$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft File: X-7enTglQ_BRUn-lM9R6kXB35jI.mft (raw, json) Hash identifier: hrT5M1CvyYI71npFHTta/h/+QL8DhEmqOwKH6Zs+jCA= Subject key identifier: 58:04:7C:66:53:33:B1:E6:54:D4:8E:3B:EF:DC:D7:1A:D4:C2:5A:41 Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1E42 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft Manifest number: 1DBC Signing time: Fri 18 Jul 2025 16:14:37 +0000 Manifest this update: Fri 18 Jul 2025 16:14:36 +0000 Manifest next update: Fri 25 Jul 2025 16:14:36 +0000 Files and hashes: 1: X-7enTglQ_BRUn-lM9R6kXB35jI.crl (hash: MPnj7608Llz5BzixmJFAj3yQpjL9iDe32rzsnaXqeWM=) 2: 1A0D44FA3B5411EABAC6EE18C4F9AE02.roa (hash: ErQUIZBQOuclNYifsKsmx5/Jnr/1hpU5xKibhIO600k=) 3: B8BA4E603B5211EAA0D53F12C4F9AE02.roa (hash: JDAGe4IksOtjrzlmQZ9zVBIzM1ZKwteeQYN9TBrAsPk=) 4: DF730482A32311EFBE77BA2EC4F9AE02.roa (hash: FW9NYXvHGiXVfFykPHyKhdOjK9fS+NAvHhqmtmC3mxY=) 5: 4EA15AE44FD811ED8AEB0282C4F9AE02.roa (hash: KptRM9OhZOY+IAnuIj6dKpgRtL+UG95HSLHK6SbwluY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7746 (0x1e42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: Jul 18 16:14:36 2025 GMT Not After : Jul 25 16:14:36 2025 GMT Subject: CN=687a72ed-73aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cc:0e:3e:3d:22:68:d7:b5:cc:e1:ad:0c:a0: fd:19:de:0c:45:06:32:a8:e2:b8:a4:1b:b2:a6:c5: e1:b1:fc:f1:0d:fe:bf:f6:9d:0f:ff:7a:40:85:b6: d3:82:c2:5d:87:03:96:61:da:ee:47:96:45:ec:ad: e1:22:34:f1:c2:8d:19:13:0c:9f:78:61:af:2a:b1: 8d:09:ac:f5:98:49:76:e8:5c:be:94:ff:a3:c3:68: bf:63:52:35:80:66:a3:95:f5:de:b0:8d:a1:95:24: 1c:a9:fc:12:dc:4e:97:ef:a4:09:84:65:2a:15:a5: b3:b6:11:f3:11:5e:af:9c:11:07:8a:f9:68:cb:41: bf:87:cc:ff:22:80:97:1f:b6:55:58:8e:6b:72:a9: e5:3a:65:ca:c0:49:5e:01:05:f9:d5:d8:e9:cc:85: d7:53:1e:57:83:48:44:d4:9f:fb:5c:eb:0b:86:56: 47:69:34:e7:81:21:03:3f:07:3f:e0:80:8d:af:82: 81:5e:a2:b2:e2:40:75:ce:5f:49:08:ed:8e:bf:83: 56:a9:73:11:84:e3:ec:1e:eb:38:9b:33:97:99:52: 99:c9:77:74:23:66:70:b1:24:0e:08:71:a0:ef:0c: 73:1d:12:e5:a5:97:89:b7:d6:3a:67:0d:e8:5e:71: a3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:04:7C:66:53:33:B1:E6:54:D4:8E:3B:EF:DC:D7:1A:D4:C2:5A:41 X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:0d:92:54:8b:61:73:86:42:b9:6c:e1:3e:7f:ec:8b:87:6f: 06:a9:97:5b:76:b8:8d:bf:f9:b1:fd:19:3d:94:8d:d3:b1:c9: 00:9a:0d:15:fa:3d:e9:0d:d9:a2:e8:16:8b:38:37:44:16:ca: fe:0a:6e:59:64:71:42:95:77:5d:59:c0:35:1b:98:26:9e:3c: 30:cf:be:87:50:c1:57:74:98:84:38:72:38:88:67:e4:f8:01: d1:49:8d:91:95:df:e7:ec:69:d4:32:8b:f3:cd:14:90:52:29: 2d:c5:e5:63:f3:b1:c4:b6:14:4b:6e:fb:26:f4:53:35:0d:f0: e5:46:23:f9:52:7b:63:f5:92:1e:ef:67:c7:0e:18:eb:26:dc: 6e:06:94:83:41:47:8a:b5:ab:27:b9:b8:aa:01:83:28:66:93: 8d:84:6e:e3:69:af:52:a3:66:50:df:a0:31:71:34:b1:29:25: 7d:af:26:62:fd:34:85:bc:0f:7b:4f:9d:20:37:a1:a1:26:a8: f2:86:e0:cf:31:3b:cf:c0:a4:27:7e:aa:c0:3c:bc:31:10:ab: 1b:73:7a:23:ba:b5:a2:29:93:bb:c0:d8:da:1b:23:c4:65:b8: 7e:82:c7:17:49:76:95:df:9c:21:04:5e:13:76:00:71:bc:c4: 36:e6:f0:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjUwNzE4MTYxNDM2WhcNMjUwNzI1MTYxNDM2WjAYMRYwFAYD VQQDEw02ODdhNzJlZC03M2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncwOPj0iaNe1zOGtDKD9Gd4MRQYyqOK4pBuypsXhsfzxDf6/9p0P/3pAhbbT gsJdhwOWYdruR5ZF7K3hIjTxwo0ZEwyfeGGvKrGNCaz1mEl26Fy+lP+jw2i/Y1I1 gGajlfXesI2hlSQcqfwS3E6X76QJhGUqFaWzthHzEV6vnBEHivloy0G/h8z/IoCX H7ZVWI5rcqnlOmXKwEleAQX51djpzIXXUx5Xg0hE1J/7XOsLhlZHaTTngSEDPwc/ 4ICNr4KBXqKy4kB1zl9JCO2Ov4NWqXMRhOPsHus4mzOXmVKZyXd0I2ZwsSQOCHGg 7wxzHRLlpZeJt9Y6Zw3oXnGjSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgEfGZT M7HmVNSOO+/c1xrUwlpBMB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE5OC9BRDYyOTIyMkI1MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFf QlJVbi1sTTlSNmtYQjM1akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgDZJUi2FzhkK5bOE+f+yLh28GqZdbdriNv/mx/Rk9lI3TsckAmg0V +j3pDdmi6BaLODdEFsr+Cm5ZZHFClXddWcA1G5gmnjwwz76HUMFXdJiEOHI4iGfk +AHRSY2Rld/n7GnUMovzzRSQUiktxeVj87HEthRLbvsm9FM1DfDlRiP5Untj9ZIe 72fHDhjrJtxuBpSDQUeKtasnubiqAYMoZpONhG7jaa9So2ZQ36AxcTSxKSV9ryZi /TSFvA97T50gN6GhJqjyhuDPMTvPwKQnfqrAPLwxEKsbc3ojurWiKZO7wNjaGyPE Zbh+gscXSXaV35whBF4TdgBxvMQ25vAb -----END CERTIFICATE-----Generated at Sun Jul 20 11:01:55 2025 by rpki-client