$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: BSqnwY1eT8FTxJ6+X4YvQSeNHJ+C2z53vGBkFMw7HUo= Subject key identifier: FA:74:E3:90:C2:A2:79:C1:89:6A:42:1E:79:C5:18:1F:DC:94:02:A4 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1BF8 Signing time: Sat 26 Jul 2025 16:15:25 +0000 Manifest this update: Sat 26 Jul 2025 16:15:25 +0000 Manifest next update: Sat 02 Aug 2025 16:15:25 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: N0JAEupSOmh9V1r1Ss3nL+TuviP1P3ib1Ml6S2ZaHtY=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 Aug 2025 16:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7177 (0x1c09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Jul 26 16:15:25 2025 GMT Not After : Aug 2 16:15:25 2025 GMT Subject: CN=6884ff1d-4484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:47:b3:72:0d:c6:ec:2b:0d:a9:f3:ba:cf:95: 8d:59:f4:a1:fb:69:22:45:1f:d0:32:76:a2:9a:c8: 26:a8:cc:b8:00:c3:5b:4f:72:d8:6f:8a:16:d9:f8: d4:77:ce:be:8e:f6:e7:f5:7c:4b:6e:d8:84:d9:1f: 91:88:76:f6:48:d5:bb:ca:50:43:73:48:bd:bd:34: 78:66:7e:21:bb:48:0f:43:a5:9e:71:15:c1:be:6a: ea:c7:33:4a:aa:e9:e8:e0:07:ae:9b:08:47:c6:99: c5:a2:2b:32:15:61:24:1a:78:85:c7:da:d5:0f:a5: bb:87:c2:fb:bb:cd:e0:1c:37:c3:56:ad:4c:df:b4: 16:0b:0d:f7:ab:fb:8b:8f:25:65:0a:4e:92:23:9a: a3:d3:86:22:63:8d:81:b8:15:9f:7e:9a:e9:04:c7: 5c:06:3d:72:6a:78:9f:cd:d8:f7:09:8b:64:90:0b: 43:8d:cd:6e:f7:5d:fc:98:cc:db:2f:a5:a4:23:29: 5e:77:4c:1f:be:86:ab:82:89:e1:02:fe:0b:56:3c: 8a:15:d1:6e:9c:9a:09:7f:a2:90:b8:65:9f:26:71: 72:b3:b1:8d:78:2e:c3:32:22:fc:a8:d2:a0:de:8f: ba:6c:67:26:73:9a:63:86:7d:16:be:64:da:6f:b9: 13:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:74:E3:90:C2:A2:79:C1:89:6A:42:1E:79:C5:18:1F:DC:94:02:A4 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4e:b2:f1:f6:be:07:d3:91:53:dd:0f:da:49:e3:02:2e:fa: 94:b5:66:38:0d:87:6c:e9:c5:7d:e4:14:1a:68:ce:b3:c3:e3: 85:04:fd:2c:ac:84:db:ac:05:ef:28:0d:7d:e9:b8:13:b2:de: 3f:ad:4d:3e:f9:80:f3:3c:58:e0:b6:5a:e9:06:a1:ab:40:c3: ff:c5:e0:eb:f2:a2:a7:43:a5:9d:8c:26:20:55:7c:a3:e2:03: 70:c5:f0:49:1f:d5:49:fc:f3:80:ca:bb:9a:7e:94:29:f1:d7: 12:05:83:0b:4c:3f:13:85:37:13:b4:54:98:a2:70:86:e9:74: b0:61:97:43:09:a9:cf:7f:83:19:c4:a4:88:16:1e:e3:e6:ed: 6a:f4:0d:74:40:28:fc:9e:3d:63:e1:c7:f9:a6:8e:37:0f:16: 63:7f:20:0d:9e:29:ba:10:51:25:1f:94:a0:e7:d6:83:fc:af: 03:8b:58:3e:9b:1c:54:15:55:6b:00:5a:9f:dd:3d:e1:7d:dd: 05:4d:56:c4:6d:db:8e:ef:5e:09:fc:1d:43:73:9b:b7:f3:15: b9:70:44:01:f6:cc:85:65:ff:9d:ce:ac:df:eb:96:0c:69:27: 88:5a:92:df:5d:fe:d6:95:97:66:f5:27:6b:08:a0:2d:83:7f: da:0a:2f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwNzI2MTYxNTI1WhcNMjUwODAyMTYxNTI1WjAYMRYwFAYD VQQDEw02ODg0ZmYxZC00NDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnUezcg3G7CsNqfO6z5WNWfSh+2kiRR/QMnaimsgmqMy4AMNbT3LYb4oW2fjU d86+jvbn9XxLbtiE2R+RiHb2SNW7ylBDc0i9vTR4Zn4hu0gPQ6WecRXBvmrqxzNK quno4AeumwhHxpnFoisyFWEkGniFx9rVD6W7h8L7u83gHDfDVq1M37QWCw33q/uL jyVlCk6SI5qj04YiY42BuBWffprpBMdcBj1yanifzdj3CYtkkAtDjc1u9138mMzb L6WkIyled0wfvoargonhAv4LVjyKFdFunJoJf6KQuGWfJnFys7GNeC7DMiL8qNKg 3o+6bGcmc5pjhn0WvmTab7kT6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPp045DC onnBiWpCHnnFGB/clAKkMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8TrLx9r4H05FT3Q/aSeMCLvqUtWY4DYds6cV95BQaaM6zw+OFBP0s rITbrAXvKA196bgTst4/rU0++YDzPFjgtlrpBqGrQMP/xeDr8qKnQ6WdjCYgVXyj 4gNwxfBJH9VJ/POAyruafpQp8dcSBYMLTD8ThTcTtFSYonCG6XSwYZdDCanPf4MZ xKSIFh7j5u1q9A10QCj8nj1j4cf5po43DxZjfyANnim6EFElH5Sg59aD/K8Di1g+ mxxUFVVrAFqf3T3hfd0FTVbEbduO714J/B1Dc5u38xW5cEQB9syFZf+dzqzf65YM aSeIWpLfXf7WlZdm9SdrCKAtg3/aCi8P -----END CERTIFICATE-----Generated at Sun Jul 27 10:46:01 2025 by rpki-client