$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: crvUpUjcXvHJnjOgnVoq/PrBaz1Ch7O+WFX3Nu0Tbf8= Subject key identifier: E2:DB:0F:56:88:A6:61:06:82:E3:CC:65:36:9D:6A:1C:E2:5F:A3:7A Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E45 Signing time: Fri 18 Jul 2025 17:56:08 +0000 Manifest this update: Fri 18 Jul 2025 17:56:07 +0000 Manifest next update: Fri 25 Jul 2025 17:56:07 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: 9F/KiORFOAZPwyhzkKNB4a252aLcob0aTFMhU98sKdQ=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:56:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Jul 18 17:56:07 2025 GMT Not After : Jul 25 17:56:07 2025 GMT Subject: CN=687a8ab8-6f26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:09:f5:e1:bc:d4:03:2b:63:ff:97:cb:1a:ab: 9d:c3:a8:2f:f8:27:93:0f:48:7d:07:bf:57:ff:fd: 27:84:27:66:c0:2e:5f:35:79:13:1f:71:9b:3b:e2: 06:28:65:cd:96:4d:45:a7:1d:e0:fa:31:2f:3c:1a: 6e:fe:e6:64:1d:f8:5b:18:8b:ca:01:f6:2c:b1:08: 3b:68:ea:07:e1:3a:52:1f:b4:41:c9:57:3e:2e:d0: 28:60:38:d6:6f:60:46:27:3a:bd:b2:fc:c6:f8:13: 19:39:90:dc:19:6d:16:2b:3b:f3:c7:d0:94:8d:02: 95:79:2e:3c:33:ac:3a:e3:d3:ad:b8:aa:06:bc:13: 6f:b9:2c:4c:95:dd:dc:5e:8c:2b:54:5f:db:78:0c: 55:f7:d5:9f:49:eb:ca:5c:e9:3f:d0:b0:4e:c9:9b: 3e:ed:26:f2:ca:24:70:8f:1f:4e:0a:04:5e:27:5f: a4:5c:f3:25:b6:e2:c7:92:ca:14:08:1e:31:26:54: 42:e1:50:18:84:31:f1:6b:7e:a2:12:cb:65:3e:67: d7:3c:4d:bf:ca:f3:ca:b2:f3:89:8d:16:6e:af:3a: 8a:8c:ac:a8:ac:1f:33:8c:b3:8d:fa:be:ac:1e:93: 10:3e:72:fb:b5:7d:f0:83:a8:9f:8c:f6:37:ee:48: 72:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DB:0F:56:88:A6:61:06:82:E3:CC:65:36:9D:6A:1C:E2:5F:A3:7A X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:bf:6c:a2:f5:00:3e:1e:aa:32:62:e4:7d:4a:33:37:9e:5d: 6d:c6:86:5a:07:dc:e0:c5:97:61:90:c8:ea:58:90:ec:43:b2: 6c:ed:4e:c0:ec:28:e0:c1:57:f8:6c:0a:6a:63:af:40:6c:cb: eb:4e:27:97:4e:c5:52:5e:61:cf:19:a6:cb:90:e7:6f:c3:87: b9:70:f9:b0:67:de:fd:1f:15:69:1a:45:fb:bb:19:0c:f3:fd: 7b:45:21:08:b9:19:89:ff:3c:64:c6:71:68:42:60:db:d4:08: cd:11:fe:07:79:85:55:d8:9f:c6:b1:be:83:ee:47:62:a4:ec: 4e:e7:db:9a:f1:90:e1:a8:b3:d9:13:b2:c1:b2:f1:a7:f3:11: 56:95:8d:b9:00:69:8e:18:9d:a0:38:db:e6:e7:4f:64:0c:46: f0:e7:10:e2:11:23:4c:fb:38:28:a4:31:e6:bf:2f:7c:6c:30: e8:ee:63:79:59:fd:61:41:5a:50:f3:fd:50:3e:eb:bf:3b:b8: f4:e9:f5:73:25:ab:cc:57:84:5d:8a:3a:0e:39:df:ca:c2:3d: 90:71:ca:20:aa:1f:75:24:1b:07:e6:3e:b0:6d:1e:15:b3:e4: 55:0f:e8:66:15:54:4c:9c:ca:46:ca:f3:8e:71:95:0e:92:95: e1:6e:7f:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwNzE4MTc1NjA3WhcNMjUwNzI1MTc1NjA3WjAYMRYwFAYD VQQDEw02ODdhOGFiOC02ZjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAn14bzUAytj/5fLGqudw6gv+CeTD0h9B79X//0nhCdmwC5fNXkTH3GbO+IG KGXNlk1Fpx3g+jEvPBpu/uZkHfhbGIvKAfYssQg7aOoH4TpSH7RByVc+LtAoYDjW b2BGJzq9svzG+BMZOZDcGW0WKzvzx9CUjQKVeS48M6w649OtuKoGvBNvuSxMld3c XowrVF/beAxV99WfSevKXOk/0LBOyZs+7SbyyiRwjx9OCgReJ1+kXPMltuLHksoU CB4xJlRC4VAYhDHxa36iEstlPmfXPE2/yvPKsvOJjRZurzqKjKyorB8zjLON+r6s HpMQPnL7tX3wg6ifjPY37khytwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLbD1aI pmEGguPMZTadahziX6N6MB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWv2yi9QA+HqoyYuR9SjM3nl1txoZaB9zgxZdhkMjqWJDsQ7Js7U7A 7CjgwVf4bApqY69AbMvrTieXTsVSXmHPGabLkOdvw4e5cPmwZ979HxVpGkX7uxkM 8/17RSEIuRmJ/zxkxnFoQmDb1AjNEf4HeYVV2J/Gsb6D7kdipOxO59ua8ZDhqLPZ E7LBsvGn8xFWlY25AGmOGJ2gONvm509kDEbw5xDiESNM+zgopDHmvy98bDDo7mN5 Wf1hQVpQ8/1QPuu/O7j06fVzJavMV4RdijoOOd/Kwj2Qccogqh91JBsH5j6wbR4V s+RVD+hmFVRMnMpGyvOOcZUOkpXhbn+v -----END CERTIFICATE-----Generated at Sun Jul 20 04:31:40 2025 by rpki-client