$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: JNZ4QSPUWZsNvcAnaR8FEfMhCqLmV5K/GcqZ6asUQDU= Subject key identifier: A3:C4:9D:56:41:4E:40:A8:EB:EA:70:35:3C:3C:00:62:28:B0:D5:91 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 0140 Signing time: Sat 19 Jul 2025 04:33:30 +0000 Manifest this update: Sat 19 Jul 2025 04:33:29 +0000 Manifest next update: Sat 26 Jul 2025 04:33:29 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: Cd0y9Zst0Iy62wWBTC9BKdhd9a0/L6GL6UCzN1cBFTs=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: PTNlCaFqxgAXX8dh1a7LSvNmOXF/4erL00o7/e/JlJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Jul 19 04:33:29 2025 GMT Not After : Jul 26 04:33:29 2025 GMT Subject: CN=687b201a-46b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5d:0f:97:8a:19:f8:36:c1:5d:7f:19:66:66: de:be:a6:09:41:4f:7c:fe:db:82:9c:5d:94:e3:0b: 1f:4b:f5:29:9e:65:2d:e4:c2:57:83:44:f9:e0:cb: 46:1d:9d:d3:75:13:2a:d8:55:9e:3c:64:12:21:7f: fd:af:17:69:f0:9b:5a:d9:3a:b9:29:60:51:36:6d: 62:6a:4b:fb:21:cf:c9:43:d4:73:57:f3:6e:02:50: 01:d9:d9:e7:a4:aa:6f:d7:ef:6a:26:2e:d7:57:9a: 92:55:6e:63:69:6b:70:85:db:b6:a4:de:7e:51:85: 2b:eb:89:0e:19:af:ef:9c:6b:b5:34:1b:e7:08:41: 75:54:7f:58:32:9c:79:f8:02:df:06:12:13:1c:f2: f9:cb:9e:a7:06:42:3c:bc:c7:77:f2:42:51:f9:9a: 29:15:f7:de:d3:a7:07:47:2b:47:41:6b:0b:8f:cf: e2:b4:b9:65:54:0a:c4:03:a2:b6:d6:37:3e:1b:b0: 41:81:7c:16:d0:61:aa:bd:ce:1b:e0:a7:c6:94:7c: 2a:aa:7a:b6:53:98:71:06:f4:31:96:c5:8a:58:ef: 95:2e:1b:43:ea:aa:fd:00:41:3b:4f:8a:3f:ea:f9: 4b:d0:e3:87:fe:70:ed:42:84:c9:e0:b6:18:4c:57: 5f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C4:9D:56:41:4E:40:A8:EB:EA:70:35:3C:3C:00:62:28:B0:D5:91 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:65:ba:df:09:99:16:87:0e:93:37:34:a0:6b:c0:d5:c7:b5: c5:c4:fd:4b:eb:0a:74:69:41:57:13:a8:de:f3:cb:a3:e0:8a: cd:e4:e3:d7:81:f8:d5:f8:3b:66:bb:ae:62:51:72:df:bb:da: 72:5c:55:1b:0d:fa:04:9a:c5:2c:90:ae:44:49:f3:1a:f1:a5: 1c:50:6e:6b:bb:96:1a:22:84:60:75:b7:4b:25:af:2a:85:6f: 80:a2:fd:2d:e4:12:dd:7f:9a:4c:67:15:15:7a:04:6f:49:0f: 7e:fa:80:1c:fa:77:f1:77:8a:ab:c7:b3:b4:88:c7:1e:27:d7: f7:ae:fb:e6:30:51:e1:99:9d:4c:df:a4:05:4f:4c:93:27:d9: 8f:0c:10:10:5d:1b:9d:75:6e:9a:a6:b9:b6:f4:b3:7e:ce:bc: 58:25:a9:0c:b8:f8:e5:fd:e0:bf:84:0c:42:7f:57:ba:90:c2: aa:5e:56:ae:b5:ef:7d:cc:31:e7:46:77:bc:03:14:5d:80:cf: a7:b3:4e:31:a2:53:e1:c9:0a:bf:09:d1:e5:ee:30:19:71:79: 7d:36:e1:d0:50:dc:74:88:ab:c3:39:17:48:01:12:eb:4a:cf: 75:0a:1c:25:e7:a0:60:26:30:06:1e:2a:e7:26:47:e2:22:d0: 42:b2:a4:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjUwNzE5MDQzMzI5WhcNMjUwNzI2MDQzMzI5WjAYMRYwFAYD VQQDEw02ODdiMjAxYS00NmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0l0Pl4oZ+DbBXX8ZZmbevqYJQU98/tuCnF2U4wsfS/UpnmUt5MJXg0T54MtG HZ3TdRMq2FWePGQSIX/9rxdp8Jta2Tq5KWBRNm1iakv7Ic/JQ9RzV/NuAlAB2dnn pKpv1+9qJi7XV5qSVW5jaWtwhdu2pN5+UYUr64kOGa/vnGu1NBvnCEF1VH9YMpx5 +ALfBhITHPL5y56nBkI8vMd38kJR+ZopFffe06cHRytHQWsLj8/itLllVArEA6K2 1jc+G7BBgXwW0GGqvc4b4KfGlHwqqnq2U5hxBvQxlsWKWO+VLhtD6qr9AEE7T4o/ 6vlL0OOH/nDtQoTJ4LYYTFdffwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPEnVZB TkCo6+pwNTw8AGIosNWRMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbZbrfCZkWhw6TNzSga8DVx7XFxP1L6wp0aUFXE6je88uj4IrN5OPX gfjV+Dtmu65iUXLfu9pyXFUbDfoEmsUskK5ESfMa8aUcUG5ru5YaIoRgdbdLJa8q hW+Aov0t5BLdf5pMZxUVegRvSQ9++oAc+nfxd4qrx7O0iMceJ9f3rvvmMFHhmZ1M 36QFT0yTJ9mPDBAQXRuddW6aprm29LN+zrxYJakMuPjl/eC/hAxCf1e6kMKqXlau te99zDHnRne8AxRdgM+ns04xolPhyQq/CdHl7jAZcXl9NuHQUNx0iKvDORdIARLr Ss91Chwl56BgJjAGHirnJkfiItBCsqSY -----END CERTIFICATE-----Generated at Sun Jul 20 13:04:03 2025 by rpki-client