$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft File: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft (raw, json) Hash identifier: 8mkumq13RUVdDrysyS0tLD/Vzq2XppsQ8nMDU3X2uXU= Subject key identifier: DB:4B:C0:31:11:14:28:A9:B2:36:DA:D4:55:C1:9A:DC:11:F9:60:AA Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1686 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft Manifest number: 1657 Signing time: Tue 22 Jul 2025 16:51:29 +0000 Manifest this update: Tue 22 Jul 2025 16:51:29 +0000 Manifest next update: Tue 29 Jul 2025 16:51:29 +0000 Files and hashes: 1: _jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl (hash: 6a7tahU7CaWJyUIfVjnFbQvpz6OBHRmLuip+9NO9Dys=) 2: 7BC4E6DE322C11EFBC879F31C4F9AE02.roa (hash: j99DqXIlX/DsX6CAhLDODI4Li/SA5fMocxzYjvHfoI0=) 3: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (hash: 8Wwh2LGsfMleJz4kPXncR947wixaVvdi2YpWJ6WAnNA=) 4: 87D45318994C11EC82BA3978C4F9AE02.roa (hash: /AMe5fWdVkNbiDNAX3rxonqHX2GWCAFeTm3WBDEgams=) 5: 1AD64F18D23411EAAFD6AA3AC4F9AE02.roa (hash: C40oyBiTxjQqMGzoY7zwrfSLtJR/TE6dpDn0DYUL1uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 16:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5766 (0x1686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185, serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Validity Not Before: Jul 22 16:51:29 2025 GMT Not After : Jul 29 16:51:29 2025 GMT Subject: CN=687fc191-e583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:13:60:74:43:8b:63:fd:87:18:95:42:42:2b: 18:38:0d:6e:5a:4c:9a:9c:6f:fc:34:54:1e:21:3b: 37:c5:0c:39:16:ea:f7:4b:fa:31:16:62:ae:03:a2: 6e:86:3f:f7:d2:e5:11:72:ed:7b:89:60:b1:49:8a: fe:fe:f3:c4:3f:04:c9:75:8b:7e:49:b8:9b:85:4f: 57:e8:b8:e6:d4:18:b4:c0:c4:d7:23:c3:1f:bd:a0: 98:0b:b9:95:61:fc:14:e2:7d:ba:93:92:41:11:c4: ba:0a:d0:b1:19:13:3c:b3:35:da:37:5e:54:37:97: 85:08:9d:c8:12:6a:ee:75:21:03:0b:c1:b0:6e:52: aa:50:0c:ce:46:7c:cf:ee:fc:00:42:fb:8f:73:07: 09:f3:85:8a:fb:56:2d:cd:32:08:b4:9b:01:50:84: 54:6d:5c:47:d3:0e:d4:bf:2d:64:01:58:22:5d:78: a7:d5:c4:eb:50:de:cd:74:dd:c1:dc:d3:89:0b:68: f3:bc:b7:85:b3:a3:83:fc:dd:ff:1f:7b:8d:82:ef: e5:a1:f9:1b:42:78:22:ef:1b:db:ff:9b:3f:c1:9c: 38:47:61:bb:6d:57:4d:60:60:49:47:80:f1:62:6a: bb:dd:1e:cc:57:2a:cc:95:63:cf:58:c1:b3:93:97: 75:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4B:C0:31:11:14:28:A9:B2:36:DA:D4:55:C1:9A:DC:11:F9:60:AA X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a3:49:9e:52:3e:3b:6b:31:60:4d:1a:ef:71:14:8a:12:32: be:e6:84:00:31:9e:07:78:d0:77:ad:dc:b6:c7:46:8e:01:63: 53:df:f1:bd:6a:6e:bf:6e:50:4b:8d:1c:3f:fc:d2:f6:c6:5b: a8:83:d1:b5:31:ce:ad:da:2b:84:7c:5e:99:b5:59:73:43:10: b0:ab:0a:23:3f:75:44:95:b5:97:5c:58:18:95:56:9b:df:09: be:44:3f:9c:88:aa:84:92:1c:1a:54:26:10:ab:7e:e3:6d:ba: 3d:cf:0c:fe:4a:3b:d7:e6:65:6d:56:03:6c:1f:83:a6:f7:7d: 44:08:25:44:89:e9:00:b3:83:8c:4a:48:87:b2:b5:a3:53:ad: c7:87:d7:a1:b7:c5:a0:27:b8:91:81:ab:4f:37:c0:b4:19:8c: d8:db:a8:3a:fc:73:5f:49:ac:6f:ed:9c:8f:3a:59:3e:2d:f6: b9:0c:1e:33:1d:53:f4:fa:eb:78:8d:ca:98:22:e3:df:b4:3e: 03:9a:64:e6:53:03:83:a1:6d:f5:79:db:09:42:30:e9:c6:91: 12:1a:4c:fd:e8:34:47:4e:46:d9:7a:ef:be:14:14:8b:a6:8b: b5:ab:00:db:be:46:05:ca:9d:aa:c3:ab:14:3a:f7:e8:18:0b: d1:e0:ee:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjUwNzIyMTY1MTI5WhcNMjUwNzI5MTY1MTI5WjAYMRYwFAYD VQQDEw02ODdmYzE5MS1lNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxNgdEOLY/2HGJVCQisYOA1uWkyanG/8NFQeITs3xQw5Fur3S/oxFmKuA6Ju hj/30uURcu17iWCxSYr+/vPEPwTJdYt+SbibhU9X6Ljm1Bi0wMTXI8MfvaCYC7mV YfwU4n26k5JBEcS6CtCxGRM8szXaN15UN5eFCJ3IEmrudSEDC8GwblKqUAzORnzP 7vwAQvuPcwcJ84WK+1YtzTIItJsBUIRUbVxH0w7Uvy1kAVgiXXin1cTrUN7NdN3B 3NOJC2jzvLeFs6OD/N3/H3uNgu/lofkbQngi7xvb/5s/wZw4R2G7bVdNYGBJR4Dx Ymq73R7MVyrMlWPPWMGzk5d1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtLwDER FCipsjba1FXBmtwR+WCqMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTE4NS8zRUE5REQzQTE2MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09D TUh0UG5WXzlWLWxfRWg4Rk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+o0meUj47azFgTRrvcRSKEjK+5oQAMZ4HeNB3rdy2x0aOAWNT3/G9 am6/blBLjRw//NL2xluog9G1Mc6t2iuEfF6ZtVlzQxCwqwojP3VElbWXXFgYlVab 3wm+RD+ciKqEkhwaVCYQq37jbbo9zwz+SjvX5mVtVgNsH4Om931ECCVEiekAs4OM SkiHsrWjU63Hh9eht8WgJ7iRgatPN8C0GYzY26g6/HNfSaxv7ZyPOlk+Lfa5DB4z HVP0+ut4jcqYIuPftD4DmmTmUwODoW31edsJQjDpxpESGkz96DRHTkbZeu++FBSL pou1qwDbvkYFyp2qw6sUOvfoGAvR4O7J -----END CERTIFICATE-----Generated at Thu Jul 24 12:07:24 2025 by rpki-client