW+fSeTf+1GUnGGD+97fhiKu6SPUz37osUfEHf5gK7gwMYXN1 ivh+8cc0hrgKa2DxJwOdkAOrqCVbWWdcCzK4Rf039GebsFiUun1IITgWv2xoIBJd 6zl91Tmcm8kui3WYpZ4Kscu4joy/NTeEV3lUrpSZyZXhWubYsRCuQcDovBrzLfMG CksS5Ayob3cFx/qkoQpNIAO53z2q1nkxVgI7ix0ZuYkqUdlGLFUI+mhvraXQ4krt DJaHq6c0B5dCx7D3RIE4pZMjI3nFIMA+ -----END CERTIFICATE-----Generated at Sun Jul 20 10:43:48 2025 by rpki-client