$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft File: SmzWcxMVojSw9JbFc8kOEjyflK4.mft (raw, json) Hash identifier: z8Rs4ju90XLoJQmnK0NMmxSZG6awsRwpfXDdXyB+JcE= Subject key identifier: 24:BB:9C:7D:D3:34:D7:43:B8:9A:23:23:11:B3:1F:22:E9:E3:07:6D Authority key identifier: 4A:6C:D6:73:13:15:A2:34:B0:F4:96:C5:73:C9:0E:12:3C:9F:94:AE Certificate issuer: /CN=A91DF0A8/serialNumber=4A6CD6731315A234B0F496C573C90E123C9F94AE Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft Manifest number: 01AC Signing time: Mon 21 Jul 2025 03:17:08 +0000 Manifest this update: Mon 21 Jul 2025 03:17:07 +0000 Manifest next update: Mon 28 Jul 2025 03:17:07 +0000 Files and hashes: 1: SmzWcxMVojSw9JbFc8kOEjyflK4.crl (hash: mcKbM0dy2LJc/r4HU1k9MvbRvD0a44C+Mk62v6WIpL0=) 2: D831B39ED77311ED949D8419C4F9AE02.roa (hash: wYBYO6Jcla4SoILvK2NaVJIBHB4Ha52WP5v+I/ZxS8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.crl rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0A8, serialNumber=4A6CD6731315A234B0F496C573C90E123C9F94AE Validity Not Before: Jul 21 03:17:07 2025 GMT Not After : Jul 28 03:17:07 2025 GMT Subject: CN=687db133-f616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e5:ef:ed:0e:0d:83:f6:85:0a:c5:05:46:65: 29:47:ba:92:56:9d:49:d0:e7:8f:37:82:93:25:b9: 71:16:f8:b3:10:15:cc:85:ea:e9:14:3c:c0:94:f2: 06:15:81:f7:a0:30:8a:c6:bf:8d:cc:b6:5c:5e:20: d8:f7:46:bc:1b:9b:93:c6:ec:76:96:ae:dc:60:38: b8:4e:f2:c1:3e:ca:1c:7c:a4:a9:34:6c:2f:ff:b3: dd:29:5a:6f:29:26:91:b9:67:d6:e1:3f:2b:9c:b3: 7b:c8:9c:19:21:54:b8:b0:09:f6:75:0f:f5:58:c0: 67:0b:70:53:1e:38:90:08:0d:b1:55:53:c8:c5:e9: 95:50:d7:cd:a1:43:95:25:2c:da:61:9f:60:00:1c: d3:34:1e:88:b5:e7:1f:8b:5e:e1:f3:19:c3:9c:ec: 57:2d:7f:d7:f5:eb:8e:48:7f:0c:ce:89:6c:b6:90: 03:22:59:de:66:b9:58:22:b4:62:0f:2e:1e:c8:60: b9:cb:4b:b1:ad:41:89:94:67:a8:e5:d4:fc:77:e2: fc:97:fb:96:9f:73:63:0a:c2:43:63:c0:e6:7e:6b: e4:a3:8b:07:85:46:30:0d:18:f0:16:a7:df:cc:2e: 33:b9:fd:d2:6e:96:41:7e:7b:65:5d:09:f5:3c:50: 82:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BB:9C:7D:D3:34:D7:43:B8:9A:23:23:11:B3:1F:22:E9:E3:07:6D X509v3 Authority Key Identifier: keyid:4A:6C:D6:73:13:15:A2:34:B0:F4:96:C5:73:C9:0E:12:3C:9F:94:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:13:96:55:91:41:14:76:91:4f:86:09:1b:2f:21:e3:5d:3f: b5:d0:13:bf:8c:28:f1:e6:a2:4d:7f:62:b0:fb:1b:1c:b1:87: df:49:cd:da:5a:81:7b:bb:ca:9f:41:e2:a9:4a:13:00:70:65: 82:8b:d9:48:c7:24:6a:44:87:5d:08:22:4a:42:ce:04:b0:07: e3:f0:5b:46:8c:3b:a5:33:c0:da:fe:a7:b1:54:dc:54:8b:51: 16:55:f8:9f:b1:97:2d:02:99:ac:44:b4:52:41:a1:bc:64:cc: 2e:52:bc:6b:e3:b5:83:55:7d:f6:67:03:b6:91:17:c2:03:f2: bc:df:50:0d:ed:a3:e1:e8:01:e9:af:84:7d:66:23:82:30:7b: 24:0b:6f:6c:08:b4:ed:ae:62:1f:2d:69:28:e7:cc:6d:ef:30: d7:d0:61:89:2c:d3:24:e4:8c:f1:5d:90:ad:55:7b:1c:0b:0b: ab:45:74:93:31:d4:9c:3a:e3:57:a4:28:c6:d3:18:e8:b3:ff: d3:05:be:28:c2:62:94:f6:9e:f2:af:57:b7:ad:69:fb:ae:68: 35:79:78:d9:df:07:7e:fb:13:29:a5:a9:22:c7:47:99:90:01: b9:44:dc:df:4d:ab:58:b4:3c:1a:1e:e5:55:13:78:fe:60:be: 84:44:1c:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwQTgxMTAvBgNVBAUTKDRBNkNENjczMTMxNUEyMzRCMEY0OTZDNTczQzkwRTEy M0M5Rjk0QUUwHhcNMjUwNzIxMDMxNzA3WhcNMjUwNzI4MDMxNzA3WjAYMRYwFAYD VQQDEw02ODdkYjEzMy1mNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+Xv7Q4Ng/aFCsUFRmUpR7qSVp1J0OePN4KTJblxFvizEBXMherpFDzAlPIG FYH3oDCKxr+NzLZcXiDY90a8G5uTxux2lq7cYDi4TvLBPsocfKSpNGwv/7PdKVpv KSaRuWfW4T8rnLN7yJwZIVS4sAn2dQ/1WMBnC3BTHjiQCA2xVVPIxemVUNfNoUOV JSzaYZ9gABzTNB6Itecfi17h8xnDnOxXLX/X9euOSH8MzolstpADIlneZrlYIrRi Dy4eyGC5y0uxrUGJlGeo5dT8d+L8l/uWn3NjCsJDY8Dmfmvko4sHhUYwDRjwFqff zC4zuf3SbpZBfntlXQn1PFCCXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS7nH3T NNdDuJojIxGzHyLp4wdtMB8GA1UdIwQYMBaAFEps1nMTFaI0sPSWxXPJDhI8n5Su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBBOC8wNUM5MjdFMkQ3 NkYxMUVEODg5RTM4MTJDNEY5QUUwMi9TbXpXY3hNVm9qU3c5SmJGYzhrT0VqeWZs SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NteldjeE1Wb2pTdzlKYkZjOGtPRWp5ZmxLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjBBOC8wNUM5MjdFMkQ3NkYxMUVEODg5RTM4MTJDNEY5QUUwMi9TbXpXY3hNVm9q U3c5SmJGYzhrT0VqeWZsSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0E5ZVkUEUdpFPhgkbLyHjXT+10BO/jCjx5qJNf2Kw+xscsYffSc3a WoF7u8qfQeKpShMAcGWCi9lIxyRqRIddCCJKQs4EsAfj8FtGjDulM8Da/qexVNxU i1EWVfifsZctApmsRLRSQaG8ZMwuUrxr47WDVX32ZwO2kRfCA/K831AN7aPh6AHp r4R9ZiOCMHskC29sCLTtrmIfLWko58xt7zDX0GGJLNMk5IzxXZCtVXscCwurRXST MdScOuNXpCjG0xjos//TBb4owmKU9p7yr1e3rWn7rmg1eXjZ3wd++xMppakix0eZ kAG5RNzfTatYtDwaHuVVE3j+YL6ERBxo -----END CERTIFICATE-----Generated at Mon Jul 21 09:08:32 2025 by rpki-client