$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft File: v49Do1Dk9qJgvwPtS9_BqB2itaE.mft (raw, json) Hash identifier: DKB2GTwolkKy6dMSa+ZQAgIK2K8XMZXHc+rbLar6gtI= Subject key identifier: F7:10:42:7A:2F:C0:63:F7:62:0D:02:D7:83:EB:78:BD:05:2B:7B:29 Authority key identifier: BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1 Certificate issuer: /CN=A91FAB62/serialNumber=BF8F43A350E4F6A260BF03ED4BDFC1A81DA2B5A1 Certificate serial: 068E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft Manifest number: 066F Signing time: Fri 18 Jul 2025 22:58:04 +0000 Manifest this update: Fri 18 Jul 2025 22:58:03 +0000 Manifest next update: Fri 25 Jul 2025 22:58:03 +0000 Files and hashes: 1: v49Do1Dk9qJgvwPtS9_BqB2itaE.crl (hash: qFv8/5Arg51KLfyvsdZJSE95x676c8puDSzO0p2IGVw=) 2: 606DB4B298D111EB84F5A23CC4F9AE02.roa (hash: d5GPHUQ6PbzbALE1pusneP0He2eAPmJTteAnoAOf/Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.crl rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:58:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAB62, serialNumber=BF8F43A350E4F6A260BF03ED4BDFC1A81DA2B5A1 Validity Not Before: Jul 18 22:58:03 2025 GMT Not After : Jul 25 22:58:03 2025 GMT Subject: CN=687ad17b-84c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:aa:ad:e2:27:e5:d4:97:a7:f6:ea:85:db: f8:d7:63:ca:f6:54:52:b5:0c:45:78:10:6c:bb:bd: 25:a5:34:eb:74:22:ef:17:65:a0:83:79:ee:13:91: 8c:58:d3:1a:bb:ea:f4:5d:03:66:2e:3b:82:ab:e4: 98:5c:f0:07:36:dd:52:b6:05:9c:8a:f1:cd:a2:f6: 9a:5c:59:c0:da:85:58:9a:17:1b:47:21:fb:b3:84: b3:78:a2:35:ff:3e:ed:ea:8a:c7:d2:ea:96:2f:40: a3:2a:93:e0:d8:72:e2:96:85:3d:b4:8e:72:ac:12: a8:15:ef:ee:14:30:c3:a6:4e:5b:64:ee:02:82:71: e0:df:31:b6:a1:1e:91:ea:fe:63:f8:d4:7e:00:a8: 16:9a:eb:56:ea:de:28:f8:73:07:49:3b:fa:d0:f6: 06:09:2b:ae:99:7c:cf:15:94:03:fe:9f:24:d6:15: 17:32:c8:ff:25:6d:86:5e:da:10:0b:d0:fe:75:14: 19:a0:c5:90:c4:e1:76:bf:3f:b9:ae:40:e6:ee:9c: 00:85:2c:06:35:0a:dc:b6:17:34:3f:54:04:e5:b6: d5:67:18:fc:2e:54:ef:9a:14:29:52:6e:99:b1:c5: 65:81:5f:ad:94:29:c0:3d:d6:52:04:e7:f5:60:83: ec:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:10:42:7A:2F:C0:63:F7:62:0D:02:D7:83:EB:78:BD:05:2B:7B:29 X509v3 Authority Key Identifier: keyid:BF:8F:43:A3:50:E4:F6:A2:60:BF:03:ED:4B:DF:C1:A8:1D:A2:B5:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v49Do1Dk9qJgvwPtS9_BqB2itaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAB62/82E93F2C98CF11EBB7572A3AC4F9AE02/v49Do1Dk9qJgvwPtS9_BqB2itaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:72:34:91:36:8b:73:df:e2:80:8f:b9:d7:ca:32:9e:ec:5b: 41:7f:51:68:d7:22:26:55:af:d6:ef:c4:ec:55:cd:a4:33:84: d9:0d:48:38:54:22:84:4d:fd:82:4f:a9:81:c1:7b:dd:38:0c: 60:8c:cf:00:35:eb:d1:5d:5a:cd:21:f7:72:38:00:be:0f:e6: 89:25:83:da:86:45:3b:f6:30:9e:f8:7c:66:8f:90:97:a5:57: 1c:a6:d2:84:07:00:93:b0:b7:c7:44:6e:42:b8:4a:7f:27:4f: 33:61:be:c1:00:89:c2:c9:e4:0f:89:da:61:e5:38:0f:0e:e5: 94:27:31:75:8a:7d:95:25:05:3e:97:50:54:c1:49:b8:f8:94: 5f:54:1d:2f:38:d0:62:b9:43:40:9a:93:63:c8:c3:80:34:70: f1:69:75:2c:ef:b6:f6:f8:da:e7:4e:a6:43:cc:b4:b9:17:e9: 55:f2:43:11:8a:ef:13:71:58:6a:8d:38:f2:1e:2f:d9:7f:70: 59:7b:80:d0:6c:ab:8c:11:c1:c4:52:f2:4b:b5:75:65:bb:2d: f4:56:5d:e8:01:7b:90:5e:52:ce:b1:ca:ce:cb:f6:2d:98:3e: 5b:f2:7c:c3:d8:af:eb:91:fc:d2:87:8f:0d:4b:0f:7f:3a:67: 39:fc:73:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCNjIxMTAvBgNVBAUTKEJGOEY0M0EzNTBFNEY2QTI2MEJGMDNFRDRCREZDMUE4 MURBMkI1QTEwHhcNMjUwNzE4MjI1ODAzWhcNMjUwNzI1MjI1ODAzWjAYMRYwFAYD VQQDEw02ODdhZDE3Yi04NGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sWqreIn5dSXp/bqhdv412PK9lRStQxFeBBsu70lpTTrdCLvF2Wgg3nuE5GM WNMau+r0XQNmLjuCq+SYXPAHNt1StgWcivHNovaaXFnA2oVYmhcbRyH7s4SzeKI1 /z7t6orH0uqWL0CjKpPg2HLiloU9tI5yrBKoFe/uFDDDpk5bZO4CgnHg3zG2oR6R 6v5j+NR+AKgWmutW6t4o+HMHSTv60PYGCSuumXzPFZQD/p8k1hUXMsj/JW2GXtoQ C9D+dRQZoMWQxOF2vz+5rkDm7pwAhSwGNQrcthc0P1QE5bbVZxj8LlTvmhQpUm6Z scVlgV+tlCnAPdZSBOf1YIPsAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcQQnov wGP3Yg0C14PreL0FK3spMB8GA1UdIwQYMBaAFL+PQ6NQ5PaiYL8D7UvfwagdorWh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUI2Mi84MkU5M0YyQzk4 Q0YxMUVCQjc1NzJBM0FDNEY5QUUwMi92NDlEbzFEazlxSmd2d1B0UzlfQnFCMml0 YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y0OURvMURrOXFKZ3Z3UHRTOV9CcUIyaXRhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUI2Mi84MkU5M0YyQzk4Q0YxMUVCQjc1NzJBM0FDNEY5QUUwMi92NDlEbzFEazlx Smd2d1B0UzlfQnFCMml0YUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2cjSRNotz3+KAj7nXyjKe7FtBf1Fo1yImVa/W78TsVc2kM4TZDUg4 VCKETf2CT6mBwXvdOAxgjM8ANevRXVrNIfdyOAC+D+aJJYPahkU79jCe+Hxmj5CX pVccptKEBwCTsLfHRG5CuEp/J08zYb7BAInCyeQPidph5TgPDuWUJzF1in2VJQU+ l1BUwUm4+JRfVB0vONBiuUNAmpNjyMOANHDxaXUs77b2+NrnTqZDzLS5F+lV8kMR iu8TcVhqjTjyHi/Zf3BZe4DQbKuMEcHEUvJLtXVluy30Vl3oAXuQXlLOscrOy/Yt mD5b8nzD2K/rkfzSh48NSw9/Omc5/HMl -----END CERTIFICATE-----Generated at Sun Jul 20 04:17:12 2025 by rpki-client