$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: FhqClU+7wGc52/7lRmjArDlNKRTDoDqSba4VdRpmeDo= Subject key identifier: D9:6E:D6:40:38:13:35:44:96:06:CC:96:1D:AA:7A:BF:6E:90:31:34 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: A7 Signing time: Sat 19 Jul 2025 06:22:37 +0000 Manifest this update: Sat 19 Jul 2025 06:22:36 +0000 Manifest next update: Sat 26 Jul 2025 06:22:36 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: C628uGGoKaJC7QKBX2lJccinbJ9r/bxwaOtu1tij660=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Jul 19 06:22:36 2025 GMT Not After : Jul 26 06:22:36 2025 GMT Subject: CN=687b39ad-740b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:c5:c5:50:35:82:2a:74:66:72:fb:f0:68:78: d2:2b:9b:c3:a2:ec:ca:2d:95:82:18:e6:84:4b:c6: 42:04:05:be:41:66:38:93:e9:ca:b1:37:19:08:51: d7:46:50:83:80:7a:ad:3b:40:0d:dc:04:af:8d:5c: 0b:0c:87:f6:74:ee:59:20:31:fc:43:1e:6d:e1:4f: f2:9a:36:d6:9c:eb:e5:62:fa:82:93:1e:45:dd:74: 51:e3:a6:fe:2b:bb:ac:da:21:ce:7e:5e:02:e4:aa: 53:d6:5e:81:8d:72:30:2d:18:ae:c7:cb:9b:01:f4: 49:4e:38:41:f6:5a:6f:fa:0e:32:f4:20:3f:1d:a9: 43:0d:e4:f1:a4:55:9e:ed:2a:6b:74:e8:11:da:58: fb:7e:03:bf:99:46:f1:ba:35:76:f9:87:1a:79:28: 1c:ba:50:a6:0e:fa:a2:29:a2:23:0b:93:b4:d3:ed: 29:9a:13:3e:21:eb:e5:b9:45:80:83:65:08:c9:66: 5b:1d:50:4e:1e:df:f2:a6:10:4a:72:34:35:5e:f5: 96:81:62:e5:fe:3c:a1:f0:5b:0c:12:ad:4c:0d:0d: 59:6a:e1:0e:a2:31:4a:90:7b:19:ba:7e:4e:70:cb: 67:54:63:c0:b0:ff:71:0f:f7:54:21:fb:1d:43:d6: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:6E:D6:40:38:13:35:44:96:06:CC:96:1D:AA:7A:BF:6E:90:31:34 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:7a:b2:58:96:f3:5b:d8:80:d8:23:75:88:b3:3e:fb:a4:a4: a7:9d:17:3c:4e:74:1f:58:f3:ee:50:9a:fe:94:61:d8:56:27: 55:b8:dd:85:35:3e:e3:fc:7c:90:84:71:88:5c:aa:5b:ac:e7: 6c:ef:e9:49:54:0d:4e:a3:cf:32:27:6d:4e:e0:68:39:45:c8: 7e:ab:c8:8a:e9:a8:8c:92:2c:f1:7a:01:8d:c7:56:54:d7:18: a9:c4:46:23:cc:49:02:83:05:2b:e5:a0:d9:7d:16:ff:ae:76: 45:69:36:5e:14:f1:5b:01:b3:d7:0a:3a:fd:38:fb:d6:64:7e: 84:28:03:12:84:27:3c:1e:33:24:8b:a8:6b:ef:8c:63:2f:d1: ee:4f:b6:36:7f:8f:cb:7a:a0:93:82:c3:1d:15:e2:2d:21:11: 04:91:cf:51:12:63:6d:ef:83:0c:76:4f:9f:30:2b:4f:2f:1d: e8:21:b4:ba:0b:17:34:e2:71:2c:39:18:f6:93:61:ec:20:9d: 0f:18:9e:13:af:fd:b4:1a:e0:49:8f:2f:87:df:ca:3f:9e:d7: 22:c8:92:a2:ca:19:22:52:aa:a9:6c:ad:29:e2:df:53:51:90: 4d:f6:5c:c3:b1:88:04:13:44:98:99:d8:5a:30:d9:f1:23:40: e3:7c:1f:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwNzE5MDYyMjM2WhcNMjUwNzI2MDYyMjM2WjAYMRYwFAYD VQQDEw02ODdiMzlhZC03NDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA98XFUDWCKnRmcvvwaHjSK5vDouzKLZWCGOaES8ZCBAW+QWY4k+nKsTcZCFHX RlCDgHqtO0AN3ASvjVwLDIf2dO5ZIDH8Qx5t4U/ymjbWnOvlYvqCkx5F3XRR46b+ K7us2iHOfl4C5KpT1l6BjXIwLRiux8ubAfRJTjhB9lpv+g4y9CA/HalDDeTxpFWe 7SprdOgR2lj7fgO/mUbxujV2+YcaeSgculCmDvqiKaIjC5O00+0pmhM+IevluUWA g2UIyWZbHVBOHt/yphBKcjQ1XvWWgWLl/jyh8FsMEq1MDQ1ZauEOojFKkHsZun5O cMtnVGPAsP9xD/dUIfsdQ9Ze+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlu1kA4 EzVElgbMlh2qer9ukDE0MB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+erJYlvNb2IDYI3WIsz77pKSnnRc8TnQfWPPuUJr+lGHYVidVuN2F NT7j/HyQhHGIXKpbrOds7+lJVA1Oo88yJ21O4Gg5Rch+q8iK6aiMkizxegGNx1ZU 1xipxEYjzEkCgwUr5aDZfRb/rnZFaTZeFPFbAbPXCjr9OPvWZH6EKAMShCc8HjMk i6hr74xjL9HuT7Y2f4/LeqCTgsMdFeItIREEkc9REmNt74MMdk+fMCtPLx3oIbS6 Cxc04nEsORj2k2HsIJ0PGJ4Tr/20GuBJjy+H38o/ntciyJKiyhkiUqqpbK0p4t9T UZBN9lzDsYgEE0SYmdhaMNnxI0DjfB87 -----END CERTIFICATE-----Generated at Sun Jul 20 22:51:04 2025 by rpki-client