$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft File: OZp7H8QgfroHB6hRUZXMaOg2q_g.mft (raw, json) Hash identifier: BKpcacxW7A2D0NWIV/jz2XMDEqfQpvvDjTKFLVnrq2k= Subject key identifier: C6:66:AE:5B:4C:51:96:D2:FD:1C:28:10:8F:1C:8F:EF:E8:21:47:28 Authority key identifier: 39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 Certificate issuer: /CN=A91C1025/serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft Manifest number: 87 Signing time: Sat 19 Jul 2025 06:52:22 +0000 Manifest this update: Sat 19 Jul 2025 06:52:21 +0000 Manifest next update: Sat 26 Jul 2025 06:52:21 +0000 Files and hashes: 1: OZp7H8QgfroHB6hRUZXMaOg2q_g.crl (hash: gJ/f9nFJAWWAkanWtHQdzWm5uUHx1HPPS6NMtQHXouY=) 2: 4996A7209D9211EFAD3DCF45C4F9AE02.roa (hash: X6VArMN74z4tgeDbEQQzHaT88BAEASciUle7rIza6xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=399A7B1FC4207EBA0707A8515195CC68E836ABF8 Validity Not Before: Jul 19 06:52:21 2025 GMT Not After : Jul 26 06:52:21 2025 GMT Subject: CN=687b40a5-e1f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b5:12:83:ac:bb:52:a6:05:1a:d3:37:10:d1: 5d:57:db:7b:0a:0c:bc:7d:27:a5:f4:52:ab:2f:d7: fd:13:fa:ed:cf:19:2b:d4:7c:42:40:22:20:21:56: 4f:8d:fe:37:a8:86:ce:d7:7b:06:d9:f2:0c:47:84: 8e:e2:16:3c:c4:e1:e1:04:8a:99:f0:df:e5:06:c1: 81:48:c3:0f:93:a7:a1:48:ad:93:1e:b1:c2:d8:13: 88:93:8c:e5:28:1d:34:6e:c9:2a:a1:98:3f:83:0b: ea:86:73:59:a1:d0:d8:d4:a9:d3:e4:9b:65:af:20: 96:14:a3:ef:78:5b:3c:c3:58:37:70:f8:0e:81:7f: 81:87:84:df:6c:05:bb:e4:0d:df:fc:8c:a2:a2:31: 49:3e:d8:81:50:d9:e3:0f:2a:7f:6d:26:c6:cc:a6: c7:61:f9:b2:d7:85:04:65:ee:ed:aa:d5:0c:72:b2: 01:5f:c2:42:1c:f6:c8:fd:79:14:24:df:b8:23:bf: af:c4:67:b7:bc:a5:e8:99:79:09:7b:03:3a:1b:79: df:69:ef:04:33:2f:48:6d:1a:ee:08:e0:6a:f4:53: 79:0f:59:06:2c:9e:71:3a:ca:ed:e0:66:b7:aa:f0: 28:28:c7:53:df:39:f3:dc:54:1c:e0:44:12:32:f8: 1a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:66:AE:5B:4C:51:96:D2:FD:1C:28:10:8F:1C:8F:EF:E8:21:47:28 X509v3 Authority Key Identifier: keyid:39:9A:7B:1F:C4:20:7E:BA:07:07:A8:51:51:95:CC:68:E8:36:AB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OZp7H8QgfroHB6hRUZXMaOg2q_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/8D7B9BF29D8411EF817E1420C4F9AE02/OZp7H8QgfroHB6hRUZXMaOg2q_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e0:35:31:50:5f:8b:8a:97:c3:49:a2:1b:0b:61:63:ab:a2: c6:84:94:b4:b2:f0:c2:42:c0:f9:a1:38:d4:47:86:cf:26:06: bd:55:61:ba:14:25:f1:48:6f:e5:24:7f:76:ab:22:ec:74:42: 9c:19:be:20:7b:cb:d7:da:5a:e3:53:4e:a0:4e:f0:56:69:9a: c2:d3:3c:0d:5b:8a:ac:0d:4c:a1:11:cc:3f:77:f4:5a:5f:32: a7:5a:dd:c9:cc:f9:39:a3:96:d4:a5:08:f0:55:a9:6e:47:44: 3a:7a:ee:ff:c2:ae:4b:0c:b8:97:3e:e9:75:f1:6b:cf:78:02: 43:fa:a0:43:8f:04:00:f9:72:7c:e2:1c:37:8e:06:1e:af:40: 46:89:31:25:1c:c8:af:5e:9a:5c:4e:f4:c9:eb:9c:9c:f0:a5: 6a:80:41:e1:67:75:9b:6e:93:a7:76:78:c1:41:06:91:38:a1: d9:9e:7f:f8:eb:53:8d:d1:e6:2e:d9:a3:86:2b:a6:cc:47:a2: 46:e4:fe:ee:17:22:5d:e5:7c:e3:59:f5:6d:28:5c:a7:20:43: 31:ae:7b:42:ce:73:9a:b8:01:e5:c9:11:b4:8f:b5:58:3c:d6: 87:13:b8:92:14:41:36:23:7d:2e:13:ab:92:d7:2a:ec:6a:67: cc:b6:60:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDM5OUE3QjFGQzQyMDdFQkEwNzA3QTg1MTUxOTVDQzY4 RTgzNkFCRjgwHhcNMjUwNzE5MDY1MjIxWhcNMjUwNzI2MDY1MjIxWjAYMRYwFAYD VQQDEw02ODdiNDBhNS1lMWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLUSg6y7UqYFGtM3ENFdV9t7Cgy8fSel9FKrL9f9E/rtzxkr1HxCQCIgIVZP jf43qIbO13sG2fIMR4SO4hY8xOHhBIqZ8N/lBsGBSMMPk6ehSK2THrHC2BOIk4zl KB00bskqoZg/gwvqhnNZodDY1KnT5JtlryCWFKPveFs8w1g3cPgOgX+Bh4TfbAW7 5A3f/IyiojFJPtiBUNnjDyp/bSbGzKbHYfmy14UEZe7tqtUMcrIBX8JCHPbI/XkU JN+4I7+vxGe3vKXomXkJewM6G3nfae8EMy9IbRruCOBq9FN5D1kGLJ5xOsrt4Ga3 qvAoKMdT3znz3FQc4EQSMvgaIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZmrltM UZbS/RwoEI8cj+/oIUcoMB8GA1UdIwQYMBaAFDmaex/EIH66BweoUVGVzGjoNqv4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS84RDdCOUJGMjlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zyb0hCNmhSVVpYTWFPZzJx X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09acDdIOFFnZnJvSEI2aFJVWlhNYU9nMnFfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS84RDdCOUJGMjlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9PWnA3SDhRZ2Zy b0hCNmhSVVpYTWFPZzJxX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ4DUxUF+LipfDSaIbC2Fjq6LGhJS0svDCQsD5oTjUR4bPJga9VWG6 FCXxSG/lJH92qyLsdEKcGb4ge8vX2lrjU06gTvBWaZrC0zwNW4qsDUyhEcw/d/Ra XzKnWt3JzPk5o5bUpQjwValuR0Q6eu7/wq5LDLiXPul18WvPeAJD+qBDjwQA+XJ8 4hw3jgYer0BGiTElHMivXppcTvTJ65yc8KVqgEHhZ3WbbpOndnjBQQaROKHZnn/4 61ON0eYu2aOGK6bMR6JG5P7uFyJd5XzjWfVtKFynIEMxrntCznOauAHlyRG0j7VY PNaHE7iSFEE2I30uE6uS1yrsamfMtmBl -----END CERTIFICATE-----Generated at Mon Jul 21 03:05:33 2025 by rpki-client