$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft File: G5HVFg99VrcFqFFsahz0L0ln71Y.mft (raw, json) Hash identifier: gdjPHNkG/wiV3KrtexkFwRUwFo1FZOXK7fYeGHGVf0U= Subject key identifier: 96:FE:1E:0C:96:CD:00:EA:65:97:54:D1:19:E1:57:4C:33:00:5C:47 Authority key identifier: 1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56 Certificate issuer: /CN=A91EF554/serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56 Certificate serial: 0959 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft Manifest number: 0951 Signing time: Fri 18 Jul 2025 20:26:12 +0000 Manifest this update: Fri 18 Jul 2025 20:26:12 +0000 Manifest next update: Fri 25 Jul 2025 20:26:12 +0000 Files and hashes: 1: G5HVFg99VrcFqFFsahz0L0ln71Y.crl (hash: ZYsJs8yE1cb3td6LHMLRruV8JXPc1TgLs1PsQ0F+gIM=) 2: 156CEB62DC6011ECB2698C14C4F9AE02.roa (hash: reuaGLtn1xD8mIcBhpyoMRgE/LzBHNExqumLX0mZnsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2393 (0x959) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF554, serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56 Validity Not Before: Jul 18 20:26:12 2025 GMT Not After : Jul 25 20:26:12 2025 GMT Subject: CN=687aade4-76ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b6:c1:af:ff:e1:1b:ca:69:f7:08:62:ea:00: ec:da:b3:d8:be:c7:6e:df:ee:4b:3e:04:a5:2b:5a: 82:97:8f:81:b4:b1:d7:bc:13:26:a7:cb:ec:aa:07: 8e:5e:ef:a2:10:ef:18:a5:47:8c:3f:57:79:ea:87: fd:49:64:7d:a0:b7:8a:f9:e9:85:d7:a1:89:54:c1: 41:8d:f9:97:3d:d6:59:bf:88:c8:77:24:45:78:c6: 77:c3:14:3d:40:3d:ce:3e:5a:9f:82:bc:89:05:e1: e8:e1:3a:35:65:20:4a:c0:75:cd:13:fb:51:7c:d3: ca:e4:55:d6:d8:60:8e:6c:22:01:a6:67:7e:6c:94: e8:9f:e1:3d:35:78:80:22:79:26:c8:47:d5:ce:87: 6c:b0:42:ef:72:70:e2:8a:e6:b7:5a:fe:40:a6:af: 6c:b7:66:5a:a8:af:07:4d:b6:18:d6:02:30:47:05: 75:a2:37:38:14:22:53:97:c2:6c:e5:ec:5d:71:5e: a3:80:5c:a6:ad:cf:93:a1:52:98:f6:c0:3c:a6:84: 2c:10:e4:70:e3:6c:55:1e:11:94:b5:e9:e6:b4:f8: bc:d5:25:d8:81:4a:5f:79:37:b3:5a:25:33:61:6c: 76:06:e4:b4:32:52:12:6c:22:f0:ec:03:f8:4f:85: 96:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FE:1E:0C:96:CD:00:EA:65:97:54:D1:19:E1:57:4C:33:00:5C:47 X509v3 Authority Key Identifier: keyid:1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:2b:a2:c9:c3:cd:01:2f:6d:75:74:2f:23:66:3b:60:4e:e7: e6:60:c0:a8:55:20:d3:9d:ec:cb:7c:f6:e3:10:e9:dc:df:de: e9:7b:93:79:58:b0:08:de:01:c3:90:49:57:58:93:f1:de:a3: 04:d0:51:0b:4e:10:b9:7b:8a:c5:54:7d:be:61:ab:2a:3b:44: a4:99:b6:0e:09:0f:eb:1e:a6:2d:cb:94:85:64:ef:f1:23:15: 51:eb:d5:0e:e4:c1:df:79:9a:fe:43:13:40:e4:98:16:80:0a: 65:41:ae:f9:dd:8f:1d:f0:78:67:92:8f:20:3a:c3:21:7a:11: 9c:c0:91:29:4b:06:70:4f:60:d5:16:64:7d:61:8c:3d:14:47: b5:18:f0:a3:08:d7:24:fa:ce:a8:2a:b5:02:23:57:2f:42:fc: d1:89:9a:18:45:7f:45:5e:43:38:c3:4e:33:fa:cf:02:f4:94: 5c:ee:fa:d0:d6:77:89:7b:21:3e:07:12:53:62:66:86:0e:6f: bf:8a:98:cb:3e:fc:45:e5:e9:c1:12:ac:5a:a1:d1:9e:c2:c8: 2d:42:e7:51:8a:12:37:a6:d1:e1:64:36:26:a7:e3:d7:e6:37: d5:06:b5:75:cb:fe:90:e2:c8:82:77:95:3f:23:ea:6e:ef:72: 97:58:34:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1NTQxMTAvBgNVBAUTKDFCOTFENTE2MEY3RDU2QjcwNUE4NTE2QzZBMUNGNDJG NDk2N0VGNTYwHhcNMjUwNzE4MjAyNjEyWhcNMjUwNzI1MjAyNjEyWjAYMRYwFAYD VQQDEw02ODdhYWRlNC03NmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbbBr//hG8pp9whi6gDs2rPYvsdu3+5LPgSlK1qCl4+BtLHXvBMmp8vsqgeO Xu+iEO8YpUeMP1d56of9SWR9oLeK+emF16GJVMFBjfmXPdZZv4jIdyRFeMZ3wxQ9 QD3OPlqfgryJBeHo4To1ZSBKwHXNE/tRfNPK5FXW2GCObCIBpmd+bJTon+E9NXiA InkmyEfVzodssELvcnDiiua3Wv5Apq9st2ZaqK8HTbYY1gIwRwV1ojc4FCJTl8Js 5exdcV6jgFymrc+ToVKY9sA8poQsEORw42xVHhGUtenmtPi81SXYgUpfeTezWiUz YWx2BuS0MlISbCLw7AP4T4WWAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJb+HgyW zQDqZZdU0RnhV0wzAFxHMB8GA1UdIwQYMBaAFBuR1RYPfVa3BahRbGoc9C9JZ+9W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjU1NC9FQjFDQkJFMjlF NUIxMUVBQjI0OEZDNTFDNEY5QUUwMi9HNUhWRmc5OVZyY0ZxRkZzYWh6MEwwbG43 MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c1SFZGZzk5VnJjRnFGRnNhaHowTDBsbjcxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjU1NC9FQjFDQkJFMjlFNUIxMUVBQjI0OEZDNTFDNEY5QUUwMi9HNUhWRmc5OVZy Y0ZxRkZzYWh6MEwwbG43MVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFK6LJw80BL211dC8jZjtgTufmYMCoVSDTnezLfPbjEOnc397pe5N5 WLAI3gHDkElXWJPx3qME0FELThC5e4rFVH2+YasqO0SkmbYOCQ/rHqYty5SFZO/x IxVR69UO5MHfeZr+QxNA5JgWgAplQa753Y8d8Hhnko8gOsMhehGcwJEpSwZwT2DV FmR9YYw9FEe1GPCjCNck+s6oKrUCI1cvQvzRiZoYRX9FXkM4w04z+s8C9JRc7vrQ 1neJeyE+BxJTYmaGDm+/ipjLPvxF5enBEqxaodGewsgtQudRihI3ptHhZDYmp+PX 5jfVBrV1y/6Q4siCd5U/I+pu73KXWDTz -----END CERTIFICATE-----Generated at Sun Jul 20 07:52:06 2025 by rpki-client