$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: guYtngUqm1BugZcJJjyoki+O1lGXszczTVQghM1svpc= Subject key identifier: A2:B0:5A:5A:3F:39:65:15:A8:2F:01:43:0A:98:05:C0:AB:1D:49:C9 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: 7B Signing time: Fri 01 Aug 2025 08:27:17 +0000 Manifest this update: Fri 01 Aug 2025 08:27:17 +0000 Manifest next update: Fri 08 Aug 2025 08:27:17 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: dsJSm0QF+3uO+tBLu+fM54Jd10B2feilRzfEPOzNEFw=) 2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) 3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 08:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Aug 1 08:27:17 2025 GMT Not After : Aug 8 08:27:17 2025 GMT Subject: CN=688c7a65-d958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:72:66:c4:8f:18:a9:06:85:39:98:36:28:00: 31:40:72:e7:3b:1a:aa:a7:98:02:21:79:96:87:cc: 4c:9d:00:e1:31:80:33:d3:90:20:30:87:c0:ad:70: c7:e1:23:91:86:c3:c9:56:ab:4d:80:94:83:ce:52: 1a:8b:a6:dd:7b:cf:0f:02:66:cb:0b:dc:43:ea:67: a2:12:7c:75:12:8f:36:0c:57:52:84:9c:5d:17:a9: f8:b9:1e:20:82:2b:be:f4:62:2e:c4:6d:fe:40:4d: 64:9b:f4:3e:9b:9d:f6:b5:3c:f2:70:fc:c0:05:f9: c7:10:23:b2:3e:08:54:61:d0:4c:db:8a:0e:97:9b: ea:1f:55:aa:dc:33:52:f5:68:54:6c:54:7c:25:59: ca:c3:cd:7b:58:f5:95:55:dc:04:62:3e:ae:17:d3: 17:1d:0f:85:fe:6e:25:43:55:b3:96:4a:bf:d0:ae: 34:ad:e6:8a:ad:61:03:19:85:5a:95:e3:bc:39:9d: 93:52:47:37:ad:73:13:66:39:a0:00:46:88:61:ac: 9e:65:f9:03:d4:0c:a8:2b:33:05:26:ad:88:93:b6: 30:fd:fa:bb:78:9c:bb:eb:78:23:d6:4c:bd:7d:c3: b0:c7:78:fa:25:c9:a3:53:7f:e9:2d:11:58:db:74: 4d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B0:5A:5A:3F:39:65:15:A8:2F:01:43:0A:98:05:C0:AB:1D:49:C9 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:bc:d9:af:fd:b6:5d:d7:28:02:0b:88:e1:b3:9a:28:d8:9a: 6c:d4:fe:dd:f6:78:7e:6f:30:8f:d7:59:ca:4b:e4:a8:63:ea: 5f:42:89:c4:ae:f0:fd:45:fe:c5:5a:d0:e3:40:09:46:f5:1a: a6:df:e3:b0:d8:c2:ce:01:68:5c:30:16:be:80:0b:cd:c0:48: 6a:0c:2e:e0:cd:6c:09:8b:9a:ad:f7:1c:ed:f7:76:2b:22:1d: 27:69:3d:b2:45:28:69:bf:52:a3:5c:40:72:1c:f4:9a:69:20: 59:85:68:ff:e4:a1:64:34:39:f7:47:2c:26:91:b7:4f:b3:04: 7a:4b:da:67:0d:1d:ef:d6:2d:aa:01:01:64:ef:82:ec:93:4c: 7c:51:02:3a:9f:2a:55:59:e1:2c:7d:82:4e:4e:83:6b:6d:57: 35:30:53:2e:1a:b9:b9:07:d2:82:99:15:ab:85:ba:59:7f:45: 6e:72:bf:93:c3:19:2b:f8:8d:07:5c:26:6c:a7:8d:55:7c:46: 92:74:ad:40:c0:43:f6:ae:e3:c2:4b:e9:8f:d5:d3:c7:76:9b: 08:e3:65:40:84:d0:bc:a0:7b:95:9f:51:68:46:85:cc:33:4c: 7f:26:15:b6:95:5c:80:30:1a:63:4d:7e:fd:0a:53:dd:59:43: 1a:44:38:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjUwODAxMDgyNzE3WhcNMjUwODA4MDgyNzE3WjAYMRYwFAYD VQQDEw02ODhjN2E2NS1kOTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnJmxI8YqQaFOZg2KAAxQHLnOxqqp5gCIXmWh8xMnQDhMYAz05AgMIfArXDH 4SORhsPJVqtNgJSDzlIai6bde88PAmbLC9xD6meiEnx1Eo82DFdShJxdF6n4uR4g giu+9GIuxG3+QE1km/Q+m532tTzycPzABfnHECOyPghUYdBM24oOl5vqH1Wq3DNS 9WhUbFR8JVnKw817WPWVVdwEYj6uF9MXHQ+F/m4lQ1Wzlkq/0K40reaKrWEDGYVa leO8OZ2TUkc3rXMTZjmgAEaIYayeZfkD1AyoKzMFJq2Ik7Yw/fq7eJy763gj1ky9 fcOwx3j6JcmjU3/pLRFY23RNoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKwWlo/ OWUVqC8BQwqYBcCrHUnJMB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEI2Ny8yRkEwMEQzRUM2QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05L QlRYc09Oak15SmtCbE40WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAvNmv/bZd1ygCC4jhs5oo2Jps1P7d9nh+bzCP11nKS+SoY+pfQonE rvD9Rf7FWtDjQAlG9Rqm3+Ow2MLOAWhcMBa+gAvNwEhqDC7gzWwJi5qt9xzt93Yr Ih0naT2yRShpv1KjXEByHPSaaSBZhWj/5KFkNDn3RywmkbdPswR6S9pnDR3v1i2q AQFk74Lsk0x8UQI6nypVWeEsfYJOToNrbVc1MFMuGrm5B9KCmRWrhbpZf0Vucr+T wxkr+I0HXCZsp41VfEaSdK1AwEP2ruPCS+mP1dPHdpsI42VAhNC8oHuVn1FoRoXM M0x/JhW2lVyAMBpjTX79ClPdWUMaRDj1 -----END CERTIFICATE-----Generated at Sat Aug 2 05:36:53 2025 by rpki-client