$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: VXF4LmXvnSvEgAc5yOggXwnoar+8L03UDW2uvUdse+o= Subject key identifier: 71:62:47:C3:E1:2E:4C:E0:BA:EE:81:47:91:A8:84:7C:77:A2:AA:B5 Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 0424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 0419 Signing time: Mon 21 Jul 2025 00:39:06 +0000 Manifest this update: Mon 21 Jul 2025 00:39:05 +0000 Manifest next update: Mon 28 Jul 2025 00:39:05 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: nIXP4x9NfqqLtzGG7Ug2c/s70y8uYu+iHAP9TGc3Qcg=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: NrKkQ4m5nwAN210bjbYrFUQAukjqo41a6Baomfs4idw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD, serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: Jul 21 00:39:05 2025 GMT Not After : Jul 28 00:39:05 2025 GMT Subject: CN=687d8c2a-0ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:20:78:a8:4c:b1:71:d3:96:9e:a4:8d:9c:a4: 1e:54:38:9e:95:58:02:81:f4:ee:63:a9:96:ba:57: 81:71:e3:3a:65:31:ca:34:30:c4:cb:23:cc:62:03: 3d:ed:e1:fb:1b:07:19:6d:9d:bd:98:35:9d:8d:91: a3:31:c2:88:59:82:ea:31:bd:c2:f8:43:77:a4:b5: b7:ae:bc:50:72:ec:f6:cc:75:a6:37:5a:1a:7c:3d: bc:47:08:1a:29:3e:d1:fd:d4:28:cc:73:21:f5:53: 06:6e:75:26:58:62:1a:33:f3:73:d3:3c:cd:74:96: b0:3f:df:9c:f3:f3:83:3d:38:97:4c:20:a4:4e:7c: 90:6f:2c:17:b7:68:f9:26:f3:07:da:57:68:26:26: b3:c8:65:26:b9:23:49:85:ac:61:9b:03:b7:26:c1: 08:e9:db:e6:18:fb:31:58:2b:05:1d:d2:e2:00:92: 83:c7:6f:86:4d:42:18:d2:d7:83:ad:07:9b:1d:e0: 03:df:d7:da:1f:59:15:21:9a:55:64:b0:4c:9b:d1: bd:44:bb:90:50:a4:cc:dd:d5:19:e1:38:c3:2e:b5: 4e:2a:04:b7:66:b9:33:a5:97:d5:28:5c:48:b5:fb: f5:33:f1:95:f7:de:7e:c9:ef:b6:eb:bb:0b:8c:8a: ab:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:62:47:C3:E1:2E:4C:E0:BA:EE:81:47:91:A8:84:7C:77:A2:AA:B5 X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:2d:da:e8:71:55:51:55:3c:cf:27:1e:80:d7:e7:14:4d:03: d6:3e:b4:2d:11:43:5c:b6:0a:1b:5f:ae:aa:a7:8d:0b:8d:6d: 63:d3:09:94:ef:64:23:85:26:23:ed:32:63:5e:88:4e:28:e1: 65:2c:e7:d2:f0:f2:c7:1d:db:0f:ce:8d:33:02:1f:a4:70:df: a0:39:42:90:17:e9:32:8a:63:62:8c:98:f9:53:f3:d5:6a:6f: dd:20:f5:55:9a:fb:6a:6f:8f:8a:79:a6:1c:56:8e:23:77:dd: dc:d0:61:cb:f5:a0:c1:ef:e0:91:a5:d9:fc:b7:6e:9f:47:91: 0e:98:e7:94:6f:fa:c3:76:4d:83:9e:19:64:11:61:23:46:98: 59:aa:6e:3f:e5:ee:b6:8d:94:c0:20:33:7a:9e:59:f7:e9:fe: 34:fd:50:15:12:89:7e:c7:f4:06:7e:5d:f2:9e:a5:8a:71:1d: 70:1e:94:6f:2f:0b:a8:f5:05:e5:7a:20:87:1c:e6:f5:18:dd: 34:6c:f4:39:20:97:a6:61:a1:e7:b5:23:f0:ee:f5:cc:d6:4f: 36:dc:7f:29:98:87:d6:69:a0:87:2e:e1:2c:7e:13:6e:f7:3b: 53:85:fb:9c:b4:45:43:23:5c:7b:ea:66:c5:78:18:c7:4f:db: 13:eb:73:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjUwNzIxMDAzOTA1WhcNMjUwNzI4MDAzOTA1WjAYMRYwFAYD VQQDEw02ODdkOGMyYS0wY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iB4qEyxcdOWnqSNnKQeVDielVgCgfTuY6mWuleBceM6ZTHKNDDEyyPMYgM9 7eH7GwcZbZ29mDWdjZGjMcKIWYLqMb3C+EN3pLW3rrxQcuz2zHWmN1oafD28Rwga KT7R/dQozHMh9VMGbnUmWGIaM/Nz0zzNdJawP9+c8/ODPTiXTCCkTnyQbywXt2j5 JvMH2ldoJiazyGUmuSNJhaxhmwO3JsEI6dvmGPsxWCsFHdLiAJKDx2+GTUIY0teD rQebHeAD39faH1kVIZpVZLBMm9G9RLuQUKTM3dUZ4TjDLrVOKgS3ZrkzpZfVKFxI tfv1M/GV995+ye+267sLjIqr3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFiR8Ph Lkzguu6BR5GohHx3oqq1MB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXLdrocVVRVTzPJx6A1+cUTQPWPrQtEUNctgobX66qp40LjW1j0wmU 72QjhSYj7TJjXohOKOFlLOfS8PLHHdsPzo0zAh+kcN+gOUKQF+kyimNijJj5U/PV am/dIPVVmvtqb4+KeaYcVo4jd93c0GHL9aDB7+CRpdn8t26fR5EOmOeUb/rDdk2D nhlkEWEjRphZqm4/5e62jZTAIDN6nln36f40/VAVEol+x/QGfl3ynqWKcR1wHpRv Lwuo9QXleiCHHOb1GN00bPQ5IJemYaHntSPw7vXM1k823H8pmIfWaaCHLuEsfhNu 9ztThfuctEVDI1x76mbFeBjHT9sT63Og -----END CERTIFICATE-----Generated at Mon Jul 21 12:44:29 2025 by rpki-client