$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft File: iX261kcCN4pu4YYw4Yv3Whcpgmk.mft (raw, json) Hash identifier: V3Ykh+UgbnmHulNiR+RErtaMfrmcoY9YdnSAY2NSQxc= Subject key identifier: E8:7D:CE:66:AF:65:09:65:B2:8A:5A:03:53:D5:E7:A2:6A:D5:6C:0C Authority key identifier: 89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 Certificate issuer: /CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Certificate serial: 0121 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft Manifest number: 011B Signing time: Mon 21 Jul 2025 04:59:06 +0000 Manifest this update: Mon 21 Jul 2025 04:59:06 +0000 Manifest next update: Mon 28 Jul 2025 04:59:06 +0000 Files and hashes: 1: iX261kcCN4pu4YYw4Yv3Whcpgmk.crl (hash: 3N8UVUda4H3+L0h/Fj3thpKV3Ex71atVO2JLtKX2od0=) 2: D442A7A0BE2E11EEAFAF1934C4F9AE02.roa (hash: GqeiAvi13dSKvLM+fHPrB98afI5mQF/DJh5CG60rs0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8117, serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Validity Not Before: Jul 21 04:59:06 2025 GMT Not After : Jul 28 04:59:06 2025 GMT Subject: CN=687dc91a-9148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:37:86:1d:f1:7e:9f:a6:22:bf:6a:b7:3f:a1: 15:de:2b:a1:f5:96:60:18:dc:98:4f:58:56:36:22: e5:ef:a5:16:87:f2:cb:14:f5:47:b7:79:ca:7a:be: 5c:28:b5:e7:35:4c:20:76:4f:af:6c:fe:92:81:83: eb:d5:ea:51:e9:80:bf:ca:a5:da:3c:22:10:8e:b6: f2:07:17:74:ed:ca:23:1a:2e:c9:a3:ec:16:6c:e7: 70:51:be:eb:00:31:15:5b:f5:d4:c2:f6:c2:a4:53: 00:e0:7e:da:a6:d4:ca:52:ca:dc:52:3e:e7:a6:9a: 27:e0:b9:aa:03:da:a6:39:c0:24:82:f4:51:94:e3: d4:6a:28:2a:94:c0:85:f5:4f:98:50:39:96:3e:66: e9:cc:7a:7a:bd:dc:06:1d:d2:54:c9:90:97:1b:f2: da:2e:dc:79:0c:a0:4e:e4:94:49:13:51:94:ca:c4: 10:30:8f:2d:bb:4c:ec:33:1e:06:44:5d:61:82:0e: 67:5d:93:70:cc:48:f4:61:f9:22:7c:3b:b7:fb:9d: 4b:a9:55:0c:ac:92:3b:43:96:2b:db:3d:ad:42:2b: ba:c4:58:1f:27:f2:db:bd:86:f4:be:98:ee:a3:83: 1b:e8:8f:c9:8b:3a:0a:8f:39:ef:f1:08:02:9f:c7: 23:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7D:CE:66:AF:65:09:65:B2:8A:5A:03:53:D5:E7:A2:6A:D5:6C:0C X509v3 Authority Key Identifier: keyid:89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:e9:2d:a2:9b:be:13:ee:c5:6c:5b:4f:85:bb:11:b9:e8:4a: 25:73:8f:78:48:3d:64:14:97:58:de:fc:54:58:ea:0b:a8:f1: 71:e9:9b:07:ae:0e:92:ac:20:f4:69:c1:5c:56:ad:1d:03:c9: 02:a9:3e:0e:80:90:f4:78:b9:e1:08:5e:76:6b:7e:15:1d:ee: 27:73:82:a0:94:60:0b:44:0c:9b:bb:35:b2:bd:61:09:11:8a: 19:70:10:9f:f5:c4:05:e1:b6:c1:f7:7f:0f:45:a3:71:c9:66: 24:05:3d:56:cf:84:16:6b:aa:20:5e:e3:7f:63:9a:e4:3a:74: 30:84:e7:a4:f9:f1:7c:88:37:c4:fc:32:47:2e:b2:20:1a:1c: c2:5b:12:70:9e:63:a6:f4:23:9c:9c:01:e2:4a:70:f6:58:fe: 97:6a:b2:74:8d:b8:dc:4b:0e:3e:a0:88:af:d3:b8:7e:c7:68: c1:65:7a:43:7f:5c:e0:78:45:bc:fa:0a:20:96:e3:99:57:25: 48:04:b4:b9:2f:aa:1d:21:ff:7c:bb:91:fe:41:6f:9f:80:42: e7:a3:59:69:55:3d:eb:b9:e3:5a:79:28:9c:f4:d9:98:2b:c4: d7:0f:38:29:e6:a6:54:ff:9c:41:02:b6:8d:80:0f:b0:13:19: 4e:08:10:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMTcxMTAvBgNVBAUTKDg5N0RCQUQ2NDcwMjM3OEE2RUUxODYzMEUxOEJGNzVB MTcyOTgyNjkwHhcNMjUwNzIxMDQ1OTA2WhcNMjUwNzI4MDQ1OTA2WjAYMRYwFAYD VQQDEw02ODdkYzkxYS05MTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjeGHfF+n6Yiv2q3P6EV3iuh9ZZgGNyYT1hWNiLl76UWh/LLFPVHt3nKer5c KLXnNUwgdk+vbP6SgYPr1epR6YC/yqXaPCIQjrbyBxd07cojGi7Jo+wWbOdwUb7r ADEVW/XUwvbCpFMA4H7aptTKUsrcUj7nppon4LmqA9qmOcAkgvRRlOPUaigqlMCF 9U+YUDmWPmbpzHp6vdwGHdJUyZCXG/LaLtx5DKBO5JRJE1GUysQQMI8tu0zsMx4G RF1hgg5nXZNwzEj0YfkifDu3+51LqVUMrJI7Q5Yr2z2tQiu6xFgfJ/LbvYb0vpju o4Mb6I/JizoKjznv8QgCn8cjWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOh9zmav ZQllsopaA1PV56Jq1WwMMB8GA1UdIwQYMBaAFIl9utZHAjeKbuGGMOGL91oXKYJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODExNy84RTI4RTc5NEJF MkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040cHU0WVl3NFl2M1doY3Bn bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYMjYxa2NDTjRwdTRZWXc0WXYzV2hjcGdtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODExNy84RTI4RTc5NEJFMkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040 cHU0WVl3NFl2M1doY3BnbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE6S2im74T7sVsW0+FuxG56Eolc494SD1kFJdY3vxUWOoLqPFx6ZsH rg6SrCD0acFcVq0dA8kCqT4OgJD0eLnhCF52a34VHe4nc4KglGALRAybuzWyvWEJ EYoZcBCf9cQF4bbB938PRaNxyWYkBT1Wz4QWa6ogXuN/Y5rkOnQwhOek+fF8iDfE /DJHLrIgGhzCWxJwnmOm9COcnAHiSnD2WP6XarJ0jbjcSw4+oIiv07h+x2jBZXpD f1zgeEW8+gogluOZVyVIBLS5L6odIf98u5H+QW+fgELno1lpVT3rueNaeSic9NmY K8TXDzgp5qZU/5xBAraNgA+wExlOCBCS -----END CERTIFICATE-----Generated at Wed Jul 23 02:32:18 2025 by rpki-client