$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: qa8W3jK/ib9bm2k5Kh+r/E1kGNplQ71KiZB3UeTwUCo= Subject key identifier: 68:80:42:F2:4C:89:88:C2:6B:97:49:A3:A8:1B:E3:DF:01:01:30:AF Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 01F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 01F1 Signing time: Sun 20 Jul 2025 16:06:38 +0000 Manifest this update: Sun 20 Jul 2025 16:06:38 +0000 Manifest next update: Sun 27 Jul 2025 16:06:38 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: Tqs208Z3+gGLWXjHqTdeuSW6jfbBGsydWLX40GpKTh0=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Jul 20 16:06:38 2025 GMT Not After : Jul 27 16:06:38 2025 GMT Subject: CN=687d140e-9b44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:59:a7:42:20:da:59:d0:14:13:76:9f:ed:62: 29:cb:fb:6c:ae:4a:93:68:e7:70:69:e6:2e:df:9f: dd:77:99:2a:55:5d:15:49:cb:aa:9c:ca:7e:92:28: 39:0e:c8:55:b4:0c:33:70:eb:a9:99:3a:e7:3c:41: 86:6a:ff:7e:b9:d1:a9:cd:80:ae:a1:2d:e3:30:1c: 70:3a:6f:51:2b:01:e5:2b:44:4d:2b:a8:46:3c:3d: 2a:6c:8d:d0:b2:c5:22:79:a9:78:bc:96:40:ce:aa: 77:94:2e:ee:b2:da:d1:e6:11:ed:dc:79:aa:74:fa: 15:19:56:0b:9c:3a:2f:cf:27:18:71:02:59:44:c4: 59:a3:94:02:31:4f:4e:d9:dc:cf:ca:c7:79:e1:b1: b3:51:33:ca:31:69:f4:37:0c:78:3b:8d:bc:e2:6c: d6:92:7d:bc:cd:8b:34:e4:c6:9c:c4:f7:e3:9b:13: 61:98:80:a7:65:45:39:8c:3f:aa:1e:43:79:df:d0: 61:bb:2e:cb:84:f8:1f:ee:c3:37:63:d5:61:2a:6c: 62:7f:3f:27:31:57:0e:5e:c8:ba:b6:81:c7:e7:31: c7:11:45:af:ee:5c:68:86:94:20:98:1f:f5:d6:d7: bb:f9:e3:7d:4b:43:e5:18:88:bc:71:3e:e6:e2:86: c0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:80:42:F2:4C:89:88:C2:6B:97:49:A3:A8:1B:E3:DF:01:01:30:AF X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d8:21:f4:32:26:50:db:ad:3f:9e:ed:7c:4b:21:56:0e:69: fe:70:06:ab:ba:ff:86:4c:b5:69:89:8d:d3:b9:d7:69:d9:22: 92:54:3c:51:c8:60:f9:09:1d:b8:e6:cb:0f:21:83:ce:03:5c: 7f:3a:2c:7e:a4:56:1b:a9:35:35:e4:e1:c5:1e:84:32:60:09: 62:b1:61:f3:a5:f1:c0:c9:1a:78:90:22:68:2f:fd:2f:30:01: a8:cd:64:70:b1:e2:ef:62:65:aa:17:ec:57:fd:3a:4d:94:06: 81:65:b5:26:a3:a8:fc:9b:e9:9f:8e:20:16:54:33:39:bf:4f: 52:73:dd:59:69:3f:56:42:81:71:83:44:10:45:38:e0:e7:35: b4:7d:52:8a:cc:32:2a:02:31:3c:24:ab:80:60:20:e0:3a:b5: d0:c6:69:60:35:b0:95:d4:ce:5a:04:7e:cc:95:31:12:5d:ea: 31:ad:b1:22:8e:32:f7:0c:0a:f7:25:70:2a:4c:67:59:c4:32: 4f:d7:71:ab:bc:a5:1c:1e:77:2d:9c:aa:95:45:81:39:3b:c4: 8c:a6:2a:ac:50:cf:f2:41:2f:78:2e:3e:f9:2b:6d:79:f9:ea: a0:8b:a7:54:56:76:a8:8b:a9:d9:01:c4:1d:8f:6b:d8:ed:19: c0:d2:aa:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUwNzIwMTYwNjM4WhcNMjUwNzI3MTYwNjM4WjAYMRYwFAYD VQQDEw02ODdkMTQwZS05YjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlmnQiDaWdAUE3af7WIpy/tsrkqTaOdwaeYu35/dd5kqVV0VScuqnMp+kig5 DshVtAwzcOupmTrnPEGGav9+udGpzYCuoS3jMBxwOm9RKwHlK0RNK6hGPD0qbI3Q ssUieal4vJZAzqp3lC7ustrR5hHt3HmqdPoVGVYLnDovzycYcQJZRMRZo5QCMU9O 2dzPysd54bGzUTPKMWn0Nwx4O4284mzWkn28zYs05MacxPfjmxNhmICnZUU5jD+q HkN539Bhuy7LhPgf7sM3Y9VhKmxifz8nMVcOXsi6toHH5zHHEUWv7lxohpQgmB/1 1te7+eN9S0PlGIi8cT7m4obAyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiAQvJM iYjCa5dJo6gb498BATCvMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj2CH0MiZQ260/nu18SyFWDmn+cAaruv+GTLVpiY3Tuddp2SKSVDxR yGD5CR245ssPIYPOA1x/Oix+pFYbqTU15OHFHoQyYAlisWHzpfHAyRp4kCJoL/0v MAGozWRwseLvYmWqF+xX/TpNlAaBZbUmo6j8m+mfjiAWVDM5v09Sc91ZaT9WQoFx g0QQRTjg5zW0fVKKzDIqAjE8JKuAYCDgOrXQxmlgNbCV1M5aBH7MlTESXeoxrbEi jjL3DAr3JXAqTGdZxDJP13GrvKUcHnctnKqVRYE5O8SMpiqsUM/yQS94Lj75K215 +eqgi6dUVnaoi6nZAcQdj2vY7RnA0qqE -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:11 2025 by rpki-client