$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: 27KdnlLW5w+27HPX4twmANetO7V+Qcr7aLBiRiT3H3U= Subject key identifier: 72:C4:4E:D3:EE:4C:74:3F:19:F4:2B:C9:2B:0F:6C:91:15:6E:D9:53 Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0EB4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0D74 Signing time: Sun 20 Jul 2025 19:07:40 +0000 Manifest this update: Sun 20 Jul 2025 19:07:40 +0000 Manifest next update: Sun 27 Jul 2025 19:07:40 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: P1nxxy9XhGvUJ0tQh6KrgNkcwiSpAo46E6qBB9NiXOQ=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: 3tOYXJyI+hOGt1EVoTJqC/MxplbOiIX3ux+LNxqeJAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3764 (0xeb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Jul 20 19:07:40 2025 GMT Not After : Jul 27 19:07:40 2025 GMT Subject: CN=687d3e7c-9231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:b2:80:c6:31:c7:eb:ed:97:f3:c2:6a:0b: f1:99:2d:aa:dd:a5:71:d8:5c:6c:b0:1f:b6:5a:2f: 61:f7:bb:e1:14:4b:c9:72:7b:03:66:58:9c:1f:99: 68:e5:d4:23:34:ba:71:88:71:16:96:45:a5:40:3f: fe:53:5d:48:97:98:6b:fa:ee:77:28:1d:f2:30:e7: 90:ae:a1:08:61:24:5d:cf:cc:f5:e3:fc:fa:1b:50: 94:38:24:d0:8a:55:86:59:99:9d:09:34:21:78:90: d9:32:4b:d4:65:ad:68:10:e2:9e:d1:1a:df:d3:9c: 2a:84:f6:46:1b:df:ae:de:fc:80:89:4a:65:b9:03: 12:5e:a6:a2:5c:47:e3:0d:af:d6:71:8a:aa:2f:59: e2:8b:2f:7d:d2:a7:83:62:dc:df:73:89:ad:fb:ab: 19:5e:01:50:fe:30:48:a9:82:1e:ad:a1:d0:26:10: 4c:2b:2d:7e:5c:da:66:68:5a:16:31:8d:9d:25:57: 45:1d:d3:30:f3:2f:70:9c:96:aa:3a:d5:af:90:dd: b1:22:3c:2c:c4:7f:99:6a:25:7a:5f:90:25:59:f4: bd:0c:e1:c0:43:b7:19:41:ec:28:8a:dc:fc:83:80: 04:8f:0e:57:bc:c2:52:8f:77:25:b6:a6:82:fb:19: d6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C4:4E:D3:EE:4C:74:3F:19:F4:2B:C9:2B:0F:6C:91:15:6E:D9:53 X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:24:09:a5:20:18:f2:19:12:ff:d6:ed:bf:7a:a9:4c:1f:1c: 55:88:23:36:a5:ea:05:bb:94:0d:3f:23:86:34:fc:e5:8b:b7: 5a:0b:5c:60:4e:56:e0:06:1c:b4:9b:2c:84:97:6f:3d:bf:7c: ec:2a:a3:7f:bb:f2:03:ba:d3:7a:99:65:d8:ca:78:f5:32:f0: 2c:74:19:9c:12:90:1a:60:0d:c8:14:ba:25:16:67:da:8e:43: 9b:cc:c4:cf:25:77:60:eb:13:fc:5d:25:d2:ee:76:41:6d:7f: 01:51:f4:44:c9:51:bb:db:a4:00:71:4b:af:bc:8d:d6:a7:b8: 86:7f:9a:24:5f:9f:31:51:7a:0d:61:f7:2c:57:61:7f:38:29: 26:78:90:bf:48:b7:f4:09:4d:be:ff:77:a2:0d:d8:f6:da:d5: c2:30:bf:32:ce:ee:19:44:d2:3a:6b:02:a1:77:54:45:4a:a6: bd:02:db:84:6b:70:4a:29:ef:53:22:dd:8f:53:f5:65:9d:b4: f9:12:74:40:fc:14:7a:c1:9d:12:f3:20:81:4e:28:a9:5f:5c: ad:cd:52:b1:cb:d7:5c:58:98:da:94:1a:1b:fd:2d:f7:15:18: 66:c2:ad:8c:96:00:9f:07:f8:a7:8b:f6:dd:61:8f:0c:17:e5: 8e:81:bd:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUwNzIwMTkwNzQwWhcNMjUwNzI3MTkwNzQwWjAYMRYwFAYD VQQDEw02ODdkM2U3Yy05MjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbKygMYxx+vtl/PCagvxmS2q3aVx2FxssB+2Wi9h97vhFEvJcnsDZlicH5lo 5dQjNLpxiHEWlkWlQD/+U11Il5hr+u53KB3yMOeQrqEIYSRdz8z14/z6G1CUOCTQ ilWGWZmdCTQheJDZMkvUZa1oEOKe0Rrf05wqhPZGG9+u3vyAiUpluQMSXqaiXEfj Da/WcYqqL1niiy990qeDYtzfc4mt+6sZXgFQ/jBIqYIeraHQJhBMKy1+XNpmaFoW MY2dJVdFHdMw8y9wnJaqOtWvkN2xIjwsxH+ZaiV6X5AlWfS9DOHAQ7cZQewoitz8 g4AEjw5XvMJSj3cltqaC+xnWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLETtPu THQ/GfQrySsPbJEVbtlTMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeJAmlIBjyGRL/1u2/eqlMHxxViCM2peoFu5QNPyOGNPzli7daC1xg TlbgBhy0myyEl289v3zsKqN/u/IDutN6mWXYynj1MvAsdBmcEpAaYA3IFLolFmfa jkObzMTPJXdg6xP8XSXS7nZBbX8BUfREyVG726QAcUuvvI3Wp7iGf5okX58xUXoN YfcsV2F/OCkmeJC/SLf0CU2+/3eiDdj22tXCML8yzu4ZRNI6awKhd1RFSqa9AtuE a3BKKe9TIt2PU/VlnbT5EnRA/BR6wZ0S8yCBTiipX1ytzVKxy9dcWJjalBob/S33 FRhmwq2MlgCfB/ini/bdYY8MF+WOgb0+ -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:55 2025 by rpki-client