$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: NliPhdLQx0jcxXII4ad5pVq0l6HkjkN1ZEczO64ZHd4= Subject key identifier: 84:68:53:65:B7:6B:AB:CA:AA:F7:95:7F:09:43:8B:37:F6:4C:F8:D5 Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 03D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 03A3 Signing time: Sat 19 Jul 2025 01:20:54 +0000 Manifest this update: Sat 19 Jul 2025 01:20:53 +0000 Manifest next update: Sat 26 Jul 2025 01:20:53 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: 7ddk2FeeMaFyBbBfkDrqMnGelyzdbGYCAochaDytX1o=) 2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=) 3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: r7+Epywiay/UAmGWjEXTbZ6MxuYjSj6zJi2sl5IN5FE=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Jul 19 01:20:53 2025 GMT Not After : Jul 26 01:20:53 2025 GMT Subject: CN=687af2f6-03e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:0f:4a:6c:73:a6:37:26:0e:4b:78:ea:61: d2:e5:8d:57:13:b7:c9:45:ce:86:f1:10:99:de:c4: c3:fb:96:70:7f:c7:f5:4b:54:58:3a:37:9d:07:1a: 80:4a:c3:5a:e8:80:1b:d9:a2:79:10:e2:43:40:05: 28:f3:b6:50:f0:88:cf:50:6c:dd:3e:1c:c2:76:4d: 58:c1:df:cc:69:54:f8:f6:ac:6a:ec:d8:65:37:85: 63:0e:4d:1c:01:20:99:5d:93:1f:bd:c5:0b:fd:36: 7f:0e:de:a2:90:d0:c5:27:49:fa:1a:e5:44:d3:d3: 19:04:12:c8:e2:2b:71:fa:59:81:78:f1:6e:94:68: 47:9e:d8:77:26:c7:a0:21:30:8e:79:28:48:f2:ed: c2:e7:c7:4b:89:df:b9:c2:ea:ae:91:0f:18:5f:da: f2:b2:ab:a5:55:bb:36:94:43:19:8f:3f:cd:9d:b0: 7b:1a:dd:82:0a:cc:dc:e2:57:b2:fc:a2:6f:b0:aa: f1:c4:de:df:05:5b:6b:af:f2:35:72:0d:2a:46:34: ba:a2:8d:30:3f:f8:d2:ad:43:96:30:f6:5e:8a:43: 3a:7b:18:ea:c6:5a:da:03:a2:0e:da:65:c6:7f:34: 8f:09:f7:06:8f:8e:55:6a:a4:a2:c4:c5:7e:08:28: ab:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:68:53:65:B7:6B:AB:CA:AA:F7:95:7F:09:43:8B:37:F6:4C:F8:D5 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:35:78:59:ee:1d:13:18:d0:44:08:24:7f:cb:19:48:b0:10: 94:5b:30:09:b0:d0:3d:56:f0:98:42:fc:03:b7:38:7c:73:8d: a0:7f:92:74:17:2b:87:4f:bf:d0:e3:a1:2d:93:67:f7:7e:fc: 7a:73:7a:eb:24:6d:73:df:26:27:79:0f:3a:66:80:a5:ed:a4: a7:0b:b6:04:83:84:e3:76:6e:24:c7:ea:db:6a:78:7e:14:48: c2:b3:ae:1e:d0:75:08:7a:48:ad:8b:a5:c1:66:cc:ea:53:78: f7:53:d6:7f:28:bd:60:63:49:0c:dd:4c:03:ef:40:57:b4:cc: 7a:47:48:e0:5d:37:d2:54:6e:81:a0:46:8b:2f:6f:1e:ef:0e: 6e:dd:32:64:2f:46:ac:71:6e:c4:1c:a9:07:9f:fa:6e:d8:b7: 54:cd:7b:51:45:4a:ee:a0:e4:82:f4:78:b2:72:03:64:1e:80: 91:15:32:1a:7c:b6:9f:72:e9:48:b9:12:1b:7a:a2:96:3b:c0: aa:ed:8d:85:bf:3f:d0:c1:50:b0:f6:df:88:8f:d4:7a:5a:a9: a3:09:12:e8:db:9a:30:52:cf:b3:bd:f0:0b:3a:19:a0:73:ed: fb:52:c5:dd:6f:eb:1f:a5:b0:9f:a0:18:5a:80:46:78:fc:4a: 11:e0:6d:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUwNzE5MDEyMDUzWhcNMjUwNzI2MDEyMDUzWjAYMRYwFAYD VQQDEw02ODdhZjJmNi0wM2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYMPSmxzpjcmDkt46mHS5Y1XE7fJRc6G8RCZ3sTD+5Zwf8f1S1RYOjedBxqA SsNa6IAb2aJ5EOJDQAUo87ZQ8IjPUGzdPhzCdk1Ywd/MaVT49qxq7NhlN4VjDk0c ASCZXZMfvcUL/TZ/Dt6ikNDFJ0n6GuVE09MZBBLI4itx+lmBePFulGhHnth3Jseg ITCOeShI8u3C58dLid+5wuqukQ8YX9rysqulVbs2lEMZjz/NnbB7Gt2CCszc4ley /KJvsKrxxN7fBVtrr/I1cg0qRjS6oo0wP/jSrUOWMPZeikM6exjqxlraA6IO2mXG fzSPCfcGj45VaqSixMV+CCirhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRoU2W3 a6vKqveVfwlDizf2TPjVMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANNXhZ7h0TGNBECCR/yxlIsBCUWzAJsNA9VvCYQvwDtzh8c42gf5J0 FyuHT7/Q46Etk2f3fvx6c3rrJG1z3yYneQ86ZoCl7aSnC7YEg4Tjdm4kx+rbanh+ FEjCs64e0HUIekiti6XBZszqU3j3U9Z/KL1gY0kM3UwD70BXtMx6R0jgXTfSVG6B oEaLL28e7w5u3TJkL0ascW7EHKkHn/pu2LdUzXtRRUruoOSC9HiycgNkHoCRFTIa fLafculIuRIbeqKWO8Cq7Y2Fvz/QwVCw9t+Ij9R6WqmjCRLo25owUs+zvfALOhmg c+37UsXdb+sfpbCfoBhagEZ4/EoR4G0Z -----END CERTIFICATE-----Generated at Sun Jul 20 20:22:42 2025 by rpki-client