$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: r7jfa2HBjpOkUoeAD8RPrPUPpU/h5DA7ilD3L5v+EPY= Subject key identifier: A0:6E:23:99:2B:05:19:23:A4:29:CB:05:51:3A:F2:7C:20:D9:60:4F Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 0468 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0464 Signing time: Mon 21 Jul 2025 00:22:32 +0000 Manifest this update: Mon 21 Jul 2025 00:22:32 +0000 Manifest next update: Mon 28 Jul 2025 00:22:32 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: UuzeQp+nbno+KiRtCO21ezJh0A/L0U585u59nz/UBiQ=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1128 (0x468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Jul 21 00:22:32 2025 GMT Not After : Jul 28 00:22:32 2025 GMT Subject: CN=687d8848-2706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:13:8f:74:ca:77:d7:bd:f4:47:83:d3:82:58: 3d:b5:b4:6e:cd:29:e6:08:5d:18:da:71:96:b2:94: 8b:97:51:d3:29:ed:31:e9:6f:9f:2a:fa:4a:43:bc: b1:30:81:44:59:96:4d:75:22:41:ad:74:3c:35:27: 1a:dc:d9:91:6e:41:8f:61:61:ad:fd:ec:6e:53:34: 6a:dd:a5:1b:3d:29:f8:6c:7e:09:95:f4:1e:66:f5: 62:78:98:c7:46:9e:30:97:33:dc:b8:8f:db:b9:f3: b4:da:d3:bb:b4:1b:4e:f9:5c:52:22:f2:b2:c0:f0: 19:b3:b8:9b:05:ca:68:d0:f7:73:14:af:76:bd:e1: d6:0c:28:40:ee:34:b2:7e:1e:4f:ab:ed:a7:ed:ba: 3f:4d:33:24:42:b0:3d:3f:2a:f8:20:5e:7c:58:74: 3c:45:41:23:55:c6:a8:c0:14:36:10:81:dd:fa:49: 9e:82:24:e1:ea:22:98:8a:db:e5:ae:70:82:2a:cd: a6:ba:73:4b:4e:8a:7e:c4:e3:23:9d:c3:b2:d5:17: bf:71:a2:ab:78:d9:1a:7d:7b:43:b2:40:8e:f4:41: d0:3d:13:1f:86:76:5f:85:ff:1a:fe:7d:2a:46:3b: 84:5b:f5:2f:cb:79:27:82:84:0b:ba:97:e9:9d:ef: 3f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6E:23:99:2B:05:19:23:A4:29:CB:05:51:3A:F2:7C:20:D9:60:4F X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ac:7d:65:5c:1c:1c:a7:e4:01:fa:69:d9:2f:10:8f:3a:52: c4:51:3a:52:d4:aa:d2:10:a2:54:05:73:6a:1c:a7:31:a4:50: 55:dd:81:76:37:39:e2:31:f8:ca:f4:29:60:1b:df:a7:8a:f1: 85:9e:34:e6:84:52:c4:c6:0a:0c:0e:75:11:9a:e7:03:db:61: 2a:af:4c:92:f3:30:fb:f5:14:68:36:da:c1:98:ae:3f:66:30: fd:db:fb:85:13:64:81:cc:f0:fc:be:e4:f6:b3:37:55:2d:78: 25:96:71:ff:27:d2:91:10:47:d0:f4:10:65:63:bf:00:84:fa: 4a:44:93:82:b7:07:7c:89:e8:90:79:ca:a9:f2:34:c3:78:7f: 2c:68:ca:bb:49:de:56:77:76:61:17:62:3c:a8:14:ac:dd:84: ce:fe:26:d0:d4:4a:7d:21:f6:c7:92:5d:2f:a1:cf:85:35:37: 8f:f5:42:d3:52:22:d5:42:ec:2b:6f:15:66:9b:5a:6e:60:a7: 16:62:d7:1f:00:33:bd:1c:c5:8f:10:6a:ce:90:65:ee:8b:7e: ec:d4:b0:86:6b:d2:18:8f:0f:92:84:a8:97:51:a0:ef:83:43: 2d:e5:6d:b0:20:33:0e:65:b9:4f:7b:8a:4a:b5:70:6b:bf:1f: 01:1d:c6:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwNzIxMDAyMjMyWhcNMjUwNzI4MDAyMjMyWjAYMRYwFAYD VQQDEw02ODdkODg0OC0yNzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBOPdMp31730R4PTglg9tbRuzSnmCF0Y2nGWspSLl1HTKe0x6W+fKvpKQ7yx MIFEWZZNdSJBrXQ8NSca3NmRbkGPYWGt/exuUzRq3aUbPSn4bH4JlfQeZvVieJjH Rp4wlzPcuI/bufO02tO7tBtO+VxSIvKywPAZs7ibBcpo0PdzFK92veHWDChA7jSy fh5Pq+2n7bo/TTMkQrA9Pyr4IF58WHQ8RUEjVcaowBQ2EIHd+kmegiTh6iKYitvl rnCCKs2munNLTop+xOMjncOy1Re/caKreNkafXtDskCO9EHQPRMfhnZfhf8a/n0q RjuEW/Uvy3kngoQLupfpne8/BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBuI5kr BRkjpCnLBVE68nwg2WBPMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUrH1lXBwcp+QB+mnZLxCPOlLEUTpS1KrSEKJUBXNqHKcxpFBV3YF2 NzniMfjK9ClgG9+nivGFnjTmhFLExgoMDnURmucD22Eqr0yS8zD79RRoNtrBmK4/ ZjD92/uFE2SBzPD8vuT2szdVLXgllnH/J9KREEfQ9BBlY78AhPpKRJOCtwd8ieiQ ecqp8jTDeH8saMq7Sd5Wd3ZhF2I8qBSs3YTO/ibQ1Ep9IfbHkl0voc+FNTeP9ULT UiLVQuwrbxVmm1puYKcWYtcfADO9HMWPEGrOkGXui37s1LCGa9IYjw+ShKiXUaDv g0Mt5W2wIDMOZblPe4pKtXBrvx8BHcY/ -----END CERTIFICATE-----Generated at Mon Jul 21 06:01:20 2025 by rpki-client