$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft File: rLcCUesVt11CKaohMePZqHwpRcA.mft (raw, json) Hash identifier: jnhRs5oc1dwTke4QEbQ6hTqJDvJW2iN4hkBxmuSjh5s= Subject key identifier: 79:6F:10:AE:94:2B:FD:04:3F:16:55:4A:1B:15:2E:34:DB:6D:62:83 Authority key identifier: AC:B7:02:51:EB:15:B7:5D:42:29:AA:21:31:E3:D9:A8:7C:29:45:C0 Certificate issuer: /CN=A91EFC94/serialNumber=ACB70251EB15B75D4229AA2131E3D9A87C2945C0 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLcCUesVt11CKaohMePZqHwpRcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft Manifest number: 8A Signing time: Mon 21 Jul 2025 06:44:11 +0000 Manifest this update: Mon 21 Jul 2025 06:44:10 +0000 Manifest next update: Mon 28 Jul 2025 06:44:10 +0000 Files and hashes: 1: rLcCUesVt11CKaohMePZqHwpRcA.crl (hash: FpmQBCchK+JbXCB25W/WcjmTMrcDiT2L03I+EuX8rfs=) 2: 9ABFC32C94F811EF92676015C4F9AE02.roa (hash: gWk0VsOcbG73/lmCIcmaJtgvf1O8GLTJ+JuzqZmFgTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.crl rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLcCUesVt11CKaohMePZqHwpRcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC94, serialNumber=ACB70251EB15B75D4229AA2131E3D9A87C2945C0 Validity Not Before: Jul 21 06:44:10 2025 GMT Not After : Jul 28 06:44:10 2025 GMT Subject: CN=687de1bb-9768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3c:f8:be:3a:a5:91:26:2d:e3:3b:24:ee:e4: 2e:42:4f:f7:8c:6c:7f:06:4d:92:5b:0b:e7:5c:d9: 1b:dd:6c:1b:1c:3c:0b:b1:6b:52:19:d3:54:9d:72: 53:30:a8:f8:e9:aa:66:26:ea:da:53:ac:08:18:17: f8:86:8f:ee:d5:13:76:12:5f:41:5a:83:0d:61:37: c7:56:b1:3d:af:c9:a1:b5:fb:f0:0b:d4:b5:0b:81: 2f:50:f2:c6:51:46:50:ae:9b:11:c6:64:59:96:12: 26:e6:ac:c8:40:d6:b0:70:69:db:27:0e:e9:52:ae: 12:68:1f:b8:b1:3a:bd:71:d4:b1:29:32:66:b9:1a: 06:17:61:b2:ed:07:77:73:04:b7:f7:41:77:22:4e: 60:2f:01:e3:96:f8:e0:d5:53:8c:e6:48:04:cf:67: da:35:47:75:1b:e4:39:7e:d8:cd:2b:99:ea:e9:44: 88:89:0e:a3:d3:f0:57:cb:f4:6b:f8:30:08:08:d4: ad:a8:d7:c0:bb:cc:ff:9d:75:1c:c0:ed:55:fd:8c: 7b:95:40:98:bd:70:8c:f5:b0:89:1d:04:84:0a:54: 2f:07:97:a3:27:b6:8e:26:40:91:28:12:5c:0a:47: 10:86:c3:da:69:ce:82:29:0b:3f:09:b2:8c:de:c4: 55:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6F:10:AE:94:2B:FD:04:3F:16:55:4A:1B:15:2E:34:DB:6D:62:83 X509v3 Authority Key Identifier: keyid:AC:B7:02:51:EB:15:B7:5D:42:29:AA:21:31:E3:D9:A8:7C:29:45:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLcCUesVt11CKaohMePZqHwpRcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC94/B1449C4E94DA11EF89086D21C4F9AE02/rLcCUesVt11CKaohMePZqHwpRcA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:80:19:5d:b6:17:d7:c7:be:6f:5f:ac:66:9a:c2:46:0d:e5: 65:3f:69:80:34:bd:c2:f4:83:6b:11:f2:0b:e2:74:e3:ba:70: 8b:c9:2e:14:58:e0:f6:9a:44:bc:31:58:ab:b2:1c:ed:19:46: 5b:07:36:3b:c9:cf:76:68:92:a8:82:0a:20:e9:fe:95:cc:b8: fc:2c:be:e7:0c:76:a5:7f:31:3c:09:01:21:49:ac:bd:94:97: 51:6b:7a:8c:75:95:53:d5:06:71:8e:50:34:47:c7:b6:ef:33: 3c:7f:c2:ea:83:2e:1c:91:53:1d:7b:94:61:3f:d5:8f:5e:3c: 3c:eb:9d:29:93:8e:eb:c5:a8:6a:88:89:b8:31:bf:1a:83:8d: 66:cc:a5:8e:e4:d5:ce:79:be:c9:bd:3b:07:8d:a2:cf:c1:50: 9b:c3:be:6b:50:6e:89:4b:97:46:6d:45:91:11:37:05:f5:51: b9:07:8a:98:eb:cb:c3:ad:7e:67:79:ad:3e:b2:b7:70:c8:e9: 2a:4e:c1:67:47:2f:88:8b:80:f9:c2:e1:91:8c:c3:62:a5:dd: 25:0b:94:fc:33:18:27:6c:87:3a:23:53:9b:be:19:e9:34:93: b2:44:ad:3d:d6:c6:e0:46:0b:5a:e3:15:74:e2:c4:4f:bb:f1: 9a:a9:52:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDOTQxMTAvBgNVBAUTKEFDQjcwMjUxRUIxNUI3NUQ0MjI5QUEyMTMxRTNEOUE4 N0MyOTQ1QzAwHhcNMjUwNzIxMDY0NDEwWhcNMjUwNzI4MDY0NDEwWjAYMRYwFAYD VQQDEw02ODdkZTFiYi05NzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTz4vjqlkSYt4zsk7uQuQk/3jGx/Bk2SWwvnXNkb3WwbHDwLsWtSGdNUnXJT MKj46apmJuraU6wIGBf4ho/u1RN2El9BWoMNYTfHVrE9r8mhtfvwC9S1C4EvUPLG UUZQrpsRxmRZlhIm5qzIQNawcGnbJw7pUq4SaB+4sTq9cdSxKTJmuRoGF2Gy7Qd3 cwS390F3Ik5gLwHjlvjg1VOM5kgEz2faNUd1G+Q5ftjNK5nq6USIiQ6j0/BXy/Rr +DAICNStqNfAu8z/nXUcwO1V/Yx7lUCYvXCM9bCJHQSEClQvB5ejJ7aOJkCRKBJc CkcQhsPaac6CKQs/CbKM3sRVbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlvEK6U K/0EPxZVShsVLjTbbWKDMB8GA1UdIwQYMBaAFKy3AlHrFbddQimqITHj2ah8KUXA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM5NC9CMTQ0OUM0RTk0 REExMUVGODkwODZEMjFDNEY5QUUwMi9yTGNDVWVzVnQxMUNLYW9oTWVQWnFId3BS Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JMY0NVZXNWdDExQ0thb2hNZVBacUh3cFJjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkM5NC9CMTQ0OUM0RTk0REExMUVGODkwODZEMjFDNEY5QUUwMi9yTGNDVWVzVnQx MUNLYW9oTWVQWnFId3BSY0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlgBldthfXx75vX6xmmsJGDeVlP2mANL3C9INrEfIL4nTjunCLyS4U WOD2mkS8MVirshztGUZbBzY7yc92aJKoggog6f6VzLj8LL7nDHalfzE8CQEhSay9 lJdRa3qMdZVT1QZxjlA0R8e27zM8f8Lqgy4ckVMde5RhP9WPXjw8650pk47rxahq iIm4Mb8ag41mzKWO5NXOeb7JvTsHjaLPwVCbw75rUG6JS5dGbUWRETcF9VG5B4qY 68vDrX5nea0+srdwyOkqTsFnRy+Ii4D5wuGRjMNipd0lC5T8MxgnbIc6I1Obvhnp NJOyRK091sbgRgta4xV04sRPu/GaqVID -----END CERTIFICATE-----Generated at Tue Jul 22 12:08:36 2025 by rpki-client