$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft File: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft (raw, json) Hash identifier: VCrKah/EbSyo5iFZqsfpENmVS3LUei1r01gwa7oVwXs= Subject key identifier: C1:77:BE:3E:D6:50:58:4B:2D:D5:26:7F:54:9D:EB:A6:A1:28:DE:7C Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft Manifest number: B7 Signing time: Sun 20 Jul 2025 16:23:35 +0000 Manifest this update: Sun 20 Jul 2025 16:23:34 +0000 Manifest next update: Sun 27 Jul 2025 16:23:34 +0000 Files and hashes: 1: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl (hash: 8BULXseJ03sTSF3RoNiZLeREixIDrJByNv96E5exMjc=) 2: D5BFBE9E591811EF80AA9F21C4F9AE02.roa (hash: Be1e/Cdz8VdYcqGFGYCyAGRq8xP47qVzQCL7lbjwbsc=) 3: 626CA672591911EFAF1F1D23C4F9AE02.roa (hash: qW4tv57PdJFsLgd8tlpnpMjIsJF0H5vXkIX6yK4Jq7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Validity Not Before: Jul 20 16:23:34 2025 GMT Not After : Jul 27 16:23:34 2025 GMT Subject: CN=687d1807-a76b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f8:e6:a6:7e:32:1f:fd:e2:e3:f7:f6:68:18: b0:69:dc:7a:85:ba:1e:12:1e:0a:e2:94:13:12:8c: 98:7b:23:81:eb:06:8f:f7:e8:60:97:e0:be:eb:1e: e5:cc:4b:96:1b:c0:e7:36:4c:7b:e8:37:e4:d6:6e: 62:f4:2c:a1:5d:b6:11:66:3d:e4:11:2a:e5:ae:f3: 81:17:94:6f:e0:c6:12:ca:42:c8:90:82:8f:c0:bf: a6:fe:11:ba:c3:89:4f:57:8b:1e:62:73:0d:36:5c: 4c:d9:33:37:3f:3d:36:d2:c6:19:b7:f8:ab:30:fe: 11:db:27:8a:ca:d1:34:91:26:77:2f:31:87:42:a3: ec:02:78:74:0d:c2:1b:70:3c:f0:c2:0e:ee:0b:40: 6b:65:a0:12:5c:ab:af:68:b3:d7:bf:af:b1:8d:cb: 57:f0:73:25:1c:d8:2b:df:73:be:3b:62:f5:4e:0b: d1:4b:69:5f:84:dd:90:7a:9c:02:8a:31:75:a0:57: 82:4c:f5:8c:26:67:79:3f:7e:2a:da:b7:bd:0c:e7: ea:6f:8e:01:48:2d:fc:68:e9:07:ef:4b:42:32:ad: 71:ee:4e:3d:e9:e6:19:4d:c4:5e:7e:ea:50:32:c9: 8e:0c:20:bc:4d:84:93:63:a6:02:c6:23:47:3d:d7: f7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:77:BE:3E:D6:50:58:4B:2D:D5:26:7F:54:9D:EB:A6:A1:28:DE:7C X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:d4:30:5a:0b:57:8f:eb:a3:10:fd:0f:93:ea:28:95:4a:5b: a6:53:47:1b:ac:b0:96:27:83:07:b8:a2:28:cb:67:e5:2d:37: f6:71:fe:cc:8c:0f:0c:e9:85:a7:49:9c:63:44:4d:eb:68:16: ca:6a:c9:c7:09:0a:ac:82:97:29:cd:6e:4c:d8:99:0b:9e:fd: 76:60:eb:f6:6f:9b:54:e4:91:39:6f:e7:45:f8:44:53:9a:f3: f4:1e:f9:a8:1c:68:81:fe:f5:6a:a5:da:be:48:47:cc:36:5e: 9d:b3:a8:61:c3:38:19:ed:c1:6c:c2:c8:dd:06:2e:00:22:42: cd:88:d9:ef:48:52:8f:b7:15:0c:e7:7f:ae:b8:14:36:17:0b: 75:9e:95:0d:85:d5:49:77:da:4f:fd:be:75:41:cc:e7:36:3a: 91:8c:2e:77:45:17:34:d5:10:07:e5:a3:c7:35:09:22:ea:78: b9:fe:24:74:9c:f9:e4:fd:9a:48:4b:14:33:3b:59:77:4b:6d: 1f:5e:f5:46:65:2d:02:ca:46:0f:52:c7:e9:f4:40:06:2a:23: 72:d3:e4:be:1f:85:ad:3b:c8:12:ab:24:83:b8:d4:13:55:2a: 0e:1b:d6:b6:54:cf:54:af:7a:50:6e:55:d0:ea:2d:96:34:31: 1e:d7:cd:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKDBEQUY0RjFBQzU4MTk4OTMxQUQ1QzAwMDdGNTI1NUE3 OUREMEU0QzcwHhcNMjUwNzIwMTYyMzM0WhcNMjUwNzI3MTYyMzM0WjAYMRYwFAYD VQQDEw02ODdkMTgwNy1hNzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPjmpn4yH/3i4/f2aBiwadx6hboeEh4K4pQTEoyYeyOB6waP9+hgl+C+6x7l zEuWG8DnNkx76Dfk1m5i9CyhXbYRZj3kESrlrvOBF5Rv4MYSykLIkIKPwL+m/hG6 w4lPV4seYnMNNlxM2TM3Pz020sYZt/irMP4R2yeKytE0kSZ3LzGHQqPsAnh0DcIb cDzwwg7uC0BrZaASXKuvaLPXv6+xjctX8HMlHNgr33O+O2L1TgvRS2lfhN2QepwC ijF1oFeCTPWMJmd5P34q2re9DOfqb44BSC38aOkH70tCMq1x7k496eYZTcRefupQ MsmODCC8TYSTY6YCxiNHPdf3vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMF3vj7W UFhLLdUmf1Sd66ahKN58MB8GA1UdIwQYMBaAFA2vTxrFgZiTGtXAAH9SVaed0OTH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80RUJBODQ2RTU4 NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi9EYTlQR3NXQm1KTWExY0FBZjFKVnA1M1E1 TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80RUJBODQ2RTU4NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi9EYTlQR3NXQm1K TWExY0FBZjFKVnA1M1E1TWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ1DBaC1eP66MQ/Q+T6iiVSlumU0cbrLCWJ4MHuKIoy2flLTf2cf7M jA8M6YWnSZxjRE3raBbKasnHCQqsgpcpzW5M2JkLnv12YOv2b5tU5JE5b+dF+ERT mvP0HvmoHGiB/vVqpdq+SEfMNl6ds6hhwzgZ7cFswsjdBi4AIkLNiNnvSFKPtxUM 53+uuBQ2Fwt1npUNhdVJd9pP/b51QcznNjqRjC53RRc01RAH5aPHNQki6ni5/iR0 nPnk/ZpISxQzO1l3S20fXvVGZS0CykYPUsfp9EAGKiNy0+S+H4WtO8gSqySDuNQT VSoOG9a2VM9Ur3pQblXQ6i2WNDEe183+ -----END CERTIFICATE-----Generated at Sun Jul 20 18:51:16 2025 by rpki-client