$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: J3yyWFxdm5bC1m5kaYW+XGwC/ZvOOqmQk9YjTJcTIx4= Subject key identifier: 16:FE:08:18:C6:59:A4:D0:C2:C3:DA:B8:D7:10:7B:05:85:1C:D1:3B Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 1567 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 1555 Signing time: Tue 22 Jul 2025 16:55:47 +0000 Manifest this update: Tue 22 Jul 2025 16:55:46 +0000 Manifest next update: Tue 29 Jul 2025 16:55:46 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: o8c2uwVZ91M0xM5qRiW0e0XxiPV7TfXrC75JDivWR/I=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 16:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5479 (0x1567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Jul 22 16:55:46 2025 GMT Not After : Jul 29 16:55:46 2025 GMT Subject: CN=687fc292-0292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:82:c2:2e:01:27:12:b7:cb:c6:a3:eb:8e:9f: 60:cc:7c:94:56:31:18:fe:dc:6c:16:4d:2b:36:55: 25:4f:b5:a4:08:a1:fc:c3:03:5e:29:8d:b7:74:ae: 4f:51:74:2b:10:ee:87:2e:be:f1:09:ac:38:a4:2e: b2:fd:55:6c:f5:92:4b:0b:05:68:bb:05:71:22:26: 74:b2:68:45:87:01:1d:33:10:a8:db:63:38:d2:b5: 91:37:0d:d3:2a:13:d9:48:92:65:c8:0c:fa:0e:1b: 27:1e:fb:6f:13:46:08:51:62:58:56:70:c9:40:6c: 48:02:d3:da:e2:21:f2:f7:0d:10:a0:78:4b:cc:00: f7:99:7e:5a:77:16:9e:ba:a3:4c:55:e3:a3:90:7d: b3:9d:3b:17:5c:f6:06:72:e8:23:48:03:b0:ae:71: b4:c0:b8:49:11:5f:52:ff:4e:0b:e8:a1:9d:fc:17: fd:3f:80:09:9e:46:71:1b:c3:a7:a4:08:d1:85:00: 74:b5:d8:10:98:65:3a:e5:e6:06:f7:85:bf:4d:37: 97:6c:45:61:57:67:9c:d6:96:36:bf:a5:c9:62:4a: d0:cc:7f:90:59:39:89:43:54:c2:b7:e0:13:07:4b: af:f7:0e:cc:bf:2e:ed:29:92:c1:60:1e:ab:84:c4: dc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FE:08:18:C6:59:A4:D0:C2:C3:DA:B8:D7:10:7B:05:85:1C:D1:3B X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:e0:28:aa:54:a6:77:de:0c:bf:b2:73:99:15:67:c1:ca:ef: c8:07:ff:ef:14:c9:1d:a6:97:ac:a9:32:ce:c2:a7:a4:31:be: 31:4f:b2:6c:fa:56:88:9b:71:3a:f0:e2:ff:ec:27:aa:eb:20: 9c:c2:27:ef:19:aa:6e:1e:e0:e1:31:f9:cc:04:a6:a8:52:d2: 95:1d:f8:55:eb:db:a6:41:d1:5a:38:fe:ee:8a:42:a7:23:b0: e4:a1:7e:d8:86:85:94:4d:cf:6f:86:1c:63:5a:6a:43:28:d6: 05:20:be:36:84:11:7b:f3:9a:9f:f2:08:34:75:b2:6f:77:ba: f5:a0:70:d9:64:70:22:e4:29:ab:12:4f:19:7a:e9:08:06:59: 63:1e:28:8d:d9:66:1a:20:f7:3d:1d:94:65:30:5f:19:7a:09: 16:d0:a1:2a:69:98:fb:eb:e4:c2:b1:51:79:18:fb:92:2c:e4: 3e:66:66:4a:a6:ac:5d:66:8f:4c:fd:23:1e:31:77:d9:24:cc: b4:94:4e:02:b5:bc:6b:98:ad:7c:1a:14:3c:e4:77:a2:89:ed: 02:56:ae:7c:51:a9:ad:21:9d:92:2e:ad:5d:15:29:1c:86:df: be:d7:39:21:0c:5c:76:76:cc:bc:b2:01:bb:3b:b6:ef:2b:af: a7:41:64:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUwNzIyMTY1NTQ2WhcNMjUwNzI5MTY1NTQ2WjAYMRYwFAYD VQQDEw02ODdmYzI5Mi0wMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YLCLgEnErfLxqPrjp9gzHyUVjEY/txsFk0rNlUlT7WkCKH8wwNeKY23dK5P UXQrEO6HLr7xCaw4pC6y/VVs9ZJLCwVouwVxIiZ0smhFhwEdMxCo22M40rWRNw3T KhPZSJJlyAz6DhsnHvtvE0YIUWJYVnDJQGxIAtPa4iHy9w0QoHhLzAD3mX5adxae uqNMVeOjkH2znTsXXPYGcugjSAOwrnG0wLhJEV9S/04L6KGd/Bf9P4AJnkZxG8On pAjRhQB0tdgQmGU65eYG94W/TTeXbEVhV2ec1pY2v6XJYkrQzH+QWTmJQ1TCt+AT B0uv9w7Mvy7tKZLBYB6rhMTcQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBb+CBjG WaTQwsPauNcQewWFHNE7MB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq4CiqVKZ33gy/snOZFWfByu/IB//vFMkdppesqTLOwqekMb4xT7Js +laIm3E68OL/7Ceq6yCcwifvGapuHuDhMfnMBKaoUtKVHfhV69umQdFaOP7uikKn I7DkoX7YhoWUTc9vhhxjWmpDKNYFIL42hBF785qf8gg0dbJvd7r1oHDZZHAi5Cmr Ek8ZeukIBlljHiiN2WYaIPc9HZRlMF8ZegkW0KEqaZj76+TCsVF5GPuSLOQ+ZmZK pqxdZo9M/SMeMXfZJMy0lE4CtbxrmK18GhQ85Heiie0CVq58UamtIZ2SLq1dFSkc ht++1zkhDFx2dsy8sgG7O7bvK6+nQWS/ -----END CERTIFICATE-----Generated at Wed Jul 23 02:11:04 2025 by rpki-client