$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: cJa9mXeRqUu/zxX4KiobEBUmkLwhQA+jTaTT9KqVO5w= Subject key identifier: 27:90:98:7A:EA:57:F4:85:C5:54:8C:1C:B9:F3:4E:E7:AD:58:38:21 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 0867 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 0861 Signing time: Sun 20 Jul 2025 20:47:26 +0000 Manifest this update: Sun 20 Jul 2025 20:47:25 +0000 Manifest next update: Sun 27 Jul 2025 20:47:25 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: i2lybfqM1iZctIO0LCUn8cEoMxCtSce2KJb9WkOMViQ=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: Orts9nJAHIeXwpDUPuUMiOuSaf1VvGVbpuD8ge8k//4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Jul 20 20:47:25 2025 GMT Not After : Jul 27 20:47:25 2025 GMT Subject: CN=687d55dd-ad07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a1:bf:68:70:45:2f:6a:44:0d:f5:46:76:c9: 64:c9:7e:34:5b:11:e4:f5:8e:3a:08:ad:fe:6d:af: 44:71:03:c5:a8:02:d9:0a:0a:f1:42:f1:e8:dd:16: 69:ab:23:3e:cf:43:ce:05:a4:66:d8:8c:81:ea:e3: 48:ef:01:ec:da:cc:fb:ac:c0:8a:f0:67:eb:fa:a9: 46:55:1e:18:de:bb:df:71:59:ba:35:f7:29:c3:de: be:b3:f5:5b:7d:6e:e1:75:5d:14:fd:b0:f5:e6:0c: 73:41:75:f7:06:36:03:43:dc:ce:39:10:c6:3e:60: 95:23:c1:b8:49:ea:fa:ad:ae:66:6d:93:a0:f5:e9: cc:c5:71:db:4f:8f:89:e4:54:11:81:5c:8b:fe:14: 76:81:8d:5c:0d:ca:06:0b:1d:38:74:af:67:17:44: 19:9f:d2:83:7d:00:63:04:0b:bd:f2:b5:10:4c:5a: 85:ea:79:f7:27:80:c2:e0:55:74:c2:82:0d:5e:7f: 0a:b6:89:b7:ed:9e:75:3a:43:85:df:a3:97:54:57: 2b:d2:ca:6b:62:0d:85:39:d3:8e:9e:04:db:31:92: 57:7e:c4:b0:2b:b0:fe:e8:de:19:5c:1d:c6:dd:8e: cf:69:e4:3a:96:f7:85:72:27:24:b5:e1:e1:7a:14: 83:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:90:98:7A:EA:57:F4:85:C5:54:8C:1C:B9:F3:4E:E7:AD:58:38:21 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:9d:6f:a3:52:ab:90:fc:ac:1f:de:f5:d1:ab:28:76:12:7e: d1:eb:c6:b9:66:89:05:b9:ed:90:b9:21:54:09:30:f9:46:d3: a9:4d:54:99:a4:7a:86:da:1f:71:60:64:ea:46:49:45:a3:a3: 7c:af:c4:d1:cc:ca:04:46:cb:97:f8:1e:4f:66:be:96:f3:b6: 1d:7b:f5:6a:66:d5:00:18:82:d1:cf:0e:fb:6b:9c:6c:a6:15: 96:2c:0c:48:6e:48:bb:54:b6:e4:83:ce:36:42:1c:95:db:dc: 6e:9c:61:a5:03:19:11:02:72:df:d7:11:10:44:24:c9:25:02: cb:da:61:98:17:1e:1f:a8:4a:0f:d1:17:49:28:0a:3a:4b:ff: bf:e0:27:64:f5:2e:f2:c1:70:0b:cd:83:2f:d0:55:58:0d:49: 7f:c0:bb:da:01:7f:2f:8d:ac:f1:d7:8f:9a:dd:91:7b:ca:f3: 2f:cb:ad:05:ba:de:cd:43:75:17:5f:02:38:b1:eb:38:fc:0d: 26:0f:70:20:8e:c2:a8:4e:05:4d:4a:7d:35:43:59:28:a3:5f: 78:39:a1:f8:e1:11:2b:4a:1b:b8:dc:9a:3c:75:b7:d3:b6:45: d2:cb:7f:18:65:12:18:67:be:f8:fc:a3:ac:7a:b1:cd:a4:0b: bc:a2:18:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUwNzIwMjA0NzI1WhcNMjUwNzI3MjA0NzI1WjAYMRYwFAYD VQQDEw02ODdkNTVkZC1hZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qG/aHBFL2pEDfVGdslkyX40WxHk9Y46CK3+ba9EcQPFqALZCgrxQvHo3RZp qyM+z0POBaRm2IyB6uNI7wHs2sz7rMCK8Gfr+qlGVR4Y3rvfcVm6Nfcpw96+s/Vb fW7hdV0U/bD15gxzQXX3BjYDQ9zOORDGPmCVI8G4Ser6ra5mbZOg9enMxXHbT4+J 5FQRgVyL/hR2gY1cDcoGCx04dK9nF0QZn9KDfQBjBAu98rUQTFqF6nn3J4DC4FV0 woINXn8Ktom37Z51OkOF36OXVFcr0sprYg2FOdOOngTbMZJXfsSwK7D+6N4ZXB3G 3Y7PaeQ6lveFcickteHhehSDMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeQmHrq V/SFxVSMHLnzTuetWDghMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZnW+jUquQ/Kwf3vXRqyh2En7R68a5ZokFue2QuSFUCTD5RtOpTVSZ pHqG2h9xYGTqRklFo6N8r8TRzMoERsuX+B5PZr6W87Yde/VqZtUAGILRzw77a5xs phWWLAxIbki7VLbkg842QhyV29xunGGlAxkRAnLf1xEQRCTJJQLL2mGYFx4fqEoP 0RdJKAo6S/+/4Cdk9S7ywXALzYMv0FVYDUl/wLvaAX8vjazx14+a3ZF7yvMvy60F ut7NQ3UXXwI4ses4/A0mD3AgjsKoTgVNSn01Q1koo194OaH44RErShu43Jo8dbfT tkXSy38YZRIYZ774/KOserHNpAu8ohgJ -----END CERTIFICATE-----Generated at Mon Jul 21 07:54:25 2025 by rpki-client