$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft (raw, json) Hash identifier: zr7cUGXVz8RmOctl96I6eW14QAHmsoT2S2wCkpT3r2s= Subject key identifier: 0D:5A:C6:32:D0:CD:F0:7F:AD:AF:BE:62:44:45:7F:4F:B4:CB:50:4E Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 08E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft Manifest number: 08CF Signing time: Fri 18 Jul 2025 20:42:52 +0000 Manifest this update: Fri 18 Jul 2025 20:42:52 +0000 Manifest next update: Fri 25 Jul 2025 20:42:52 +0000 Files and hashes: 1: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl (hash: u2OxtStP3wYU5utKT/z7/b6ypgl8292GqoaMXwco11I=) 2: 465DBB30BA8811EAAF996D39C4F9AE02.roa (hash: 23ndFVCcLg+/bCNKhL706A7YBuPjvG2i31lg9YjdTYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Jul 18 20:42:52 2025 GMT Not After : Jul 25 20:42:52 2025 GMT Subject: CN=687ab1cc-04be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:68:05:81:b7:d1:79:8f:40:ae:6d:d7:5c:c6: ce:ff:6a:ee:48:40:d0:08:62:32:c8:1a:80:e5:01: 0c:9f:7a:a4:50:ab:a5:50:8a:30:fd:eb:40:0c:2b: 21:02:d9:f5:b1:d6:2a:ed:8c:14:b2:f6:e5:2e:b6: 81:d5:41:fc:8b:62:3f:c5:25:f9:ad:c3:71:a0:bb: bd:f4:69:dd:1e:7d:81:09:9f:80:52:2c:89:69:0a: f6:6f:e1:ad:91:af:ca:59:b1:36:d5:44:a8:a9:9a: ec:6a:39:9f:72:90:3e:21:9c:f6:0e:ad:5a:05:3f: 1f:05:e0:9a:32:8a:8b:e9:96:64:a5:0c:a0:f9:13: 8d:d5:c7:aa:93:2a:48:ce:ab:1c:81:69:47:b1:03: d8:ac:1f:95:6d:28:00:25:f2:8f:6e:d6:69:24:bd: 77:7c:9f:73:31:de:36:dc:90:f6:e5:e9:38:a2:5d: 85:c9:6e:ee:9f:e2:c8:52:97:84:01:34:f1:28:32: 38:d3:55:91:09:17:14:40:68:05:67:20:1e:03:e2: 93:51:bf:73:eb:a1:e4:98:c8:74:2e:17:46:92:08: 23:c9:0a:73:6a:de:f2:35:2c:6d:fe:4b:2d:c8:b7: b9:06:e3:0e:a9:95:12:97:31:32:d8:24:bf:f3:77: 31:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5A:C6:32:D0:CD:F0:7F:AD:AF:BE:62:44:45:7F:4F:B4:CB:50:4E X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:06:9a:d9:eb:fa:71:4d:8f:6f:26:4c:c9:a7:49:d1:f1:25: 5f:4c:76:c7:c0:65:5f:ab:4a:0b:c1:e6:10:fd:36:5b:aa:29: 7f:99:6c:d9:50:8c:1e:c0:cb:df:9f:74:dc:e9:ba:6d:87:75: 9e:26:76:1c:ac:f3:ad:38:ac:5a:65:23:a9:d3:97:5f:23:83: f5:13:33:cb:eb:01:d4:9b:1a:3b:b0:f8:9b:db:a3:f0:46:4f: 63:74:00:a8:65:bf:c1:b5:43:ed:e0:99:c2:e8:26:72:6c:4d: 8e:e4:d7:79:65:35:50:8d:74:2d:80:cc:78:0a:21:4f:8e:09: c7:5d:01:69:87:b0:7e:48:56:8e:21:08:7a:89:bd:09:0c:d1: a9:87:d9:ae:f1:63:21:a1:fd:0b:7d:ed:93:26:94:67:5e:d5: f3:b2:2e:47:ff:d9:16:eb:4f:34:5e:71:b2:ca:e1:e7:95:75: 49:7a:1e:5b:8d:e5:3a:9d:e1:ca:85:20:4b:2f:9a:0a:4c:1d: 92:a2:02:62:21:86:1f:c2:5f:8d:67:ae:25:cf:4d:7d:e2:3c: 15:29:e6:53:12:73:d5:76:61:4c:c6:44:d9:33:cc:a7:6a:d5: c6:7e:1b:65:c0:af:32:97:58:d3:72:eb:da:73:4a:f0:3f:4d: cb:72:81:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjUwNzE4MjA0MjUyWhcNMjUwNzI1MjA0MjUyWjAYMRYwFAYD VQQDEw02ODdhYjFjYy0wNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWgFgbfReY9Arm3XXMbO/2ruSEDQCGIyyBqA5QEMn3qkUKulUIow/etADCsh Atn1sdYq7YwUsvblLraB1UH8i2I/xSX5rcNxoLu99GndHn2BCZ+AUiyJaQr2b+Gt ka/KWbE21USoqZrsajmfcpA+IZz2Dq1aBT8fBeCaMoqL6ZZkpQyg+RON1ceqkypI zqscgWlHsQPYrB+VbSgAJfKPbtZpJL13fJ9zMd423JD25ek4ol2FyW7un+LIUpeE ATTxKDI401WRCRcUQGgFZyAeA+KTUb9z66HkmMh0LhdGkggjyQpzat7yNSxt/kst yLe5BuMOqZUSlzEy2CS/83cxBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1axjLQ zfB/ra++YkRFf0+0y1BOMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yQjczMkU3MEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2 bXRCYUtKMWhpQ0lMWDhfRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8BprZ6/pxTY9vJkzJp0nR8SVfTHbHwGVfq0oLweYQ/TZbqil/mWzZ UIwewMvfn3Tc6bpth3WeJnYcrPOtOKxaZSOp05dfI4P1EzPL6wHUmxo7sPib26Pw Rk9jdACoZb/BtUPt4JnC6CZybE2O5Nd5ZTVQjXQtgMx4CiFPjgnHXQFph7B+SFaO IQh6ib0JDNGph9mu8WMhof0Lfe2TJpRnXtXzsi5H/9kW6080XnGyyuHnlXVJeh5b jeU6neHKhSBLL5oKTB2SogJiIYYfwl+NZ64lz0194jwVKeZTEnPVdmFMxkTZM8yn atXGfhtlwK8yl1jTcuvac0rwP03LcoEj -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:22 2025 by rpki-client