$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: OuM2YH8Np3D9Yba0FFmotbA1NbykmpOfw8xJlvLscgM= Subject key identifier: 15:76:BE:9A:A6:5D:CE:C7:50:C2:A3:72:CD:C1:FE:10:77:0E:25:BB Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 1494 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 1480 Signing time: Sun 20 Jul 2025 16:56:03 +0000 Manifest this update: Sun 20 Jul 2025 16:56:03 +0000 Manifest next update: Sun 27 Jul 2025 16:56:03 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: zgvUX7lqLZRY/J99G359d1jkOwwDmq6LuWpInVkH5KU=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5268 (0x1494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Jul 20 16:56:03 2025 GMT Not After : Jul 27 16:56:03 2025 GMT Subject: CN=687d1fa3-3cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:de:11:7a:6b:b0:b2:5c:fd:5a:28:01:80:6b: 38:88:67:a5:a6:e4:ec:78:65:6c:29:d5:0e:00:b8: 41:b5:2b:05:13:7e:42:d9:01:e3:56:46:a1:7e:5d: 2b:33:7b:e1:31:96:34:a1:b7:4d:f7:b1:27:5b:65: bb:81:eb:6b:5b:71:d2:e5:e0:32:0c:67:d8:21:4b: f1:20:64:05:7e:0b:57:fa:f6:59:43:4c:af:73:d9: a3:3f:51:ea:21:60:a1:9b:8b:17:7b:07:11:46:24: 23:26:db:e6:97:06:fa:96:72:3c:02:b6:4e:65:98: b8:41:93:8e:32:68:77:f0:a7:0a:31:a4:dd:f4:7f: 06:95:35:d3:03:64:07:2c:11:10:83:0b:3f:94:75: 5f:af:a3:d9:06:fb:e6:7e:39:05:aa:df:87:f2:08: ec:74:4a:fc:2f:09:25:a3:bb:dd:c6:43:93:94:23: 70:50:5e:69:9a:39:40:55:b6:e6:3e:1c:a4:34:24: d3:3a:c8:69:c5:3c:97:13:aa:9b:cf:a8:6f:10:a7: f1:30:75:06:7f:e1:ad:94:e1:00:a7:5f:2b:03:30: c6:75:66:dd:20:75:d4:6a:e6:34:66:7c:dc:d7:46: f6:4d:10:68:a9:76:72:ca:56:87:92:d0:01:15:26: db:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:76:BE:9A:A6:5D:CE:C7:50:C2:A3:72:CD:C1:FE:10:77:0E:25:BB X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:bb:a6:c5:88:a1:01:e7:83:44:79:42:6d:2d:72:3f:15:c0: 1e:bb:fc:b2:1c:d6:5e:e1:3b:10:29:79:3a:0f:d6:80:d8:5b: 8e:06:3f:be:af:6b:fe:fd:34:cb:19:ab:62:85:02:5d:c1:78: 14:95:87:7d:63:b2:21:d1:91:de:49:58:b6:e4:18:c5:61:9a: 2b:ed:7a:77:93:5b:6f:52:08:b4:29:aa:2c:42:dc:77:a0:bf: 22:3f:e2:fe:2d:5f:10:2b:a3:78:20:08:54:38:e0:1a:77:72: b9:a5:d4:94:6c:a2:c5:ea:7b:f0:6a:15:09:de:3d:1b:6b:49: 74:7f:42:0b:a8:ef:e5:e6:6f:50:71:00:9f:26:b5:df:1a:e0: ea:1b:6e:0d:bd:7a:d2:62:d7:89:21:ca:0d:07:42:f4:9f:fd: dc:fe:17:04:dd:5c:a7:1a:83:16:d8:43:38:75:0b:7b:e6:90: 16:13:69:a9:ad:11:53:d3:f2:0b:b9:0f:ce:db:f9:77:b3:03: 35:15:da:8f:46:8d:94:32:63:47:86:ea:1c:5d:2d:7a:01:ee: 9b:a6:be:a2:1c:44:c3:31:bc:2c:98:7c:d6:d7:ab:0a:99:4e: 5d:0c:7f:e8:a1:d4:80:b0:42:20:7f:95:2c:39:9e:e1:33:a4: 0e:95:29:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjUwNzIwMTY1NjAzWhcNMjUwNzI3MTY1NjAzWjAYMRYwFAYD VQQDEw02ODdkMWZhMy0zY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApN4Remuwslz9WigBgGs4iGelpuTseGVsKdUOALhBtSsFE35C2QHjVkahfl0r M3vhMZY0obdN97EnW2W7getrW3HS5eAyDGfYIUvxIGQFfgtX+vZZQ0yvc9mjP1Hq IWChm4sXewcRRiQjJtvmlwb6lnI8ArZOZZi4QZOOMmh38KcKMaTd9H8GlTXTA2QH LBEQgws/lHVfr6PZBvvmfjkFqt+H8gjsdEr8Lwklo7vdxkOTlCNwUF5pmjlAVbbm PhykNCTTOshpxTyXE6qbz6hvEKfxMHUGf+GtlOEAp18rAzDGdWbdIHXUauY0Znzc 10b2TRBoqXZyylaHktABFSbbLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBV2vpqm Xc7HUMKjcs3B/hB3DiW7MB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvu6bFiKEB54NEeUJtLXI/FcAeu/yyHNZe4TsQKXk6D9aA2FuOBj++ r2v+/TTLGatihQJdwXgUlYd9Y7Ih0ZHeSVi25BjFYZor7Xp3k1tvUgi0KaosQtx3 oL8iP+L+LV8QK6N4IAhUOOAad3K5pdSUbKLF6nvwahUJ3j0ba0l0f0ILqO/l5m9Q cQCfJrXfGuDqG24NvXrSYteJIcoNB0L0n/3c/hcE3VynGoMW2EM4dQt75pAWE2mp rRFT0/ILuQ/O2/l3swM1FdqPRo2UMmNHhuocXS16Ae6bpr6iHETDMbwsmHzW16sK mU5dDH/oodSAsEIgf5UsOZ7hM6QOlSmo -----END CERTIFICATE-----Generated at Mon Jul 21 02:07:28 2025 by rpki-client