$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft File: 7Y9dbJv8FI96u3CMUpHThHgcYf0.mft (raw, json) Hash identifier: iYnHu4JGWL0M2hYrZcbtF4AloOQzcz0l/GmHMYfkOm0= Subject key identifier: 11:35:4B:E0:20:1C:47:DB:7D:1F:D7:9B:B7:55:88:28:D3:EC:05:04 Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft Manifest number: 01A9 Signing time: Wed 23 Jul 2025 03:41:09 +0000 Manifest this update: Wed 23 Jul 2025 03:41:08 +0000 Manifest next update: Wed 30 Jul 2025 03:41:08 +0000 Files and hashes: 1: 7Y9dbJv8FI96u3CMUpHThHgcYf0.crl (hash: JgCJ+D04SSYUjYWrthqtpiMpVZDzGf7zlHP6HY2M4NI=) 2: E7B6C4DA685E11EFB77BDE0CC4F9AE02.roa (hash: 2Sk6qdac85J3PHWk8OUfv3qQs5GZrJRqheFoyWeSnOE=) 3: C5AFD098167311F0916F5435C4F9AE02.roa (hash: T/t95RGiv+MhA6WaLbxmQnLnySE9uteSKwYbrk4jpmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA0AA, serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Validity Not Before: Jul 23 03:41:08 2025 GMT Not After : Jul 30 03:41:08 2025 GMT Subject: CN=688059d5-1a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:fb:48:ec:dd:11:d0:a6:5b:6c:04:9d:85: 06:43:81:d2:4e:de:f7:17:e2:57:88:39:3c:f3:57: a3:e6:0d:af:7b:c4:a8:e9:91:96:7f:78:33:74:27: 83:53:2f:6c:73:d5:05:31:1f:60:73:0d:fc:9d:fe: dc:d3:16:3f:ff:a6:b4:6e:18:6c:67:84:5e:5f:85: 68:1e:93:2a:99:a8:89:3d:02:e0:04:fa:58:c5:43: 94:18:bb:b0:35:13:13:e9:8d:f6:7b:27:e7:ce:80: 38:59:80:93:42:7b:47:53:a1:78:58:d4:31:06:8d: 17:26:fd:68:41:ca:f8:1f:32:02:0d:94:78:6d:fb: e5:66:55:61:4b:74:3d:bb:7a:d4:39:27:57:ff:12: 6f:df:81:9f:c0:4e:50:05:6a:76:4f:72:90:b8:01: 35:9f:11:73:0d:44:89:3d:5d:04:80:ad:fc:09:6a: 17:81:2e:5a:e4:59:05:a1:b0:53:f5:c3:5b:63:f7: a5:a5:3d:6e:fe:32:fd:1a:76:ed:90:f8:e6:83:f0: 56:c8:ab:9f:c4:a1:b0:c3:1c:8f:9d:3d:f9:04:06: 3a:c0:4e:0c:15:95:36:da:ff:aa:fe:cc:61:55:e4: f5:f7:f6:36:71:9f:2a:2c:f6:cb:49:f9:8a:ad:1d: 78:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:35:4B:E0:20:1C:47:DB:7D:1F:D7:9B:B7:55:88:28:D3:EC:05:04 X509v3 Authority Key Identifier: keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:f1:c8:ea:3e:14:04:e4:99:55:e7:fa:99:66:87:66:9c:00: 11:bd:f6:e2:26:dd:90:23:a4:cb:59:1c:89:ad:0b:d3:a3:20: 8e:04:e1:fa:ba:d5:ad:00:4f:ed:4b:5d:7b:79:89:80:d0:cf: a9:31:16:77:f9:e9:f0:42:cd:12:ec:65:58:ae:82:fc:2c:c1: 1a:cc:4b:09:ec:4c:0e:14:fb:75:45:99:2d:cd:b1:51:3c:f9: 2e:f8:b4:0f:bd:6e:a0:64:58:8e:4d:d9:ad:25:0e:01:03:6e: 58:12:2c:e8:52:8a:74:dc:5f:51:f5:e4:78:46:95:f3:bc:5d: dd:01:5e:23:fd:10:b3:7c:1b:dd:f9:4d:dc:54:e3:4e:22:d4: e9:10:48:78:9e:d0:98:e1:23:32:48:fb:6d:8b:5c:df:42:a7: 02:3e:84:76:01:1d:44:97:8f:fe:1e:b2:b9:d7:ec:2c:f0:88: 6c:20:71:bd:83:6c:32:8d:a0:91:45:9f:e7:6a:a1:11:c2:fd: 02:f2:5a:1a:c2:35:17:05:94:da:dd:0d:ad:50:f1:57:90:c4: e6:18:36:31:18:91:1a:9f:69:54:8a:6e:c4:7d:b4:3a:1e:30: 05:77:a4:9d:25:90:7c:2f:12:0a:01:b2:99:ca:f5:7b:2f:eb: ac:3a:eb:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0 NzgxQzYxRkQwHhcNMjUwNzIzMDM0MTA4WhcNMjUwNzMwMDM0MTA4WjAYMRYwFAYD VQQDEw02ODgwNTlkNS0xYTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8D7SOzdEdCmW2wEnYUGQ4HSTt73F+JXiDk881ej5g2ve8So6ZGWf3gzdCeD Uy9sc9UFMR9gcw38nf7c0xY//6a0bhhsZ4ReX4VoHpMqmaiJPQLgBPpYxUOUGLuw NRMT6Y32eyfnzoA4WYCTQntHU6F4WNQxBo0XJv1oQcr4HzICDZR4bfvlZlVhS3Q9 u3rUOSdX/xJv34GfwE5QBWp2T3KQuAE1nxFzDUSJPV0EgK38CWoXgS5a5FkFobBT 9cNbY/elpT1u/jL9GnbtkPjmg/BWyKufxKGwwxyPnT35BAY6wE4MFZU22v+q/sxh VeT19/Y2cZ8qLPbLSfmKrR147QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBE1S+Ag HEfbfR/Xm7dViCjT7AUEMB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTBBQS84MkJCQjU1MjAwM0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJ OTZ1M0NNVXBIVGhIZ2NZZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE8cjqPhQE5JlV5/qZZodmnAARvfbiJt2QI6TLWRyJrQvToyCOBOH6 utWtAE/tS117eYmA0M+pMRZ3+enwQs0S7GVYroL8LMEazEsJ7EwOFPt1RZktzbFR PPku+LQPvW6gZFiOTdmtJQ4BA25YEizoUop03F9R9eR4RpXzvF3dAV4j/RCzfBvd +U3cVONOItTpEEh4ntCY4SMySPtti1zfQqcCPoR2AR1El4/+HrK51+ws8IhsIHG9 g2wyjaCRRZ/naqERwv0C8loawjUXBZTa3Q2tUPFXkMTmGDYxGJEan2lUim7EfbQ6 HjAFd6SdJZB8LxIKAbKZyvV7L+usOuvJ -----END CERTIFICATE-----Generated at Fri Jul 25 00:26:27 2025 by rpki-client