$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft File: h25oE78sGBHNEd6ZKBrNRL7A3nM.mft (raw, json) Hash identifier: NlE+CwM79Ay+SodY5ZOpJDXuf3GIBNCWjEPGIrGfJRU= Subject key identifier: 26:5C:BA:C2:F3:93:BA:E4:75:E6:C0:CF:DC:5F:AC:B7:78:17:BD:4E Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft Manifest number: 0100 Signing time: Mon 21 Jul 2025 05:41:15 +0000 Manifest this update: Mon 21 Jul 2025 05:41:14 +0000 Manifest next update: Mon 28 Jul 2025 05:41:14 +0000 Files and hashes: 1: h25oE78sGBHNEd6ZKBrNRL7A3nM.crl (hash: thw3HXeNPwzG54GQ4P/ESB0VvXNgHeVVQHszireyhmY=) 2: EEC42F86232311EFAF815012C4F9AE02.roa (hash: dmDX5d8Ee6EDnk/9c9IbholerFQLcJ0sPLUNE3zziAE=) 3: 0B5DBB081C0311EF8B8AB54DC4F9AE02.roa (hash: +l7KzNw3VW+RHOqRN7o7MYFbDiz9Uue5nL0WGR6JFyA=) 4: 2EFBFF901C0611EF883D807CC4F9AE02.roa (hash: UX1cRz51Yc/EPgI7Avdxh/+oTCoX8i2QidlgdW8Epmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0, serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Validity Not Before: Jul 21 05:41:14 2025 GMT Not After : Jul 28 05:41:14 2025 GMT Subject: CN=687dd2fa-411e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ea:55:a4:db:e5:a7:48:69:80:cc:8d:e9:6f: ba:34:0e:ac:c9:67:bd:43:36:eb:d4:98:06:76:ca: a6:17:34:fa:63:c9:b2:39:a5:22:f1:08:b7:7f:ee: 25:e7:c3:44:2c:30:e5:75:6c:ee:79:cd:60:78:b7: 85:c3:cc:1e:cc:21:92:4c:d5:11:0f:a3:92:b3:67: f0:e6:6e:18:fd:0b:6e:3b:91:e7:fa:dc:d6:28:39: d0:d8:61:c1:64:99:db:8a:08:9e:c1:40:6d:20:f3: 76:aa:11:d4:5d:3f:78:75:64:21:ed:9e:d1:af:87: ef:3f:39:44:96:e0:6e:04:e1:8f:a9:0d:b1:4f:57: 9a:4f:5d:3d:f9:20:ab:77:0f:e8:6c:0b:68:f5:40: ce:7f:1b:e3:a6:91:66:b7:df:a0:35:22:fd:c9:f0: e3:27:9b:1a:57:78:d5:f5:e6:a0:2f:da:b9:ec:4d: 2f:a6:17:d8:50:8d:1a:d9:04:31:2a:b9:69:84:17: 53:21:f6:f8:9d:f4:7f:e0:d0:45:c6:47:d3:a9:2e: 50:08:08:50:72:d4:8e:5a:01:59:79:66:c6:37:26: 64:4e:24:cd:11:47:4a:bf:c2:d1:e0:b4:0c:45:eb: 59:4c:77:d6:5c:82:62:0d:c6:41:d9:42:58:5c:da: ad:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5C:BA:C2:F3:93:BA:E4:75:E6:C0:CF:DC:5F:AC:B7:78:17:BD:4E X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b5:38:f4:0e:f3:40:47:0b:5c:cc:73:b0:45:76:49:71:2d: 2c:f5:ed:86:86:39:6f:a5:db:d4:75:78:73:ed:d2:12:e6:ce: 42:a0:28:72:53:71:a4:61:d8:8f:0d:aa:32:d5:dd:7c:37:55: db:15:c4:72:d5:29:4d:8c:77:9d:19:57:4d:a5:0f:25:1f:8f: 54:f3:5e:3c:d9:65:be:bd:2f:ef:2b:c7:fd:e5:54:d2:b3:26: 01:2c:6f:fa:e0:4a:d5:4b:00:4d:da:c6:12:07:e8:60:4f:2b: 2e:f8:a3:cd:59:4d:d9:24:19:d6:c9:2e:35:6c:07:97:8a:3b: 3e:12:9a:a7:e1:4f:73:ee:97:82:a1:c9:df:11:2b:fe:62:6b: 3e:b2:43:e1:0f:fe:6e:f6:e7:6d:e8:2a:e1:ba:f5:2e:04:d8: 09:a9:54:93:27:f1:34:ec:ec:06:10:8d:48:b5:77:76:e4:34: fd:35:5a:2b:9b:6b:f1:c5:03:4e:6f:f3:2a:3d:69:74:33:39: 18:2f:48:75:7b:2f:35:1b:78:bf:ab:c8:3e:25:9e:a0:e7:a3: bb:83:f1:24:84:03:73:5d:7d:45:cf:7f:bc:91:c0:11:cc:d1: fa:3b:db:5e:42:cf:2c:93:2e:12:36:c7:db:e4:d6:23:70:35: f2:03:99:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGQjAxMTAvBgNVBAUTKDg3NkU2ODEzQkYyQzE4MTFDRDExREU5OTI4MUFDRDQ0 QkVDMERFNzMwHhcNMjUwNzIxMDU0MTE0WhcNMjUwNzI4MDU0MTE0WjAYMRYwFAYD VQQDEw02ODdkZDJmYS00MTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4epVpNvlp0hpgMyN6W+6NA6syWe9Qzbr1JgGdsqmFzT6Y8myOaUi8Qi3f+4l 58NELDDldWzuec1geLeFw8wezCGSTNURD6OSs2fw5m4Y/QtuO5Hn+tzWKDnQ2GHB ZJnbigiewUBtIPN2qhHUXT94dWQh7Z7Rr4fvPzlEluBuBOGPqQ2xT1eaT109+SCr dw/obAto9UDOfxvjppFmt9+gNSL9yfDjJ5saV3jV9eagL9q57E0vphfYUI0a2QQx KrlphBdTIfb4nfR/4NBFxkfTqS5QCAhQctSOWgFZeWbGNyZkTiTNEUdKv8LR4LQM RetZTHfWXIJiDcZB2UJYXNqtNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZcusLz k7rkdebAz9xfrLd4F71OMB8GA1UdIwQYMBaAFIduaBO/LBgRzRHemSgazUS+wN5z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEZCMC8wNThDRUMxNDE5 QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dCSE5FZDZaS0JyTlJMN0Ez bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEZCMC8wNThDRUMxNDE5QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dC SE5FZDZaS0JyTlJMN0Ezbk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgtTj0DvNARwtczHOwRXZJcS0s9e2GhjlvpdvUdXhz7dIS5s5CoChy U3GkYdiPDaoy1d18N1XbFcRy1SlNjHedGVdNpQ8lH49U81482WW+vS/vK8f95VTS syYBLG/64ErVSwBN2sYSB+hgTysu+KPNWU3ZJBnWyS41bAeXijs+Epqn4U9z7peC ocnfESv+Yms+skPhD/5u9udt6CrhuvUuBNgJqVSTJ/E07OwGEI1ItXd25DT9NVor m2vxxQNOb/MqPWl0MzkYL0h1ey81G3i/q8g+JZ6g56O7g/EkhANzXX1Fz3+8kcAR zNH6O9teQs8sky4SNsfb5NYjcDXyA5kn -----END CERTIFICATE-----Generated at Mon Jul 21 13:24:31 2025 by rpki-client