$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft File: Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft (raw, json) Hash identifier: 9AfN2ZFta7z4EhLd1CZBotGcS4ez9z4CaBDxUJup5dY= Subject key identifier: 2D:DF:1F:D0:2C:B2:D8:E4:5E:E0:81:D1:87:11:BD:13:46:F0:01:03 Authority key identifier: 4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D Certificate issuer: /CN=A91EE0A0/serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft Manifest number: 027A Signing time: Sat 19 Jul 2025 02:08:15 +0000 Manifest this update: Sat 19 Jul 2025 02:08:15 +0000 Manifest next update: Sat 26 Jul 2025 02:08:15 +0000 Files and hashes: 1: Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl (hash: L/55mbVWqxOzkkdMhhCJt/LyCrd5n6jqD9L8ECmJwjo=) 2: 9682ACDE16A611ED86A3EF0CC4F9AE02.roa (hash: xcEo5ZEds1+7lHb6kjHbxyhxfOhLVoaBRTvNwgY9oCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE0A0, serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D Validity Not Before: Jul 19 02:08:15 2025 GMT Not After : Jul 26 02:08:15 2025 GMT Subject: CN=687afe0f-df75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6a:83:07:26:a0:1d:d7:40:d5:53:29:36:2f: 88:04:5e:a9:ff:03:83:6a:67:2e:d5:2d:f8:42:88: 90:49:f4:aa:0e:1c:53:04:2a:ef:7e:8c:0e:da:a4: d6:2d:b9:dd:c1:55:dd:99:09:21:6b:f7:8f:07:68: 88:98:c2:5a:84:8c:ae:1e:b3:46:be:40:82:88:50: 1f:c3:99:a8:e6:e7:03:e2:11:fa:67:21:cb:b4:74: 7b:c6:96:59:e7:47:71:4c:1a:35:64:0c:d3:a2:ae: cd:6b:e0:d0:43:8c:81:20:89:a4:e4:bc:9b:6f:7a: 18:76:76:d0:b0:20:ef:f1:87:dc:ab:06:05:34:4e: 88:25:2d:50:e8:83:92:4d:15:17:d7:83:12:e8:8b: f9:74:39:85:ec:46:15:3e:05:a8:e5:e9:54:b2:be: 52:da:13:01:09:21:d3:69:3c:e6:14:f9:f3:dc:30: 8f:f3:fe:7c:dd:fd:dd:af:32:00:8d:d3:3b:fd:9b: aa:8f:99:3b:31:a7:34:47:45:f5:ee:8e:40:91:bf: b6:fb:64:4f:17:69:00:b9:28:a3:00:f5:d5:a5:8b: 02:2a:fc:2f:21:92:8f:b0:03:f2:65:02:68:ee:8a: fd:d6:46:6f:0e:bc:e6:4c:ec:b0:05:2f:41:b2:75: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DF:1F:D0:2C:B2:D8:E4:5E:E0:81:D1:87:11:BD:13:46:F0:01:03 X509v3 Authority Key Identifier: keyid:4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:cd:1f:01:54:f7:1e:3f:ed:76:2f:d0:bd:91:aa:f9:1f:1e: f7:ce:03:57:bf:cd:96:63:56:37:84:b2:81:99:c2:d3:1b:ad: d7:5a:17:b5:95:a1:dd:83:57:0f:5d:b0:34:82:6a:7d:2e:12: 30:bc:8f:f5:ef:17:0c:5f:62:fe:3d:69:fe:0b:8b:2a:d1:82: 82:92:4a:d0:21:51:db:9e:ec:6f:8a:d9:c9:94:22:46:24:ac: 95:20:72:40:0f:18:35:7f:0e:34:92:13:5f:9b:1d:43:9d:ce: ef:d9:4b:0b:5c:5c:60:2e:c4:c2:76:71:bc:a5:d0:fe:39:f5: 0f:d5:d1:e0:28:b5:d3:43:ec:42:66:6c:b3:b1:35:d1:f8:ee: c3:b6:c7:be:d5:af:48:80:87:09:50:1c:da:7c:21:11:ed:0e: 4d:d7:07:9e:ba:ef:cd:16:7d:35:67:93:3f:55:d5:1e:c6:39: 78:b6:cf:73:79:6a:8b:90:b0:09:d9:77:22:73:86:2c:d4:4a: 17:22:5e:4a:25:29:09:1f:ff:00:7b:fa:d5:ed:c1:60:8a:1a: ab:7b:07:86:06:a2:64:c4:91:2c:e1:9b:31:5d:e8:9a:6e:e2: a8:d4:8b:b1:78:09:29:f0:57:97:07:c5:00:d4:09:99:7d:e5: f1:c0:b3:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwQTAxMTAvBgNVBAUTKDRBMkZCQjQ2MEQxQkQ4RjMxNkY2NjQyRDlFQjVGNEMz QjIyMDE4OUQwHhcNMjUwNzE5MDIwODE1WhcNMjUwNzI2MDIwODE1WjAYMRYwFAYD VQQDEw02ODdhZmUwZi1kZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62qDByagHddA1VMpNi+IBF6p/wODamcu1S34QoiQSfSqDhxTBCrvfowO2qTW LbndwVXdmQkha/ePB2iImMJahIyuHrNGvkCCiFAfw5mo5ucD4hH6ZyHLtHR7xpZZ 50dxTBo1ZAzToq7Na+DQQ4yBIImk5Lybb3oYdnbQsCDv8YfcqwYFNE6IJS1Q6IOS TRUX14MS6Iv5dDmF7EYVPgWo5elUsr5S2hMBCSHTaTzmFPnz3DCP8/583f3drzIA jdM7/Zuqj5k7Mac0R0X17o5Akb+2+2RPF2kAuSijAPXVpYsCKvwvIZKPsAPyZQJo 7or91kZvDrzmTOywBS9BsnXB3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3fH9As stjkXuCB0YcRvRNG8AEDMB8GA1UdIwQYMBaAFEovu0YNG9jzFvZkLZ619MOyIBid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTBBMC9BNDI1NzU2MjE2 QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQTVc5bVF0bnJYMHc3SWdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NpLTdSZzBiMlBNVzltUXRuclgwdzdJZ0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTBBMC9BNDI1NzU2MjE2QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQ TVc5bVF0bnJYMHc3SWdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCszR8BVPceP+12L9C9kar5Hx73zgNXv82WY1Y3hLKBmcLTG63XWhe1 laHdg1cPXbA0gmp9LhIwvI/17xcMX2L+PWn+C4sq0YKCkkrQIVHbnuxvitnJlCJG JKyVIHJADxg1fw40khNfmx1Dnc7v2UsLXFxgLsTCdnG8pdD+OfUP1dHgKLXTQ+xC ZmyzsTXR+O7Dtse+1a9IgIcJUBzafCER7Q5N1weeuu/NFn01Z5M/VdUexjl4ts9z eWqLkLAJ2Xcic4Ys1EoXIl5KJSkJH/8Ae/rV7cFgihqreweGBqJkxJEs4ZsxXeia buKo1IuxeAkp8FeXB8UA1AmZfeXxwLOc -----END CERTIFICATE-----Generated at Sun Jul 20 18:53:59 2025 by rpki-client