$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft File: 6beh3yCMdbnrMDz4g8oSjqBPxQo.mft (raw, json) Hash identifier: Sc0azBOeheQ611Vqnm2Gxcg7PpPFfFqfYta8rHbB4H4= Subject key identifier: D4:EB:6D:5E:CC:76:CE:62:10:45:C7:69:6B:01:6C:C5:7F:AF:3A:53 Authority key identifier: E9:B7:A1:DF:20:8C:75:B9:EB:30:3C:F8:83:CA:12:8E:A0:4F:C5:0A Certificate issuer: /CN=A91D8DCB/serialNumber=E9B7A1DF208C75B9EB303CF883CA128EA04FC50A Certificate serial: 15BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft Manifest number: 15B3 Signing time: Fri 18 Jul 2025 16:54:07 +0000 Manifest this update: Fri 18 Jul 2025 16:54:06 +0000 Manifest next update: Fri 25 Jul 2025 16:54:06 +0000 Files and hashes: 1: 6beh3yCMdbnrMDz4g8oSjqBPxQo.crl (hash: cKHdVcqA24B15TW0qqke+cdvhIspZ4fB98adqlvwmcE=) 2: F1D384D031D311E88735EA0AC4F9AE02.roa (hash: 1WW3WJFCQXTAgfqp4BPT1d+bkbg/Wm5DIDF6W6wSe5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.crl rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5563 (0x15bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8DCB, serialNumber=E9B7A1DF208C75B9EB303CF883CA128EA04FC50A Validity Not Before: Jul 18 16:54:06 2025 GMT Not After : Jul 25 16:54:06 2025 GMT Subject: CN=687a7c2f-3521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:61:3d:cb:54:ec:f5:e8:97:7c:cc:90:fb:8c: 54:da:70:23:45:c0:31:dc:56:25:78:54:68:92:38: 51:43:8d:f5:6a:75:7d:97:5d:8b:8f:3a:00:58:60: c3:3b:69:e2:4b:73:ac:db:de:f0:73:68:a5:63:f9: 2d:a4:36:63:66:2f:5d:99:05:59:94:bd:af:74:16: 41:73:c6:a8:57:f4:a4:10:7f:3f:6e:be:97:8d:9d: 7e:7f:89:6e:ae:58:80:89:3a:e7:13:2d:5e:00:d6: 14:af:f4:3d:76:7c:21:f9:48:73:80:e9:4c:50:f9: 88:26:6e:e5:46:21:f5:98:e0:38:a2:1c:80:ae:f7: 6e:52:21:e8:5d:be:2d:7d:de:69:28:30:54:41:1b: 3e:b6:d5:f9:7a:b1:7f:0c:33:f9:cc:28:45:59:35: c7:6c:ff:1e:37:df:cf:92:47:86:a0:ee:6f:26:e8: ca:64:8f:4d:2a:50:3d:36:5f:41:94:d9:01:c3:06: 1d:90:39:2b:3a:43:83:3e:17:2f:f8:89:c5:ed:45: 78:77:b9:8c:9c:e3:2b:c3:26:f2:e5:83:e5:28:5d: fa:66:20:a0:6a:05:b2:82:fc:f7:3a:cf:f0:dd:4f: eb:c7:aa:03:32:0e:ee:a6:c4:c4:50:84:b1:db:04: 85:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EB:6D:5E:CC:76:CE:62:10:45:C7:69:6B:01:6C:C5:7F:AF:3A:53 X509v3 Authority Key Identifier: keyid:E9:B7:A1:DF:20:8C:75:B9:EB:30:3C:F8:83:CA:12:8E:A0:4F:C5:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6beh3yCMdbnrMDz4g8oSjqBPxQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8DCB/743F70C82F2C11E899D1E017C4F9AE02/6beh3yCMdbnrMDz4g8oSjqBPxQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:a0:a5:e5:95:93:0b:53:bc:62:0c:13:88:e6:13:35:15:6a: 76:57:a9:84:fc:40:a4:5a:a4:9d:ee:00:f4:eb:f1:8d:f4:47: cf:c8:d0:ec:e2:66:8a:0c:60:58:55:55:9c:24:dc:67:bc:14: 52:cb:f0:64:8a:04:fe:f6:e0:d3:d2:35:16:86:cd:e7:fc:6f: 0a:e0:36:01:65:79:f3:d2:dc:4f:d5:db:7e:02:2f:e7:8a:95: 68:22:a3:b2:d5:71:02:c1:9a:c1:f8:3c:2d:a1:c5:34:d7:e4: 5c:29:6d:49:31:43:d4:97:e3:ab:78:00:c0:a8:c3:e9:29:ca: e5:09:48:a8:fb:7b:e8:b2:4d:16:8b:4a:be:b3:39:65:38:86: c8:56:87:90:bc:e3:46:bf:b8:33:8c:46:77:ab:46:54:ae:5d: 17:ba:ac:48:f2:73:2d:de:1c:1e:6d:06:df:b5:0a:e4:70:76: cc:04:d2:81:f6:25:07:a4:39:c6:72:19:d2:8a:99:86:0d:7e: 1b:93:d8:8c:bb:e4:3a:0d:09:5b:57:4f:31:3b:73:cf:c9:75: ef:f8:e7:db:13:0b:f3:01:a1:d6:33:b2:a9:2f:df:84:a5:7f: 29:b4:0b:b9:48:a0:a9:9a:80:98:16:4d:70:cf:48:6d:d2:11: f0:4e:00:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhEQ0IxMTAvBgNVBAUTKEU5QjdBMURGMjA4Qzc1QjlFQjMwM0NGODgzQ0ExMjhF QTA0RkM1MEEwHhcNMjUwNzE4MTY1NDA2WhcNMjUwNzI1MTY1NDA2WjAYMRYwFAYD VQQDEw02ODdhN2MyZi0zNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02E9y1Ts9eiXfMyQ+4xU2nAjRcAx3FYleFRokjhRQ431anV9l12LjzoAWGDD O2niS3Os297wc2ilY/ktpDZjZi9dmQVZlL2vdBZBc8aoV/SkEH8/br6XjZ1+f4lu rliAiTrnEy1eANYUr/Q9dnwh+UhzgOlMUPmIJm7lRiH1mOA4ohyArvduUiHoXb4t fd5pKDBUQRs+ttX5erF/DDP5zChFWTXHbP8eN9/PkkeGoO5vJujKZI9NKlA9Nl9B lNkBwwYdkDkrOkODPhcv+InF7UV4d7mMnOMrwyby5YPlKF36ZiCgagWygvz3Os/w 3U/rx6oDMg7upsTEUISx2wSFawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTrbV7M ds5iEEXHaWsBbMV/rzpTMB8GA1UdIwQYMBaAFOm3od8gjHW56zA8+IPKEo6gT8UK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOERDQi83NDNGNzBDODJG MkMxMUU4OTlEMUUwMTdDNEY5QUUwMi82YmVoM3lDTWRibnJNRHo0ZzhvU2pxQlB4 UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZiZWgzeUNNZGJuck1EejRnOG9TanFCUHhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OERDQi83NDNGNzBDODJGMkMxMUU4OTlEMUUwMTdDNEY5QUUwMi82YmVoM3lDTWRi bnJNRHo0ZzhvU2pxQlB4UW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/oKXllZMLU7xiDBOI5hM1FWp2V6mE/ECkWqSd7gD06/GN9EfPyNDs 4maKDGBYVVWcJNxnvBRSy/BkigT+9uDT0jUWhs3n/G8K4DYBZXnz0txP1dt+Ai/n ipVoIqOy1XECwZrB+DwtocU01+RcKW1JMUPUl+OreADAqMPpKcrlCUio+3vosk0W i0q+szllOIbIVoeQvONGv7gzjEZ3q0ZUrl0XuqxI8nMt3hwebQbftQrkcHbMBNKB 9iUHpDnGchnSipmGDX4bk9iMu+Q6DQlbV08xO3PPyXXv+OfbEwvzAaHWM7KpL9+E pX8ptAu5SKCpmoCYFk1wz0ht0hHwTgBh -----END CERTIFICATE-----Generated at Sun Jul 20 14:05:08 2025 by rpki-client