$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: XqBIhbvSZVhr7R/TLvjEvkJR9KOHJ3JKV3I5+WTdhoA= Subject key identifier: 4B:66:97:45:6B:DA:AE:81:6B:AE:0C:3E:2E:D0:52:35:49:E7:F3:91 Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: 0106 Signing time: Sat 19 Jul 2025 05:20:24 +0000 Manifest this update: Sat 19 Jul 2025 05:20:24 +0000 Manifest next update: Sat 26 Jul 2025 05:20:24 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: kDvfS3H0ThfeNtHjtpDh5t5gJ9So1J0HpIR69Vd2Hhc=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: SK6ZvVianDlVw+18irRafax8Eg6g34dqTzqJORJNKeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498, serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Jul 19 05:20:24 2025 GMT Not After : Jul 26 05:20:24 2025 GMT Subject: CN=687b2b18-550e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:65:5f:f5:b3:0c:77:c4:f8:2d:52:0e:bd:09: 4c:7a:bd:91:85:f0:f7:39:b6:8b:6d:8c:26:f0:35: 1f:56:75:5a:81:fe:bd:24:4c:dd:c5:8b:69:02:69: f3:09:8c:f1:8f:f7:22:c6:75:6f:16:7e:a8:83:b0: 74:1d:c7:ea:cd:e6:38:58:a1:24:86:78:51:cf:3b: 07:4f:2e:00:87:84:ce:dd:f3:f4:74:45:ec:80:6c: 6e:eb:c0:e7:e1:ac:1d:61:07:f2:d6:b7:4c:3e:6f: f7:1d:5d:76:e1:b0:04:87:1b:58:5b:cd:4f:34:f4: de:30:dc:ca:d9:01:ad:1c:db:fc:e0:27:8a:e1:f5: a4:32:b0:cc:25:b9:f5:2d:ed:25:0a:77:fb:cf:aa: a1:56:80:9d:db:f7:80:73:75:c4:e5:a8:2c:01:fd: 0d:14:46:1d:a5:c0:34:f7:24:52:b2:49:bb:4d:f6: 6d:aa:11:21:63:89:34:2f:d8:ae:53:6c:71:5a:3d: 48:32:6f:72:4e:ea:31:33:b0:04:e6:b4:25:55:6a: 85:c8:65:60:84:75:0c:eb:1a:c5:1c:e5:65:44:70: 07:1b:6a:d5:7e:22:14:b3:c4:2e:e6:c7:3b:d6:3a: db:6a:a0:b8:a4:6e:07:91:c4:23:33:d4:0d:1e:b1: 35:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:66:97:45:6B:DA:AE:81:6B:AE:0C:3E:2E:D0:52:35:49:E7:F3:91 X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:19:a8:b4:c4:f3:2a:bf:92:1d:18:5a:d4:e1:a3:b2:2f:9b: 6e:cc:d6:84:4c:4a:f6:6e:9e:ec:23:8e:25:3b:b7:74:4c:5c: 60:d9:08:75:88:ef:97:03:50:ff:35:a1:8c:9c:c4:31:e4:17: 26:c8:14:60:d4:68:7a:e3:53:84:25:9c:04:71:f3:9a:1f:c7: d1:95:71:32:b2:e3:20:e0:87:83:e4:18:a6:5f:e5:c0:1c:c5: 3a:89:0f:1f:f9:b8:b4:10:cb:35:2e:f4:db:da:15:df:c7:bf: f6:8b:d2:d4:f7:66:60:b6:db:43:98:08:8f:88:22:ac:ca:e1: df:ba:92:f4:c3:21:c5:aa:15:cb:3f:5d:b0:16:ad:c0:21:11: f2:c9:83:37:15:e1:b6:ca:3a:5b:6e:3b:aa:1b:e5:db:1f:0d: c4:d4:57:b1:09:56:00:c3:2f:c3:d8:bb:b7:55:10:70:cd:36: b2:59:07:0c:19:28:c7:73:f5:52:6b:38:1b:23:91:42:ab:34: 7d:85:fe:1e:c0:ce:0e:93:7c:34:4b:a3:6d:a4:0e:59:c6:84: 66:60:c0:31:a9:3b:79:4f:14:73:e7:e5:e4:ac:72:07:bc:68: fa:7b:20:77:6e:47:42:4b:46:3b:a6:ce:25:28:3d:0d:9b:52: d5:a5:6d:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjUwNzE5MDUyMDI0WhcNMjUwNzI2MDUyMDI0WjAYMRYwFAYD VQQDEw02ODdiMmIxOC01NTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2Vf9bMMd8T4LVIOvQlMer2RhfD3ObaLbYwm8DUfVnVagf69JEzdxYtpAmnz CYzxj/cixnVvFn6og7B0HcfqzeY4WKEkhnhRzzsHTy4Ah4TO3fP0dEXsgGxu68Dn 4awdYQfy1rdMPm/3HV124bAEhxtYW81PNPTeMNzK2QGtHNv84CeK4fWkMrDMJbn1 Le0lCnf7z6qhVoCd2/eAc3XE5agsAf0NFEYdpcA09yRSskm7TfZtqhEhY4k0L9iu U2xxWj1IMm9yTuoxM7AE5rQlVWqFyGVghHUM6xrFHOVlRHAHG2rVfiIUs8Qu5sc7 1jrbaqC4pG4HkcQjM9QNHrE1iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtml0Vr 2q6Ba64MPi7QUjVJ5/ORMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTQ5OC9CM0M4QTk3Q0RGQjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4 cnRrOUNXcXhUSy1nZ1Y1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFGai0xPMqv5IdGFrU4aOyL5tuzNaETEr2bp7sI44lO7d0TFxg2Qh1 iO+XA1D/NaGMnMQx5BcmyBRg1Gh641OEJZwEcfOaH8fRlXEysuMg4IeD5BimX+XA HMU6iQ8f+bi0EMs1LvTb2hXfx7/2i9LU92ZgtttDmAiPiCKsyuHfupL0wyHFqhXL P12wFq3AIRHyyYM3FeG2yjpbbjuqG+XbHw3E1FexCVYAwy/D2Lu3VRBwzTayWQcM GSjHc/VSazgbI5FCqzR9hf4ewM4Ok3w0S6NtpA5ZxoRmYMAxqTt5TxRz5+XkrHIH vGj6eyB3bkdCS0Y7ps4lKD0Nm1LVpW23 -----END CERTIFICATE-----Generated at Sun Jul 20 07:29:19 2025 by rpki-client