$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: GSKGHuc3kqImEg9TmsBPzxXlq6WtQAyQGZoaP9C8S6I= Subject key identifier: 73:9C:6B:E6:6A:8C:4E:7B:74:33:80:1E:95:96:16:BE:99:BB:52:32 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: EF Signing time: Sat 19 Jul 2025 05:38:30 +0000 Manifest this update: Sat 19 Jul 2025 05:38:30 +0000 Manifest next update: Sat 26 Jul 2025 05:38:30 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: FrU+xkn8txGtt2kRPqeOqTmo4VViNlnauSBv/ziQMiw=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Jul 19 05:38:30 2025 GMT Not After : Jul 26 05:38:30 2025 GMT Subject: CN=687b2f56-c082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a5:70:9f:7e:b7:f3:4f:e4:10:b3:c3:66:3a: e2:c9:e6:4d:b3:1e:c6:4c:0d:9e:c9:1b:a8:10:b9: 0c:cd:70:ff:18:2a:97:b0:f0:96:ac:93:ff:6e:ac: 2a:66:80:c2:84:16:7a:24:15:b3:41:06:cb:4d:e4: 21:21:ee:54:cc:71:9c:52:1d:0f:fe:64:b8:11:62: f0:9d:2e:7b:6a:9b:12:76:7c:fd:38:10:b8:ac:8e: d4:9b:b1:93:a7:c0:08:2f:86:07:cd:e6:04:c7:64: cc:f9:71:4d:67:0f:e0:2d:b6:f4:7a:4a:c5:b7:bd: 94:dc:c6:e2:69:b4:f7:f2:ab:b8:0f:cf:e8:e8:37: b7:cb:1e:51:58:2f:81:d2:a7:6f:4d:cf:b0:03:6c: e4:3d:27:51:1f:7d:f7:00:16:76:45:40:10:42:76: fd:70:38:b1:2d:2b:04:40:d4:d0:1f:bc:62:0d:87: d8:eb:6f:30:c4:1b:8b:b4:c2:1b:97:b8:f5:46:9d: 44:39:63:15:e7:74:c6:95:f7:30:de:ee:09:b5:4a: 12:37:91:8a:b8:03:94:c5:9f:25:54:7a:ee:82:19: 25:ca:10:6d:1f:31:74:7f:78:8b:50:76:33:d1:9c: 60:4c:cc:a7:a8:5e:0a:2b:ac:e9:a9:40:d1:e0:b7: 15:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9C:6B:E6:6A:8C:4E:7B:74:33:80:1E:95:96:16:BE:99:BB:52:32 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c8:b1:a2:c0:a8:cc:c9:e9:3c:e7:61:38:b5:67:82:0c:ce: 04:d6:e8:d7:0c:8b:f0:c0:d9:dc:75:52:7e:73:38:c5:76:4b: e1:b4:0b:2c:0a:9d:ba:40:e4:7f:57:b9:26:6c:b6:fa:62:72: eb:3a:75:97:03:de:fb:ae:22:17:7d:a1:07:f2:87:1e:1a:08: 0a:70:04:f9:e9:10:c4:eb:76:74:d9:d5:de:a4:03:5a:b8:a7: 2c:d0:70:89:f5:96:87:ea:eb:a7:e6:38:e0:b0:ae:c1:80:ef: e2:19:e3:a0:5b:92:c8:6a:8b:12:6a:20:5e:26:59:d1:f0:7c: 4b:05:d8:07:60:41:20:fc:e6:a8:94:76:5f:e8:7e:2e:f0:39: 19:3c:63:14:12:ea:5d:d7:8f:f4:6b:fd:6d:67:88:2a:1c:51: c7:a2:93:46:5b:d8:ad:bd:45:8f:ec:3e:1d:c5:08:1b:e3:6b: 00:95:71:4e:8f:6d:b8:b8:9d:f5:cc:91:8f:80:dd:9d:08:b8: a2:b7:d7:de:f9:e0:e8:1a:bc:02:0c:7a:83:b4:be:9d:f5:fe: 26:ed:4d:87:22:32:c9:2d:6b:55:6e:6f:27:b7:a8:f5:f1:81: 8f:39:95:c0:e8:cc:e8:24:45:bf:df:42:c3:96:47:67:24:3d: 16:bf:5d:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwNzE5MDUzODMwWhcNMjUwNzI2MDUzODMwWjAYMRYwFAYD VQQDEw02ODdiMmY1Ni1jMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKVwn36380/kELPDZjriyeZNsx7GTA2eyRuoELkMzXD/GCqXsPCWrJP/bqwq ZoDChBZ6JBWzQQbLTeQhIe5UzHGcUh0P/mS4EWLwnS57apsSdnz9OBC4rI7Um7GT p8AIL4YHzeYEx2TM+XFNZw/gLbb0ekrFt72U3MbiabT38qu4D8/o6De3yx5RWC+B 0qdvTc+wA2zkPSdRH333ABZ2RUAQQnb9cDixLSsEQNTQH7xiDYfY628wxBuLtMIb l7j1Rp1EOWMV53TGlfcw3u4JtUoSN5GKuAOUxZ8lVHrughklyhBtHzF0f3iLUHYz 0ZxgTMynqF4KK6zpqUDR4LcV7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOca+Zq jE57dDOAHpWWFr6Zu1IyMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASyLGiwKjMyek852E4tWeCDM4E1ujXDIvwwNncdVJ+czjFdkvhtAss Cp26QOR/V7kmbLb6YnLrOnWXA977riIXfaEH8oceGggKcAT56RDE63Z02dXepANa uKcs0HCJ9ZaH6uun5jjgsK7BgO/iGeOgW5LIaosSaiBeJlnR8HxLBdgHYEEg/Oao lHZf6H4u8DkZPGMUEupd14/0a/1tZ4gqHFHHopNGW9itvUWP7D4dxQgb42sAlXFO j224uJ31zJGPgN2dCLiit9fe+eDoGrwCDHqDtL6d9f4m7U2HIjLJLWtVbm8nt6j1 8YGPOZXA6MzoJEW/30LDlkdnJD0Wv10a -----END CERTIFICATE-----Generated at Sun Jul 20 15:08:55 2025 by rpki-client