$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json) Hash identifier: iO+eQ0OBXf8bk/JqwlqGF0n3DWI4VPgd6RnxKgOtrYE= Subject key identifier: 32:44:33:C9:59:96:8E:8A:0C:58:A6:FF:4C:4D:58:45:7F:E9:2F:0D Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0FE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft Manifest number: 0F71 Signing time: Sat 26 Jul 2025 17:42:12 +0000 Manifest this update: Sat 26 Jul 2025 17:42:12 +0000 Manifest next update: Sat 02 Aug 2025 17:42:12 +0000 Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: 8ZIN5Khz+FgK2k/9pGosngY14lXEtSrkU1Hj2e13/o4=) 2: B35E5B46334111EF9770A542C4F9AE02.roa (hash: UPuDmnzuzvNsFm0+p8zRrUqRDIqQAuxYTPJw8nD+iQM=) 3: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: HvCeCNMd3cDYBcsUNmnAZgRE0yTF+p8FgFeiy4l06fs=) 4: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: gH07d0tdWpzxCvfeG7l6D2uFfEY6tpwzzgDCtY/pYyE=) 5: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: nicSmvXStk5YSg3xIJcJaFbSV0F719Jx8dhmknr9Hs0=) 6: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: pfS5+RaNkCZt3S0EiNJ59HEgMt0xojAMbKbcs9rYZR4=) 7: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: PTHJR1ja6PHKnchzMzvjSZlwBo+yBYxt/AqG4ozJw5A=) 8: 8279BDAC5C0011F0A29B3C7EC4F9AE02.roa (hash: +M6dN39Rvy3ot6c7TT8g2Z8pedUrJo1WQeu3eT5DmWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 Aug 2025 17:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4072 (0xfe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Jul 26 17:42:12 2025 GMT Not After : Aug 2 17:42:12 2025 GMT Subject: CN=68851374-f764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:ac:5f:f4:75:e0:db:37:50:76:c8:aa:b5: e9:42:40:66:c3:c3:ec:83:fb:96:be:44:85:19:50: 83:44:43:1a:dc:08:83:fa:7c:8a:11:65:86:8f:63: e1:4a:83:e2:69:62:08:ef:23:1d:93:7e:b2:37:e7: e1:30:c9:b6:46:5e:1c:59:6c:39:fe:01:2b:69:2e: 2b:58:62:39:45:48:d6:4c:d6:bb:a2:75:c3:df:d2: b6:65:11:ef:91:2d:0a:a5:24:27:86:20:c5:94:b0: 53:ec:29:8f:ec:7e:d5:05:e4:ee:fb:dd:cc:9d:05: 9a:a0:59:db:45:7f:4c:bf:e2:e3:44:f5:ac:29:9b: e8:c0:6d:23:f5:4d:b0:12:08:76:19:8b:9a:71:76: a1:1f:dd:0d:67:9b:98:c5:d1:89:4e:3b:43:fa:72: b3:6f:d0:8f:0c:1a:00:3d:46:c4:3f:7d:61:71:58: 65:0e:f8:59:d8:48:c1:12:db:de:bf:9d:1f:d3:3a: cd:f5:7c:03:c0:58:85:bd:cc:d8:16:19:da:43:75: c6:c2:2a:01:c6:f3:8e:b5:67:f3:20:4c:0e:69:53: c9:26:85:fe:70:54:6a:29:02:7b:32:a2:5e:df:3b: 5e:32:14:4c:d2:19:57:5d:35:3c:14:43:b4:f3:ac: ab:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:44:33:C9:59:96:8E:8A:0C:58:A6:FF:4C:4D:58:45:7F:E9:2F:0D X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:e6:fb:c5:39:3e:81:56:bc:e1:3c:ab:f9:1e:44:d6:d5:f3: 3c:67:67:c5:5d:9f:d0:52:17:ff:0d:66:f8:ad:ec:60:67:0b: 3e:30:91:f0:02:f0:f7:a2:8b:4f:a9:8a:b9:2c:0a:ca:24:87: d6:0c:d5:1c:53:8b:63:84:72:be:60:94:be:75:22:e1:76:a0: 9b:a9:38:90:c2:43:0e:e0:2e:ca:32:99:72:70:1f:3f:93:d8: e9:ff:96:a3:57:31:93:64:7a:94:ae:bc:e6:70:ef:ad:d0:8c: 68:a3:98:0f:c9:28:38:48:da:e4:1f:d6:70:28:47:fd:d5:06: 6d:bc:17:3c:e6:b2:fd:dd:c9:8c:5a:69:5d:dc:c6:9c:74:ff: 0d:d6:67:42:a9:2a:4d:8b:9b:1d:19:bd:f9:c4:b7:68:d5:65: fa:28:46:4d:9c:e4:a7:67:3d:f3:fb:84:ab:4c:d6:2d:2d:a0: 3b:83:bb:fe:80:51:54:6b:03:68:40:0e:ed:71:f2:af:ed:ac: fe:0a:2a:6f:68:18:2c:1c:79:96:04:ab:ae:b3:14:63:67:c7: 5a:60:c6:83:a6:e7:5e:6b:76:1a:4a:55:5e:22:59:3c:0e:cc: 9c:a1:ff:4e:12:ad:e4:82:db:04:80:97:17:97:2d:4f:a8:81: 75:d1:73:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUwNzI2MTc0MjEyWhcNMjUwODAyMTc0MjEyWjAYMRYwFAYD VQQDEw02ODg1MTM3NC1mNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g6sX/R14Ns3UHbIqrXpQkBmw8Psg/uWvkSFGVCDREMa3AiD+nyKEWWGj2Ph SoPiaWII7yMdk36yN+fhMMm2Rl4cWWw5/gEraS4rWGI5RUjWTNa7onXD39K2ZRHv kS0KpSQnhiDFlLBT7CmP7H7VBeTu+93MnQWaoFnbRX9Mv+LjRPWsKZvowG0j9U2w Egh2GYuacXahH90NZ5uYxdGJTjtD+nKzb9CPDBoAPUbEP31hcVhlDvhZ2EjBEtve v50f0zrN9XwDwFiFvczYFhnaQ3XGwioBxvOOtWfzIEwOaVPJJoX+cFRqKQJ7MqJe 3zteMhRM0hlXXTU8FEO086yr6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJEM8lZ lo6KDFim/0xNWEV/6S8NMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDNy83OTFDNkEzNDdCMzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91 dmFqeVZjVUJRUnNCOFlfMGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDV5vvFOT6BVrzhPKv5HkTW1fM8Z2fFXZ/QUhf/DWb4rexgZws+MJHw AvD3ootPqYq5LArKJIfWDNUcU4tjhHK+YJS+dSLhdqCbqTiQwkMO4C7KMplycB8/ k9jp/5ajVzGTZHqUrrzmcO+t0Ixoo5gPySg4SNrkH9ZwKEf91QZtvBc85rL93cmM Wmld3MacdP8N1mdCqSpNi5sdGb35xLdo1WX6KEZNnOSnZz3z+4SrTNYtLaA7g7v+ gFFUawNoQA7tcfKv7az+CipvaBgsHHmWBKuusxRjZ8daYMaDpudea3YaSlVeIlk8 Dsycof9OEq3kgtsEgJcXly1PqIF10XPK -----END CERTIFICATE-----Generated at Sun Jul 27 08:49:01 2025 by rpki-client