$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft File: redjNI0CWa0SzYi3ZNOYy4rHQMk.mft (raw, json) Hash identifier: l8OfYykuQ14oy9GvMM4uh4z0h2WdmDyxSdfp0rxdbk0= Subject key identifier: 17:A8:2A:E7:0F:14:37:B0:AC:4F:C7:AF:2F:C9:B0:A6:15:DA:15:BA Authority key identifier: AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 Certificate issuer: /CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Certificate serial: 0603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft Manifest number: 05FA Signing time: Sun 20 Jul 2025 23:03:45 +0000 Manifest this update: Sun 20 Jul 2025 23:03:45 +0000 Manifest next update: Sun 27 Jul 2025 23:03:45 +0000 Files and hashes: 1: redjNI0CWa0SzYi3ZNOYy4rHQMk.crl (hash: x0s/VAtHTNJURMKeFHCEUm66ClA1b6NYY8zlhwCSdGY=) 2: B69C27DCB6D711EB9D603F7DC4F9AE02.roa (hash: ClA7TsoBf9is9kiaEyUF4SSCiNxpgXXELAtT3dKemLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1539 (0x603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCC9, serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Validity Not Before: Jul 20 23:03:45 2025 GMT Not After : Jul 27 23:03:45 2025 GMT Subject: CN=687d75d1-5ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:26:43:7b:27:05:fc:4f:f4:32:20:81:6d:c8: 33:a7:87:bf:ef:35:2f:66:dc:6f:fb:53:a5:ea:2b: f0:58:be:46:14:fe:17:0b:eb:7d:69:1e:bc:00:b8: 0e:a5:75:5e:71:1e:74:38:f2:6a:4c:40:7c:23:d4: 71:c7:05:2d:fe:5e:bc:61:d0:1b:4d:a7:8d:87:27: f4:5c:9a:85:7b:57:14:fc:2c:fa:3b:93:ae:b1:56: a0:e4:b2:cb:ea:44:ce:35:3f:87:2f:6b:d3:fc:e8: c7:e7:88:8c:d1:9e:15:88:1c:8b:16:33:04:d2:b2: fb:07:56:2a:4a:3f:33:33:9f:6f:0b:c5:4d:35:34: 19:38:4f:b4:a9:ea:94:fd:87:68:a0:3f:2a:4d:27: 74:5c:b3:53:50:03:13:71:7a:34:1a:2d:c5:06:57: 03:73:97:95:66:03:60:44:88:cf:96:e1:88:ca:79: 09:6a:bc:51:a0:35:a8:bb:e1:e1:4a:94:69:1d:63: c8:ad:cc:3f:0c:4b:a0:71:46:9f:47:52:ab:b1:86: 01:e4:16:8f:3b:2e:8b:30:7d:0b:d4:fd:7b:b0:59: b5:42:d9:b7:bd:b8:8a:03:bf:f4:ac:f6:b1:97:38: 1c:bb:f5:16:fe:c9:99:04:0e:9b:b9:7f:05:8c:73: 6c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A8:2A:E7:0F:14:37:B0:AC:4F:C7:AF:2F:C9:B0:A6:15:DA:15:BA X509v3 Authority Key Identifier: keyid:AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:a2:70:19:37:98:d9:80:1b:50:49:42:e8:c0:5a:69:8e:2a: 4b:79:1e:90:0f:81:b6:66:c4:ac:8a:2b:98:0d:eb:8b:22:00: 38:ae:21:52:db:92:c2:5c:b7:60:ab:c2:0f:f1:63:8e:6b:80: 8c:39:ef:df:00:62:22:e8:5f:48:5a:1c:ee:55:e9:df:c0:8c: ce:41:0f:2e:20:07:b5:a6:57:04:b1:c0:34:9c:a5:59:76:2d: 90:61:e9:6d:b9:4c:d0:f5:39:78:ee:d1:68:e5:9d:c4:27:98: 8d:17:22:83:5e:b5:b2:66:96:a5:8b:78:02:88:dc:bd:92:ff: 06:58:9d:48:fc:0d:3a:cf:7b:ab:7d:bb:f5:86:8a:fa:8c:1e: 05:9b:77:84:e9:68:4a:b9:09:98:d7:b4:3f:41:34:17:bf:5e: 80:f4:b1:2e:dd:76:54:78:20:be:05:af:c8:a7:87:7b:94:bd: 35:b2:43:2a:5d:5d:30:13:1f:cd:80:9f:87:2c:f6:8b:9f:ab: a1:b3:f6:23:0f:ed:eb:d4:bc:6e:fd:e4:da:c8:c8:fc:bc:9c: 8d:42:d6:b3:fd:40:33:35:d9:73:13:2f:71:ab:49:8d:b9:fc: fa:58:72:12:13:b0:1a:b4:25:cb:2a:fd:f9:12:70:47:d0:d8: 53:68:29:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQzkxMTAvBgNVBAUTKEFERTc2MzM0OEQwMjU5QUQxMkNEODhCNzY0RDM5OENC OEFDNzQwQzkwHhcNMjUwNzIwMjMwMzQ1WhcNMjUwNzI3MjMwMzQ1WjAYMRYwFAYD VQQDEw02ODdkNzVkMS01YmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yZDeycF/E/0MiCBbcgzp4e/7zUvZtxv+1Ol6ivwWL5GFP4XC+t9aR68ALgO pXVecR50OPJqTEB8I9RxxwUt/l68YdAbTaeNhyf0XJqFe1cU/Cz6O5OusVag5LLL 6kTONT+HL2vT/OjH54iM0Z4ViByLFjME0rL7B1YqSj8zM59vC8VNNTQZOE+0qeqU /YdooD8qTSd0XLNTUAMTcXo0Gi3FBlcDc5eVZgNgRIjPluGIynkJarxRoDWou+Hh SpRpHWPIrcw/DEugcUafR1KrsYYB5BaPOy6LMH0L1P17sFm1Qtm3vbiKA7/0rPax lzgcu/UW/smZBA6buX8FjHNsDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeoKucP FDewrE/Hry/JsKYV2hW6MB8GA1UdIwQYMBaAFK3nYzSNAlmtEs2It2TTmMuKx0DJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNDOS9EMzBCMTVDMEI2 Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dhMFN6WWkzWk5PWXk0ckhR TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JlZGpOSTBDV2EwU3pZaTNaTk9ZeTRySFFNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNDOS9EMzBCMTVDMEI2Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dh MFN6WWkzWk5PWXk0ckhRTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEonAZN5jZgBtQSULowFppjipLeR6QD4G2ZsSsiiuYDeuLIgA4riFS 25LCXLdgq8IP8WOOa4CMOe/fAGIi6F9IWhzuVenfwIzOQQ8uIAe1plcEscA0nKVZ di2QYeltuUzQ9Tl47tFo5Z3EJ5iNFyKDXrWyZpali3gCiNy9kv8GWJ1I/A06z3ur fbv1hor6jB4Fm3eE6WhKuQmY17Q/QTQXv16A9LEu3XZUeCC+Ba/Ip4d7lL01skMq XV0wEx/NgJ+HLPaLn6uhs/YjD+3r1Lxu/eTayMj8vJyNQtaz/UAzNdlzEy9xq0mN ufz6WHISE7AatCXLKv35EnBH0NhTaCl4 -----END CERTIFICATE-----Generated at Mon Jul 21 07:00:30 2025 by rpki-client