$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: 90FU9Vl6JVAvxmP5stbjn0UHJP140XOx8/ukOBm83Cc= Subject key identifier: 35:E8:B6:94:C8:36:41:99:5D:48:4E:E7:3B:E1:41:7A:4F:B9:E9:4D Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 018B Signing time: Wed 23 Jul 2025 03:48:39 +0000 Manifest this update: Wed 23 Jul 2025 03:48:38 +0000 Manifest next update: Wed 30 Jul 2025 03:48:38 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: 49nMgHiMAig87sx9tmWxNeRlDuGJ6mTrhlNkKvNtXdY=) 2: 7C9E449814B311EEB9CD302AC4F9AE02.roa (hash: GXtjh6JgTYALh33hm4xVR36b7YskJ1eDz/S7oz0ug1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Jul 23 03:48:38 2025 GMT Not After : Jul 30 03:48:38 2025 GMT Subject: CN=68805b97-76d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:32:74:5a:24:a0:3c:2f:b6:99:24:f4:0d:2e: d3:85:49:35:b4:52:ac:e8:ef:47:e2:f9:ec:a0:32: 5c:65:14:b1:7c:fd:b6:55:dc:dc:b6:0a:b9:cb:be: 69:53:21:12:54:89:0c:5a:46:e4:a4:eb:7d:01:f7: d7:d4:27:60:2d:dc:e3:3e:ab:15:9d:83:5c:68:77: d9:07:3f:73:66:7b:24:4f:61:8d:7a:35:6f:90:2f: 0e:b4:1d:be:58:80:56:d4:6e:98:f6:a3:c9:76:7d: 0c:f7:61:72:2d:b8:6f:c1:fb:d2:b8:e8:82:61:d5: ac:05:d6:ec:6e:4b:7d:ef:2e:13:01:94:22:7b:24: 00:e8:30:ee:dc:81:06:ae:55:40:eb:16:3c:06:62: d4:62:fb:b4:32:00:13:ce:38:a9:e2:26:94:56:d7: c6:7f:de:0d:1f:10:57:1e:86:73:aa:09:6a:f2:7c: a4:5b:22:bb:ee:09:dc:73:03:33:bf:f3:35:ae:15: 0f:19:2b:81:cc:97:cf:3c:85:c1:7c:07:8b:6a:e2: 3f:4e:05:10:f9:e9:a3:17:6b:45:f5:24:fd:53:9c: 7b:42:af:29:9f:e4:f8:65:a3:00:40:e5:90:bb:25: 53:96:2d:86:63:df:0d:ef:a4:c9:4a:33:7f:bd:a2: ea:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E8:B6:94:C8:36:41:99:5D:48:4E:E7:3B:E1:41:7A:4F:B9:E9:4D X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:b2:48:53:96:13:0c:53:fb:89:d8:3d:9a:58:71:b7:18:fa: c7:b0:3e:30:cf:50:27:a5:47:be:0e:38:dc:9e:01:79:7d:8f: 82:c2:5f:cd:1d:b7:6f:db:a1:cd:d9:0e:10:59:75:b5:ad:a0: e0:11:91:ed:83:c7:9c:41:8e:7b:a3:b0:8f:90:0d:1d:82:c8: 4b:95:cf:9c:4f:73:0e:70:15:53:30:cc:cc:77:d5:1a:41:5c: 12:3d:60:b4:02:70:90:85:99:5d:53:6a:58:69:82:31:a3:31: ea:81:10:bf:13:0d:53:52:ae:8b:4b:b3:a8:9b:c0:44:31:53: 87:d9:a5:4c:6c:8b:3c:fe:13:db:64:48:d9:01:54:ba:c6:57: 32:ee:2a:af:88:86:3f:b9:48:2f:f3:a6:2d:22:74:5e:f2:c0: 30:ed:1b:aa:e1:6f:d9:4a:33:ef:89:f9:bc:30:09:5c:72:db: 7a:95:c9:b3:5a:b9:fd:f8:34:50:16:14:5c:68:0f:8e:e4:94: 27:b2:14:26:9c:75:3d:d1:e6:b1:c8:02:a8:86:42:fe:45:ee: 9d:9e:85:c3:42:aa:09:39:5b:2a:19:87:d4:3b:d7:76:33:cf: 07:0f:c1:67:0f:58:dc:72:47:74:4e:ad:4d:45:ce:02:cf:29: ad:cc:be:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwNzIzMDM0ODM4WhcNMjUwNzMwMDM0ODM4WjAYMRYwFAYD VQQDEw02ODgwNWI5Ny03NmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zJ0WiSgPC+2mST0DS7ThUk1tFKs6O9H4vnsoDJcZRSxfP22Vdzctgq5y75p UyESVIkMWkbkpOt9AffX1CdgLdzjPqsVnYNcaHfZBz9zZnskT2GNejVvkC8OtB2+ WIBW1G6Y9qPJdn0M92FyLbhvwfvSuOiCYdWsBdbsbkt97y4TAZQieyQA6DDu3IEG rlVA6xY8BmLUYvu0MgATzjip4iaUVtfGf94NHxBXHoZzqglq8nykWyK77gnccwMz v/M1rhUPGSuBzJfPPIXBfAeLauI/TgUQ+emjF2tF9ST9U5x7Qq8pn+T4ZaMAQOWQ uyVTli2GY98N76TJSjN/vaLqfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXotpTI NkGZXUhO5zvhQXpPuelNMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIskhTlhMMU/uJ2D2aWHG3GPrHsD4wz1AnpUe+DjjcngF5fY+Cwl/N Hbdv26HN2Q4QWXW1raDgEZHtg8ecQY57o7CPkA0dgshLlc+cT3MOcBVTMMzMd9Ua QVwSPWC0AnCQhZldU2pYaYIxozHqgRC/Ew1TUq6LS7Oom8BEMVOH2aVMbIs8/hPb ZEjZAVS6xlcy7iqviIY/uUgv86YtInRe8sAw7Ruq4W/ZSjPvifm8MAlcctt6lcmz Wrn9+DRQFhRcaA+O5JQnshQmnHU90eaxyAKohkL+Re6dnoXDQqoJOVsqGYfUO9d2 M88HD8FnD1jcckd0Tq1NRc4CzymtzL4l -----END CERTIFICATE-----Generated at Fri Jul 25 00:34:36 2025 by rpki-client