$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft File: 66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json) Hash identifier: yhjRgc0VBKzHA851fGvnAMFrkwpuZT2SUnvlPY5u3ZQ= Subject key identifier: 57:A6:5E:CA:0E:FD:A8:3E:94:74:DE:D5:5F:67:C5:68:17:D6:37:5C Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 Certificate issuer: /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft Manifest number: CA Signing time: Sat 19 Jul 2025 05:54:58 +0000 Manifest this update: Sat 19 Jul 2025 05:54:57 +0000 Manifest next update: Sat 26 Jul 2025 05:54:57 +0000 Files and hashes: 1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: n6y08HLk0Of19lpNMHu+7KRbAz+V3DN4qoaMU6xGk+0=) 2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: 6SVIugHlnaJdlkKtpec/q8AF54HgJPVuchm8bN57MAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91504D6, serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Validity Not Before: Jul 19 05:54:57 2025 GMT Not After : Jul 26 05:54:57 2025 GMT Subject: CN=687b3331-0657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:48:c1:d7:01:e3:76:aa:6a:f8:e3:a0:de:75: f1:1a:10:ff:f4:16:a4:3f:bc:8f:e4:8b:de:e8:1d: 5d:4f:c8:7b:d1:61:63:a6:3f:8c:60:a9:a6:42:f8: 8a:23:72:09:ce:7b:16:31:b8:b4:7b:a9:43:1b:db: b6:3c:f9:19:cf:29:20:68:10:67:13:8a:2d:88:8e: f0:19:52:66:bb:72:b4:70:e7:dd:bf:65:a2:99:c1: 97:61:80:c0:4a:83:1f:8d:3f:81:b8:b1:0f:ed:af: c5:79:81:35:9a:2b:79:85:0c:9f:89:8e:be:f3:a8: be:6e:71:36:34:65:79:2c:12:7b:bf:0d:d5:f6:99: fb:12:c6:0c:cc:e6:15:7a:35:05:5b:e2:a4:0a:62: 06:70:fd:74:57:3e:88:5d:8a:d9:15:ab:93:19:30: 7c:d8:54:0a:df:82:40:9f:ba:f0:b6:a4:af:8c:ae: 96:5b:e3:f2:aa:b5:3a:63:7e:c9:c6:1d:99:29:04: 5c:cb:63:49:0a:cb:c5:92:22:08:42:2e:ea:31:73: ea:94:4a:70:35:fc:75:b9:6a:38:71:63:26:d9:67: 92:92:de:74:5a:31:91:15:c2:90:51:2c:4f:b3:33: 27:7a:86:5e:ea:f3:8c:1c:e4:c2:97:55:19:5d:e1: 7c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A6:5E:CA:0E:FD:A8:3E:94:74:DE:D5:5F:67:C5:68:17:D6:37:5C X509v3 Authority Key Identifier: keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f4:96:94:53:d9:b1:01:4a:19:d5:8d:16:3a:82:af:fc:43: 95:75:7f:9b:3d:78:b4:81:3d:c4:24:cd:a6:b5:af:81:5f:97: d1:0e:df:3d:73:bc:78:37:10:39:a5:c8:f3:fb:76:0c:34:43: f1:90:7a:55:ee:6c:ae:4f:35:cd:e0:fa:54:a9:d6:f1:cf:18: c2:d4:04:5f:4c:ff:2b:8a:72:7b:16:46:c0:7c:3d:0c:e6:a5: 79:b4:bf:65:71:f8:64:88:c0:31:76:10:52:3c:e8:fa:0c:9a: 66:03:43:46:1e:57:0c:ef:bb:89:57:4c:86:35:18:47:62:49: 93:4b:29:58:e8:f1:11:1f:87:85:01:47:8e:6b:79:8b:3b:13: 63:80:3e:ee:0f:ed:ce:6d:60:61:8c:fd:d3:1d:59:a0:6c:a8: 90:78:2d:74:10:66:5f:ca:b5:62:31:3f:7c:ff:5a:19:be:74: e3:6d:bc:4e:b1:82:7c:98:3e:45:43:ca:48:7a:dd:98:08:97: af:08:e6:17:a6:e5:56:1f:ad:4d:64:ca:d6:52:79:79:e4:6c: 0b:08:6c:1d:30:04:40:36:45:63:81:fa:28:63:ab:8b:f2:7b: e0:37:bc:15:36:da:e7:a9:7e:7c:77:69:56:98:ab:14:cf:32: 42:20:8b:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA0RDYxMTAvBgNVBAUTKEVCQUE0QzQ0RjI0ODkzNzE0QTFENUIzNjBBMkQ3QjJE ODYwNUIxNjMwHhcNMjUwNzE5MDU1NDU3WhcNMjUwNzI2MDU1NDU3WjAYMRYwFAYD VQQDEw02ODdiMzMzMS0wNjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUjB1wHjdqpq+OOg3nXxGhD/9BakP7yP5Ive6B1dT8h70WFjpj+MYKmmQviK I3IJznsWMbi0e6lDG9u2PPkZzykgaBBnE4otiI7wGVJmu3K0cOfdv2WimcGXYYDA SoMfjT+BuLEP7a/FeYE1mit5hQyfiY6+86i+bnE2NGV5LBJ7vw3V9pn7EsYMzOYV ejUFW+KkCmIGcP10Vz6IXYrZFauTGTB82FQK34JAn7rwtqSvjK6WW+PyqrU6Y37J xh2ZKQRcy2NJCsvFkiIIQi7qMXPqlEpwNfx1uWo4cWMm2WeSkt50WjGRFcKQUSxP szMneoZe6vOMHOTCl1UZXeF8uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFemXsoO /ag+lHTe1V9nxWgX1jdcMB8GA1UdIwQYMBaAFOuqTETySJNxSh1bNgotey2GBbFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDRENi9BRDBDQUMxRTMx QTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWszRktIVnMyQ2kxN0xZWUZz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzY2cE1SUEpJazNGS0hWczJDaTE3TFlZRnNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDRENi9BRDBDQUMxRTMxQTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWsz RktIVnMyQ2kxN0xZWUZzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS9JaUU9mxAUoZ1Y0WOoKv/EOVdX+bPXi0gT3EJM2mta+BX5fRDt89 c7x4NxA5pcjz+3YMNEPxkHpV7myuTzXN4PpUqdbxzxjC1ARfTP8rinJ7FkbAfD0M 5qV5tL9lcfhkiMAxdhBSPOj6DJpmA0NGHlcM77uJV0yGNRhHYkmTSylY6PERH4eF AUeOa3mLOxNjgD7uD+3ObWBhjP3THVmgbKiQeC10EGZfyrViMT98/1oZvnTjbbxO sYJ8mD5FQ8pIet2YCJevCOYXpuVWH61NZMrWUnl55GwLCGwdMARANkVjgfooY6uL 8nvgN7wVNtrnqX58d2lWmKsUzzJCIIt7 -----END CERTIFICATE-----Generated at Mon Jul 21 00:26:51 2025 by rpki-client