$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft File: a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft (raw, json) Hash identifier: PPHEHfyB6vLhDSxf7PUgZtFJbD/poj2y86WbMmiTtgQ= Subject key identifier: FF:EB:CE:3A:3D:4E:65:C2:2E:0B:30:16:8D:0A:10:A0:8C:73:BD:E4 Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft Manifest number: 65 Signing time: Sat 19 Jul 2025 07:28:27 +0000 Manifest this update: Sat 19 Jul 2025 07:28:26 +0000 Manifest next update: Sat 26 Jul 2025 07:28:26 +0000 Files and hashes: 1: a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl (hash: 2K7ay7RgB3w6o6oJxXWAyghKf9GUFFs0D8pN+LAEuPA=) 2: 04241E3222F011F0B021396DC4F9AE02.roa (hash: 9kO0kni7kPsnzaPtvxx9OF7DZQab6VvydwUdZC1SpXA=) 3: C4A33CA4275711F0BA7C7752C4F9AE02.roa (hash: UodVJEZpG8jo//8K6ghcq6/5J2v+GWRbykcw2y9KJwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: Jul 19 07:28:26 2025 GMT Not After : Jul 26 07:28:26 2025 GMT Subject: CN=687b491b-f67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0b:9a:53:cf:28:24:67:1f:4c:b8:6c:56:80: c4:a0:ef:f5:ad:58:5f:46:fb:fc:ff:d2:3a:1e:ee: a6:be:ff:63:c5:ce:b0:0d:4e:76:90:43:ab:81:7f: 2e:f6:94:20:7d:ae:bd:ae:85:1a:37:9b:f2:b5:33: 11:51:71:63:c7:3b:fc:3b:35:b4:8f:86:0f:cc:bf: f3:a5:16:a3:38:46:55:50:72:93:f3:97:de:6c:21: 40:9b:8b:81:7e:db:c1:0b:fb:ef:52:ae:16:26:98: 1f:a5:b6:f8:a5:d9:11:43:ff:3e:c1:2e:41:71:ff: 0c:30:33:a7:bf:5e:15:8e:d6:e6:0b:47:64:c3:06: 4d:cc:1c:0e:35:59:46:0a:33:49:18:55:a3:c1:ae: 90:b0:41:f8:ae:4f:56:4e:4b:a3:2a:86:7b:66:57: 41:c0:5c:f7:70:94:49:c2:7d:96:03:fc:00:01:28: 61:e3:7b:cd:12:a7:82:48:75:ef:63:49:e5:e8:f8: e5:39:ec:f4:12:da:f1:e9:98:92:20:e5:fb:81:73: 26:94:17:e0:04:0c:fd:32:be:f0:ce:16:f5:cb:9e: 63:da:65:17:f3:c1:37:d9:35:cb:c4:5d:8e:30:dc: 36:41:4e:f1:cd:9c:fc:ea:7a:32:45:95:7a:b0:be: 50:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EB:CE:3A:3D:4E:65:C2:2E:0B:30:16:8D:0A:10:A0:8C:73:BD:E4 X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:2c:4e:d3:ff:84:b0:b1:4d:63:b4:06:4d:d0:a5:56:c5:fb: fd:f7:25:c8:f5:eb:3f:f9:c8:17:84:3a:e4:cc:3d:54:7a:08: 33:5b:da:7d:25:a1:5d:71:dc:df:75:22:71:a2:c3:9e:11:07: ce:f6:01:99:1f:49:6f:01:63:06:e1:80:1a:f3:10:32:5d:57: 3a:1e:0f:71:61:17:36:bf:a4:38:97:26:55:91:8d:76:68:b9: fa:97:d9:4e:49:c9:fd:39:3a:68:54:a6:ba:e8:28:4b:ab:95: 85:9d:0d:76:e9:53:43:ae:10:90:5d:cf:bd:45:1a:81:31:47: 07:f6:c2:98:ad:73:77:66:24:70:be:11:6c:55:3d:c6:8c:94: 47:b2:f5:35:82:dc:66:d1:b5:b6:27:c4:cc:fb:ae:44:77:12: 7a:1b:a1:82:f9:17:4c:43:54:a3:5f:60:8f:c2:25:f4:8e:3e: 55:10:12:58:39:51:a2:e3:de:24:0d:b0:c7:64:c4:ff:94:8b: 5a:49:d4:75:ee:9e:14:f5:70:dd:71:a5:14:73:a0:85:8b:f3: 00:23:b9:35:3a:e1:2d:64:03:5f:5a:d4:70:d3:6e:27:f7:38: d1:5f:04:27:2b:2b:7b:fc:98:63:8d:6b:79:0a:a9:2e:1f:05: cb:91:cc:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTA3MTkwNzI4MjZaFw0yNTA3MjYwNzI4MjZaMBgxFjAUBgNV BAMTDTY4N2I0OTFiLWY2N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwC5pTzygkZx9MuGxWgMSg7/WtWF9G+/z/0joe7qa+/2PFzrANTnaQQ6uBfy72 lCB9rr2uhRo3m/K1MxFRcWPHO/w7NbSPhg/Mv/OlFqM4RlVQcpPzl95sIUCbi4F+ 28EL++9SrhYmmB+ltvil2RFD/z7BLkFx/wwwM6e/XhWO1uYLR2TDBk3MHA41WUYK M0kYVaPBrpCwQfiuT1ZOS6MqhntmV0HAXPdwlEnCfZYD/AABKGHje80Sp4JIde9j SeXo+OU57PQS2vHpmJIg5fuBcyaUF+AEDP0yvvDOFvXLnmPaZRfzwTfZNcvEXY4w 3DZBTvHNnPzqejJFlXqwvlCvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/+vOOj1O ZcIuCzAWjQoQoIxzveQwHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RUVCLzFFRTdGQTYwRTVGNDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRB NGNveGtKWkJnUndGc21RUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQsTtP/hLCxTWO0Bk3QpVbF+/33Jcj16z/5yBeEOuTMPVR6CDNb2n0l oV1x3N91InGiw54RB872AZkfSW8BYwbhgBrzEDJdVzoeD3FhFza/pDiXJlWRjXZo ufqX2U5Jyf05OmhUprroKEurlYWdDXbpU0OuEJBdz71FGoExRwf2wpitc3dmJHC+ EWxVPcaMlEey9TWC3GbRtbYnxMz7rkR3EnoboYL5F0xDVKNfYI/CJfSOPlUQElg5 UaLj3iQNsMdkxP+Ui1pJ1HXunhT1cN1xpRRzoIWL8wAjuTU64S1kA19a1HDTbif3 ONFfBCcrK3v8mGONa3kKqS4fBcuRzOs= -----END CERTIFICATE-----Generated at Mon Jul 21 07:18:30 2025 by rpki-client