$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: nP3RQLgRE634tM3EkuR3AW7hBdKzeAVOshc0mDnQIyI= Subject key identifier: 93:09:87:EA:93:35:07:1D:63:60:F9:B2:2E:30:20:0D:BF:0D:E0:FD Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 21F9 Signing time: Fri 18 Jul 2025 15:59:40 +0000 Manifest this update: Fri 18 Jul 2025 15:59:39 +0000 Manifest next update: Fri 25 Jul 2025 15:59:39 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: 5YqiYYn7AbS1lIxYWwGgYzSf7qi+JV3wJHqVSP2Nu0I=) 2: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8744 (0x2228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Jul 18 15:59:39 2025 GMT Not After : Jul 25 15:59:39 2025 GMT Subject: CN=687a6f6b-2e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:26:ab:34:10:58:2b:db:4f:a3:c7:f1:ee:83: e3:b8:7e:81:15:cb:e7:56:2b:b1:c1:80:a7:ed:bb: 81:e7:dd:34:3e:8d:c1:ae:63:4f:f3:2e:05:16:e4: 78:d0:5a:40:b6:1f:fe:6a:51:47:5b:b2:be:46:3b: 61:cb:0b:47:8d:13:b9:dc:0c:f2:ce:48:b2:d2:64: 12:b2:5e:7f:b3:f2:b2:1b:d7:ed:39:8f:69:15:58: cf:7e:03:c3:6e:f8:a8:19:50:b6:49:98:32:0f:9e: 7c:7c:0d:2c:c1:60:a2:c2:75:f7:4a:74:e3:ce:e8: 90:3e:ac:16:be:6d:06:5d:86:1b:06:20:9c:b3:0c: 9f:3f:97:63:08:3e:fa:26:5d:99:19:fd:46:73:ab: 4f:79:e0:a8:bd:6a:49:cc:ba:cc:78:36:38:fa:34: 70:03:5c:b0:3f:f0:15:e7:36:2e:07:78:84:50:71: 70:3a:15:46:2f:f4:5e:3f:a8:e3:9c:5e:6d:08:74: 9a:bf:a3:18:ad:cb:52:f9:1b:dc:c0:34:92:a0:9e: 00:6e:b3:fa:75:c8:92:52:25:58:da:d0:08:2b:68: 40:86:2d:c2:14:30:e3:81:50:5b:a3:c6:c9:86:d8: 3a:d1:38:01:9c:4b:67:ef:3a:7d:9d:0d:36:22:c9: 97:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:09:87:EA:93:35:07:1D:63:60:F9:B2:2E:30:20:0D:BF:0D:E0:FD X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:99:25:ca:23:29:21:d4:c2:2f:9f:3a:37:2b:1d:8a:f4:6b: cf:63:68:58:d1:0e:d0:85:46:92:e5:c8:7e:06:2a:d4:4b:8e: 2a:76:c6:fc:ab:95:7f:63:7d:8a:7d:d5:86:d9:1c:22:eb:dd: 78:71:53:3c:9e:cf:18:1d:48:bb:60:90:6c:72:e0:d2:45:d5: df:35:e8:09:81:5c:23:f0:9f:bf:80:a5:be:04:2a:a9:83:50: 8c:96:4c:f6:ac:82:ba:07:bf:28:62:ca:c6:a2:13:29:34:51: f7:51:b5:dd:48:07:8a:51:dd:98:1f:14:5f:d9:93:1a:bd:6e: 6c:ac:36:d3:ba:10:20:59:92:af:07:2a:1b:92:b6:8a:15:6a: 3f:51:c9:18:8f:47:41:77:aa:a6:97:41:91:11:be:62:e1:f5: ee:87:e4:83:ca:50:10:d4:ec:0b:86:a5:3b:b8:b8:17:77:87: e8:f2:c7:2c:b8:2e:e5:7a:ac:15:89:e8:04:97:fb:fc:ee:d1: 10:f4:9d:34:45:80:df:f1:0b:02:12:3a:ba:e2:84:5d:65:51: 29:d2:34:74:6a:07:f1:a9:0c:db:40:fc:bc:5f:7f:3c:0b:6d: 9f:19:43:c4:82:b4:20:62:0e:42:ba:51:03:ab:93:25:7e:1a: 30:33:0b:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwNzE4MTU1OTM5WhcNMjUwNzI1MTU1OTM5WjAYMRYwFAYD VQQDEw02ODdhNmY2Yi0yZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyarNBBYK9tPo8fx7oPjuH6BFcvnViuxwYCn7buB5900Po3BrmNP8y4FFuR4 0FpAth/+alFHW7K+RjthywtHjRO53Azyzkiy0mQSsl5/s/KyG9ftOY9pFVjPfgPD bvioGVC2SZgyD558fA0swWCiwnX3SnTjzuiQPqwWvm0GXYYbBiCcswyfP5djCD76 Jl2ZGf1Gc6tPeeCovWpJzLrMeDY4+jRwA1ywP/AV5zYuB3iEUHFwOhVGL/ReP6jj nF5tCHSav6MYrctS+RvcwDSSoJ4AbrP6dciSUiVY2tAIK2hAhi3CFDDjgVBbo8bJ htg60TgBnEtn7zp9nQ02IsmXUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMJh+qT NQcdY2D5si4wIA2/DeD9MB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5mSXKIykh1MIvnzo3Kx2K9GvPY2hY0Q7QhUaS5ch+BirUS44qdsb8 q5V/Y32KfdWG2Rwi6914cVM8ns8YHUi7YJBscuDSRdXfNegJgVwj8J+/gKW+BCqp g1CMlkz2rIK6B78oYsrGohMpNFH3UbXdSAeKUd2YHxRf2ZMavW5srDbTuhAgWZKv ByobkraKFWo/UckYj0dBd6qml0GREb5i4fXuh+SDylAQ1OwLhqU7uLgXd4fo8scs uC7leqwViegEl/v87tEQ9J00RYDf8QsCEjq64oRdZVEp0jR0agfxqQzbQPy8X388 C22fGUPEgrQgYg5CulEDq5MlfhowMws9 -----END CERTIFICATE-----Generated at Sun Jul 20 07:40:44 2025 by rpki-client