$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: kA8WDcY1ZDZVpNRitVG8neg4E1eVUuetUKGtpbo5zcs= Subject key identifier: 26:62:21:08:16:0E:C3:24:DF:5F:CF:D3:D2:04:36:2D:1C:C0:30:F0 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3694 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3693 Signing time: Tue 22 Jul 2025 14:33:39 +0000 Manifest this update: Tue 22 Jul 2025 14:33:39 +0000 Manifest next update: Tue 29 Jul 2025 14:33:39 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: vlaXxuOK0dQMpxWy7j+AeJDd80PJ+2W3C2qSG16h7uU=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 14:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13972 (0x3694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jul 22 14:33:39 2025 GMT Not After : Jul 29 14:33:39 2025 GMT Subject: CN=687fa143-6c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:80:9f:d6:11:12:1e:de:0b:94:18:df:16: ff:c3:3e:b3:79:9a:59:58:2d:aa:12:90:c2:c9:a5: 72:8c:bc:a5:6c:0b:5b:fa:07:e6:db:48:14:d0:d2: e9:1b:b4:4e:83:b7:74:66:4b:17:85:19:93:de:94: b5:e8:50:69:b8:c8:eb:d0:1d:7c:06:b7:6a:ba:7b: 17:34:bd:54:8d:9b:3c:3c:07:fb:ed:99:ec:76:42: d0:a1:68:57:fc:28:91:a7:25:9c:8a:fb:af:a9:b5: 88:b9:39:f0:ae:16:bd:d4:c3:9d:2d:15:35:ac:e4: c2:fc:fa:45:cb:eb:30:cc:69:75:d8:ff:13:6b:dd: c6:a1:0f:ac:a6:89:90:0d:ed:a2:29:10:15:44:01: 97:2f:fe:af:b3:93:b5:f6:f3:ea:78:cf:82:d6:30: fc:67:5d:62:4a:ca:2f:1b:f0:d3:fe:c4:ef:a8:c0: 35:b0:00:d7:32:65:80:3d:47:c1:48:91:50:ce:05: 50:67:10:a0:8f:e9:7d:a7:e5:2d:f7:d8:bc:92:f7: 81:fc:ab:a4:bd:e1:ae:15:2f:f2:4d:d0:12:f3:b5: 9f:ef:4f:cd:0e:6c:25:5a:1d:32:f9:6e:fa:5c:77: 92:af:c2:e8:a8:ae:05:5b:2f:71:77:15:2b:8c:fd: d4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:62:21:08:16:0E:C3:24:DF:5F:CF:D3:D2:04:36:2D:1C:C0:30:F0 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c7:bf:8c:86:4b:1f:df:81:67:16:45:d6:88:b6:ea:fc:2f: 56:d6:72:18:d5:b2:68:3b:7c:91:fb:13:86:07:81:d2:19:4e: 56:17:dd:91:ec:6c:d2:4b:e9:b1:7d:18:2b:72:80:88:7b:04: 45:76:be:c4:98:a1:ac:c6:14:7b:43:79:e3:78:92:2f:ce:eb: 9e:3a:00:0c:04:36:ef:6a:e1:78:05:b0:6f:f2:31:21:db:d8: fc:87:d8:3e:7a:45:69:e2:60:a9:73:53:39:d2:56:01:d4:2f: 43:07:43:01:ca:f3:c1:47:46:ba:41:50:d9:e1:f6:3e:95:d7: 1c:46:81:a7:7d:e3:09:72:56:89:75:af:c2:12:09:38:79:3b: 6a:62:25:4c:ca:d2:e3:f5:a0:d4:42:0e:7a:24:e0:c3:e8:fc: aa:22:e5:98:76:a9:94:be:6c:01:3e:53:9e:b7:de:9d:b8:a2: 03:a2:4a:2b:25:0f:13:f7:90:76:ec:32:fe:d4:a6:da:35:e0: f0:d2:11:fb:91:2f:bd:5f:67:a8:c0:6f:ce:21:e5:e1:e6:a9: a3:fb:8e:56:34:48:29:c7:07:39:60:f4:a9:b1:c1:bb:d9:3c: d5:14:86:9c:be:56:3c:22:90:d3:08:79:5f:63:b4:46:50:f3: 41:eb:f1:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwNzIyMTQzMzM5WhcNMjUwNzI5MTQzMzM5WjAYMRYwFAYD VQQDEw02ODdmYTE0My02Yzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu+An9YREh7eC5QY3xb/wz6zeZpZWC2qEpDCyaVyjLylbAtb+gfm20gU0NLp G7ROg7d0ZksXhRmT3pS16FBpuMjr0B18BrdqunsXNL1UjZs8PAf77ZnsdkLQoWhX /CiRpyWcivuvqbWIuTnwrha91MOdLRU1rOTC/PpFy+swzGl12P8Ta93GoQ+spomQ De2iKRAVRAGXL/6vs5O19vPqeM+C1jD8Z11iSsovG/DT/sTvqMA1sADXMmWAPUfB SJFQzgVQZxCgj+l9p+Ut99i8kveB/KukveGuFS/yTdAS87Wf70/NDmwlWh0y+W76 XHeSr8LoqK4FWy9xdxUrjP3UewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZiIQgW DsMk31/P09IENi0cwDDwMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnx7+Mhksf34FnFkXWiLbq/C9W1nIY1bJoO3yR+xOGB4HSGU5WF92R 7GzSS+mxfRgrcoCIewRFdr7EmKGsxhR7Q3njeJIvzuueOgAMBDbvauF4BbBv8jEh 29j8h9g+ekVp4mCpc1M50lYB1C9DB0MByvPBR0a6QVDZ4fY+ldccRoGnfeMJclaJ da/CEgk4eTtqYiVMytLj9aDUQg56JODD6PyqIuWYdqmUvmwBPlOet96duKIDokor JQ8T95B27DL+1KbaNeDw0hH7kS+9X2eowG/OIeXh5qmj+45WNEgpxwc5YPSpscG7 2TzVFIacvlY8IpDTCHlfY7RGUPNB6/Gv -----END CERTIFICATE-----Generated at Wed Jul 23 06:24:02 2025 by rpki-client