$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft File: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft (raw, json) Hash identifier: W9Lq1/sv/bgq313IfIAPHktj6hkHVDXbzLmFPuxlZLs= Subject key identifier: 6C:1F:D3:75:0D:30:F8:55:D7:A3:61:B0:1C:8E:E3:AB:79:29:67:7B Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft Manifest number: 1658 Signing time: Thu 24 Jul 2025 16:50:13 +0000 Manifest this update: Thu 24 Jul 2025 16:50:12 +0000 Manifest next update: Thu 31 Jul 2025 16:50:12 +0000 Files and hashes: 1: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl (hash: v0hpXTz0ohGhwMeT6ALNhxzPsJCVHMfUBks7UoxkQGs=) 2: 7BC4E6DE322C11EFBC879F31C4F9AE02.roa (hash: j99DqXIlX/DsX6CAhLDODI4Li/SA5fMocxzYjvHfoI0=) 3: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (hash: 8Wwh2LGsfMleJz4kPXncR947wixaVvdi2YpWJ6WAnNA=) 4: 87D45318994C11EC82BA3978C4F9AE02.roa (hash: /AMe5fWdVkNbiDNAX3rxonqHX2GWCAFeTm3WBDEgams=) 5: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (hash: C40oyBiTxjQqMGzoY7zwrfSLtJR/TE6dpDn0DYUL1uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 16:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5767 (0x1687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Jul 24 16:50:12 2025 GMT Not After : Jul 31 16:50:12 2025 GMT Subject: CN=68826445-88e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:67:a5:b7:44:31:52:ae:f3:2a:7b:a1:23:c9: 2f:dc:c1:81:ba:f7:b6:f6:6b:7b:55:88:89:cb:ed: 91:50:dc:31:fe:9b:38:77:2d:ba:c6:aa:46:2b:88: 9f:b0:37:70:7f:d3:a2:f0:4f:01:37:32:de:fd:1e: 8a:e0:83:c2:2c:33:32:3c:f9:35:4b:0a:87:a3:61: 1d:0f:cb:00:22:a9:ca:4e:80:d3:82:d8:06:9d:2a: 71:e1:14:e2:4e:ea:b9:66:32:bb:81:68:dc:8d:9a: 07:76:53:01:35:50:43:6b:43:9d:b4:81:4e:67:e9: 72:fd:da:0b:66:c8:74:bf:93:ca:20:6f:ec:22:b1: 29:8d:f6:e2:81:4e:6c:7a:df:b9:30:e1:cf:0c:fc: 91:96:86:0e:74:eb:fb:ad:96:c7:6c:c6:2c:9b:45: 59:87:cb:71:e7:03:a7:18:e3:ff:5e:21:5d:e5:06: 93:df:c5:a8:4f:28:e3:83:c7:46:05:8c:b4:d5:21: a5:3c:e1:21:f9:49:dc:3f:42:fe:c8:fa:90:98:86: cd:98:bd:9a:18:a5:60:93:4b:bd:5f:17:b8:db:44: 19:0f:92:a8:27:47:c3:f3:1b:94:cd:c2:54:93:f2: 24:cf:af:ab:07:53:e9:b9:f4:8b:cc:8c:ac:5d:79: 6d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:1F:D3:75:0D:30:F8:55:D7:A3:61:B0:1C:8E:E3:AB:79:29:67:7B X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:3f:32:66:44:78:6d:d0:f3:f6:ea:d5:36:a4:33:72:9c:24: 0c:27:53:3d:ee:25:94:c1:26:a1:9e:c8:55:e4:ec:fd:ba:71: 55:d6:72:43:cb:11:5f:ae:dc:9d:2a:8f:0f:b9:78:65:41:62: bf:9b:f0:c9:91:f9:a5:e1:70:e4:63:75:78:65:2c:21:0c:f9: 10:a7:1b:60:a4:b3:1b:8b:1f:e2:0a:7b:84:66:77:63:c1:b5: 15:41:51:b7:90:b3:6c:d6:25:e4:cd:b9:10:c1:e7:1f:e4:49: 7e:d0:c9:3c:16:2a:b7:db:db:cb:c8:07:36:4a:5c:9e:c4:88: b5:ef:2b:af:ca:6c:02:91:6a:cc:00:34:e2:23:39:c0:f1:2a: fa:f7:bf:e6:48:cb:8f:c3:0b:b3:f1:1d:d5:d8:84:25:b1:39: 68:37:17:6d:cd:42:e7:a5:0f:19:82:49:c3:f0:da:95:01:07: e5:08:dd:d9:0d:87:e0:a3:6a:f9:26:83:9c:80:40:c8:37:0c: 06:df:a3:2b:c3:bb:4d:bf:bc:18:c2:86:df:97:d1:6a:06:9a: d9:48:4c:ca:26:27:02:97:01:49:6a:f6:42:04:1d:9e:a7:30: 40:85:8c:34:a8:9b:50:8d:e7:81:b4:19:0c:e0:71:db:9d:db: 48:59:5f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjUwNzI0MTY1MDEyWhcNMjUwNzMxMTY1MDEyWjAYMRYwFAYD VQQDEw02ODgyNjQ0NS04OGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWelt0QxUq7zKnuhI8kv3MGBuve29mt7VYiJy+2RUNwx/ps4dy26xqpGK4if sDdwf9Oi8E8BNzLe/R6K4IPCLDMyPPk1SwqHo2EdD8sAIqnKToDTgtgGnSpx4RTi Tuq5ZjK7gWjcjZoHdlMBNVBDa0OdtIFOZ+ly/doLZsh0v5PKIG/sIrEpjfbigU5s et+5MOHPDPyRloYOdOv7rZbHbMYsm0VZh8tx5wOnGOP/XiFd5QaT38WoTyjjg8dG BYy01SGlPOEh+UncP0L+yPqQmIbNmL2aGKVgk0u9Xxe420QZD5KoJ0fD8xuUzcJU k/Ikz6+rB1PpufSLzIysXXltXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwf03UN MPhV16NhsByO46t5KWd7MB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTE4NS8zRUE5REQzQTE2MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09D TUh0UG5WXzlWLWxfRWg4Rk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbPzJmRHht0PP26tU2pDNynCQMJ1M97iWUwSahnshV5Oz9unFV1nJD yxFfrtydKo8PuXhlQWK/m/DJkfml4XDkY3V4ZSwhDPkQpxtgpLMbix/iCnuEZndj wbUVQVG3kLNs1iXkzbkQwecf5El+0Mk8Fiq329vLyAc2SlyexIi17yuvymwCkWrM ADTiIznA8Sr697/mSMuPwwuz8R3V2IQlsTloNxdtzULnpQ8ZgknD8NqVAQflCN3Z DYfgo2r5JoOcgEDINwwG36Mrw7tNv7wYwobfl9FqBprZSEzKJicClwFJavZCBB2e pzBAhYw0qJtQjeeBtBkM4HHbndtIWV89 -----END CERTIFICATE-----Generated at Fri Jul 25 06:46:20 2025 by rpki-client