$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: o53g+NAZ9QieRsNE4LUnMaNQ96VwttmUOoi+0fVVk34= Subject key identifier: 54:4A:C5:1C:5C:88:93:23:E0:58:35:69:C3:97:0A:93:EA:9C:26:42 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 63 Signing time: Sat 19 Jul 2025 07:15:42 +0000 Manifest this update: Sat 19 Jul 2025 07:15:41 +0000 Manifest next update: Sat 26 Jul 2025 07:15:41 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: kUc+jRWE18RLb6qm58BKGDPzsplSQdSDTtlVXvEXwjM=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Jul 19 07:15:41 2025 GMT Not After : Jul 26 07:15:41 2025 GMT Subject: CN=687b461e-da8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:75:c5:9a:15:fc:2d:79:71:c3:6b:21:bf:d4: b8:65:0d:72:37:7e:d1:91:c8:8c:ca:58:a5:7f:a3: bd:e8:74:b6:35:91:53:61:87:89:b8:37:10:f1:68: 42:34:6c:ce:86:61:da:24:69:4c:41:1b:37:5d:5a: d0:5b:4e:47:a0:98:de:32:7e:67:6e:29:6e:b2:3b: 9a:38:e2:61:c9:df:47:f6:fc:e7:75:cb:86:82:5b: 5c:9b:dd:4f:30:c4:17:51:f7:f0:51:47:c6:06:4d: 9c:bc:d9:6c:83:47:a7:25:45:a9:19:6e:34:19:5b: 40:7f:1e:0b:9e:43:21:0c:a1:a2:5c:75:28:88:0d: 5c:05:22:58:73:62:d1:e2:49:58:76:4a:76:1e:54: ad:bb:5b:5d:2d:3f:4f:3d:43:43:df:43:20:dd:1a: 67:9b:d5:62:1a:aa:0c:65:9b:d6:9a:dc:8c:cb:7a: 89:54:bc:5b:4d:06:ae:74:bf:bb:c9:83:57:d9:41: cd:bc:a7:1e:ba:89:f8:52:58:c9:16:c4:60:00:c1: a7:14:86:09:01:17:3f:f5:92:70:7d:ed:be:ef:23: 7e:80:a4:81:49:2f:af:6c:bf:e6:3a:ba:a6:e2:6d: 68:b3:fc:48:1f:65:02:37:08:27:15:38:c1:8e:83: 1e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4A:C5:1C:5C:88:93:23:E0:58:35:69:C3:97:0A:93:EA:9C:26:42 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:cc:51:98:9d:19:db:eb:c5:78:2c:01:85:c4:31:96:af:05: 35:7d:23:cd:7e:91:d3:70:7f:60:f1:31:21:09:21:8b:f3:d8: fb:a8:9f:36:ae:f8:6f:6c:80:0e:0d:e7:76:b7:ab:74:36:dd: 65:dc:cb:a2:0d:b0:17:86:00:d5:c9:44:db:86:13:68:e2:49: fa:bc:3a:d4:9d:7f:34:59:4e:5c:d0:c6:b5:fb:eb:d3:3d:a7: e3:38:d3:dc:50:7f:27:40:fe:d8:2f:02:33:a5:2f:be:5e:6e: 7c:12:2a:40:0e:25:55:4d:ce:cd:3e:ad:d3:11:e2:ec:00:09: 6e:74:4c:6a:95:9c:77:42:de:bf:78:5e:9b:ae:c2:f5:8e:3e: d7:72:9c:4e:6b:73:11:ed:94:9e:3e:a3:ab:62:3d:12:31:67: fb:d3:be:b5:6c:c7:11:69:84:65:a8:2f:de:bf:ea:44:38:3d: 84:f7:00:f7:01:c0:1a:ee:56:5a:d0:9f:bc:dc:b9:34:d7:b3: ba:8a:74:f5:f5:62:32:9d:2e:1f:0f:6c:25:99:c2:e4:20:ca: 7e:5e:0d:18:f3:24:c1:7b:ac:36:2d:7a:af:b9:f0:f7:5a:d8: 23:61:aa:a4:7c:bf:8b:08:05:75:47:85:2d:8c:7c:85:c6:b6: 9e:10:f3:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA3MTkwNzE1NDFaFw0yNTA3MjYwNzE1NDFaMBgxFjAUBgNV BAMTDTY4N2I0NjFlLWRhOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLdcWaFfwteXHDayG/1LhlDXI3ftGRyIzKWKV/o73odLY1kVNhh4m4NxDxaEI0 bM6GYdokaUxBGzddWtBbTkegmN4yfmduKW6yO5o44mHJ30f2/Od1y4aCW1yb3U8w xBdR9/BRR8YGTZy82WyDR6clRakZbjQZW0B/HgueQyEMoaJcdSiIDVwFIlhzYtHi SVh2SnYeVK27W10tP089Q0PfQyDdGmeb1WIaqgxlm9aa3IzLeolUvFtNBq50v7vJ g1fZQc28px66ifhSWMkWxGAAwacUhgkBFz/1knB97b7vI36ApIFJL69sv+Y6uqbi bWiz/EgfZQI3CCcVOMGOgx5DAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVErFHFyI kyPgWDVpw5cKk+qcJkIwHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJfMUZidGdvrxXgsAYXEMZavBTV9I81+kdNwf2DxMSEJIYvz2Puonzau +G9sgA4N53a3q3Q23WXcy6INsBeGANXJRNuGE2jiSfq8OtSdfzRZTlzQxrX769M9 p+M409xQfydA/tgvAjOlL75ebnwSKkAOJVVNzs0+rdMR4uwACW50TGqVnHdC3r94 XpuuwvWOPtdynE5rcxHtlJ4+o6tiPRIxZ/vTvrVsxxFphGWoL96/6kQ4PYT3APcB wBruVlrQn7zcuTTXs7qKdPX1YjKdLh8PbCWZwuQgyn5eDRjzJMF7rDYteq+58Pda 2CNhqqR8v4sIBXVHhS2MfIXGtp4Q88g= -----END CERTIFICATE-----Generated at Mon Jul 21 07:52:00 2025 by rpki-client