$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: yBh8a+0KJYd/vmPDdC0gK8Cd0Re0rACBSjkJWg/vOOQ= Subject key identifier: 30:3A:8A:FB:74:6A:0E:59:0C:46:C3:91:53:F2:B1:C1:F2:CA:DC:92 Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 07F3 Signing time: Fri 18 Jul 2025 21:12:04 +0000 Manifest this update: Fri 18 Jul 2025 21:12:03 +0000 Manifest next update: Fri 25 Jul 2025 21:12:03 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: gzos4zmk4AeRA5AWEwtUs5zSq6TqNoA098uXkM1a6UM=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: IS2j0d/zVkxwnqe+1txywwwV0QyYZmwCTkV8FQIqSXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Jul 18 21:12:03 2025 GMT Not After : Jul 25 21:12:03 2025 GMT Subject: CN=687ab8a4-1d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:83:3b:cf:5b:de:03:b9:32:8d:d4:02:fd:6d: 25:65:da:9a:91:8a:f9:ab:f2:ce:5d:df:19:ba:9e: 85:d4:da:f2:59:33:3e:68:aa:1e:a5:a1:38:b9:ce: a0:0f:31:17:ad:11:45:c7:26:46:5a:7b:0a:5b:60: 88:7d:1e:7b:c5:62:6f:08:99:55:47:7f:6c:8d:41: cc:48:30:a7:86:6b:22:5b:b3:00:6b:89:03:72:ed: 45:97:74:80:f6:84:a6:72:23:6c:c4:ca:84:8d:ab: 8e:d8:8b:a8:e4:db:89:bb:2b:39:fc:9c:56:5b:e5: bd:68:62:e6:ce:3a:9d:8b:67:1b:57:77:b6:60:ad: 16:94:c8:2f:38:d6:b3:54:45:45:b4:69:9b:2b:a1: 7d:18:18:36:ef:17:21:8b:4f:4b:44:52:37:fc:bf: 6a:9d:38:82:8a:45:88:d2:4c:3e:7e:80:c6:24:7c: 74:b9:c8:cd:1a:38:38:05:66:f4:c8:43:0f:b0:fd: f0:21:5b:1f:08:36:46:01:70:83:7e:58:e7:03:76: 75:40:fc:6d:45:94:30:62:73:33:63:9a:88:b3:af: 25:0c:9f:cb:47:e9:ad:d4:4d:de:1d:76:40:d0:3e: 83:14:59:6c:12:9b:cf:30:49:51:49:3c:7a:94:0d: 26:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3A:8A:FB:74:6A:0E:59:0C:46:C3:91:53:F2:B1:C1:F2:CA:DC:92 X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:9d:72:1d:3b:a3:2b:e7:f4:d5:c4:85:21:66:f1:43:e7:0c: a4:b1:91:5b:37:64:28:fb:86:eb:71:b8:7e:67:cb:22:8d:12: a4:b6:ee:8d:da:d7:c8:2b:20:f3:74:1e:da:52:42:8a:3e:bb: 42:29:76:62:80:7b:1b:87:3a:40:17:58:f1:58:f6:4a:db:a5: 39:67:40:f6:55:e5:0f:86:5b:43:f5:35:b1:3a:41:82:ed:04: 19:9a:8b:a4:1a:92:aa:3e:42:af:0e:a4:3c:a1:72:7c:72:44: 44:f6:83:dd:f8:a5:9d:63:5c:5b:ab:43:ee:37:d7:79:68:b4: 6b:95:3d:83:19:f0:92:b4:37:8a:ac:57:14:1f:9c:5c:35:18: 16:4e:37:1f:1f:3c:62:d7:1d:74:5e:11:a6:ab:f2:4b:bd:72: 6a:5c:4f:a1:05:1c:fd:4b:fd:e0:6d:78:ac:5c:31:df:18:39: 8c:4a:c9:47:83:33:08:5e:1f:af:49:24:cf:10:6d:37:9e:03: ca:1c:75:bf:8a:1e:dc:a4:e5:92:7b:33:d8:cd:62:19:5d:7b: 64:f3:08:23:3e:7e:07:90:0b:8d:a5:15:a1:2d:3e:91:c5:67: 33:62:47:1c:13:ce:e0:32:75:49:b6:8b:d8:51:ed:32:37:54: f4:b8:12:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUwNzE4MjExMjAzWhcNMjUwNzI1MjExMjAzWjAYMRYwFAYD VQQDEw02ODdhYjhhNC0xZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoM7z1veA7kyjdQC/W0lZdqakYr5q/LOXd8Zup6F1NryWTM+aKoepaE4uc6g DzEXrRFFxyZGWnsKW2CIfR57xWJvCJlVR39sjUHMSDCnhmsiW7MAa4kDcu1Fl3SA 9oSmciNsxMqEjauO2Iuo5NuJuys5/JxWW+W9aGLmzjqdi2cbV3e2YK0WlMgvONaz VEVFtGmbK6F9GBg27xchi09LRFI3/L9qnTiCikWI0kw+foDGJHx0ucjNGjg4BWb0 yEMPsP3wIVsfCDZGAXCDfljnA3Z1QPxtRZQwYnMzY5qIs68lDJ/LR+mt1E3eHXZA 0D6DFFlsEpvPMElRSTx6lA0mRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDA6ivt0 ag5ZDEbDkVPyscHyytySMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHnXIdO6Mr5/TVxIUhZvFD5wyksZFbN2Qo+4brcbh+Z8sijRKktu6N 2tfIKyDzdB7aUkKKPrtCKXZigHsbhzpAF1jxWPZK26U5Z0D2VeUPhltD9TWxOkGC 7QQZmoukGpKqPkKvDqQ8oXJ8ckRE9oPd+KWdY1xbq0PuN9d5aLRrlT2DGfCStDeK rFcUH5xcNRgWTjcfHzxi1x10XhGmq/JLvXJqXE+hBRz9S/3gbXisXDHfGDmMSslH gzMIXh+vSSTPEG03ngPKHHW/ih7cpOWSezPYzWIZXXtk8wgjPn4HkAuNpRWhLT6R xWczYkccE87gMnVJtovYUe0yN1T0uBL5 -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:29 2025 by rpki-client