$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: y+GRn++WiIn1sXzJy7EBtDdG3mGMmm+IWP4tv/EXPVY= Subject key identifier: 24:07:4D:80:90:4D:C6:CF:BD:D7:96:67:E4:30:B8:33:0C:64:3A:82 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 11F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 11DB Signing time: Sun 20 Jul 2025 17:12:16 +0000 Manifest this update: Sun 20 Jul 2025 17:12:16 +0000 Manifest next update: Sun 27 Jul 2025 17:12:16 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: UzynqmzdBZSooEp9idrOsTJsdOcBX9NAchmKBzCgKa0=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Cinni1CQdvw9QZ/TfXqeTRH7AM3KM0M/pfCrSaEHDYM=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4595 (0x11f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Jul 20 17:12:16 2025 GMT Not After : Jul 27 17:12:16 2025 GMT Subject: CN=687d2370-a924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bd:36:35:f9:e4:f3:6a:06:76:d7:73:26:bb: 13:65:93:de:fd:c2:b5:75:2e:a8:aa:c1:75:76:56: 32:ca:4a:f0:d8:c2:ae:dd:21:b3:52:3d:27:f9:09: 64:13:fc:99:c5:e4:88:9a:f4:e6:d2:86:68:56:c7: ca:8f:ca:28:85:9f:63:9b:93:4a:fa:ef:31:9a:62: 02:f9:e2:67:4f:3e:46:1b:48:74:a8:b7:a5:51:31: 7c:87:75:bc:66:41:8e:39:1a:ac:23:3d:a9:4d:94: 71:28:c3:78:54:6a:9c:48:82:84:29:5c:da:2c:a4: b0:d3:33:f7:b7:d7:89:01:38:ae:d7:4c:e5:9c:9f: 08:51:df:49:8e:92:2b:ce:57:8f:f4:9c:3d:10:c6: e8:bb:93:45:20:22:26:85:c3:06:bc:24:7a:27:5d: 96:5a:c1:a7:3d:f3:0f:a9:53:b2:c5:78:3b:be:eb: c4:76:9e:c0:91:0d:a8:14:2c:11:ec:63:99:4c:e5: cd:5c:c6:de:96:e5:4e:32:53:dc:55:0a:76:26:aa: 59:fc:41:2a:03:13:90:6b:f9:ea:7f:28:6b:4d:bc: a4:b9:19:e8:89:81:c6:c5:95:71:78:e6:6f:ab:b5: 31:7b:44:7f:04:ac:23:b8:b3:2d:28:3a:6e:02:9e: 2a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:07:4D:80:90:4D:C6:CF:BD:D7:96:67:E4:30:B8:33:0C:64:3A:82 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:87:3a:0a:8c:8b:81:2b:57:d2:70:bc:e3:90:bf:f7:2a:6e: d4:58:6b:24:51:38:e8:6a:04:a8:12:86:01:69:0a:60:c4:24: 01:50:5d:01:e9:7a:e9:2b:bc:e0:5c:64:27:09:3d:97:76:db: db:cc:be:1d:9f:c9:fd:74:84:92:87:58:b2:3a:60:aa:78:84: 86:45:91:70:3a:7b:a8:33:a5:96:9e:85:95:63:9e:e5:5b:34: 2b:15:0d:46:78:75:f2:39:ac:93:02:9f:d0:0e:0f:af:ea:8c: 1b:c3:10:49:48:dd:b3:a1:78:cc:05:7d:74:4d:93:3d:1e:14: a8:4c:dd:b1:65:ee:82:e8:33:24:13:24:16:ad:ff:da:9f:5b: fd:a5:2e:3c:e0:32:1d:23:16:e0:12:bc:f3:23:31:47:e1:68: 55:03:39:4b:30:2c:52:65:a0:23:ab:9a:69:f1:28:f3:1c:29: 33:9a:42:fe:80:6b:f8:42:28:83:9c:c4:af:84:13:de:48:f0: 7a:10:60:9d:5a:86:f4:a1:ed:cd:0e:6f:da:53:58:01:1d:8c: e3:a1:5c:7b:a9:b4:a9:d1:d2:68:6b:e6:ad:bf:88:22:bc:26: 40:52:31:27:2c:b5:a3:6a:3b:dc:93:2f:ac:bb:4e:b1:a6:c1: 1d:dd:9c:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUwNzIwMTcxMjE2WhcNMjUwNzI3MTcxMjE2WjAYMRYwFAYD VQQDEw02ODdkMjM3MC1hOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1702Nfnk82oGdtdzJrsTZZPe/cK1dS6oqsF1dlYyykrw2MKu3SGzUj0n+Qlk E/yZxeSImvTm0oZoVsfKj8oohZ9jm5NK+u8xmmIC+eJnTz5GG0h0qLelUTF8h3W8 ZkGOORqsIz2pTZRxKMN4VGqcSIKEKVzaLKSw0zP3t9eJATiu10zlnJ8IUd9JjpIr zleP9Jw9EMbou5NFICImhcMGvCR6J12WWsGnPfMPqVOyxXg7vuvEdp7AkQ2oFCwR 7GOZTOXNXMbeluVOMlPcVQp2JqpZ/EEqAxOQa/nqfyhrTbykuRnoiYHGxZVxeOZv q7Uxe0R/BKwjuLMtKDpuAp4qFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQHTYCQ TcbPvdeWZ+QwuDMMZDqCMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBahzoKjIuBK1fScLzjkL/3Km7UWGskUTjoagSoEoYBaQpgxCQBUF0B 6XrpK7zgXGQnCT2XdtvbzL4dn8n9dISSh1iyOmCqeISGRZFwOnuoM6WWnoWVY57l WzQrFQ1GeHXyOayTAp/QDg+v6owbwxBJSN2zoXjMBX10TZM9HhSoTN2xZe6C6DMk EyQWrf/an1v9pS484DIdIxbgErzzIzFH4WhVAzlLMCxSZaAjq5pp8SjzHCkzmkL+ gGv4QiiDnMSvhBPeSPB6EGCdWob0oe3NDm/aU1gBHYzjoVx7qbSp0dJoa+atv4gi vCZAUjEnLLWjajvcky+su06xpsEd3Zx7 -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:55 2025 by rpki-client