$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: JJWGWiz4+ZsZpQDuz9tDL0TF/eSOtYkeqhQL2urwOAM= Subject key identifier: E6:34:0D:18:95:EC:9D:E2:BB:93:BA:E5:FF:03:B3:18:57:1A:76:77 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 0109 Signing time: Sat 19 Jul 2025 05:17:05 +0000 Manifest this update: Sat 19 Jul 2025 05:17:04 +0000 Manifest next update: Sat 26 Jul 2025 05:17:04 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: +rs68IDaKo00GfVrNE5h3+n8PslFbwx3Wy6Xwv6y2Lc=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: g8goRa5uN0098PK1vnqVTndrxAdY1S5JKnq752ZsLOQ=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: BxZpcifR3l7qhnt+56VpPmZ3hTQmgPYYxX/h3b9rorE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Jul 19 05:17:04 2025 GMT Not After : Jul 26 05:17:04 2025 GMT Subject: CN=687b2a50-ec27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d9:68:84:89:98:bc:f2:7e:f5:e9:df:d8:55: 78:d9:ea:63:a0:3a:cb:fd:d8:19:18:e8:d1:81:c4: 34:df:14:c4:15:3a:95:fb:46:d8:33:4d:a3:5b:a0: 62:31:03:b8:cc:94:59:2a:a3:14:f0:5a:ca:01:a7: a7:80:c4:4f:12:88:dd:cf:59:37:79:e3:7f:19:78: 9d:aa:81:c1:60:d5:5a:d2:21:08:51:b1:da:47:02: 5f:dd:e6:2c:64:a1:c7:b7:f6:e3:6f:d5:aa:0f:01: c6:7f:d3:a1:e9:d7:a6:37:98:53:47:0f:a3:59:35: 98:9f:7a:81:2d:25:ac:7e:e6:16:0f:a3:0c:48:67: 10:d7:39:9e:cf:dc:7d:ea:f1:0e:6b:d9:a7:7d:1d: 9d:f8:89:61:5b:20:3b:f4:95:d8:20:63:f0:46:d7: c8:54:4e:3a:5b:31:fe:78:fd:af:04:86:ed:d3:f4: 1e:0f:d8:94:b3:c4:52:5f:27:5e:b9:4c:06:ea:cc: 18:82:f2:33:0e:27:3c:76:be:d7:03:de:ae:73:ef: d5:38:68:f3:9b:84:51:70:36:4f:5f:2d:d5:78:4b: dd:af:df:7e:e7:3b:64:8b:d4:4c:cb:3d:8d:95:b1: 75:9f:a6:c5:1f:15:8e:87:46:8a:64:63:53:97:71: 8f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:34:0D:18:95:EC:9D:E2:BB:93:BA:E5:FF:03:B3:18:57:1A:76:77 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:02:3d:4c:18:6c:67:bc:62:f0:17:a2:74:8e:68:a6:b3:f4: ad:ab:c6:6e:b0:bd:0f:13:26:50:9b:23:1e:4d:08:93:4e:43: 01:4a:4c:34:ca:40:9e:3f:b5:d7:f7:e3:04:9c:6d:1f:07:f2: b0:8a:bf:90:db:a6:b2:35:84:61:3f:8a:5a:d9:98:c1:aa:77: 09:3f:61:03:ac:c4:7d:80:94:4f:fc:48:6b:83:65:49:ba:5c: c7:c6:96:aa:04:53:7a:d1:ab:9f:6d:78:6a:05:00:a4:cd:7e: 2a:1b:49:2f:d4:26:22:f8:17:ce:23:d1:be:70:8f:05:30:f2: 16:f3:1b:f9:a1:72:d9:9c:25:fe:60:07:5d:94:c8:6b:6b:5d: aa:f3:7a:88:57:69:67:ae:92:03:d2:98:bd:51:7b:f5:41:e0: 5f:ec:a1:4a:49:23:97:63:8c:ea:f3:a1:29:d7:85:2d:b9:e2: d2:80:af:9d:d7:18:ff:7f:46:47:7f:09:7b:62:eb:42:6b:4e: cc:9e:43:48:17:ba:d5:17:b2:cc:41:f3:f8:5d:70:1c:58:05: cb:3b:c0:b3:1d:7d:a7:7e:6a:3c:c1:d2:18:ea:82:f8:0a:cb: 72:08:f5:fb:75:55:52:c6:e1:2b:7e:8e:eb:25:07:1b:3a:b6: 56:7d:64:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUwNzE5MDUxNzA0WhcNMjUwNzI2MDUxNzA0WjAYMRYwFAYD VQQDEw02ODdiMmE1MC1lYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69lohImYvPJ+9enf2FV42epjoDrL/dgZGOjRgcQ03xTEFTqV+0bYM02jW6Bi MQO4zJRZKqMU8FrKAaengMRPEojdz1k3eeN/GXidqoHBYNVa0iEIUbHaRwJf3eYs ZKHHt/bjb9WqDwHGf9Oh6demN5hTRw+jWTWYn3qBLSWsfuYWD6MMSGcQ1zmez9x9 6vEOa9mnfR2d+IlhWyA79JXYIGPwRtfIVE46WzH+eP2vBIbt0/QeD9iUs8RSXyde uUwG6swYgvIzDic8dr7XA96uc+/VOGjzm4RRcDZPXy3VeEvdr99+5ztki9RMyz2N lbF1n6bFHxWOh0aKZGNTl3GPaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOY0DRiV 7J3iu5O65f8DsxhXGnZ3MB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/Aj1MGGxnvGLwF6J0jmims/Stq8ZusL0PEyZQmyMeTQiTTkMBSkw0 ykCeP7XX9+MEnG0fB/Kwir+Q26ayNYRhP4pa2ZjBqncJP2EDrMR9gJRP/Ehrg2VJ ulzHxpaqBFN60aufbXhqBQCkzX4qG0kv1CYi+BfOI9G+cI8FMPIW8xv5oXLZnCX+ YAddlMhra12q83qIV2lnrpID0pi9UXv1QeBf7KFKSSOXY4zq86Ep14UtueLSgK+d 1xj/f0ZHfwl7YutCa07MnkNIF7rVF7LMQfP4XXAcWAXLO8CzHX2nfmo8wdIY6oL4 CstyCPX7dVVSxuErfo7rJQcbOrZWfWR0 -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:40 2025 by rpki-client