$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: Qz1tbgUntPcQP0gq/pI+eVAEX45fvad8EOQ+8G4Ij70= Subject key identifier: 0D:FD:BB:0E:7D:7B:B9:3E:C1:5D:52:4C:77:2D:B4:6C:A0:B0:18:F4 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 04A5 Signing time: Sat 19 Jul 2025 00:19:59 +0000 Manifest this update: Sat 19 Jul 2025 00:19:59 +0000 Manifest next update: Sat 26 Jul 2025 00:19:59 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: sVc2p89XAl56R0A22ZFMflFEFqEquyl0U25gD1HJu9A=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: jYyif5XzvidlG1gkLHEZCka6sLKHMVLL3uaZPQUQSWU=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: aIqnIQInPJrCMj5K0+1zGOgCOM0xLmrh4KbjkSzgqVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA, serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Jul 19 00:19:59 2025 GMT Not After : Jul 26 00:19:59 2025 GMT Subject: CN=687ae4af-1ec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:70:64:32:65:10:b8:3b:a6:ad:21:46:66:dc: 29:15:30:f7:5e:43:e7:54:6b:97:13:f2:8c:06:47: 84:14:36:6c:58:5d:f2:4f:19:6e:62:67:21:4f:74: f8:7f:2f:43:8b:bd:c8:88:ee:9a:fe:8c:d9:bb:56: 74:cf:cd:0d:8a:20:8f:9e:2d:2c:0e:a0:92:fd:c0: 36:8c:4d:7a:0a:62:f9:08:93:25:3d:b6:a1:ec:e6: e2:80:5b:c9:28:a9:a1:f4:c3:8c:7c:5a:3e:aa:77: c1:6b:59:64:e2:74:f6:0f:10:39:ea:5a:8a:b2:b9: 48:21:f6:7a:c5:42:93:0d:fb:5f:0a:cd:12:ff:e5: 36:62:c1:60:e1:52:5b:9e:6a:34:c9:a3:7d:58:ea: 79:c3:d8:72:f2:fb:66:ed:d6:6a:bf:7b:e0:35:82: f2:47:38:bc:95:73:14:29:80:6c:83:56:d7:83:40: 92:cd:4b:04:86:80:e3:0c:79:90:28:a7:3c:3f:f9: 78:df:ba:19:3f:ba:27:21:27:42:b2:9b:a4:db:7d: 4b:45:01:07:fd:a9:02:bd:87:e2:aa:86:41:aa:01: 0b:f9:30:bb:71:4e:62:49:df:05:5a:5b:3b:23:56: 93:10:e3:6f:24:a2:95:4c:39:91:90:ca:ba:ab:07: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:FD:BB:0E:7D:7B:B9:3E:C1:5D:52:4C:77:2D:B4:6C:A0:B0:18:F4 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:69:da:85:e4:bc:be:7a:07:16:56:f8:97:7e:d9:b6:f5:d8: 71:d6:95:35:5b:47:40:f0:fb:f6:33:0d:b7:e6:21:b7:61:4c: 4e:84:ca:ee:1c:7b:43:1a:16:bc:60:84:30:d8:f5:91:ab:ea: 91:a6:bd:cc:4e:8a:d4:da:33:90:47:f9:26:dc:ac:59:2f:15: 51:ec:1a:c3:6c:9e:60:05:f6:a4:a9:7b:dd:08:cc:6d:a7:bc: 22:49:c7:f4:ed:55:ae:44:e4:b3:90:52:2d:aa:1d:73:98:4e: a0:d7:87:02:1c:34:27:ea:15:98:ac:b5:3c:42:41:f1:00:a8: e1:61:53:9e:08:0c:0e:71:d5:52:d5:66:a7:48:4d:9b:38:92: bc:65:86:c7:ad:e0:ff:f8:2f:42:d8:5d:b1:4f:12:46:ac:63: 92:3a:26:49:73:ea:10:22:5f:e3:cd:6d:49:e4:4d:51:fb:bb: 75:a1:ca:6e:d6:96:13:38:12:57:1e:b3:44:e0:64:b1:ea:ae: aa:91:ac:73:33:26:ee:6d:04:a7:6e:1e:f7:c4:31:f8:e2:b9: 85:ca:bd:bc:db:17:4b:c4:e2:f1:b3:a1:7c:7c:d4:27:7a:f5: 95:89:2e:81:6c:2f:4d:f2:0e:fb:2c:16:47:a4:6d:c5:86:a3: a3:70:ff:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjUwNzE5MDAxOTU5WhcNMjUwNzI2MDAxOTU5WjAYMRYwFAYD VQQDEw02ODdhZTRhZi0xZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXBkMmUQuDumrSFGZtwpFTD3XkPnVGuXE/KMBkeEFDZsWF3yTxluYmchT3T4 fy9Di73IiO6a/ozZu1Z0z80NiiCPni0sDqCS/cA2jE16CmL5CJMlPbah7ObigFvJ KKmh9MOMfFo+qnfBa1lk4nT2DxA56lqKsrlIIfZ6xUKTDftfCs0S/+U2YsFg4VJb nmo0yaN9WOp5w9hy8vtm7dZqv3vgNYLyRzi8lXMUKYBsg1bXg0CSzUsEhoDjDHmQ KKc8P/l437oZP7onISdCspuk231LRQEH/akCvYfiqoZBqgEL+TC7cU5iSd8FWls7 I1aTEONvJKKVTDmRkMq6qwfuDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA39uw59 e7k+wV1STHcttGygsBj0MB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWadqF5Ly+egcWVviXftm29dhx1pU1W0dA8Pv2Mw235iG3YUxOhMru HHtDGha8YIQw2PWRq+qRpr3MTorU2jOQR/km3KxZLxVR7BrDbJ5gBfakqXvdCMxt p7wiScf07VWuROSzkFItqh1zmE6g14cCHDQn6hWYrLU8QkHxAKjhYVOeCAwOcdVS 1WanSE2bOJK8ZYbHreD/+C9C2F2xTxJGrGOSOiZJc+oQIl/jzW1J5E1R+7t1ocpu 1pYTOBJXHrNE4GSx6q6qkaxzMybubQSnbh73xDH44rmFyr282xdLxOLxs6F8fNQn evWViS6BbC9N8g77LBZHpG3FhqOjcP/C -----END CERTIFICATE-----Generated at Sun Jul 20 18:56:37 2025 by rpki-client