$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: QB0kh8DfpCTiRtbb3Qt+3KPW6PUoh2WEPNUGX4vk180= Subject key identifier: 76:F1:AC:AB:55:C9:E0:5D:21:17:2F:D8:A7:23:16:F1:8C:C2:2E:15 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05EF Signing time: Fri 18 Jul 2025 23:15:16 +0000 Manifest this update: Fri 18 Jul 2025 23:15:15 +0000 Manifest next update: Fri 25 Jul 2025 23:15:15 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: TI8vHvqOTdt7fPwilNSNGYniFuZlKnBDQxsPxLnWzcE=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Jul 18 23:15:15 2025 GMT Not After : Jul 25 23:15:15 2025 GMT Subject: CN=687ad583-8f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b1:43:af:88:1f:09:55:91:67:67:e5:50:62: 5c:ac:35:ef:45:e6:59:11:df:af:60:50:a6:df:9f: 3f:bd:fd:48:55:e5:47:19:63:52:8a:17:70:d4:a4: a7:61:dc:1b:d6:c9:9a:b1:33:e6:0a:96:2f:7d:a0: 59:c2:d3:1a:47:73:15:be:27:2e:99:1f:1f:a8:9c: 1d:1d:85:d0:ff:e9:82:6f:35:55:55:66:2f:88:45: ec:21:5c:3d:d0:83:15:3b:ef:c0:b8:cc:00:e6:a4: 4f:29:73:19:f8:7e:e5:6b:a7:53:e6:6f:e8:c8:19: f1:da:d5:e0:59:71:9a:c3:00:26:52:e0:ea:30:40: b1:3f:a4:09:48:74:37:ea:b8:63:e8:d7:5e:ba:a8: 19:29:30:79:48:61:de:a9:a9:b1:74:e3:4e:86:36: 06:42:a2:9d:41:1d:51:0b:95:55:bf:61:0b:18:30: 56:48:a9:90:d3:7c:d9:d1:2c:72:f7:16:3d:ff:a1: 5f:b5:42:84:2f:1f:fe:cc:8b:ef:24:1d:3f:7c:98: ae:6d:0e:bc:ee:a9:bc:ee:a0:e5:17:6c:1c:af:77: b9:5b:de:0a:95:2f:cc:0c:b2:e1:1b:e6:0b:40:ef: ce:5f:3b:75:92:68:ed:bd:72:f1:2e:84:39:bb:31: 5f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F1:AC:AB:55:C9:E0:5D:21:17:2F:D8:A7:23:16:F1:8C:C2:2E:15 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:9b:97:45:b7:2c:05:b9:fe:61:98:c9:72:ed:84:77:50:29: df:52:c3:af:ee:5e:0d:32:41:5f:c8:ce:9f:45:a7:32:14:58: e2:ce:72:3c:71:2c:91:9c:b7:ee:20:92:49:e9:98:62:92:76: 2e:ce:a1:75:e1:24:87:bd:d5:3e:d0:7f:cd:3c:90:93:48:79: 3b:4b:f0:c4:4f:9e:7e:84:7a:61:da:cc:02:e5:e2:00:7d:43: ea:d3:2f:71:c0:ea:5c:ce:8d:5a:87:f1:44:c6:74:a1:10:56: c6:7c:7d:db:80:ec:ee:d6:a7:8b:71:c3:d1:9d:2d:c7:5c:27: 35:5c:2f:1e:b5:9f:ef:86:d5:ab:1c:9f:23:18:96:f1:fa:da: 5d:f3:24:43:49:7f:39:9c:27:a8:2a:23:10:1c:63:da:08:64: d3:60:87:ac:c6:f4:aa:30:1c:84:5a:01:20:bf:4c:d6:c9:e7: c3:1d:ba:f0:5a:f1:db:8c:41:d1:14:79:3a:07:2a:29:50:46: 3c:c6:d8:d4:11:62:3f:e8:ca:75:64:18:2e:75:11:31:52:f2: a7:3f:17:4b:d1:8b:6f:e3:48:54:f5:f8:01:11:14:e9:73:d2: 4a:78:95:2a:76:f3:8f:d0:82:27:88:34:42:99:80:b6:10:45: 40:65:eb:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwNzE4MjMxNTE1WhcNMjUwNzI1MjMxNTE1WjAYMRYwFAYD VQQDEw02ODdhZDU4My04ZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbFDr4gfCVWRZ2flUGJcrDXvReZZEd+vYFCm358/vf1IVeVHGWNSihdw1KSn Ydwb1smasTPmCpYvfaBZwtMaR3MVvicumR8fqJwdHYXQ/+mCbzVVVWYviEXsIVw9 0IMVO+/AuMwA5qRPKXMZ+H7la6dT5m/oyBnx2tXgWXGawwAmUuDqMECxP6QJSHQ3 6rhj6NdeuqgZKTB5SGHeqamxdONOhjYGQqKdQR1RC5VVv2ELGDBWSKmQ03zZ0Sxy 9xY9/6FftUKELx/+zIvvJB0/fJiubQ687qm87qDlF2wcr3e5W94KlS/MDLLhG+YL QO/OXzt1kmjtvXLxLoQ5uzFfBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbxrKtV yeBdIRcv2KcjFvGMwi4VMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARm5dFtywFuf5hmMly7YR3UCnfUsOv7l4NMkFfyM6fRacyFFjiznI8 cSyRnLfuIJJJ6ZhiknYuzqF14SSHvdU+0H/NPJCTSHk7S/DET55+hHph2swC5eIA fUPq0y9xwOpczo1ah/FExnShEFbGfH3bgOzu1qeLccPRnS3HXCc1XC8etZ/vhtWr HJ8jGJbx+tpd8yRDSX85nCeoKiMQHGPaCGTTYIesxvSqMByEWgEgv0zWyefDHbrw WvHbjEHRFHk6ByopUEY8xtjUEWI/6Mp1ZBgudRExUvKnPxdL0Ytv40hU9fgBERTp c9JKeJUqdvOP0IIniDRCmYC2EEVAZesd -----END CERTIFICATE-----Generated at Sun Jul 20 06:47:43 2025 by rpki-client