$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: +pSLooESSFKXQKU632Ql6B40SwQg+CDs3cIjgOsZ+Z8= Subject key identifier: D7:0C:59:EF:61:8C:85:F7:67:64:A4:2B:CA:33:3F:7B:AC:CB:13:EE Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 13E8 Signing time: Sun 20 Jul 2025 19:09:00 +0000 Manifest this update: Sun 20 Jul 2025 19:09:00 +0000 Manifest next update: Sun 27 Jul 2025 19:09:00 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: xLLrpL+a5Ln4G55WasDc3Wq6znE6FV+FKD0rzHCOhrM=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Jul 20 19:09:00 2025 GMT Not After : Jul 27 19:09:00 2025 GMT Subject: CN=687d3ecc-4a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5a:9f:be:11:c2:18:72:fb:bd:cf:3e:ef:98: 07:48:c3:23:c7:cc:ff:f1:dd:e3:38:8c:3c:79:4d: 8b:bb:b4:34:fc:af:a4:b2:85:0d:91:bd:1e:01:f4: 67:bc:96:2b:9f:75:3a:0d:98:70:16:76:28:1e:54: 28:70:13:c7:a3:8c:bc:d6:af:e6:bd:f6:94:fe:05: 34:c5:5a:77:b9:10:8b:da:96:c3:49:85:96:61:86: 9f:04:4c:45:0e:f6:e0:ca:b7:c8:44:c5:d7:a3:af: 6f:aa:30:81:c4:9b:f2:0d:08:a8:c4:59:81:4d:f4: 57:ef:bc:39:bc:1d:8d:1b:cd:b4:6d:0e:4e:5b:1b: 3f:df:98:ba:2e:e4:73:3c:8a:95:2f:9e:c4:a3:5f: 88:1b:19:73:9c:fb:f5:ba:95:87:c8:07:c8:97:d5: d6:16:a2:36:d1:ce:c5:c1:dc:79:0b:33:69:a6:53: 46:e1:b4:dc:eb:35:41:49:a0:7d:38:ae:fa:27:ed: f5:b5:dc:90:b0:15:59:cc:24:d4:2a:95:3f:81:21: 0c:50:73:a8:1b:5c:16:dd:ab:94:a5:b3:d9:ce:e3: dc:0c:60:53:92:67:42:d0:45:29:bf:b8:87:34:60: 33:aa:0d:70:50:b5:58:c8:74:5d:da:2c:37:c3:7b: ba:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0C:59:EF:61:8C:85:F7:67:64:A4:2B:CA:33:3F:7B:AC:CB:13:EE X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:bb:32:c0:b9:9f:64:0e:a1:39:ed:0b:3f:ea:a9:a7:30:88: 1a:d6:32:88:24:f5:06:3a:00:83:0a:e4:fd:85:eb:8c:e7:1d: 3d:64:76:44:3e:b3:dc:20:98:d8:4b:a7:a3:8b:08:8e:b5:41: 4e:cd:1d:91:16:31:8a:0f:3c:c5:4c:35:ad:36:e0:0e:b8:09: b3:b7:e9:64:d6:a6:6d:e1:eb:4c:ff:f1:b8:bc:c3:4b:39:db: 89:d5:1f:ba:58:b4:ad:5d:ff:0c:48:df:ab:a1:90:00:c0:99: 85:ea:0e:8b:02:aa:46:ce:de:99:85:21:20:c9:07:a5:b9:ae: d8:ef:c8:d8:b3:45:49:02:b4:8c:9d:04:e0:6c:e8:83:db:32: 97:fe:f5:80:c4:9b:ab:8f:b6:c7:32:db:18:79:3e:84:95:cc: 96:60:a7:b0:f9:6e:46:fa:53:e4:67:de:7f:4d:4f:d0:32:19: 87:b0:ac:fd:ad:d6:e6:4b:2f:e9:19:8b:af:23:de:a7:91:c4: 34:d5:4a:53:7c:2f:00:ee:6b:02:a6:a2:5d:30:2a:8c:0b:0f: 09:65:74:82:d1:c2:a2:16:43:88:d6:6a:56:0c:74:a4:40:ff: 87:b7:6c:23:4d:13:d3:b6:81:84:4d:d4:2f:dc:d5:4c:41:07: 16:f7:10:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUwNzIwMTkwOTAwWhcNMjUwNzI3MTkwOTAwWjAYMRYwFAYD VQQDEw02ODdkM2VjYy00YTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplqfvhHCGHL7vc8+75gHSMMjx8z/8d3jOIw8eU2Lu7Q0/K+ksoUNkb0eAfRn vJYrn3U6DZhwFnYoHlQocBPHo4y81q/mvfaU/gU0xVp3uRCL2pbDSYWWYYafBExF DvbgyrfIRMXXo69vqjCBxJvyDQioxFmBTfRX77w5vB2NG820bQ5OWxs/35i6LuRz PIqVL57Eo1+IGxlznPv1upWHyAfIl9XWFqI20c7Fwdx5CzNpplNG4bTc6zVBSaB9 OK76J+31tdyQsBVZzCTUKpU/gSEMUHOoG1wW3auUpbPZzuPcDGBTkmdC0EUpv7iH NGAzqg1wULVYyHRd2iw3w3u66wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcMWe9h jIX3Z2SkK8ozP3usyxPuMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEuzLAuZ9kDqE57Qs/6qmnMIga1jKIJPUGOgCDCuT9heuM5x09ZHZE PrPcIJjYS6ejiwiOtUFOzR2RFjGKDzzFTDWtNuAOuAmzt+lk1qZt4etM//G4vMNL OduJ1R+6WLStXf8MSN+roZAAwJmF6g6LAqpGzt6ZhSEgyQelua7Y78jYs0VJArSM nQTgbOiD2zKX/vWAxJurj7bHMtsYeT6ElcyWYKew+W5G+lPkZ95/TU/QMhmHsKz9 rdbmSy/pGYuvI96nkcQ01UpTfC8A7msCpqJdMCqMCw8JZXSC0cKiFkOI1mpWDHSk QP+Ht2wjTRPTtoGETdQv3NVMQQcW9xBd -----END CERTIFICATE-----Generated at Tue Jul 22 12:32:01 2025 by rpki-client