$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: 4+tDef55x+TJXuCYtmVrQ0QxsgZjlwsx6yVuMOP3tAc= Subject key identifier: 60:56:C4:32:C0:0F:23:F9:CB:3E:55:86:AE:87:83:E2:FC:13:91:6E Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0AFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0AF3 Signing time: Tue 22 Jul 2025 19:37:33 +0000 Manifest this update: Tue 22 Jul 2025 19:37:33 +0000 Manifest next update: Tue 29 Jul 2025 19:37:33 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: br4NI1yEi5j4jiwyiZijUIU+ZTyjwRbcFm3SH1MWk7k=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Jul 22 19:37:33 2025 GMT Not After : Jul 29 19:37:33 2025 GMT Subject: CN=687fe87d-694c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:52:36:58:4e:fd:85:1c:a8:b2:3c:c5:7e:97: 0c:73:47:75:44:8d:82:1f:80:b7:55:81:f5:f9:0f: 51:92:96:fa:8a:ac:b1:6e:15:f0:ad:6d:36:49:be: cd:b6:dd:f3:24:0c:f1:e6:f6:71:b5:7e:bd:7d:60: 21:93:fc:6b:f3:a8:e7:b1:a0:c8:b5:d0:b6:3e:2a: c0:c8:47:39:49:1e:bd:9d:c4:47:75:c7:31:42:0e: f9:f0:9b:63:04:d2:be:e8:1b:5c:91:de:48:ca:45: e6:d7:2b:6e:18:be:c7:61:7b:6e:7d:a8:21:12:8e: 95:2c:c9:cd:af:c3:ac:99:34:04:8e:4c:00:61:c9: 6c:32:43:85:38:d0:5f:7e:4e:20:f0:81:64:07:3d: 90:b4:4a:16:c0:96:b9:b1:cc:da:b5:6a:20:87:b3: 36:a4:a2:d8:8a:19:74:8f:0e:d7:01:5a:e2:a1:4b: 4a:c8:a9:cd:65:31:0d:08:ad:19:b1:09:67:0e:36: b7:d7:0c:8f:b7:40:ce:77:c7:d7:1a:21:15:34:c0: 69:ff:6a:fd:b0:d0:5b:aa:fc:0e:e4:5a:eb:61:47: 8d:81:ed:24:cc:55:84:a5:4e:a5:3d:b8:51:d1:d0: f0:07:86:b8:66:e3:22:3e:83:6c:45:b9:d9:cc:bd: fc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:56:C4:32:C0:0F:23:F9:CB:3E:55:86:AE:87:83:E2:FC:13:91:6E X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:98:41:30:02:83:20:f2:c3:f4:4a:9c:74:9b:73:cd:28:3c: 56:9c:dd:fa:fa:50:32:f6:16:43:c6:e0:77:d2:9b:e3:86:d5: e0:b9:df:82:b8:15:7c:8f:7b:f0:38:1d:19:1c:9d:ba:93:10: 64:44:c1:d5:7d:9b:50:b0:dd:66:f9:58:34:81:ad:89:b8:73: 8a:80:51:57:90:86:f7:ba:1a:a5:15:92:3a:34:f0:ce:6f:d7: e4:a0:30:84:0f:dc:b8:c5:16:9e:88:5f:a9:bc:2f:7e:49:65: 4b:29:e0:80:60:e4:9e:1d:41:2b:c5:42:9f:fa:90:53:55:f1: aa:db:6c:35:9a:1d:16:e3:81:88:94:40:eb:0c:8c:c5:53:e9: d3:11:53:70:5c:d3:60:e4:d4:e8:01:e2:d9:96:73:60:d4:23: 19:06:0c:dd:4a:9a:3c:f9:91:90:98:d9:25:82:d9:b9:31:2a: 5c:8c:75:06:ad:a8:ee:a5:7f:2f:62:2a:55:14:1e:92:04:ea: 4b:76:a6:e2:36:5b:9b:98:72:64:29:3f:91:ac:59:36:b7:73: 32:ad:51:d1:68:e4:9e:b4:7a:19:07:d5:5a:82:08:7b:d7:e2: 9f:06:2f:41:6c:98:ed:01:15:05:20:09:46:bb:c0:c6:ec:61: a3:bc:86:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwNzIyMTkzNzMzWhcNMjUwNzI5MTkzNzMzWjAYMRYwFAYD VQQDEw02ODdmZTg3ZC02OTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlI2WE79hRyosjzFfpcMc0d1RI2CH4C3VYH1+Q9Rkpb6iqyxbhXwrW02Sb7N tt3zJAzx5vZxtX69fWAhk/xr86jnsaDItdC2PirAyEc5SR69ncRHdccxQg758Jtj BNK+6Btckd5IykXm1ytuGL7HYXtufaghEo6VLMnNr8OsmTQEjkwAYclsMkOFONBf fk4g8IFkBz2QtEoWwJa5sczatWogh7M2pKLYihl0jw7XAVrioUtKyKnNZTENCK0Z sQlnDja31wyPt0DOd8fXGiEVNMBp/2r9sNBbqvwO5FrrYUeNge0kzFWEpU6lPbhR 0dDwB4a4ZuMiPoNsRbnZzL38rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBWxDLA DyP5yz5Vhq6Hg+L8E5FuMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxmEEwAoMg8sP0Spx0m3PNKDxWnN36+lAy9hZDxuB30pvjhtXgud+C uBV8j3vwOB0ZHJ26kxBkRMHVfZtQsN1m+Vg0ga2JuHOKgFFXkIb3uhqlFZI6NPDO b9fkoDCED9y4xRaeiF+pvC9+SWVLKeCAYOSeHUErxUKf+pBTVfGq22w1mh0W44GI lEDrDIzFU+nTEVNwXNNg5NToAeLZlnNg1CMZBgzdSpo8+ZGQmNklgtm5MSpcjHUG rajupX8vYipVFB6SBOpLdqbiNlubmHJkKT+RrFk2t3MyrVHRaOSetHoZB9Vaggh7 1+KfBi9BbJjtARUFIAlGu8DG7GGjvIZW -----END CERTIFICATE-----Generated at Thu Jul 24 12:12:19 2025 by rpki-client