$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft File: 148wkE5135TOt1lmr4OOdj6ol2I.mft (raw, json) Hash identifier: BrAyRph9sheBzLM/B/iSlvx/MwSmWAtqX/SYOoIk5GI= Subject key identifier: 77:94:26:7D:0C:8F:82:01:80:A0:64:B5:6C:76:00:C9:1C:2B:EA:43 Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft Manifest number: DB Signing time: Sat 19 Jul 2025 05:44:12 +0000 Manifest this update: Sat 19 Jul 2025 05:44:12 +0000 Manifest next update: Sat 26 Jul 2025 05:44:12 +0000 Files and hashes: 1: 148wkE5135TOt1lmr4OOdj6ol2I.crl (hash: FnjeGEkyCy7XNiM4UZtAi+CbM3bc4NIxL5OPAsbI9GY=) 2: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (hash: 3q4SG/qlGVDYq4EV5cqZmr+jLzfEittQVkz7pS+z/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403, serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Validity Not Before: Jul 19 05:44:12 2025 GMT Not After : Jul 26 05:44:12 2025 GMT Subject: CN=687b30ac-3595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:c3:e2:c1:cb:c4:71:47:89:d7:b6:3d:fb: 35:20:10:27:98:53:06:ad:24:6a:42:7e:e5:14:b5: c2:ec:89:3e:4e:64:17:68:46:f2:f1:69:4e:9d:54: 2e:53:5b:02:cd:b4:db:f4:8a:33:8c:6f:cd:83:17: 0a:c5:d4:2e:66:38:41:63:27:38:98:34:18:82:e4: fb:41:2f:26:a2:71:40:06:79:8e:5e:8d:ba:e3:2f: c7:00:bb:a2:d0:f3:20:3b:a7:ea:e3:6f:c9:5f:e0: 9a:cb:80:3b:12:90:8b:c5:c9:d8:a7:d1:e7:9d:1f: 69:b0:2f:d4:11:71:b6:1f:e3:ec:6e:d6:df:d0:22: 22:eb:51:eb:10:34:a7:ec:77:0c:e3:95:34:37:ab: 0e:ee:bd:ba:35:23:dd:3f:60:cd:2e:02:30:92:9d: d3:30:f2:73:b2:14:62:6c:23:79:d6:05:b1:bf:2d: 83:89:4c:6c:9a:b7:24:bc:4f:93:fc:3d:ff:33:97: 99:60:8f:bd:19:00:43:68:f1:59:09:64:05:5f:56: 5b:d2:d5:03:df:00:57:36:a6:b2:b9:d9:ef:f0:99: 2c:5e:d1:5a:b5:4d:83:1d:37:19:6d:63:a4:5f:1a: f2:11:a4:56:8f:f3:49:72:c0:af:01:43:c3:5c:cc: 74:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:94:26:7D:0C:8F:82:01:80:A0:64:B5:6C:76:00:C9:1C:2B:EA:43 X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:8e:38:90:ba:5b:cb:1e:a8:80:a0:b3:ea:b2:92:0d:0f:95: a7:90:7c:93:97:a4:54:66:f0:fb:e7:0f:76:7a:5a:0c:6d:ff: d0:dd:1e:7f:52:31:ed:56:e4:aa:5d:0f:0a:4f:be:8c:6c:80: 71:8c:5a:b6:e2:e8:01:f7:58:5e:37:01:c8:97:f0:91:22:e4: e2:e3:95:cf:2f:bf:77:a9:9a:d6:10:cc:25:fc:c4:4d:e4:32: a1:e1:f2:53:cf:bc:d5:1e:1e:08:d3:f9:ba:d5:90:81:47:fb: 37:2b:fd:d1:55:7f:42:31:d9:e7:ec:29:e5:f5:ea:02:a5:17: db:21:b8:a1:e9:de:1f:c6:27:a1:1a:53:02:be:d5:33:92:52: ab:db:14:a7:c2:05:9e:48:27:0a:85:ca:df:55:52:2c:f7:7c: 48:9f:15:e4:3a:cc:d2:bd:e8:3e:78:a7:15:0e:64:b2:51:50: a6:03:48:1d:03:46:36:fc:f8:4a:f8:5b:a2:fa:38:35:25:26: 4f:9f:5f:01:10:34:51:b1:9b:c9:41:6b:a5:1a:7f:9c:18:33: 0e:37:d8:e4:c5:a9:ce:a0:91:8f:34:f6:57:4a:77:9f:45:79: d4:dc:67:31:22:84:04:46:49:ca:40:4c:96:36:3b:b8:d7:f5: 95:ea:1c:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0MDMxMTAvBgNVBAUTKEQ3OEYzMDkwNEU3NURGOTRDRUI3NTk2NkFGODM4RTc2 M0VBODk3NjIwHhcNMjUwNzE5MDU0NDEyWhcNMjUwNzI2MDU0NDEyWjAYMRYwFAYD VQQDEw02ODdiMzBhYy0zNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIjD4sHLxHFHide2Pfs1IBAnmFMGrSRqQn7lFLXC7Ik+TmQXaEby8WlOnVQu U1sCzbTb9IozjG/NgxcKxdQuZjhBYyc4mDQYguT7QS8monFABnmOXo264y/HALui 0PMgO6fq42/JX+Cay4A7EpCLxcnYp9HnnR9psC/UEXG2H+Psbtbf0CIi61HrEDSn 7HcM45U0N6sO7r26NSPdP2DNLgIwkp3TMPJzshRibCN51gWxvy2DiUxsmrckvE+T /D3/M5eZYI+9GQBDaPFZCWQFX1Zb0tUD3wBXNqayudnv8JksXtFatU2DHTcZbWOk XxryEaRWj/NJcsCvAUPDXMx0XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeUJn0M j4IBgKBktWx2AMkcK+pDMB8GA1UdIwQYMBaAFNePMJBOdd+UzrdZZq+DjnY+qJdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTQwMy84MDIwNzJFODE4 QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1VE90MWxtcjRPT2RqNm9s MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1 VE90MWxtcjRPT2RqNm9sMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWjjiQulvLHqiAoLPqspIND5WnkHyTl6RUZvD75w92eloMbf/Q3R5/ UjHtVuSqXQ8KT76MbIBxjFq24ugB91heNwHIl/CRIuTi45XPL793qZrWEMwl/MRN 5DKh4fJTz7zVHh4I0/m61ZCBR/s3K/3RVX9CMdnn7Cnl9eoCpRfbIbih6d4fxieh GlMCvtUzklKr2xSnwgWeSCcKhcrfVVIs93xInxXkOszSveg+eKcVDmSyUVCmA0gd A0Y2/PhK+Fui+jg1JSZPn18BEDRRsZvJQWulGn+cGDMON9jkxanOoJGPNPZXSnef RXnU3GcxIoQERknKQEyWNju41/WV6hxz -----END CERTIFICATE-----Generated at Sun Jul 20 06:59:47 2025 by rpki-client