$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: I0iVrzcBfg1+nuuvpvHoVeN2p0e6xMrGeQkxExnNT7s= Subject key identifier: B1:69:85:4B:15:8B:AE:0C:1F:78:67:2D:34:16:62:46:9E:62:2B:9F Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0AFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0AF4 Signing time: Thu 24 Jul 2025 19:31:37 +0000 Manifest this update: Thu 24 Jul 2025 19:31:36 +0000 Manifest next update: Thu 31 Jul 2025 19:31:36 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: mHk9Ojh7kT6GRlGgAhwWsHofRdTREDeeqZ7Gzcsj/gQ=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:31:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2811 (0xafb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Jul 24 19:31:36 2025 GMT Not After : Jul 31 19:31:36 2025 GMT Subject: CN=68828a18-32f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4b:1e:68:ad:66:cc:32:0f:be:28:9b:c4:02: 5e:9a:11:88:4e:a9:8c:76:4e:23:6c:5d:a9:39:6c: 36:04:ea:8d:c9:0f:90:82:29:1d:dc:c9:74:f2:13: 79:f4:b8:be:b4:f1:a0:71:c6:7e:f7:2e:42:f7:64: f3:fe:2d:3b:69:9e:0d:99:43:92:ca:40:a8:d3:b1: 94:fa:0a:33:71:e6:da:c8:9e:4e:e3:72:f7:6e:b9: 99:a0:dd:f4:5d:f4:f1:60:03:89:62:78:11:db:6e: fc:d2:36:9f:12:3e:10:6c:80:d7:b2:cf:6e:3d:4b: 5d:48:ba:74:25:9b:03:6f:10:33:81:78:c7:a1:6a: fe:fa:10:25:0f:92:44:34:f2:cb:68:56:1f:07:b7: e6:32:24:2e:af:11:94:b4:f0:fd:ce:80:29:57:1f: 8c:7d:b3:c5:a3:32:9c:5c:85:c9:0b:dd:92:2c:66: 05:fa:fd:30:68:a2:0a:12:77:2c:e9:64:f6:f6:a0: 5a:ce:8c:8d:9b:69:d1:65:02:37:85:99:6c:e6:76: 2e:06:df:bf:ba:bc:8b:af:4d:56:97:07:de:cb:42: 15:1b:8b:fe:62:ec:97:93:97:3d:4e:59:6c:fb:a9: b6:e4:d0:f1:8e:71:e8:68:a5:c4:37:b0:e9:96:7e: 31:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:69:85:4B:15:8B:AE:0C:1F:78:67:2D:34:16:62:46:9E:62:2B:9F X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c5:76:48:53:ec:f1:98:23:06:e1:5f:19:5f:87:1e:dc:0c: 64:95:98:7b:3a:97:93:f1:dc:78:5b:14:64:fc:2c:f3:7a:24: 00:c1:b2:51:10:32:55:85:74:27:34:bb:bd:8d:09:6f:e6:12: 99:12:47:a3:94:32:3e:a5:d7:bb:41:f6:03:c3:ec:ef:4b:3e: 5b:52:e2:f0:c1:9c:7c:39:0b:e6:05:9d:07:cf:a5:74:98:a7: 82:5c:b4:13:69:de:eb:80:66:ca:1e:78:e6:e1:6a:07:57:5f: 0f:40:7a:76:70:43:cd:3c:d6:c7:15:49:5d:e3:8d:61:7e:56: 48:55:05:ac:08:02:a9:fa:f4:aa:77:cf:37:4c:91:33:35:e3: 5e:5b:61:90:c3:e7:25:9b:e3:b8:fe:1f:8d:27:43:51:8a:2f: bf:97:9b:5b:d8:54:0b:42:d3:9a:87:74:54:36:69:0b:75:7e: 95:10:ec:cf:24:5b:f4:79:43:c0:68:a6:99:66:cc:83:71:3b: 7a:f9:70:c9:0b:de:13:56:7d:81:10:84:97:2c:5f:97:07:3e: f8:95:b3:0b:fb:26:09:6f:b7:f4:cb:bd:1b:0a:7a:06:40:d5: 4d:6a:9c:dc:03:86:1d:2c:11:ba:1a:1e:1a:a7:57:02:38:a8: 52:ad:c1:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwNzI0MTkzMTM2WhcNMjUwNzMxMTkzMTM2WjAYMRYwFAYD VQQDEw02ODgyOGExOC0zMmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0seaK1mzDIPviibxAJemhGITqmMdk4jbF2pOWw2BOqNyQ+Qgikd3Ml08hN5 9Li+tPGgccZ+9y5C92Tz/i07aZ4NmUOSykCo07GU+gozcebayJ5O43L3brmZoN30 XfTxYAOJYngR22780jafEj4QbIDXss9uPUtdSLp0JZsDbxAzgXjHoWr++hAlD5JE NPLLaFYfB7fmMiQurxGUtPD9zoApVx+MfbPFozKcXIXJC92SLGYF+v0waKIKEncs 6WT29qBazoyNm2nRZQI3hZls5nYuBt+/uryLr01Wlwfey0IVG4v+YuyXk5c9Tlls +6m25NDxjnHoaKXEN7Dpln4x1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFphUsV i64MH3hnLTQWYkaeYiufMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9xXZIU+zxmCMG4V8ZX4ce3AxklZh7OpeT8dx4WxRk/CzzeiQAwbJR EDJVhXQnNLu9jQlv5hKZEkejlDI+pde7QfYDw+zvSz5bUuLwwZx8OQvmBZ0Hz6V0 mKeCXLQTad7rgGbKHnjm4WoHV18PQHp2cEPNPNbHFUld441hflZIVQWsCAKp+vSq d883TJEzNeNeW2GQw+clm+O4/h+NJ0NRii+/l5tb2FQLQtOah3RUNmkLdX6VEOzP JFv0eUPAaKaZZsyDcTt6+XDJC94TVn2BEISXLF+XBz74lbML+yYJb7f0y70bCnoG QNVNapzcA4YdLBG6Gh4ap1cCOKhSrcGn -----END CERTIFICATE-----Generated at Fri Jul 25 05:25:24 2025 by rpki-client