$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft File: xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft (raw, json) Hash identifier: NjOgc2/MpdCWYtzOzqeRZFEqN5c2Bh4pmmZ4s9hcbz0= Subject key identifier: 86:09:04:61:2F:79:64:4A:17:D7:19:A3:11:D4:0C:F3:05:A8:FA:C6 Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft Manifest number: 041B Signing time: Sat 19 Jul 2025 00:51:56 +0000 Manifest this update: Sat 19 Jul 2025 00:51:55 +0000 Manifest next update: Sat 26 Jul 2025 00:51:55 +0000 Files and hashes: 1: xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl (hash: RgPIqThJ0TAjLYOjh3P3KQwjL8837VRKyvx9j/pnqcQ=) 2: 5CA964A68AC111EC91D19A11C4F9AE02.roa (hash: JDhvBxRe3WYJ1iKQKnxqCUD2z2C21JJ9nqsXsWXBpYM=) 3: 6F8A81CCF30C11ED94750772C4F9AE02.roa (hash: QNRRPIEXpBXbzOjvogyb/5EofzlDIH5pOqmalYkDTHw=) 4: 86131D8AEA5D11ED80641166C4F9AE02.roa (hash: pOC7yi76swQlUgILehboMwNcNI7fxV+UlNvd0wZTls0=) 5: 8FD0B12E400311EEBF5A8B52C4F9AE02.roa (hash: QSRbYccf6zSEHa0HsQVgKCVz5nS1O8L5U8Elot2Xz40=) 6: D46B2C087F8711EC81E76A59C4F9AE02.roa (hash: R3jOsVUDlgPUNcLVjE2JxsnxeughPhg0TvY+Ytf4478=) 7: D83192B0152B11EE85ED4B1DC4F9AE02.roa (hash: 8STPYAJJhsqxveLpZRzmdl9yhMuww2dhMQO1WbQeNbU=) 8: 5F14A15442D111EF8424E65BC4F9AE02.roa (hash: +sir/1Ip5eUjrTrKzP4T0efIjhcNSv/WtmTYay9OtXs=) 9: C3261EF826DF11ED94E18118C4F9AE02.roa (hash: 7KI+xGonwsZRICria/4CZwlDNlRIuXU/wVts22Crf9U=) 10: 350FEB88D40611EDADEE3D1EC4F9AE02.roa (hash: fPCfFsxMUqOAvLJmkWjc+RPsiCNLjQ233XGNCqOiY/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Jul 19 00:51:55 2025 GMT Not After : Jul 26 00:51:55 2025 GMT Subject: CN=687aec2c-24cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ec:9e:9b:75:b7:b1:3c:76:ea:79:f4:aa:d9: 51:96:4c:bc:e1:a7:38:a9:0a:99:82:c1:02:33:50: 03:fc:20:a0:5d:82:3f:f3:95:b3:8f:6b:cb:9b:54: 96:91:19:1c:37:5d:ee:c7:7d:45:86:82:a5:2d:d7: 0c:b6:77:cf:57:3d:d5:f8:f3:24:89:84:a2:87:25: c3:c8:5b:8f:14:44:ec:15:1a:e7:ec:d1:6a:58:8c: d9:ec:6c:1b:a1:67:27:2c:2a:a7:31:5e:df:e3:57: bd:92:8b:c1:5f:91:78:6a:99:5d:7f:b9:ca:c5:9d: 28:b6:af:e3:8f:87:1a:46:04:c5:56:1d:2a:d4:5f: 67:98:ab:9c:3f:6b:81:49:e6:00:36:d6:c8:86:9a: e7:4d:a2:c6:3b:ff:20:de:16:40:cb:1d:69:44:38: 98:7c:c1:a7:6c:01:21:26:79:36:a1:2c:e2:34:75: 38:db:06:c9:dd:6c:a0:b7:45:9c:2c:24:43:bb:c9: ea:4e:cf:d3:af:c6:df:d1:d1:a1:43:5a:b0:8f:a2: 6f:d2:2f:63:b6:70:85:00:ae:b6:a9:26:8f:21:60: 0d:21:0c:06:8c:a8:7b:a7:2f:8a:d8:2b:91:58:d8: 58:dc:e1:8b:7d:a7:a3:0f:b7:c6:74:0e:5d:d7:a1: 9e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:09:04:61:2F:79:64:4A:17:D7:19:A3:11:D4:0C:F3:05:A8:FA:C6 X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:37:14:8e:3f:85:58:2c:de:55:d3:5e:d3:ee:a9:ae:d7:8b: 09:a3:b2:20:e7:d4:42:fd:77:72:82:85:a5:db:77:8b:c4:3b: dc:22:c1:0e:bf:fc:61:fa:6f:70:5c:ca:8b:1f:72:e5:70:18: 44:ce:34:d5:2d:6e:67:9a:fd:ea:df:ee:bc:c9:27:b4:fa:47: 52:d8:cc:11:e9:43:91:2f:50:dd:86:19:91:ac:da:63:36:7f: b2:21:63:30:cc:87:c9:48:d4:f7:94:55:22:6d:a6:83:05:d1: 50:f4:df:ee:97:12:74:42:66:34:46:b3:b0:41:cc:2e:15:66: 60:c9:f1:8f:04:45:b3:c4:40:3c:54:ce:fe:40:e0:06:94:5b: 1c:f2:ca:fb:d8:30:c2:46:90:a1:b7:db:3f:ab:68:fb:84:5d: 6f:d0:08:d9:fb:b2:5e:fe:48:2a:be:74:87:bf:37:a1:65:c8: 2a:dc:fe:7d:3e:df:13:eb:e2:2b:d8:a2:3c:48:73:98:e5:fc: 16:01:27:26:f2:96:76:33:8f:7e:2f:d3:e0:e4:24:00:3c:fc: fe:06:6e:17:ac:82:5e:49:d4:22:1b:e5:a7:24:cf:e2:84:49: 45:c4:1a:72:ea:1a:1c:6a:3f:6e:68:9f:43:4e:c6:92:de:a9: cc:16:a9:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjUwNzE5MDA1MTU1WhcNMjUwNzI2MDA1MTU1WjAYMRYwFAYD VQQDEw02ODdhZWMyYy0yNGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uyem3W3sTx26nn0qtlRlky84ac4qQqZgsECM1AD/CCgXYI/85Wzj2vLm1SW kRkcN13ux31FhoKlLdcMtnfPVz3V+PMkiYSihyXDyFuPFETsFRrn7NFqWIzZ7Gwb oWcnLCqnMV7f41e9kovBX5F4apldf7nKxZ0otq/jj4caRgTFVh0q1F9nmKucP2uB SeYANtbIhprnTaLGO/8g3hZAyx1pRDiYfMGnbAEhJnk2oSziNHU42wbJ3Wygt0Wc LCRDu8nqTs/Tr8bf0dGhQ1qwj6Jv0i9jtnCFAK62qSaPIWANIQwGjKh7py+K2CuR WNhY3OGLfaejD7fGdA5d16GesQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYJBGEv eWRKF9cZoxHUDPMFqPrGMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFBMC83QzUzOTEwQzdGODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1 TERMaHhNdmhSOC16bVpKVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0NxSOP4VYLN5V017T7qmu14sJo7Ig59RC/XdygoWl23eLxDvcIsEO v/xh+m9wXMqLH3LlcBhEzjTVLW5nmv3q3+68ySe0+kdS2MwR6UORL1DdhhmRrNpj Nn+yIWMwzIfJSNT3lFUibaaDBdFQ9N/ulxJ0QmY0RrOwQcwuFWZgyfGPBEWzxEA8 VM7+QOAGlFsc8sr72DDCRpCht9s/q2j7hF1v0AjZ+7Je/kgqvnSHvzehZcgq3P59 Pt8T6+Ir2KI8SHOY5fwWAScm8pZ2M49+L9Pg5CQAPPz+Bm4XrIJeSdQiG+WnJM/i hElFxBpy6hocaj9uaJ9DTsaS3qnMFqkh -----END CERTIFICATE-----Generated at Sun Jul 20 18:49:08 2025 by rpki-client