$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft File: 88hJQLK99AJViHBvWcHm7D0hR_A.mft (raw, json) Hash identifier: JEuvduGQfQ+sajfTSC8xLpgPs9AmERQ8mYOa0gIjdN8= Subject key identifier: 26:EC:30:6A:D4:04:C2:72:4B:7B:12:9A:FC:07:63:F9:80:B9:14:70 Authority key identifier: F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 Certificate issuer: /CN=A91BCC23/serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft Manifest number: 0139 Signing time: Sat 19 Jul 2025 04:36:31 +0000 Manifest this update: Sat 19 Jul 2025 04:36:31 +0000 Manifest next update: Sat 26 Jul 2025 04:36:31 +0000 Files and hashes: 1: 88hJQLK99AJViHBvWcHm7D0hR_A.crl (hash: 7+PRKwcd1SNrdj5wcYSNhIilWqlF9gF6dXMTjGmrz8U=) 2: D36C048A81E211EEAF423C87C4F9AE02.roa (hash: AgEcJkKDpEPBaGjrS9V0jt2iST6E+qzc3K1SEhivhc4=) 3: FC3C8A6A81E211EE963BAB87C4F9AE02.roa (hash: 548P4XWsPS3JTWuhyip3nqsrffc51BRt/khZw2JCljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCC23, serialNumber=F3C84940B2BDF4025588706F59C1E6EC3D2147F0 Validity Not Before: Jul 19 04:36:31 2025 GMT Not After : Jul 26 04:36:31 2025 GMT Subject: CN=687b20cf-0ac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:06:b9:fc:f2:cd:28:5e:ac:8e:0e:ea:8f:3f: c5:c2:82:e7:a0:8d:50:c1:c9:3c:8c:cf:25:4b:fb: 33:79:28:ef:07:ca:26:84:76:a2:e1:3f:fa:d7:73: 99:43:30:c7:7f:eb:21:62:42:4c:3b:30:88:1d:f1: 12:9e:3e:08:7e:d3:43:05:40:10:14:c3:05:88:d4: 79:07:5b:66:95:84:22:9a:d5:e9:ec:3c:3c:43:1c: d8:66:5d:f3:0b:81:d0:0c:bb:f0:3c:94:9c:10:d0: 56:60:19:fe:33:ab:a5:85:35:3c:cc:8b:25:e0:60: 31:59:00:3d:9d:d6:0e:36:7a:48:e3:9d:0a:ab:ef: f0:06:f5:a9:99:c4:64:23:e7:8c:1a:68:48:3a:53: d0:cb:ee:c4:dc:e6:ab:a4:83:e8:56:ae:d2:e0:17: 8e:20:a2:b4:a1:bf:3c:87:81:ff:90:a7:28:79:5a: 05:ea:8a:0d:be:dc:a6:0e:d3:af:90:94:54:02:3e: bc:df:cc:e4:f1:5f:c3:21:1b:1a:26:47:cb:2f:07: 3a:6f:12:c4:ca:e3:eb:6d:ba:16:5c:34:d3:0b:25: 29:e4:1a:cd:0d:76:ea:94:c8:5e:bf:81:3d:c4:22: 23:fd:02:e8:78:64:ec:08:fa:20:95:0b:c5:13:6b: d9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:EC:30:6A:D4:04:C2:72:4B:7B:12:9A:FC:07:63:F9:80:B9:14:70 X509v3 Authority Key Identifier: keyid:F3:C8:49:40:B2:BD:F4:02:55:88:70:6F:59:C1:E6:EC:3D:21:47:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/88hJQLK99AJViHBvWcHm7D0hR_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCC23/925C80CE81E111EE8CF66B0AC4F9AE02/88hJQLK99AJViHBvWcHm7D0hR_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:d5:8c:43:37:68:62:61:ee:e6:3a:90:12:8d:3e:e8:7b:66: d7:65:f5:6e:1b:38:b4:3b:14:7a:d3:a8:92:64:2a:00:97:b5: 65:87:d1:34:a8:67:ab:c6:2b:a7:e0:30:9d:ce:76:cf:b9:9a: 45:41:09:6a:db:98:cc:2f:31:a8:2c:6b:af:e3:df:08:38:b2: e3:ec:69:31:3f:b7:2c:5e:27:ec:f7:ca:ff:7f:8a:5b:ae:da: 32:43:3d:05:bd:9a:3a:6e:9f:f9:48:54:64:56:09:01:17:61: 8d:82:fa:99:22:1c:79:d4:5e:e7:c4:1c:b3:54:0e:94:ad:9a: 64:f0:67:83:f5:b3:23:75:71:92:8a:0f:28:44:00:7b:a9:e7: c3:16:50:22:79:58:f9:fc:c2:8b:5a:77:8b:98:48:54:40:d6: f1:c5:f4:28:2f:ba:98:50:6e:f2:84:0c:a8:bf:45:6c:39:33: f7:aa:58:8d:90:73:b1:89:e3:48:49:dc:e3:fe:4e:42:09:6d: 53:21:3c:a2:60:de:33:e4:52:ee:5a:ac:9f:0e:32:64:fe:ed: d7:8f:10:31:d0:20:90:b0:ea:94:d8:a0:27:b8:8b:51:1e:1d: 42:d2:b5:16:3d:36:62:9b:2c:a9:b6:78:0b:6c:cf:17:e1:c7: a1:e6:d5:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNDMjMxMTAvBgNVBAUTKEYzQzg0OTQwQjJCREY0MDI1NTg4NzA2RjU5QzFFNkVD M0QyMTQ3RjAwHhcNMjUwNzE5MDQzNjMxWhcNMjUwNzI2MDQzNjMxWjAYMRYwFAYD VQQDEw02ODdiMjBjZi0wYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAa5/PLNKF6sjg7qjz/FwoLnoI1Qwck8jM8lS/szeSjvB8omhHai4T/613OZ QzDHf+shYkJMOzCIHfESnj4IftNDBUAQFMMFiNR5B1tmlYQimtXp7Dw8QxzYZl3z C4HQDLvwPJScENBWYBn+M6ulhTU8zIsl4GAxWQA9ndYONnpI450Kq+/wBvWpmcRk I+eMGmhIOlPQy+7E3OarpIPoVq7S4BeOIKK0ob88h4H/kKcoeVoF6ooNvtymDtOv kJRUAj6838zk8V/DIRsaJkfLLwc6bxLEyuPrbboWXDTTCyUp5BrNDXbqlMhev4E9 xCIj/QLoeGTsCPoglQvFE2vZ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbsMGrU BMJyS3sSmvwHY/mAuRRwMB8GA1UdIwQYMBaAFPPISUCyvfQCVYhwb1nB5uw9IUfw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0MyMy85MjVDODBDRTgx RTExMUVFOENGNjZCMEFDNEY5QUUwMi84OGhKUUxLOTlBSlZpSEJ2V2NIbTdEMGhS X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg4aEpRTEs5OUFKVmlIQnZXY0htN0QwaFJfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0MyMy85MjVDODBDRTgxRTExMUVFOENGNjZCMEFDNEY5QUUwMi84OGhKUUxLOTlB SlZpSEJ2V2NIbTdEMGhSX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO1YxDN2hiYe7mOpASjT7oe2bXZfVuGzi0OxR606iSZCoAl7Vlh9E0 qGerxiun4DCdznbPuZpFQQlq25jMLzGoLGuv498IOLLj7GkxP7csXifs98r/f4pb rtoyQz0FvZo6bp/5SFRkVgkBF2GNgvqZIhx51F7nxByzVA6UrZpk8GeD9bMjdXGS ig8oRAB7qefDFlAieVj5/MKLWneLmEhUQNbxxfQoL7qYUG7yhAyov0VsOTP3qliN kHOxieNISdzj/k5CCW1TITyiYN4z5FLuWqyfDjJk/u3XjxAx0CCQsOqU2KAnuItR Hh1C0rUWPTZimyyptngLbM8X4ceh5tW9 -----END CERTIFICATE-----Generated at Mon Jul 21 02:23:45 2025 by rpki-client