$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json) Hash identifier: Odwg8E44HGD6vwJ6tUAYq3FwvpDweS/fNeA6rKWze7Q= Subject key identifier: 00:21:30:07:D8:C6:CA:AC:BA:28:DC:96:FF:E4:0F:5C:AB:09:28:A7 Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft Manifest number: 1C3C Signing time: Sun 20 Jul 2025 16:13:46 +0000 Manifest this update: Sun 20 Jul 2025 16:13:46 +0000 Manifest next update: Sun 27 Jul 2025 16:13:46 +0000 Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: s7z+g7rKDbFiGAVS5XJc0ko6fYHJInBXrGsbQ6LZG+A=) 2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: 4+gvlbrCKPYHxXa5P1wV2CMHV3TVWTeug3ZLXYBNytU=) 3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: nzh03mGpFuWBuJjX4zOpsk0cBliW2iPs211HjGanKnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7253 (0x1c55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2, serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Jul 20 16:13:46 2025 GMT Not After : Jul 27 16:13:46 2025 GMT Subject: CN=687d15ba-03d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4d:bc:44:d0:1d:be:e9:fa:75:de:0e:64:41: fc:3a:49:78:f5:d4:11:e0:84:3f:7d:4e:ac:51:af: 14:61:f9:ae:6b:c1:88:45:75:dc:6c:96:40:8f:cb: 22:42:ff:81:c6:55:ff:96:85:0b:38:5e:f1:f7:76: bc:dc:4f:5b:af:1b:0f:ca:56:b3:58:f9:73:a5:23: 40:d0:bb:4d:77:2e:30:c7:81:a7:49:ee:21:3c:e2: 61:eb:9b:60:da:13:dd:c3:ee:c2:77:b9:26:f8:08: 24:fb:04:d3:81:10:bf:b7:b0:83:cf:2f:2c:52:b3: ba:ef:19:6e:99:cc:4d:61:e2:e1:b2:46:b5:68:33: 52:6b:d4:eb:88:89:66:18:bd:dd:97:50:03:88:b6: 84:b0:de:bb:4a:dc:60:12:2c:ed:12:76:86:01:7c: e3:67:b1:e2:71:5b:45:01:86:c8:e0:a5:80:b4:a1: 16:3b:47:59:27:4e:b2:d6:a2:42:b9:0f:39:73:ab: 47:e8:78:b3:36:1a:7c:62:ea:36:0c:4f:fc:24:05: 8f:13:2f:1f:27:f8:35:52:4d:76:45:8e:86:95:1a: 80:82:a6:24:85:ca:e8:1f:8c:43:fd:72:ce:88:bb: 6a:df:96:9c:c9:03:6b:20:f9:36:c7:03:85:0e:a7: 77:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:21:30:07:D8:C6:CA:AC:BA:28:DC:96:FF:E4:0F:5C:AB:09:28:A7 X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:21:c0:a0:e2:91:33:0b:db:e4:3f:b0:94:82:dc:c1:0a:55: b1:1d:43:c8:24:45:f0:85:8f:a3:5e:4a:06:69:47:a5:69:9d: ad:47:6f:33:a9:35:af:d8:8b:24:01:41:dc:58:14:a6:96:df: 26:60:25:65:e5:21:b0:6d:f0:14:77:7e:d3:e3:2f:8b:27:55: e0:31:66:cd:d3:c5:2e:e2:5d:46:ad:bb:ef:05:62:41:9c:95: 70:78:88:ad:81:6f:fa:ad:53:c7:c1:18:c3:17:88:eb:d3:20: 3a:4d:fa:fc:96:c2:ea:41:9f:56:35:4b:47:f0:fc:58:c1:a1: 77:58:4c:5c:f5:3c:e8:20:42:5d:5c:8e:db:8b:2f:17:06:b4: 73:ea:00:0c:74:d7:85:0b:1c:cf:77:77:93:aa:57:eb:aa:c9: 2a:1e:63:bc:6f:ae:c7:cc:97:47:20:c2:eb:d5:a6:34:a8:79: 3b:b9:ad:1d:ef:de:93:2c:48:87:6f:1d:2d:8e:29:e4:0f:29: fc:74:9e:40:b3:5e:81:8a:6f:35:ea:db:e4:be:1d:7b:42:3e: c7:2a:1e:d2:1d:66:c7:1b:43:69:6c:1e:a7:de:fc:a1:bc:b7: 65:ef:56:fa:69:90:7a:b9:99:f8:10:58:31:a9:5f:97:7d:d6: 19:10:7b:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjUwNzIwMTYxMzQ2WhcNMjUwNzI3MTYxMzQ2WjAYMRYwFAYD VQQDEw02ODdkMTViYS0wM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo028RNAdvun6dd4OZEH8Okl49dQR4IQ/fU6sUa8UYfmua8GIRXXcbJZAj8si Qv+BxlX/loULOF7x93a83E9brxsPylazWPlzpSNA0LtNdy4wx4GnSe4hPOJh65tg 2hPdw+7Cd7km+Agk+wTTgRC/t7CDzy8sUrO67xlumcxNYeLhska1aDNSa9TriIlm GL3dl1ADiLaEsN67StxgEiztEnaGAXzjZ7HicVtFAYbI4KWAtKEWO0dZJ06y1qJC uQ85c6tH6HizNhp8Yuo2DE/8JAWPEy8fJ/g1Uk12RY6GlRqAgqYkhcroH4xD/XLO iLtq35acyQNrIPk2xwOFDqd3KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAhMAfY xsqsuijclv/kD1yrCSinMB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE RDN3ZVdRekJxb3RJSW1EdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHIcCg4pEzC9vkP7CUgtzBClWxHUPIJEXwhY+jXkoGaUelaZ2tR28z qTWv2IskAUHcWBSmlt8mYCVl5SGwbfAUd37T4y+LJ1XgMWbN08Uu4l1GrbvvBWJB nJVweIitgW/6rVPHwRjDF4jr0yA6Tfr8lsLqQZ9WNUtH8PxYwaF3WExc9TzoIEJd XI7biy8XBrRz6gAMdNeFCxzPd3eTqlfrqskqHmO8b67HzJdHIMLr1aY0qHk7ua0d 796TLEiHbx0tjinkDyn8dJ5As16Bim816tvkvh17Qj7HKh7SHWbHG0NpbB6n3vyh vLdl71b6aZB6uZn4EFgxqV+XfdYZEHuc -----END CERTIFICATE-----Generated at Mon Jul 21 05:51:08 2025 by rpki-client