$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft (raw, json) Hash identifier: alS/yg9eU1KbLJMi89KpKCKmgszjq94wz/76PtAMO9s= Subject key identifier: 20:B7:9C:8D:F2:7C:E4:A6:42:A2:5D:DA:1E:33:07:61:36:65:EE:74 Authority key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 Certificate issuer: /CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Certificate serial: 1F37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft Manifest number: 1F2B Signing time: Sun 20 Jul 2025 16:02:29 +0000 Manifest this update: Sun 20 Jul 2025 16:02:29 +0000 Manifest next update: Sun 27 Jul 2025 16:02:29 +0000 Files and hashes: 1: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl (hash: 8aJ2l6XSEx/xGaesDQh0Y58Xef8TM2bcEK7/kQs0Uo8=) 2: E723101E553D11E7B552CE31C4F9AE02.roa (hash: GAb6VP25Sih6kuMJl/07aQz0S9qS9uziUSigVGvFQjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7991 (0x1f37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF937, serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Validity Not Before: Jul 20 16:02:29 2025 GMT Not After : Jul 27 16:02:29 2025 GMT Subject: CN=687d1315-2ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:41:03:85:7c:1e:93:51:f5:52:09:13:55:26: a0:3b:0b:b4:dc:96:57:02:1a:d6:a5:bf:d8:b2:8e: 3d:ac:50:4e:0e:bd:f6:4a:06:30:ba:5f:3f:2a:5a: 6c:12:73:7c:e1:cf:7b:0b:7c:0f:79:61:ab:d4:00: dd:3f:77:88:09:ff:a0:1b:ce:04:e1:0a:d6:ac:db: 14:2e:c8:46:be:28:99:c9:3e:42:d7:a3:7b:8e:f0: 3e:01:66:be:e5:8e:29:95:d4:3c:09:b8:40:96:d8: 57:a5:1c:9c:a3:9b:7c:68:a5:63:ae:45:21:96:16: 79:15:1b:17:16:bd:37:ed:dc:46:db:0f:ce:a8:ae: fc:49:b5:4f:30:d3:88:2e:b5:79:d6:54:e3:04:e4: 65:ee:9c:1d:a8:3d:8b:dc:db:60:28:74:f9:05:d5: 9a:9a:67:cc:85:32:56:13:6a:43:3c:4a:98:94:d2: f7:e1:84:54:12:58:f2:7d:aa:77:73:20:e7:57:3a: 22:92:04:07:b7:9e:f5:c1:26:7c:2a:8d:22:24:2e: 9b:84:5c:92:f9:e4:1b:cc:26:89:c9:c9:8c:ed:69: af:20:c5:1c:80:72:64:c2:56:0d:2b:80:ce:7f:f9: 1b:66:6f:9f:48:0e:41:0f:ff:38:e4:82:23:af:16: aa:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B7:9C:8D:F2:7C:E4:A6:42:A2:5D:DA:1E:33:07:61:36:65:EE:74 X509v3 Authority Key Identifier: keyid:C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:62:2b:a3:05:9d:6e:0b:bb:8a:d7:59:b4:59:51:41:5c:31: 8e:fc:84:b5:85:9e:5e:26:35:fe:ed:73:d6:d5:e1:df:d8:7f: b7:69:28:37:70:d7:8d:0b:8c:c9:45:55:40:1e:5f:a7:7a:76: fc:b6:80:f7:8c:b1:ce:26:0a:41:50:ad:82:60:2b:6a:75:cc: 39:9f:9b:59:d4:d7:50:1a:1e:0e:b1:2e:b9:55:8b:ce:ce:23: 1e:75:a8:82:7a:30:64:62:a2:6c:ea:5d:8a:8a:09:36:a6:41: 9f:d0:8b:97:63:da:2c:01:04:99:f7:7d:82:38:43:1c:96:b5: b8:79:bb:63:9d:9e:12:99:b6:38:4a:56:7f:05:e2:b0:97:f4: 26:7b:15:03:73:68:5e:33:d7:2b:b7:da:34:5d:ea:46:0c:2a: f3:1d:72:18:e3:4f:41:48:60:50:8f:2c:64:31:3b:5f:2b:f9: 6a:16:a5:94:9d:34:cd:c2:94:6a:23:6b:81:e0:ee:e1:a6:66: 00:59:d0:82:10:fe:93:f3:07:26:1b:13:00:aa:f6:e0:ac:f6: 78:14:57:83:49:50:e8:07:9c:2a:2e:fd:fa:b4:a2:dc:61:30: b1:29:c3:01:af:33:05:14:49:0a:b3:66:6d:ae:f3:89:1d:2b: 29:c9:b3:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5MzcxMTAvBgNVBAUTKEM0OUU1MTgzRUEyRkM0OUI4QTgzQzkyMDUyQkNFMkE4 QjY1NzZDNzAwHhcNMjUwNzIwMTYwMjI5WhcNMjUwNzI3MTYwMjI5WjAYMRYwFAYD VQQDEw02ODdkMTMxNS0yZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EEDhXwek1H1UgkTVSagOwu03JZXAhrWpb/Yso49rFBODr32SgYwul8/Klps EnN84c97C3wPeWGr1ADdP3eICf+gG84E4QrWrNsULshGviiZyT5C16N7jvA+AWa+ 5Y4pldQ8CbhAlthXpRyco5t8aKVjrkUhlhZ5FRsXFr037dxG2w/OqK78SbVPMNOI LrV51lTjBORl7pwdqD2L3NtgKHT5BdWammfMhTJWE2pDPEqYlNL34YRUEljyfap3 cyDnVzoikgQHt571wSZ8Ko0iJC6bhFyS+eQbzCaJycmM7WmvIMUcgHJkwlYNK4DO f/kbZm+fSA5BD/845IIjrxaqIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCC3nI3y fOSmQqJd2h4zB2E2Ze50MB8GA1UdIwQYMBaAFMSeUYPqL8SbioPJIFK84qi2V2xw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzNy9BNDQ3QkZEQzU1 MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhKdUtnOGtnVXJ6aXFMWlhi SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hKNVJnLW92eEp1S2c4a2dVcnppcUxaWGJIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjkzNy9BNDQ3QkZEQzU1MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhK dUtnOGtnVXJ6aXFMWlhiSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACYiujBZ1uC7uK11m0WVFBXDGO/IS1hZ5eJjX+7XPW1eHf2H+3aSg3 cNeNC4zJRVVAHl+nenb8toD3jLHOJgpBUK2CYCtqdcw5n5tZ1NdQGh4OsS65VYvO ziMedaiCejBkYqJs6l2Kigk2pkGf0IuXY9osAQSZ932COEMclrW4ebtjnZ4SmbY4 SlZ/BeKwl/QmexUDc2heM9crt9o0XepGDCrzHXIY409BSGBQjyxkMTtfK/lqFqWU nTTNwpRqI2uB4O7hpmYAWdCCEP6T8wcmGxMAqvbgrPZ4FFeDSVDoB5wqLv36tKLc YTCxKcMBrzMFFEkKs2ZtrvOJHSspybMz -----END CERTIFICATE-----Generated at Mon Jul 21 07:13:11 2025 by rpki-client