$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft File: 1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft (raw, json) Hash identifier: sqmw8qy3Au7Yv5TgX7CBy+cq4x5yE6XJt/RTaR/Nsik= Subject key identifier: B4:06:59:B0:F5:23:94:60:92:9C:DD:E5:AB:52:1B:19:22:3C:CC:BC Authority key identifier: D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 Certificate issuer: /CN=A91CE959/serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft Manifest number: F7 Signing time: Mon 21 Jul 2025 05:23:08 +0000 Manifest this update: Mon 21 Jul 2025 05:23:07 +0000 Manifest next update: Mon 28 Jul 2025 05:23:07 +0000 Files and hashes: 1: 1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl (hash: wAcPvN23Pi26HkBAHqw1PXsraFVh854Il72NhNX0sT4=) 2: 99244E94FE0211EEB1F40344C4F9AE02.roa (hash: ryfpBDCWcmiRZYqeao/rsVyXOOOGDWQajzrZGBcgq+0=) 3: 03BA6992ED7711EE9998FC11C4F9AE02.roa (hash: NecAjd+CZeOPqXXjjBIs9rEIjFJr1slo8jl+q1zHuq8=) 4: 38556AC6ED7711EEA7B2AF12C4F9AE02.roa (hash: x08O0LKYaX3hn9bkCscla0qFn3NKZcPh8LO75bK0AIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE959, serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2 Validity Not Before: Jul 21 05:23:07 2025 GMT Not After : Jul 28 05:23:07 2025 GMT Subject: CN=687dcebb-54c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c9:c1:bb:19:3f:43:48:9f:86:51:c5:1b:87: f1:69:b3:61:1e:18:97:3b:8d:5b:1a:aa:77:4f:62: 05:e8:d1:f7:72:46:20:ef:48:30:6a:2a:a1:ca:54: 6a:81:c4:10:9d:14:f0:2b:e7:36:91:4a:59:5a:2f: 56:87:c8:ce:b6:ef:46:1a:33:3b:62:0a:77:0d:5a: 20:21:8c:cd:22:00:cb:97:b9:ca:9e:38:54:83:e5: 62:ca:71:7f:dd:75:b2:35:6e:64:a7:4e:4f:00:8f: 02:b1:54:18:88:fe:02:c9:dc:82:26:3d:d1:ac:a1: cf:99:1f:d9:51:ef:34:7d:57:68:40:fc:9e:81:3c: a6:c8:3f:c9:50:6c:09:6b:95:47:1f:eb:d9:f6:b8: 8e:2e:27:94:c4:68:65:98:45:2a:2d:a7:b5:de:76: c4:c5:87:6d:e4:59:a7:3b:11:22:3e:94:d0:b4:6a: 2b:a0:24:b0:38:60:c2:d9:aa:e2:5c:11:d0:a6:1e: 26:f4:67:13:ec:09:74:b6:db:86:cd:cc:e6:b4:12: a6:a0:25:e6:bf:60:8b:95:e0:01:b9:bf:63:f6:f7: eb:eb:d2:d7:81:67:5d:61:1d:e6:54:4e:9f:f5:40: bb:e5:66:bc:aa:1e:dc:ac:ec:3e:ec:d8:82:c4:dd: 23:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:06:59:B0:F5:23:94:60:92:9C:DD:E5:AB:52:1B:19:22:3C:CC:BC X509v3 Authority Key Identifier: keyid:D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:17:b9:16:75:f0:4e:5f:86:87:19:53:bd:94:7c:e9:19:84: 3f:be:2f:64:52:76:a5:34:47:96:66:dc:9b:2c:50:53:9b:fe: 9b:35:a4:a5:a9:a5:eb:6c:a8:b9:6c:77:3a:49:b5:4a:18:09: b4:c6:af:9c:04:21:4f:75:dc:af:8b:67:2b:a5:5f:f0:11:ae: fd:e4:4c:99:19:bc:fa:b8:85:dc:c1:b7:91:82:f1:79:43:a7: 51:5e:6f:50:14:2b:0c:61:db:c9:ff:0f:af:72:0d:0a:0f:1d: 97:37:7c:42:58:3d:18:a3:e5:07:41:fd:a9:7c:9a:10:6c:5c: de:d6:f8:41:4b:15:55:f8:f8:ce:4b:ba:e3:d9:f6:12:f4:b6: 59:bf:54:7b:d3:43:bc:27:a6:f3:9c:0f:3f:21:98:c1:a2:04: f5:2f:68:57:5b:95:3f:b7:8b:b5:f1:34:a4:46:00:cd:2a:d9: 8e:8f:f9:ae:3a:18:4e:f5:03:87:55:fc:72:bb:ab:cd:0b:cb: 43:9d:3f:7c:ed:02:8b:4d:32:e3:f8:b6:89:01:64:e8:5b:48: f3:49:60:5f:4c:90:08:33:0f:20:52:71:ea:38:47:3c:30:6e: 99:be:55:01:0a:e2:75:53:17:45:27:d0:50:f8:40:54:8e:ff: 6a:46:73:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NTkxMTAvBgNVBAUTKEQ2RUMyMkE3M0E1OUQyQUE5NTU5OTc0NzAyNzlDNjYy RDExMDg4RjIwHhcNMjUwNzIxMDUyMzA3WhcNMjUwNzI4MDUyMzA3WjAYMRYwFAYD VQQDEw02ODdkY2ViYi01NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0snBuxk/Q0ifhlHFG4fxabNhHhiXO41bGqp3T2IF6NH3ckYg70gwaiqhylRq gcQQnRTwK+c2kUpZWi9Wh8jOtu9GGjM7Ygp3DVogIYzNIgDLl7nKnjhUg+ViynF/ 3XWyNW5kp05PAI8CsVQYiP4CydyCJj3RrKHPmR/ZUe80fVdoQPyegTymyD/JUGwJ a5VHH+vZ9riOLieUxGhlmEUqLae13nbExYdt5FmnOxEiPpTQtGoroCSwOGDC2ari XBHQph4m9GcT7Al0ttuGzczmtBKmoCXmv2CLleABub9j9vfr69LXgWddYR3mVE6f 9UC75Wa8qh7crOw+7NiCxN0j7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQGWbD1 I5Rgkpzd5atSGxkiPMy8MB8GA1UdIwQYMBaAFNbsIqc6WdKqlVmXRwJ5xmLREIjy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk1OS9BQTRDNzdFQ0VE NzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpwWjBxcVZXWmRIQW5uR1l0RVFp UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF1d2lwenBaMHFxVldaZEhBbm5HWXRFUWlQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk1OS9BQTRDNzdFQ0VENzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpwWjBx cVZXWmRIQW5uR1l0RVFpUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRF7kWdfBOX4aHGVO9lHzpGYQ/vi9kUnalNEeWZtybLFBTm/6bNaSl qaXrbKi5bHc6SbVKGAm0xq+cBCFPddyvi2crpV/wEa795EyZGbz6uIXcwbeRgvF5 Q6dRXm9QFCsMYdvJ/w+vcg0KDx2XN3xCWD0Yo+UHQf2pfJoQbFze1vhBSxVV+PjO S7rj2fYS9LZZv1R700O8J6bznA8/IZjBogT1L2hXW5U/t4u18TSkRgDNKtmOj/mu OhhO9QOHVfxyu6vNC8tDnT987QKLTTLj+LaJAWToW0jzSWBfTJAIMw8gUnHqOEc8 MG6ZvlUBCuJ1UxdFJ9BQ+EBUjv9qRnPw -----END CERTIFICATE-----Generated at Mon Jul 21 12:40:49 2025 by rpki-client