$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: Ia4xxPxygAtKlvkZ3l9MnxnxmABRjXTwkWeMwbQiySs= Subject key identifier: AC:4E:27:25:E1:CF:FB:39:CB:F6:68:96:9F:19:38:20:76:86:95:48 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: AB Signing time: Sat 19 Jul 2025 06:22:00 +0000 Manifest this update: Sat 19 Jul 2025 06:22:00 +0000 Manifest next update: Sat 26 Jul 2025 06:22:00 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: bMQ+mtyhGf6WCIvJoY/oBbdXzPdLmI/SfYemUueTRIo=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: IIflfQCAxW1X5tnyPUSdNiUWUvRyGX/zn4vbskdXfXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:21:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Jul 19 06:22:00 2025 GMT Not After : Jul 26 06:22:00 2025 GMT Subject: CN=687b3988-0e3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:02:b9:8d:00:2f:67:f0:f4:20:ea:e5:e5:ae: 0f:86:fc:42:54:bb:7d:7b:91:69:17:1d:d7:2e:84: ca:c6:41:67:2f:39:b7:16:68:16:39:ca:12:57:31: 0f:e6:1d:af:fb:cf:d5:a9:cb:2a:74:b7:89:4b:ce: 68:b0:1c:45:63:f2:8f:ee:dc:0a:66:96:e9:c9:3c: dd:02:24:16:23:41:7e:66:89:3f:22:fc:5b:d5:85: 18:67:86:88:8a:3d:a4:4d:95:ae:38:a0:62:5d:31: 8f:ac:60:c6:48:ed:d6:3a:97:05:71:22:ec:bc:e8: ed:48:56:49:9b:a7:2c:60:64:60:81:45:45:65:5f: c1:04:14:1c:4b:50:21:e1:10:d7:4e:ce:be:a0:93: f4:15:3c:f9:4c:a9:a8:c0:16:cf:0d:3d:a6:29:6d: e1:32:28:5f:46:e6:f0:c7:6e:4a:86:51:c4:a3:0b: 81:99:a2:82:0a:e3:95:13:63:33:57:5f:08:f1:53: 75:16:76:d6:a5:7c:28:f4:cb:ef:7b:55:9b:20:a8: 95:7f:03:49:e1:f7:a5:f8:be:35:28:43:7f:93:21: 9c:31:fd:f2:38:45:bc:00:6e:41:43:fb:71:44:85: ca:a6:a3:80:03:46:d0:ba:4f:e6:fc:14:f8:00:e0: d0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:4E:27:25:E1:CF:FB:39:CB:F6:68:96:9F:19:38:20:76:86:95:48 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:af:b1:e9:e5:71:45:21:95:26:b3:78:b1:d2:08:d7:23:c4: 2b:ce:bf:b9:bc:fd:3d:fd:2d:31:61:b4:6d:12:22:d2:43:af: ef:88:6c:d5:44:3a:21:c0:fb:8d:60:f7:a0:9b:11:ae:cc:4f: 3f:8a:c1:3e:a9:6c:c0:23:d9:8c:81:c4:79:69:94:b8:b7:f6: 8b:14:36:42:82:8e:a6:6e:43:71:e6:0b:08:1c:55:75:64:ae: e7:36:be:01:80:dc:17:16:4d:a4:c7:ba:47:06:ff:e9:b3:cf: 38:c0:80:1c:2b:b9:f8:8f:82:52:88:8a:a0:7f:74:b2:bd:83: f0:2e:00:71:e7:1b:ee:f6:ec:5e:c1:22:18:d6:37:71:5e:13: e0:bf:e0:95:2f:aa:65:a6:99:05:22:a6:1b:26:27:03:bb:bc: 14:04:b3:6c:93:d8:31:2b:b5:55:fa:67:6b:05:90:33:b1:9b: 48:53:80:21:d8:9e:02:7e:49:03:dd:df:fd:7b:68:18:78:4c: f8:8c:7a:8e:7c:46:75:ec:9e:7c:3e:2f:96:34:72:95:0e:8e: f5:d3:84:8a:ce:c4:2b:42:7a:58:90:58:6f:cd:18:29:d5:cd: 47:26:ac:48:87:0c:e4:b6:4c:d3:b3:13:26:ec:17:d7:0b:fd: d1:0b:7b:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUwNzE5MDYyMjAwWhcNMjUwNzI2MDYyMjAwWjAYMRYwFAYD VQQDEw02ODdiMzk4OC0wZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwK5jQAvZ/D0IOrl5a4PhvxCVLt9e5FpFx3XLoTKxkFnLzm3FmgWOcoSVzEP 5h2v+8/VqcsqdLeJS85osBxFY/KP7twKZpbpyTzdAiQWI0F+Zok/Ivxb1YUYZ4aI ij2kTZWuOKBiXTGPrGDGSO3WOpcFcSLsvOjtSFZJm6csYGRggUVFZV/BBBQcS1Ah 4RDXTs6+oJP0FTz5TKmowBbPDT2mKW3hMihfRubwx25KhlHEowuBmaKCCuOVE2Mz V18I8VN1FnbWpXwo9Mvve1WbIKiVfwNJ4fel+L41KEN/kyGcMf3yOEW8AG5BQ/tx RIXKpqOAA0bQuk/m/BT4AODQswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxOJyXh z/s5y/Zolp8ZOCB2hpVIMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBur7Hp5XFFIZUms3ix0gjXI8Qrzr+5vP09/S0xYbRtEiLSQ6/viGzV RDohwPuNYPegmxGuzE8/isE+qWzAI9mMgcR5aZS4t/aLFDZCgo6mbkNx5gsIHFV1 ZK7nNr4BgNwXFk2kx7pHBv/ps884wIAcK7n4j4JSiIqgf3SyvYPwLgBx5xvu9uxe wSIY1jdxXhPgv+CVL6plppkFIqYbJicDu7wUBLNsk9gxK7VV+mdrBZAzsZtIU4Ah 2J4CfkkD3d/9e2gYeEz4jHqOfEZ17J58Pi+WNHKVDo7104SKzsQrQnpYkFhvzRgp 1c1HJqxIhwzktkzTsxMm7BfXC/3RC3ss -----END CERTIFICATE-----Generated at Sun Jul 20 19:06:08 2025 by rpki-client