$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft File: Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft (raw, json) Hash identifier: 5Y8Gc4ZFTPT/hI8jeZkBcSnKhfl9evDdDfGlXE15lUQ= Subject key identifier: 51:98:2A:38:BA:3F:5B:C4:55:29:D0:9F:D1:5D:42:20:F5:CD:E6:A5 Authority key identifier: 02:9F:82:12:43:0A:8D:D7:E7:95:4F:EC:31:3F:15:DA:47:CB:44:DD Certificate issuer: /CN=A91D2FC0/serialNumber=029F8212430A8DD7E7954FEC313F15DA47CB44DD Certificate serial: 0B15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft Manifest number: 0B0C Signing time: Sun 20 Jul 2025 19:26:08 +0000 Manifest this update: Sun 20 Jul 2025 19:26:08 +0000 Manifest next update: Sun 27 Jul 2025 19:26:08 +0000 Files and hashes: 1: Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl (hash: MIIm/xSHw+uS9t4cd8KIGh2/kGOV7oK1ZAo8uu9wMbM=) 2: 81D0374C475111EA82F8B821C4F9AE02.roa (hash: H58uLnLgtQRXxjwDdpgj46LQrUNsRnsgJgSttmaA0KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2FC0, serialNumber=029F8212430A8DD7E7954FEC313F15DA47CB44DD Validity Not Before: Jul 20 19:26:08 2025 GMT Not After : Jul 27 19:26:08 2025 GMT Subject: CN=687d42d0-9637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:84:9a:d7:3d:61:3e:6b:92:08:1d:25:cb:e1: 6c:7b:24:70:79:1c:19:8f:ac:7f:b9:f8:32:ea:39: 6d:b1:56:da:32:a1:83:47:50:2a:30:d7:90:08:1b: b8:32:9b:b7:b9:a2:04:48:1f:a5:e6:47:3e:ed:37: 48:60:d0:8a:1f:5d:21:e4:66:fd:e1:c5:83:0d:77: ed:07:84:60:ee:13:1d:27:f2:fc:ed:29:50:52:0b: 75:a6:95:7e:f7:56:4e:6b:c0:d5:bd:62:ac:7e:ef: 7c:bc:83:8f:4a:b5:1f:df:cf:fa:a0:4e:86:bd:62: 16:ab:65:28:b7:00:6d:5c:e7:48:48:3c:f7:be:87: 2a:f1:d3:9f:71:3b:cc:68:18:86:3a:0c:58:30:71: 81:50:e5:33:56:0b:8b:71:91:38:74:65:63:54:37: b4:5b:ff:35:8e:9e:75:5d:fb:33:b3:d3:72:4a:73: c9:7d:b9:9c:8c:a8:9e:66:5b:94:83:b9:41:f5:44: 10:35:87:de:ec:da:d5:9e:21:96:0e:be:17:8c:bc: 6c:d2:68:e0:3e:2d:b8:d1:6c:67:94:e0:c7:68:58: eb:fa:97:05:fb:58:a0:c6:92:63:6d:d5:d7:13:e8: d2:88:5c:34:39:6c:1b:2a:91:9a:c2:af:fa:57:04: e3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:98:2A:38:BA:3F:5B:C4:55:29:D0:9F:D1:5D:42:20:F5:CD:E6:A5 X509v3 Authority Key Identifier: keyid:02:9F:82:12:43:0A:8D:D7:E7:95:4F:EC:31:3F:15:DA:47:CB:44:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2FC0/2A815A08475011EA8CD9761FC4F9AE02/Ap-CEkMKjdfnlU_sMT8V2kfLRN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:39:43:98:8f:0b:7d:ac:c5:14:22:67:42:ea:a6:e8:f8:67: dc:82:47:02:b5:71:25:cb:d8:23:b0:1a:0d:e6:a6:43:56:bf: df:8b:b7:a2:01:54:3c:5e:a9:4c:e7:2b:a9:1d:a4:74:ee:97: 84:53:9a:c1:bb:3e:b4:0e:ca:6b:62:ab:80:d4:19:43:1d:23: 3b:2f:99:02:b8:ac:eb:c2:15:a1:b2:64:8e:1c:70:75:37:7f: 11:5f:52:a7:28:bf:7c:5a:0b:74:35:57:fa:0e:4d:da:d3:8d: 74:8b:62:8c:8a:25:19:aa:9e:94:d8:1c:fb:c5:9a:e6:1f:40: 0d:ee:4d:6c:e8:74:df:7e:c9:8c:ca:d0:3b:b0:27:34:99:9b: 94:f0:8f:4d:d4:32:6e:35:19:82:4c:4d:51:6d:b9:10:f3:e4: d1:57:9c:09:2a:41:d7:88:1e:c7:90:31:b6:89:79:3d:ee:24: 41:56:d0:69:38:79:4d:59:a6:a2:71:1a:81:55:de:d3:89:72: 74:51:a5:f1:ce:68:ee:6d:22:f9:28:f1:bd:cf:49:20:65:e1: 5d:dd:3c:5a:75:a8:93:ba:75:9f:57:0e:6b:71:0d:d4:9a:7f: f6:88:67:1a:54:ad:8f:f8:c7:a1:68:2d:ed:99:05:1d:75:47: 00:d8:da:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJGQzAxMTAvBgNVBAUTKDAyOUY4MjEyNDMwQThERDdFNzk1NEZFQzMxM0YxNURB NDdDQjQ0REQwHhcNMjUwNzIwMTkyNjA4WhcNMjUwNzI3MTkyNjA4WjAYMRYwFAYD VQQDEw02ODdkNDJkMC05NjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoSa1z1hPmuSCB0ly+FseyRweRwZj6x/ufgy6jltsVbaMqGDR1AqMNeQCBu4 Mpu3uaIESB+l5kc+7TdIYNCKH10h5Gb94cWDDXftB4Rg7hMdJ/L87SlQUgt1ppV+ 91ZOa8DVvWKsfu98vIOPSrUf38/6oE6GvWIWq2UotwBtXOdISDz3vocq8dOfcTvM aBiGOgxYMHGBUOUzVguLcZE4dGVjVDe0W/81jp51Xfszs9NySnPJfbmcjKieZluU g7lB9UQQNYfe7NrVniGWDr4XjLxs0mjgPi240WxnlODHaFjr+pcF+1igxpJjbdXX E+jSiFw0OWwbKpGawq/6VwTjBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGYKji6 P1vEVSnQn9FdQiD1zealMB8GA1UdIwQYMBaAFAKfghJDCo3X55VP7DE/FdpHy0Td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkZDMC8yQTgxNUEwODQ3 NTAxMUVBOENEOTc2MUZDNEY5QUUwMi9BcC1DRWtNS2pkZm5sVV9zTVQ4VjJrZkxS TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FwLUNFa01LamRmbmxVX3NNVDhWMmtmTFJOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkZDMC8yQTgxNUEwODQ3NTAxMUVBOENEOTc2MUZDNEY5QUUwMi9BcC1DRWtNS2pk Zm5sVV9zTVQ4VjJrZkxSTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSOUOYjwt9rMUUImdC6qbo+GfcgkcCtXEly9gjsBoN5qZDVr/fi7ei AVQ8XqlM5yupHaR07peEU5rBuz60DsprYquA1BlDHSM7L5kCuKzrwhWhsmSOHHB1 N38RX1KnKL98Wgt0NVf6Dk3a0410i2KMiiUZqp6U2Bz7xZrmH0AN7k1s6HTffsmM ytA7sCc0mZuU8I9N1DJuNRmCTE1RbbkQ8+TRV5wJKkHXiB7HkDG2iXk97iRBVtBp OHlNWaaicRqBVd7TiXJ0UaXxzmjubSL5KPG9z0kgZeFd3TxadaiTunWfVw5rcQ3U mn/2iGcaVK2P+MehaC3tmQUddUcA2NrL -----END CERTIFICATE-----Generated at Mon Jul 21 07:09:58 2025 by rpki-client