$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: GDn5FPCrZ4qwkC6u1dFy+SAgLYXbw7HJMjeg7VoQC6A= Subject key identifier: 1C:F6:3B:FB:F6:E1:97:58:7E:5B:53:DE:68:06:AA:7A:10:BF:07:20 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 060A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 0604 Signing time: Sun 20 Jul 2025 23:02:54 +0000 Manifest this update: Sun 20 Jul 2025 23:02:53 +0000 Manifest next update: Sun 27 Jul 2025 23:02:53 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: xs2/bYCGSsITq2R9K/KUO0k9FrwKME6R4zaamLYj42c=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Jul 20 23:02:53 2025 GMT Not After : Jul 27 23:02:53 2025 GMT Subject: CN=687d759d-3aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:11:3b:d6:f2:b2:25:76:04:d2:74:c1:b9:89: 1b:28:2a:4f:0d:8d:d8:88:83:e3:d8:a6:83:8b:6d: 36:8f:09:71:fd:e4:14:e6:5b:91:d3:a2:cf:be:62: 61:96:e2:5e:04:7a:ef:69:18:d0:5f:c9:2b:cf:92: b5:67:53:6b:26:fe:67:45:b1:14:2d:38:ea:28:0e: 4c:79:ce:27:73:04:51:c9:07:50:32:3d:08:ba:32: 79:92:1b:a9:85:45:25:f2:88:74:11:9d:b9:21:2c: 02:8c:be:23:2c:a3:10:a6:44:b6:ab:e0:94:9e:59: d9:c6:ff:60:92:bb:1d:25:37:8a:76:f2:7f:1b:17: 8a:67:ca:57:9f:ab:2c:ba:1c:e0:93:73:c6:d2:9d: 50:4d:92:b6:0e:48:03:37:6f:b4:43:b2:6f:48:8a: 1a:b1:f2:8f:f3:9a:ce:f3:03:56:c6:bf:93:3e:1c: 09:40:ca:7b:50:6b:64:ca:ed:94:80:fc:89:59:fe: a9:70:30:4c:68:6c:fe:07:cd:24:81:9f:be:5f:ff: 23:7c:07:74:c2:d4:4d:ce:c0:f9:5c:b4:a7:aa:dc: 0f:7c:6f:a3:f7:54:e0:fe:e0:b4:1d:dd:0a:58:dd: 13:de:17:74:89:26:91:09:13:54:1b:02:e3:7f:b8: 3f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F6:3B:FB:F6:E1:97:58:7E:5B:53:DE:68:06:AA:7A:10:BF:07:20 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:98:83:7f:8c:31:58:e3:cd:eb:69:64:72:f8:0c:6a:ce:d8: 57:d1:c0:0a:d0:69:df:0c:be:43:3f:32:7e:96:42:9a:22:da: 85:c9:9d:d0:80:64:a5:d3:8b:a6:26:30:84:52:30:dc:9b:e4: c1:28:1a:11:cd:2f:d3:af:e7:16:bc:6b:14:5e:18:5d:86:48: 0b:74:42:b3:f9:52:52:39:eb:50:b6:18:4f:dd:4c:1f:1a:ce: 95:a3:2f:87:eb:c8:5d:e0:25:88:b2:5e:86:ef:79:5b:5c:b1: 2b:1f:c9:5d:7a:20:5e:79:89:d5:85:8c:d5:2f:54:a4:ac:4f: cc:8b:f6:0c:18:3d:68:a2:ae:9d:ab:9f:9b:c0:0b:cd:05:bb: d4:0f:fb:51:1f:dd:03:ae:ab:91:df:2b:dd:ea:4c:86:b1:9f: d5:e7:60:0a:c2:eb:fa:72:1e:a5:d5:93:c9:d4:ef:a9:04:bc: 90:25:65:d9:8d:77:36:f5:ec:7b:16:ba:85:08:b5:c0:2c:c1: bd:28:12:e9:1a:a2:08:32:ea:19:80:ae:44:a9:ed:87:51:a2: 2c:d5:4f:bc:1d:27:87:c9:a2:d6:29:e3:e6:fa:17:45:ca:64: aa:1d:c0:16:8e:79:f8:5f:ba:0d:0f:b0:53:d9:3a:7e:ea:40: fa:a0:3a:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUwNzIwMjMwMjUzWhcNMjUwNzI3MjMwMjUzWjAYMRYwFAYD VQQDEw02ODdkNzU5ZC0zYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBE71vKyJXYE0nTBuYkbKCpPDY3YiIPj2KaDi202jwlx/eQU5luR06LPvmJh luJeBHrvaRjQX8krz5K1Z1NrJv5nRbEULTjqKA5Mec4ncwRRyQdQMj0IujJ5khup hUUl8oh0EZ25ISwCjL4jLKMQpkS2q+CUnlnZxv9gkrsdJTeKdvJ/GxeKZ8pXn6ss uhzgk3PG0p1QTZK2DkgDN2+0Q7JvSIoasfKP85rO8wNWxr+TPhwJQMp7UGtkyu2U gPyJWf6pcDBMaGz+B80kgZ++X/8jfAd0wtRNzsD5XLSnqtwPfG+j91Tg/uC0Hd0K WN0T3hd0iSaRCRNUGwLjf7g/3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBz2O/v2 4ZdYfltT3mgGqnoQvwcgMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQmIN/jDFY483raWRy+AxqzthX0cAK0GnfDL5DPzJ+lkKaItqFyZ3Q gGSl04umJjCEUjDcm+TBKBoRzS/Tr+cWvGsUXhhdhkgLdEKz+VJSOetQthhP3Uwf Gs6Voy+H68hd4CWIsl6G73lbXLErH8ldeiBeeYnVhYzVL1SkrE/Mi/YMGD1ooq6d q5+bwAvNBbvUD/tRH90DrquR3yvd6kyGsZ/V52AKwuv6ch6l1ZPJ1O+pBLyQJWXZ jXc29ex7FrqFCLXALMG9KBLpGqIIMuoZgK5Eqe2HUaIs1U+8HSeHyaLWKePm+hdF ymSqHcAWjnn4X7oND7BT2Tp+6kD6oDrg -----END CERTIFICATE-----Generated at Mon Jul 21 03:05:29 2025 by rpki-client