$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft File: a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft (raw, json) Hash identifier: lh3Y2iV1yFPsiCmVGAxTsIwAI+ueiq6zKvhIWHA4CvM= Subject key identifier: B8:E3:1A:2F:EE:0B:3A:D7:C7:4E:C2:F8:91:B8:6B:17:EB:7B:00:E6 Authority key identifier: 6B:C2:63:B5:1A:56:B5:17:40:77:74:59:79:62:27:ED:00:DF:4D:70 Certificate issuer: /CN=A91D2F93/serialNumber=6BC263B51A56B51740777459796227ED00DF4D70 Certificate serial: 06FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a8JjtRpWtRdAd3RZeWIn7QDfTXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft Manifest number: 06F4 Signing time: Fri 18 Jul 2025 22:12:21 +0000 Manifest this update: Fri 18 Jul 2025 22:12:20 +0000 Manifest next update: Fri 25 Jul 2025 22:12:20 +0000 Files and hashes: 1: a8JjtRpWtRdAd3RZeWIn7QDfTXA.crl (hash: UNfU3K5n6sLoiEivz4s/BJ12VQP2SFrQ7tGEhMn2cTs=) 2: B6FCD4F60CD111ECABD2264AC4F9AE02.roa (hash: bB+9hsPPapCcbcV407klYfK5DJTWT3wpVck7/MMMHXw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.crl rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a8JjtRpWtRdAd3RZeWIn7QDfTXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1786 (0x6fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2F93, serialNumber=6BC263B51A56B51740777459796227ED00DF4D70 Validity Not Before: Jul 18 22:12:20 2025 GMT Not After : Jul 25 22:12:20 2025 GMT Subject: CN=687ac6c5-db7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:96:4b:70:1b:a3:ce:36:70:db:3e:57:d8:fd: 31:63:fc:3f:3f:74:bf:e4:bd:35:a8:58:ef:4c:65: a2:c4:f7:44:82:bb:28:62:84:36:2b:0e:f3:a6:56: b9:ad:33:4b:a2:9e:85:2a:2c:19:2c:dc:24:1e:7c: 3e:30:7f:88:d0:a3:85:cc:e4:9a:1d:b1:7c:cc:df: 56:8f:f5:fa:81:74:6f:80:7f:45:11:4a:97:ed:9e: 56:22:7b:9e:b3:d4:a3:f7:73:ad:24:3d:00:bb:7b: 9d:38:45:30:b3:3b:39:5e:f7:53:7b:a7:ae:18:ec: 32:ee:4d:9c:13:77:0e:4d:39:8b:3d:c8:29:e4:9d: 6c:11:47:e1:1e:08:d5:3d:79:4a:63:d1:2f:15:4a: 91:8c:17:8a:55:32:85:1e:ed:bf:18:a3:24:1f:18: 21:b0:f5:0b:94:da:7d:63:6b:d2:fd:6d:61:a6:db: b3:11:d7:b6:99:9b:60:3c:f2:40:a0:46:bd:ca:7e: fa:a5:7a:91:82:bf:c8:7a:d5:64:da:8c:1f:62:ff: 33:95:92:71:89:3f:f6:bf:c0:0b:0e:d7:63:6a:51: fa:9f:39:13:15:7b:a0:32:e4:fc:9e:32:f1:b6:cf: a6:69:94:07:88:81:15:a5:c2:a2:13:cd:9e:a2:46: c2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E3:1A:2F:EE:0B:3A:D7:C7:4E:C2:F8:91:B8:6B:17:EB:7B:00:E6 X509v3 Authority Key Identifier: keyid:6B:C2:63:B5:1A:56:B5:17:40:77:74:59:79:62:27:ED:00:DF:4D:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a8JjtRpWtRdAd3RZeWIn7QDfTXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2F93/6999F78E524111EBB3C4A41EC4F9AE02/a8JjtRpWtRdAd3RZeWIn7QDfTXA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:ab:42:18:fa:fb:3f:1e:99:98:28:56:f4:41:15:25:bc:28: 05:df:11:16:3f:66:4d:1e:c8:c0:68:ad:4d:02:75:ab:05:56: 1c:9c:73:e8:5b:dd:a8:f0:67:b1:b5:23:f1:74:6e:3d:7d:f8: 85:a2:0a:8c:04:97:5d:cb:be:33:1e:49:16:32:d6:8e:42:47: dd:a4:ca:23:4c:e7:32:fb:ad:a5:5f:11:f3:25:bd:65:d0:9d: 50:a8:d8:ee:cf:92:7c:8d:b4:eb:84:7b:e0:02:26:b9:22:af: 96:7c:63:3d:9c:df:e8:e1:fe:e6:e5:71:27:c4:f0:77:59:6e: a3:5c:86:24:6d:eb:89:be:1f:5f:99:bd:6f:e4:5e:9a:f0:a9: 2f:36:69:38:ff:d6:0e:5f:64:92:58:6e:77:a5:c6:f7:62:a3: 8e:6f:8c:e2:dd:06:5e:cf:3e:7a:f7:e1:93:51:fe:a9:a1:d7: 00:65:7e:a9:2b:40:9b:d2:30:62:08:0f:58:7f:a9:1f:d8:77: 20:28:22:1b:40:52:d2:03:c2:3a:d2:f5:36:5d:d1:26:7f:67: 89:cf:4d:90:5c:e8:20:8f:d6:ec:6c:5d:2c:d9:11:ba:d6:14: 19:3a:82:90:9c:6d:45:fc:0a:9e:89:2c:db:5e:f3:02:c2:44: 53:82:0f:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJGOTMxMTAvBgNVBAUTKDZCQzI2M0I1MUE1NkI1MTc0MDc3NzQ1OTc5NjIyN0VE MDBERjRENzAwHhcNMjUwNzE4MjIxMjIwWhcNMjUwNzI1MjIxMjIwWjAYMRYwFAYD VQQDEw02ODdhYzZjNS1kYjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ZZLcBujzjZw2z5X2P0xY/w/P3S/5L01qFjvTGWixPdEgrsoYoQ2Kw7zpla5 rTNLop6FKiwZLNwkHnw+MH+I0KOFzOSaHbF8zN9Wj/X6gXRvgH9FEUqX7Z5WInue s9Sj93OtJD0Au3udOEUwszs5XvdTe6euGOwy7k2cE3cOTTmLPcgp5J1sEUfhHgjV PXlKY9EvFUqRjBeKVTKFHu2/GKMkHxghsPULlNp9Y2vS/W1hptuzEde2mZtgPPJA oEa9yn76pXqRgr/IetVk2owfYv8zlZJxiT/2v8ALDtdjalH6nzkTFXugMuT8njLx ts+maZQHiIEVpcKiE82eokbCDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjjGi/u CzrXx07C+JG4axfrewDmMB8GA1UdIwQYMBaAFGvCY7UaVrUXQHd0WXliJ+0A301w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkY5My82OTk5Rjc4RTUy NDExMUVCQjNDNEE0MUVDNEY5QUUwMi9hOEpqdFJwV3RSZEFkM1JaZVdJbjdRRGZU WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E4Smp0UnBXdFJkQWQzUlplV0luN1FEZlRYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkY5My82OTk5Rjc4RTUyNDExMUVCQjNDNEE0MUVDNEY5QUUwMi9hOEpqdFJwV3RS ZEFkM1JaZVdJbjdRRGZUWEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYq0IY+vs/HpmYKFb0QRUlvCgF3xEWP2ZNHsjAaK1NAnWrBVYcnHPo W92o8GextSPxdG49ffiFogqMBJddy74zHkkWMtaOQkfdpMojTOcy+62lXxHzJb1l 0J1QqNjuz5J8jbTrhHvgAia5Iq+WfGM9nN/o4f7m5XEnxPB3WW6jXIYkbeuJvh9f mb1v5F6a8KkvNmk4/9YOX2SSWG53pcb3YqOOb4zi3QZezz569+GTUf6podcAZX6p K0Cb0jBiCA9Yf6kf2HcgKCIbQFLSA8I60vU2XdEmf2eJz02QXOggj9bsbF0s2RG6 1hQZOoKQnG1F/AqeiSzbXvMCwkRTgg9B -----END CERTIFICATE-----Generated at Sun Jul 20 14:26:16 2025 by rpki-client