$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: 87ctp5NKdPblr1RtaqRPHyY7os9X9wZfDx2dXmy1B2M= Subject key identifier: AB:C4:A4:0D:79:50:61:7D:66:16:18:08:19:2B:3E:52:2C:5A:43:E9 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C1A Signing time: Sun 20 Jul 2025 19:25:34 +0000 Manifest this update: Sun 20 Jul 2025 19:25:33 +0000 Manifest next update: Sun 27 Jul 2025 19:25:33 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: rWzMdgHH1pUWVaMYTxRV8/QrMv1sM/Ijdz8T0U5uCLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Jul 20 19:25:33 2025 GMT Not After : Jul 27 19:25:33 2025 GMT Subject: CN=687d42ad-687c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:db:ff:40:6e:06:2f:5f:6e:1e:33:18:89:16: 29:5e:79:8f:e0:3c:fb:6a:e2:ce:3a:c1:97:de:31: fe:47:4b:23:bc:28:d9:78:64:45:1b:3a:f1:ef:53: 2f:ef:aa:f4:dd:c5:f0:49:80:91:a3:85:cb:f8:fa: c3:c3:5e:99:1b:63:8d:f8:ea:a3:7c:0e:6b:06:5f: 04:8a:fd:28:e8:4c:10:4b:cb:be:34:ad:71:53:e7: 33:c1:42:52:08:d6:6c:35:69:4d:00:9a:54:ca:c5: e0:26:a1:1f:6e:60:21:a7:6a:4e:61:34:37:4c:97: 55:69:ce:7c:c4:81:60:f5:4a:bf:a4:b4:87:56:61: db:6e:73:10:5f:e6:90:0b:c3:90:98:2d:3d:b8:ba: 24:78:87:9b:67:24:ce:7d:69:28:20:fe:e6:92:5a: 59:ab:37:31:29:3e:1f:1b:a6:62:5c:75:75:ea:b6: 7b:8b:50:00:65:33:d3:5b:ae:75:f8:76:b6:95:19: fb:93:c4:55:28:2b:0d:f6:ca:f9:01:dc:f7:4a:f5: 8e:70:b7:b0:bc:cc:be:ac:19:30:f3:ec:f7:a2:35: 2b:4b:9a:8e:00:ab:61:5d:7a:2c:51:c0:33:34:7e: 2c:69:85:5b:4d:70:41:1a:8a:e1:d5:b4:16:a0:83: b3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C4:A4:0D:79:50:61:7D:66:16:18:08:19:2B:3E:52:2C:5A:43:E9 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:92:1f:24:c6:bb:d4:95:39:1b:73:f1:df:79:5d:73:a4:ab: f3:f6:40:cd:ed:29:bf:41:35:df:19:e8:66:c1:7d:99:40:6c: 11:af:e6:3f:1a:7c:ed:c2:bf:90:00:54:d1:d4:58:48:1b:2a: 0d:6f:c8:91:09:fa:bd:91:95:66:77:6f:75:fb:17:0a:3d:2b: c1:d1:e3:8c:c1:e8:fe:c8:78:ca:b6:10:e5:94:14:f2:f8:49: 38:ed:a1:ba:ad:6d:1e:a7:03:e3:cf:0b:10:6b:0b:1d:0e:bd: 0d:57:7c:27:d3:5d:d4:1b:12:66:4c:76:62:62:a1:0f:a6:a6: f5:63:8e:9a:0d:3f:17:fd:b0:3f:ce:12:84:83:48:35:88:5c: c2:32:a9:90:82:2a:98:08:d1:6a:5a:76:29:50:3b:ac:6a:52: 29:cd:56:51:3f:d4:01:31:b0:88:24:ba:23:a2:d3:80:c2:e7: 0f:04:db:da:ab:e4:3a:f0:71:c6:48:63:33:f4:ae:2c:f0:2b: 10:e6:7d:86:cc:69:ae:0a:ee:97:18:9e:9f:77:96:ec:28:9f: 37:c6:06:01:f0:bc:01:e8:c3:7d:bd:29:4f:9e:d9:72:9a:a3: 0f:0d:34:e0:40:89:7a:7e:e1:08:54:7d:79:0f:b9:d3:12:b7: d9:ae:0c:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwNzIwMTkyNTMzWhcNMjUwNzI3MTkyNTMzWjAYMRYwFAYD VQQDEw02ODdkNDJhZC02ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tv/QG4GL19uHjMYiRYpXnmP4Dz7auLOOsGX3jH+R0sjvCjZeGRFGzrx71Mv 76r03cXwSYCRo4XL+PrDw16ZG2ON+OqjfA5rBl8Eiv0o6EwQS8u+NK1xU+czwUJS CNZsNWlNAJpUysXgJqEfbmAhp2pOYTQ3TJdVac58xIFg9Uq/pLSHVmHbbnMQX+aQ C8OQmC09uLokeIebZyTOfWkoIP7mklpZqzcxKT4fG6ZiXHV16rZ7i1AAZTPTW651 +Ha2lRn7k8RVKCsN9sr5Adz3SvWOcLewvMy+rBkw8+z3ojUrS5qOAKthXXosUcAz NH4saYVbTXBBGorh1bQWoIOz4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKvEpA15 UGF9ZhYYCBkrPlIsWkPpMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAkh8kxrvUlTkbc/HfeV1zpKvz9kDN7Sm/QTXfGehmwX2ZQGwRr+Y/ Gnztwr+QAFTR1FhIGyoNb8iRCfq9kZVmd291+xcKPSvB0eOMwej+yHjKthDllBTy +Ek47aG6rW0epwPjzwsQawsdDr0NV3wn013UGxJmTHZiYqEPpqb1Y46aDT8X/bA/ zhKEg0g1iFzCMqmQgiqYCNFqWnYpUDusalIpzVZRP9QBMbCIJLojotOAwucPBNva q+Q68HHGSGMz9K4s8CsQ5n2GzGmuCu6XGJ6fd5bsKJ83xgYB8LwB6MN9vSlPntly mqMPDTTgQIl6fuEIVH15D7nTErfZrgw/ -----END CERTIFICATE-----Generated at Mon Jul 21 07:16:06 2025 by rpki-client