$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft File: mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft (raw, json) Hash identifier: BWb1rJp+0sToBNzZCfQyQO/wvnOEB3GpM/RSX0TrBOY= Subject key identifier: C9:A0:CA:2B:79:F3:6E:E2:1C:D2:75:C5:1F:17:0D:3A:53:2D:45:6E Authority key identifier: 99:4D:9B:2D:97:CB:CC:B5:D5:24:4D:E0:A7:E5:39:74:1F:88:8A:23 Certificate issuer: /CN=A91E9EA9/serialNumber=994D9B2D97CBCCB5D5244DE0A7E539741F888A23 Certificate serial: 0650 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft Manifest number: 0649 Signing time: Fri 18 Jul 2025 22:56:01 +0000 Manifest this update: Fri 18 Jul 2025 22:56:01 +0000 Manifest next update: Fri 25 Jul 2025 22:56:01 +0000 Files and hashes: 1: mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl (hash: erRKVaaKJGu65Lzybc01WXHy/lQCojNR8fNNYu8fbWo=) 2: 1B4DA20CD46711ECA1A27035C4F9AE02.roa (hash: ztzKFXpjSxYM8wd4nThJ1BsK2ipsW271bSfHzk4YREM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9EA9, serialNumber=994D9B2D97CBCCB5D5244DE0A7E539741F888A23 Validity Not Before: Jul 18 22:56:01 2025 GMT Not After : Jul 25 22:56:01 2025 GMT Subject: CN=687ad101-8634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f2:d7:ef:2a:d2:2a:a3:fc:e1:82:71:44:d4: c4:5d:e3:0b:44:dd:5c:44:68:57:ba:e4:6b:e4:1c: 84:d1:e0:25:3b:cf:6a:d8:11:eb:8e:f6:14:86:f6: 82:e7:2a:9a:be:8a:40:e5:ed:0c:85:7f:45:35:72: 2f:11:54:5c:5a:2e:7c:ef:64:3e:0f:83:c0:00:ec: 09:38:c7:bb:70:b7:58:8a:3f:89:63:3e:2e:b7:61: 2d:29:3e:39:d1:dd:bf:c9:69:f5:10:3a:8b:8b:42: 24:33:c2:84:87:9f:eb:42:53:ed:ff:a2:32:be:9a: c7:53:84:74:b1:4d:b3:97:e5:a9:d6:a9:f1:2d:90: 9f:7d:09:48:fe:b8:b2:d7:b5:4c:6d:fa:54:f5:78: 31:d0:71:08:3a:be:56:f4:6d:ad:4d:af:b8:c2:7a: bb:53:e4:28:82:11:06:93:69:a7:9c:bf:d4:3d:e9: 79:fc:24:a0:04:f9:f9:af:69:cd:ba:63:f3:b8:23: 8b:8d:ea:b2:aa:6f:52:2e:eb:fa:71:f6:06:c3:e7: a4:76:c8:bc:e8:e3:db:99:1c:ed:7d:28:0e:b1:ac: 9a:7e:0a:75:40:e9:f5:4e:1a:44:55:34:ce:6c:96: 17:e6:bb:e4:f5:b8:ce:81:a9:5d:9c:6c:c2:6a:63: a8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A0:CA:2B:79:F3:6E:E2:1C:D2:75:C5:1F:17:0D:3A:53:2D:45:6E X509v3 Authority Key Identifier: keyid:99:4D:9B:2D:97:CB:CC:B5:D5:24:4D:E0:A7:E5:39:74:1F:88:8A:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:e4:9d:fe:df:e1:14:f2:d3:d8:92:8a:05:6b:b8:ec:34:57: 4c:1e:3d:16:84:8e:a3:5e:31:77:c6:78:c1:40:ec:8b:69:9e: c9:fd:de:61:65:a2:bf:e1:f0:1a:1b:02:fa:ea:fc:fa:c4:6f: 1c:b5:1c:6f:fb:4c:a7:a7:3b:e1:54:8e:39:16:61:9a:5a:21: 76:f3:0b:ad:04:77:b6:e2:c8:d3:f8:0c:f9:c5:9e:9c:04:16: de:ee:8e:ba:ee:d8:b1:3c:98:fd:fe:a8:7c:57:49:b9:2a:43: 71:21:98:d4:d9:4a:06:31:cb:4b:68:5e:d3:df:5d:a7:f4:e4: 16:94:8d:94:95:6f:0d:99:28:bb:62:e2:37:96:c7:76:83:28: ae:03:a7:82:23:d8:6d:20:4b:fa:e0:7a:6b:7f:58:8f:d7:57: 6a:a1:f3:1a:3b:3d:8f:6d:b9:bd:ab:d5:58:e0:ce:51:1c:3a: 63:8d:1a:1e:e9:70:07:d3:11:1e:45:2a:ec:00:12:3c:6e:ec: 77:0c:91:b0:21:14:21:40:d1:57:01:c1:9d:da:f9:bd:d9:14: f6:b4:6a:27:22:4e:3f:9e:8b:7d:75:32:e9:4c:e3:bf:28:bf: 8e:77:cb:de:1d:f7:18:a9:ce:1d:07:27:65:5f:f9:c8:0b:15: 3e:bf:5a:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlFQTkxMTAvBgNVBAUTKDk5NEQ5QjJEOTdDQkNDQjVENTI0NERFMEE3RTUzOTc0 MUY4ODhBMjMwHhcNMjUwNzE4MjI1NjAxWhcNMjUwNzI1MjI1NjAxWjAYMRYwFAYD VQQDEw02ODdhZDEwMS04NjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fLX7yrSKqP84YJxRNTEXeMLRN1cRGhXuuRr5ByE0eAlO89q2BHrjvYUhvaC 5yqavopA5e0MhX9FNXIvEVRcWi5872Q+D4PAAOwJOMe7cLdYij+JYz4ut2EtKT45 0d2/yWn1EDqLi0IkM8KEh5/rQlPt/6IyvprHU4R0sU2zl+Wp1qnxLZCffQlI/riy 17VMbfpU9Xgx0HEIOr5W9G2tTa+4wnq7U+QoghEGk2mnnL/UPel5/CSgBPn5r2nN umPzuCOLjeqyqm9SLuv6cfYGw+ekdsi86OPbmRztfSgOsayafgp1QOn1ThpEVTTO bJYX5rvk9bjOgaldnGzCamOoCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmgyit5 827iHNJ1xR8XDTpTLUVuMB8GA1UdIwQYMBaAFJlNmy2Xy8y11SRN4KflOXQfiIoj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUVBOS9FNjQ2QkYxRTk2 ODAxMUVCQUE2NEZBNTZDNEY5QUUwMi9tVTJiTFpmTHpMWFZKRTNncC1VNWRCLUlp aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21VMmJMWmZMekxYVkpFM2dwLVU1ZEItSWlpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUVBOS9FNjQ2QkYxRTk2ODAxMUVCQUE2NEZBNTZDNEY5QUUwMi9tVTJiTFpmTHpM WFZKRTNncC1VNWRCLUlpaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR5J3+3+EU8tPYkooFa7jsNFdMHj0WhI6jXjF3xnjBQOyLaZ7J/d5h ZaK/4fAaGwL66vz6xG8ctRxv+0ynpzvhVI45FmGaWiF28wutBHe24sjT+Az5xZ6c BBbe7o667tixPJj9/qh8V0m5KkNxIZjU2UoGMctLaF7T312n9OQWlI2UlW8NmSi7 YuI3lsd2gyiuA6eCI9htIEv64Hprf1iP11dqofMaOz2Pbbm9q9VY4M5RHDpjjRoe 6XAH0xEeRSrsABI8bux3DJGwIRQhQNFXAcGd2vm92RT2tGonIk4/not9dTLpTOO/ KL+Od8veHfcYqc4dBydlX/nICxU+v1pL -----END CERTIFICATE-----Generated at Sun Jul 20 10:34:29 2025 by rpki-client