$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: b6bjJmT7bk089Cw+Zreo3JQ3xImFwtshI0SjGEpt2gc= Subject key identifier: 35:50:E3:EB:F7:EA:88:2E:14:9B:61:CD:8F:E8:56:33:8D:15:89:69 Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 022D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 0223 Signing time: Mon 21 Jul 2025 02:15:08 +0000 Manifest this update: Mon 21 Jul 2025 02:15:07 +0000 Manifest next update: Mon 28 Jul 2025 02:15:07 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: kpEuk+4WS7NQdOAAUcNLS1TZmH3p9iISXy1/HIQDV64=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: NR8OS1L1YDEOVGgB6cb2fttAqoXgsKVRMpQfg5GvzjQ=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: U57sQE5yclVx7OH+nAtAbjTBaki6Yvzg4fauYYq6XuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Jul 21 02:15:07 2025 GMT Not After : Jul 28 02:15:07 2025 GMT Subject: CN=687da2ac-4364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ee:c4:c3:d8:51:3a:7c:12:d7:06:41:d6:fc: 4a:da:32:65:46:bd:fa:52:7f:41:d4:ef:33:38:3a: a9:6e:31:cb:6c:ce:72:83:67:0b:62:7e:e0:b7:21: f9:50:ae:94:6f:9d:50:8c:54:bc:24:98:b4:4c:5e: 7c:5a:94:d3:75:5e:1f:fb:34:bb:7a:e8:58:dc:ec: 22:51:d0:fb:99:c7:03:56:ed:81:72:36:ba:3f:db: d7:41:f5:70:4f:46:4c:ee:1c:73:26:9d:56:c0:00: ba:30:ac:f1:c0:93:3b:06:3a:1d:86:55:cb:8a:79: 06:38:24:ad:5f:fc:e6:26:4d:27:0a:67:09:06:e1: ce:9f:cd:61:00:5b:ae:ca:34:0f:ed:1f:11:0d:48: 79:9f:99:9a:45:31:37:ce:f2:fb:bc:7c:97:cd:c0: 65:1f:08:f0:85:4a:3c:de:52:4c:34:43:d4:33:08: 4f:3a:71:03:c5:83:ad:c1:61:0c:74:fa:19:96:7a: 84:83:ad:30:2b:ba:1d:cf:21:a7:6c:26:85:47:71: ad:67:44:20:ec:ba:9f:18:46:ae:3a:3b:11:1a:12: e8:80:2a:9b:b4:3d:4e:b6:63:48:9d:17:00:e8:02: 84:1b:96:b3:1c:18:8e:26:03:64:5b:ba:ec:b1:1c: 14:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:50:E3:EB:F7:EA:88:2E:14:9B:61:CD:8F:E8:56:33:8D:15:89:69 X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:94:23:09:31:f9:08:80:55:6a:8a:98:c7:35:0f:1a:e6:51: b5:a6:aa:f7:1f:bd:0b:8d:37:5b:0a:24:ed:64:45:43:a8:18: 0a:62:93:bc:53:c6:af:03:1e:ac:0f:fb:86:5e:ae:59:be:3c: 54:a9:83:e8:95:a6:5a:96:9b:4b:f8:6e:a2:8f:30:db:b6:f4: f0:17:4b:b7:ec:09:5d:6d:1e:44:8a:d9:54:d2:25:27:89:df: 0a:4c:5a:76:ce:25:14:e9:c1:ed:57:4d:16:e4:32:3f:c4:76: 06:a8:2c:8a:54:1e:41:f0:e7:13:d6:f0:73:4a:13:16:9d:e2: e3:de:d6:c2:d9:48:1e:80:75:28:50:21:67:17:13:01:db:da: 6a:0c:31:df:72:24:15:7c:f4:45:9f:1b:f7:d6:b4:eb:76:50: 8f:fe:e0:f5:81:1e:2f:64:cb:49:d3:db:eb:b2:25:29:2c:77: 56:5c:bd:8d:78:0e:82:4e:57:5d:0c:78:b3:07:cd:98:9e:74: 3f:01:b8:32:48:9d:5a:07:ad:6c:01:c1:ce:36:76:3d:27:af: 75:68:30:cb:06:fe:d8:13:e2:e0:65:45:cc:08:b3:25:dc:5c: 64:01:e9:32:ee:53:60:23:23:d2:b9:dd:d3:54:62:ac:5a:8c: c7:58:3e:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUwNzIxMDIxNTA3WhcNMjUwNzI4MDIxNTA3WjAYMRYwFAYD VQQDEw02ODdkYTJhYy00MzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzO7Ew9hROnwS1wZB1vxK2jJlRr36Un9B1O8zODqpbjHLbM5yg2cLYn7gtyH5 UK6Ub51QjFS8JJi0TF58WpTTdV4f+zS7euhY3OwiUdD7mccDVu2Bcja6P9vXQfVw T0ZM7hxzJp1WwAC6MKzxwJM7BjodhlXLinkGOCStX/zmJk0nCmcJBuHOn81hAFuu yjQP7R8RDUh5n5maRTE3zvL7vHyXzcBlHwjwhUo83lJMNEPUMwhPOnEDxYOtwWEM dPoZlnqEg60wK7odzyGnbCaFR3GtZ0Qg7LqfGEauOjsRGhLogCqbtD1OtmNInRcA 6AKEG5azHBiOJgNkW7rssRwUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVQ4+v3 6oguFJthzY/oVjONFYlpMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1lCMJMfkIgFVqipjHNQ8a5lG1pqr3H70LjTdbCiTtZEVDqBgKYpO8 U8avAx6sD/uGXq5ZvjxUqYPolaZalptL+G6ijzDbtvTwF0u37AldbR5EitlU0iUn id8KTFp2ziUU6cHtV00W5DI/xHYGqCyKVB5B8OcT1vBzShMWneLj3tbC2UgegHUo UCFnFxMB29pqDDHfciQVfPRFnxv31rTrdlCP/uD1gR4vZMtJ09vrsiUpLHdWXL2N eA6CTlddDHizB82YnnQ/AbgySJ1aB61sAcHONnY9J691aDDLBv7YE+LgZUXMCLMl 3FxkAeky7lNgIyPSud3TVGKsWozHWD53 -----END CERTIFICATE-----Generated at Mon Jul 21 07:30:15 2025 by rpki-client