$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: UF28Wp1aWQRo+hGlI8hKrb9Y2jZWoWu4mZtrX8uNI8A= Subject key identifier: 0B:82:D8:38:2E:22:BA:F0:89:F9:E0:3A:C2:44:5E:B7:CD:93:B6:DC Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: 50 Signing time: Sat 19 Jul 2025 07:30:08 +0000 Manifest this update: Sat 19 Jul 2025 07:30:08 +0000 Manifest next update: Sat 26 Jul 2025 07:30:08 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: g4jQX0bveyL/1n2jS8+FZECVSG6wswOtZlksNMhHPKA=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: MTqILFa0C+24gi6qk+nzk7lo5NR6f5WiYqHQ/SbCX2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Jul 19 07:30:08 2025 GMT Not After : Jul 26 07:30:08 2025 GMT Subject: CN=687b4980-2066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e9:a4:ef:59:03:da:fb:0a:bb:6e:37:ad:31: f8:a0:83:10:61:68:93:8d:68:87:1a:b8:5a:4f:04: 13:4a:3f:7d:9d:42:7f:62:82:70:61:73:d9:59:3b: 19:0b:4d:dc:8b:3b:a3:da:ae:66:0c:73:5a:33:f8: 13:b0:a7:9f:19:7d:25:34:f3:24:19:11:23:ca:3c: ee:85:c0:18:1d:41:6e:3b:f8:f9:02:12:69:d6:15: 13:76:f1:4a:1e:23:0f:f6:ad:07:5f:61:00:34:d9: 6a:e1:d3:2b:c1:d9:c1:a8:7b:35:31:ec:1a:b6:35: cb:47:59:aa:10:40:7a:8c:e4:86:c0:90:1f:8a:da: b7:3a:fd:36:76:68:96:cc:64:a5:67:56:8f:23:ca: 6b:a5:dc:2d:c6:4b:92:84:e9:12:af:27:6a:3c:1b: b8:f4:59:19:f0:39:03:61:20:91:2b:a0:18:72:d2: 73:0a:c5:ef:05:d5:d4:a4:36:21:57:49:a1:71:f4: 68:6a:35:b2:29:6c:c6:15:c8:99:e2:52:23:c6:38: c1:6a:df:9a:3b:2e:e2:79:14:41:09:3b:65:ae:d0: 68:ea:81:e0:60:d7:78:59:08:fa:77:04:6c:c6:c8: fc:9d:cd:4a:b1:5b:26:b9:cd:27:d6:7e:9b:99:89: 92:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:82:D8:38:2E:22:BA:F0:89:F9:E0:3A:C2:44:5E:B7:CD:93:B6:DC X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:e3:96:1d:01:19:a3:93:1c:85:fe:ee:fb:84:12:8e:47:85: 11:0a:b4:6a:1e:26:b8:f1:d3:31:de:d8:6d:6f:79:b5:2e:1c: 86:fb:16:c0:ab:29:55:31:82:5f:20:46:cb:14:0e:93:ff:fc: 43:cd:eb:d3:cb:6f:32:a2:3c:95:d3:aa:6d:a6:e8:82:22:ad: ce:e6:72:2f:34:3a:a8:70:a8:56:76:59:6a:df:f2:5d:21:26: 2a:a0:07:bf:85:8b:d0:0f:5f:63:22:e6:71:fe:18:53:40:23: 2d:4c:b6:ed:01:70:ee:33:4a:b3:bc:60:c2:9d:75:ce:1e:41: f3:1e:a8:2c:77:9b:6f:3e:c3:a9:4d:72:5b:7c:7d:a1:c3:16: 2e:87:ce:d4:d1:f9:ee:f1:df:02:15:f7:8b:2a:f1:1b:2b:26: 1e:97:f3:bf:20:d7:04:94:1d:9e:25:a7:08:b7:18:ad:16:58: 57:58:93:8e:e2:ef:cb:ba:bf:b7:b0:ed:72:ef:cd:9e:39:2c: 41:68:eb:3c:2d:ec:99:a1:a6:7c:88:67:98:b7:1b:ec:38:34: c9:a9:21:1c:f4:c0:c9:c2:74:7e:97:36:42:97:9e:52:3a:b2: c5:f4:d3:99:49:15:d7:20:e5:23:25:ed:db:0a:77:3e:88:9c: 11:9f:e3:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RUYzQjExMC8GA1UEBRMoQTM4RDQ4N0JENUQ5QThBODk0ODAyNzRGRTZGN0MwNjFD NjI0QkNDMDAeFw0yNTA3MTkwNzMwMDhaFw0yNTA3MjYwNzMwMDhaMBgxFjAUBgNV BAMTDTY4N2I0OTgwLTIwNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+6aTvWQPa+wq7bjetMfiggxBhaJONaIcauFpPBBNKP32dQn9ignBhc9lZOxkL TdyLO6ParmYMc1oz+BOwp58ZfSU08yQZESPKPO6FwBgdQW47+PkCEmnWFRN28Uoe Iw/2rQdfYQA02Wrh0yvB2cGoezUx7Bq2NctHWaoQQHqM5IbAkB+K2rc6/TZ2aJbM ZKVnVo8jymul3C3GS5KE6RKvJ2o8G7j0WRnwOQNhIJEroBhy0nMKxe8F1dSkNiFX SaFx9GhqNbIpbMYVyJniUiPGOMFq35o7LuJ5FEEJO2Wu0GjqgeBg13hZCPp3BGzG yPydzUqxWya5zSfWfpuZiZL/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC4LYOC4i uvCJ+eA6wkRet82TttwwHwYDVR0jBBgwFoAUo41Ie9XZqKiUgCdP5vfAYcYkvMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFRjNCL0FDNzYyMjAwRTlD NjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzQxSWU5WFpxS2lVZ0NkUDV2ZkFZY1lrdk1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZF RjNCL0FDNzYyMjAwRTlDNjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtp VWdDZFA1dmZBWWNZa3ZNQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAbjlh0BGaOTHIX+7vuEEo5HhREKtGoeJrjx0zHe2G1vebUuHIb7FsCr KVUxgl8gRssUDpP//EPN69PLbzKiPJXTqm2m6IIirc7mci80OqhwqFZ2WWrf8l0h JiqgB7+Fi9APX2Mi5nH+GFNAIy1Mtu0BcO4zSrO8YMKddc4eQfMeqCx3m28+w6lN clt8faHDFi6HztTR+e7x3wIV94sq8RsrJh6X878g1wSUHZ4lpwi3GK0WWFdYk47i 78u6v7ew7XLvzZ45LEFo6zwt7JmhpnyIZ5i3G+w4NMmpIRz0wMnCdH6XNkKXnlI6 ssX005lJFdcg5SMl7dsKdz6InBGf42E= -----END CERTIFICATE-----Generated at Mon Jul 21 07:11:00 2025 by rpki-client