$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: K6tR5yY6QN7uNqbIjpEi2bTDSzK0cif6vIhaOktvkW4= Subject key identifier: 1C:00:FC:4C:99:74:60:B4:C3:8D:0C:1F:49:87:E8:A9:39:B6:E0:CA Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 088C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 13EC Signing time: Thu 24 Jul 2025 19:12:43 +0000 Manifest this update: Thu 24 Jul 2025 19:12:42 +0000 Manifest next update: Thu 31 Jul 2025 19:12:42 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: chq3tPRdIqGhjv9RPfdD5JSpzRGiomQAnjfIot8N9jU=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Jul 24 19:12:42 2025 GMT Not After : Jul 31 19:12:42 2025 GMT Subject: CN=688285aa-0f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b5:7e:e6:7d:fe:b0:0f:6f:8e:e0:20:cd:74: c1:54:1c:22:12:c6:28:70:3d:52:ce:b9:de:8b:bb: aa:00:08:ad:19:25:74:09:f9:ec:5f:42:cb:f3:69: 74:31:ef:05:b4:d0:88:43:0f:58:75:af:e7:1b:6c: 37:86:e0:ce:90:c1:99:83:14:d7:95:7c:01:36:51: 9f:31:5c:ff:10:4f:77:57:7b:48:f8:25:b2:07:c5: 65:cc:5d:2f:34:84:6d:e2:7e:cf:96:ba:2f:61:28: 33:43:86:36:ff:99:f5:35:ad:48:36:75:52:8a:3b: 23:dd:34:5b:f2:1b:dd:77:0e:41:57:59:e4:3f:7c: 45:a4:c8:b2:ce:de:2a:bf:48:6f:17:61:4c:c4:79: b8:9c:c9:de:80:74:2b:4b:be:f0:9c:71:32:b4:60: 63:86:93:53:fb:d0:78:4f:52:2b:7d:24:71:14:38: 49:77:c2:1c:72:6e:3d:82:a8:32:e4:73:86:2a:d0: d0:97:ad:60:ad:fd:7c:59:79:fc:3a:59:b1:4d:c7: 90:ba:34:0d:5f:c9:fe:52:e5:d4:ab:6d:cd:2f:9e: 90:e4:32:92:18:13:54:70:15:0c:0a:f9:c5:71:3a: 0e:b0:d0:58:7a:f9:8a:24:10:46:e2:02:69:0b:f7: 33:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:00:FC:4C:99:74:60:B4:C3:8D:0C:1F:49:87:E8:A9:39:B6:E0:CA X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e9:55:55:fa:16:98:40:90:d1:e5:eb:0f:2b:9d:9a:ec:a6: d9:65:8b:17:ad:d1:56:7e:17:ba:a4:43:83:ab:8a:c7:98:0d: c3:c5:ce:c3:a2:51:0d:3c:8a:be:26:b4:0d:14:8c:80:a2:90: 4a:dc:94:ad:6d:87:28:2f:e2:81:4d:39:59:64:ee:84:19:7d: 84:a5:a0:d3:84:71:b6:71:6a:3a:d1:6e:a8:d7:dd:6f:77:37: 72:5f:cf:40:4e:7b:cc:2c:40:33:43:d6:61:2a:0a:df:37:db: 28:28:aa:99:42:bb:27:0b:8c:01:09:fd:51:38:4f:8e:2c:23: af:17:81:3e:9e:a3:55:08:bf:1d:b8:cf:14:65:91:c5:e7:0f: a5:16:cb:0d:45:4f:a1:5f:94:2b:ff:13:10:28:a0:01:d2:6b: 05:30:9d:fa:0f:f8:6b:9c:dc:62:65:b1:bb:b5:83:37:30:48: f9:37:42:67:89:14:b5:5a:d5:8e:a7:20:18:65:25:de:c8:a2: 89:96:48:a7:5d:92:cb:a4:d1:a1:ff:9f:62:38:ea:10:4f:86: 0c:57:43:41:66:ff:e5:46:ee:14:93:1b:12:24:b1:10:f2:2e: 56:83:cb:85:f7:c1:9b:e6:05:cb:9d:6a:ab:0e:94:1d:2b:cd: fb:cc:c4:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUwNzI0MTkxMjQyWhcNMjUwNzMxMTkxMjQyWjAYMRYwFAYD VQQDEw02ODgyODVhYS0wZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LV+5n3+sA9vjuAgzXTBVBwiEsYocD1Szrnei7uqAAitGSV0CfnsX0LL82l0 Me8FtNCIQw9Yda/nG2w3huDOkMGZgxTXlXwBNlGfMVz/EE93V3tI+CWyB8VlzF0v NIRt4n7PlrovYSgzQ4Y2/5n1Na1INnVSijsj3TRb8hvddw5BV1nkP3xFpMiyzt4q v0hvF2FMxHm4nMnegHQrS77wnHEytGBjhpNT+9B4T1IrfSRxFDhJd8Iccm49gqgy 5HOGKtDQl61grf18WXn8OlmxTceQujQNX8n+UuXUq23NL56Q5DKSGBNUcBUMCvnF cToOsNBYevmKJBBG4gJpC/czwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwA/EyZ dGC0w40MH0mH6Kk5tuDKMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO6VVV+haYQJDR5esPK52a7KbZZYsXrdFWfhe6pEODq4rHmA3Dxc7D olENPIq+JrQNFIyAopBK3JStbYcoL+KBTTlZZO6EGX2EpaDThHG2cWo60W6o191v dzdyX89ATnvMLEAzQ9ZhKgrfN9soKKqZQrsnC4wBCf1ROE+OLCOvF4E+nqNVCL8d uM8UZZHF5w+lFssNRU+hX5Qr/xMQKKAB0msFMJ36D/hrnNxiZbG7tYM3MEj5N0Jn iRS1WtWOpyAYZSXeyKKJlkinXZLLpNGh/59iOOoQT4YMV0NBZv/lRu4UkxsSJLEQ 8i5Wg8uF98Gb5gXLnWqrDpQdK837zMTj -----END CERTIFICATE-----Generated at Sat Jul 26 02:06:10 2025 by rpki-client