$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft File: 1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft (raw, json) Hash identifier: Vsp2prFa1H3ZyMboSYhpv7qDXh7u8x9KO29fCnGcZ64= Subject key identifier: 33:A6:F4:8A:AA:11:18:40:9E:7E:5F:62:C0:E1:4F:AD:1B:1E:3B:24 Authority key identifier: D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F Certificate issuer: /CN=A91CFFBE/serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft Manifest number: 0597 Signing time: Fri 18 Jul 2025 23:33:15 +0000 Manifest this update: Fri 18 Jul 2025 23:33:15 +0000 Manifest next update: Fri 25 Jul 2025 23:33:15 +0000 Files and hashes: 1: 1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl (hash: RCBnIGTiSWtIrZ8ZxTYKlKTecOHyUhjSiQw0qB/2Jtc=) 2: 05A2A4008FE811EEACB1296AC4F9AE02.roa (hash: OvWek+7GoTr0MOzRQOUQXIl3oHCUTRccIlCGDYFLUR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFBE, serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Validity Not Before: Jul 18 23:33:15 2025 GMT Not After : Jul 25 23:33:15 2025 GMT Subject: CN=687ad9bb-ab01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0c:4c:c0:9a:de:db:88:58:c5:49:71:d4:ac: 04:ab:ec:00:60:91:ce:f9:12:a4:f9:7c:74:08:f0: 11:f2:45:f8:97:05:0f:e8:b7:a4:16:13:54:32:e9: 0d:85:9e:1b:47:56:85:da:7d:c3:64:ab:01:2d:69: 1e:e1:76:04:b2:b9:26:f9:e6:6f:7b:0a:61:f6:17: 3a:a7:bf:c2:a6:2f:f3:c3:62:e5:bd:0c:b5:fb:a7: 33:44:4c:b4:f5:2c:79:25:ac:b5:a3:74:f7:a2:11: 3a:41:5a:30:cb:b1:a4:fe:4a:53:fa:0f:da:c4:c0: c6:41:0b:6f:50:28:1d:3e:94:24:19:79:8f:70:64: 1c:38:85:f5:d1:38:e9:ba:a1:37:28:22:4b:71:79: 94:e6:5b:c7:94:35:92:37:a2:f3:43:2a:85:6f:ff: 26:22:bd:6d:14:ba:dd:d6:ad:63:0e:6b:c6:cc:76: 76:be:36:13:7f:34:fb:6c:a6:a0:be:b8:9c:b9:36: 73:b3:84:30:50:c2:ec:bc:e9:f9:09:b9:c6:54:6e: 10:8b:1c:ac:61:15:fe:d2:d1:3a:e5:12:ab:a4:e6: 4b:e7:66:fc:e5:e7:4e:44:30:6b:e2:b4:38:89:38: aa:c5:91:7d:51:f7:81:79:94:64:0e:e6:8c:7b:57: ea:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A6:F4:8A:AA:11:18:40:9E:7E:5F:62:C0:E1:4F:AD:1B:1E:3B:24 X509v3 Authority Key Identifier: keyid:D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:af:87:d4:56:27:8c:38:6c:98:d8:14:79:07:b9:28:0f:c6: db:de:a1:a0:34:8e:a0:d3:f9:c7:6b:56:11:1a:7e:b9:4c:ae: f3:8e:19:e5:5f:be:24:c0:c7:bb:bd:c8:9a:eb:9c:e0:56:c8: 2b:6f:31:71:bb:4e:36:79:b3:71:03:c2:77:46:59:7b:0b:8a: 3d:32:7b:8a:05:68:ad:aa:ea:af:a4:c2:63:ee:e5:9f:8d:c4: 15:df:4c:e2:a0:40:3f:08:9a:1b:9a:cb:20:05:5d:d2:b7:ba: 71:13:3a:e4:94:71:f5:58:cd:c3:d6:43:d7:9c:38:0c:8c:54: 31:a5:8c:4f:31:9b:86:d7:5d:65:62:fe:32:ac:a2:b1:ab:65: 15:06:65:df:7c:2f:ce:ff:b4:0f:62:dc:33:90:b4:7c:fd:58: d9:3b:69:c4:68:f0:76:da:e0:7d:fd:16:20:93:cb:80:10:3c: e5:8e:ad:bf:8c:08:d7:41:7b:e2:4a:26:47:f5:12:89:8c:52: a8:54:da:16:c0:83:4b:21:d4:70:19:b0:c1:38:f3:f0:86:b2: c5:7a:6b:16:17:ac:e3:21:d0:1b:42:7b:c4:4f:fc:15:ec:71: 2e:2d:9b:27:01:a5:6c:b4:93:5f:8b:d2:a1:73:51:da:92:e8: ce:a8:f5:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQkUxMTAvBgNVBAUTKEQ3MEU1OTRCODFBMTY1OEMyQURERjRBMzI2OEVGOUNG MDhGOTY1MEYwHhcNMjUwNzE4MjMzMzE1WhcNMjUwNzI1MjMzMzE1WjAYMRYwFAYD VQQDEw02ODdhZDliYi1hYjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQxMwJre24hYxUlx1KwEq+wAYJHO+RKk+Xx0CPAR8kX4lwUP6LekFhNUMukN hZ4bR1aF2n3DZKsBLWke4XYEsrkm+eZvewph9hc6p7/Cpi/zw2LlvQy1+6czREy0 9Sx5Jay1o3T3ohE6QVowy7Gk/kpT+g/axMDGQQtvUCgdPpQkGXmPcGQcOIX10Tjp uqE3KCJLcXmU5lvHlDWSN6LzQyqFb/8mIr1tFLrd1q1jDmvGzHZ2vjYTfzT7bKag vricuTZzs4QwUMLsvOn5CbnGVG4QixysYRX+0tE65RKrpOZL52b85edORDBr4rQ4 iTiqxZF9UfeBeZRkDuaMe1fqawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOm9Iqq ERhAnn5fYsDhT60bHjskMB8GA1UdIwQYMBaAFNcOWUuBoWWMKt30oyaO+c8I+WUP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZCRS83NDIyMzcwNkRB RkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZd3EzZlNqSm83NXp3ajVa UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3NVpTNEdoWll3cTNmU2pKbzc1endqNVpROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZCRS83NDIyMzcwNkRBRkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZ d3EzZlNqSm83NXp3ajVaUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUr4fUVieMOGyY2BR5B7koD8bb3qGgNI6g0/nHa1YRGn65TK7zjhnl X74kwMe7vcia65zgVsgrbzFxu042ebNxA8J3Rll7C4o9MnuKBWitquqvpMJj7uWf jcQV30zioEA/CJobmssgBV3St7pxEzrklHH1WM3D1kPXnDgMjFQxpYxPMZuG111l Yv4yrKKxq2UVBmXffC/O/7QPYtwzkLR8/VjZO2nEaPB22uB9/RYgk8uAEDzljq2/ jAjXQXviSiZH9RKJjFKoVNoWwINLIdRwGbDBOPPwhrLFemsWF6zjIdAbQnvET/wV 7HEuLZsnAaVstJNfi9Khc1HakujOqPWw -----END CERTIFICATE-----Generated at Sun Jul 20 14:06:41 2025 by rpki-client