$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft File: y51BptqW92pP8FhrXoqIn8AjVFc.mft (raw, json) Hash identifier: HN3LGDBe7vAYS3Y9suBL5dLJdD+aQtS3QDx8AegtJ8s= Subject key identifier: EF:2B:5A:58:A0:67:74:1A:8C:D8:C8:E1:54:9D:A1:B2:58:85:36:25 Authority key identifier: CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57 Certificate issuer: /CN=A91C7A69/serialNumber=CB9D41A6DA96F76A4FF0586B5E8A889FC0235457 Certificate serial: 034E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft Manifest number: 0348 Signing time: Sat 19 Jul 2025 01:26:52 +0000 Manifest this update: Sat 19 Jul 2025 01:26:52 +0000 Manifest next update: Sat 26 Jul 2025 01:26:52 +0000 Files and hashes: 1: y51BptqW92pP8FhrXoqIn8AjVFc.crl (hash: GzsJS9ayKGqId3z/j7bQ3TLJHSazq+cisCQsnMyYU9o=) 2: 94FE3AB6D55011EF8A1E1855C4F9AE02.roa (hash: gYpqfZKhxCcGgy3HXhq4upY/4aTqMhzYgAIN8Unlk1w=) 3: 4FF0079CC6CB11ECB185E43EC4F9AE02.roa (hash: p51YofghFqe/P1BWUf3vy05r4fDl5jSux9C8jQxGEcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.crl rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7A69, serialNumber=CB9D41A6DA96F76A4FF0586B5E8A889FC0235457 Validity Not Before: Jul 19 01:26:52 2025 GMT Not After : Jul 26 01:26:52 2025 GMT Subject: CN=687af45c-5deb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7a:51:7c:8c:b8:02:5f:ca:9b:7d:66:c0:cf: 0a:a4:93:27:05:db:d1:6e:ae:43:65:4e:c5:ad:7b: 57:9b:6b:e1:82:53:63:d5:c2:5c:85:a4:36:3e:97: 94:10:fa:e9:e1:18:68:54:c3:be:f7:2c:a7:f4:ab: 92:19:3a:46:12:45:c3:85:53:36:19:99:5f:33:87: 97:d2:32:11:7f:62:e1:cd:1b:f0:dc:29:88:cb:c4: 02:b6:ab:17:90:ea:a5:24:16:85:79:02:d4:c8:cc: a5:d3:e2:1a:2b:02:5a:d0:ec:fa:b2:b6:30:45:10: 1f:37:f3:12:3b:7d:09:a2:c5:33:ca:66:23:99:0b: b4:79:21:9c:3a:e5:21:7e:51:35:f3:18:1e:0f:75: 0e:e3:00:6a:f2:5c:24:76:90:e7:9b:48:c6:5e:0b: 9e:aa:74:6d:aa:bb:6e:9f:2f:07:5c:b9:ed:d4:ec: 06:46:33:f5:0e:eb:d3:54:af:1c:68:3e:99:92:b1: 5a:4d:a1:6c:3b:c8:a6:bd:2a:cc:58:8f:9f:f2:81: 87:46:28:23:c5:4a:50:2a:dd:fe:f0:11:03:1a:a9: f4:80:01:eb:0f:86:9f:8f:63:72:c6:66:ef:16:00: 09:f8:6f:ce:9c:4c:12:28:f0:1e:14:64:2e:7a:61: e3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:2B:5A:58:A0:67:74:1A:8C:D8:C8:E1:54:9D:A1:B2:58:85:36:25 X509v3 Authority Key Identifier: keyid:CB:9D:41:A6:DA:96:F7:6A:4F:F0:58:6B:5E:8A:88:9F:C0:23:54:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y51BptqW92pP8FhrXoqIn8AjVFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7A69/8AF3D5B2C60311EC8B0D5D3DC4F9AE02/y51BptqW92pP8FhrXoqIn8AjVFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:19:18:21:c5:7c:b3:43:d2:3c:26:e1:ba:31:5a:7c:65:0a: 8c:92:d1:a9:1a:95:8f:a6:a2:4f:98:37:5a:2f:c2:72:78:60: 70:29:b5:19:ef:9e:ab:50:cc:00:f7:85:1d:4a:fe:5b:a8:43: f4:c7:cd:b6:5c:6c:80:c9:dd:98:9a:86:c6:6d:d8:13:ba:fd: 2e:ac:51:92:47:0d:b6:df:80:48:a7:b8:79:91:02:50:2d:2a: 54:e2:86:40:f4:0d:d5:a1:96:1f:85:4b:51:cd:d2:81:80:ce: 23:81:91:68:bb:78:b0:76:f3:22:c9:72:10:96:42:1b:bd:e4: 97:f1:48:06:4b:38:70:ef:92:f3:57:b5:fa:4f:87:37:ec:a7: 17:dd:19:63:12:35:d2:b2:26:06:3e:86:0a:59:fb:5d:75:1c: d2:8c:5b:ee:48:67:7a:26:ae:6b:81:2f:1c:89:eb:0d:a6:5c: de:b6:7c:c5:75:30:16:2d:cd:d6:d7:65:f4:1c:98:9c:0f:af: e2:79:c6:c7:67:a7:4a:1f:74:66:6c:90:df:2a:7f:a6:3d:2e: de:23:14:82:d0:86:e4:60:f7:5a:cf:0d:79:d8:4e:53:61:3c: aa:1f:51:9b:e8:0d:ed:f1:17:9f:e8:71:fb:c3:8f:c3:64:c8: 62:92:ee:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBNjkxMTAvBgNVBAUTKENCOUQ0MUE2REE5NkY3NkE0RkYwNTg2QjVFOEE4ODlG QzAyMzU0NTcwHhcNMjUwNzE5MDEyNjUyWhcNMjUwNzI2MDEyNjUyWjAYMRYwFAYD VQQDEw02ODdhZjQ1Yy01ZGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnpRfIy4Al/Km31mwM8KpJMnBdvRbq5DZU7FrXtXm2vhglNj1cJchaQ2PpeU EPrp4RhoVMO+9yyn9KuSGTpGEkXDhVM2GZlfM4eX0jIRf2LhzRvw3CmIy8QCtqsX kOqlJBaFeQLUyMyl0+IaKwJa0Oz6srYwRRAfN/MSO30JosUzymYjmQu0eSGcOuUh flE18xgeD3UO4wBq8lwkdpDnm0jGXgueqnRtqrtuny8HXLnt1OwGRjP1DuvTVK8c aD6ZkrFaTaFsO8imvSrMWI+f8oGHRigjxUpQKt3+8BEDGqn0gAHrD4afj2Nyxmbv FgAJ+G/OnEwSKPAeFGQuemHjcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8rWlig Z3QajNjI4VSdobJYhTYlMB8GA1UdIwQYMBaAFMudQabalvdqT/BYa16KiJ/AI1RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0E2OS84QUYzRDVCMkM2 MDMxMUVDOEIwRDVEM0RDNEY5QUUwMi95NTFCcHRxVzkycFA4RmhyWG9xSW44QWpW RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k1MUJwdHFXOTJwUDhGaHJYb3FJbjhBalZGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0E2OS84QUYzRDVCMkM2MDMxMUVDOEIwRDVEM0RDNEY5QUUwMi95NTFCcHRxVzky cFA4RmhyWG9xSW44QWpWRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIGRghxXyzQ9I8JuG6MVp8ZQqMktGpGpWPpqJPmDdaL8JyeGBwKbUZ 756rUMwA94UdSv5bqEP0x822XGyAyd2YmobGbdgTuv0urFGSRw2234BIp7h5kQJQ LSpU4oZA9A3VoZYfhUtRzdKBgM4jgZFou3iwdvMiyXIQlkIbveSX8UgGSzhw75Lz V7X6T4c37KcX3RljEjXSsiYGPoYKWftddRzSjFvuSGd6Jq5rgS8ciesNplzetnzF dTAWLc3W12X0HJicD6/iecbHZ6dKH3RmbJDfKn+mPS7eIxSC0IbkYPdazw152E5T YTyqH1Gb6A3t8Ref6HH7w4/DZMhiku6w -----END CERTIFICATE-----Generated at Sun Jul 20 22:38:23 2025 by rpki-client