$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: DKyZW+kbt1E5wvvO2fVsG0sLO0W66ikG/b38lnJKITI= Subject key identifier: 7E:7B:8F:8C:28:56:81:1E:E4:0B:06:53:C1:F8:D4:A2:A7:85:F1:0E Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 9F Signing time: Sat 19 Jul 2025 06:29:30 +0000 Manifest this update: Sat 19 Jul 2025 06:29:29 +0000 Manifest next update: Sat 26 Jul 2025 06:29:29 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: AEX1PvCzk8zcVn9vFLm0JA5i+QDzNON/SEoRuqCDl/g=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Jul 19 06:29:29 2025 GMT Not After : Jul 26 06:29:29 2025 GMT Subject: CN=687b3b4a-8a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9c:7e:f3:3a:28:c4:8c:11:f1:11:8a:dc:3a: 0a:aa:22:fb:9d:21:c5:84:e0:31:04:8d:ad:69:6d: dc:94:d6:6d:35:bd:35:99:4a:80:f2:b5:a7:82:86: 7b:49:52:6c:bd:ba:d4:94:5b:24:73:50:4d:30:76: 33:a6:4c:31:87:3d:96:21:90:aa:bf:c1:62:23:b6: b3:8d:4b:6b:a1:a6:f1:2b:cc:92:bb:cb:c6:7e:53: cd:fd:a6:46:a0:7b:8e:61:55:77:4a:2f:7c:fa:ab: df:b0:49:cb:1d:7b:b0:5f:15:16:59:21:45:14:95: b0:58:b6:6a:4d:47:3a:8b:d3:f6:28:6d:11:87:cb: ad:95:83:be:81:4e:cf:8b:cb:4f:7c:a9:de:93:17: a9:fb:86:db:ec:bb:4e:f8:14:e4:0b:b6:4c:9b:9a: 2c:c6:0d:b1:41:fe:7e:ca:5d:4f:97:6f:60:3b:8a: 89:12:d3:24:55:e0:cf:a4:0a:26:a1:9d:a2:54:6c: cf:d5:66:c6:dd:8d:fd:e8:e3:a7:c2:5d:81:d7:e5: f7:a8:75:3a:26:c6:74:b9:e3:ed:d4:df:bc:c6:c2: c4:cb:31:0e:2f:56:98:d1:d4:b8:39:91:f1:19:34: a3:c6:1a:82:49:99:ee:93:6e:b1:c2:b2:e8:49:2f: 0a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7B:8F:8C:28:56:81:1E:E4:0B:06:53:C1:F8:D4:A2:A7:85:F1:0E X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:86:ed:52:b6:3f:0a:ec:c3:87:7e:0a:15:b1:62:b6:b3:db: 26:cc:f0:68:bd:da:12:a5:87:f1:bf:d0:f4:45:4a:3c:78:90: 64:33:db:79:f0:cc:d8:b3:90:bb:53:fd:7d:88:ea:3d:b4:4f: 0c:a8:e1:5f:58:50:54:7e:93:fe:9b:1f:a3:3b:42:4e:81:0f: db:ea:ac:5a:25:15:cd:a6:a0:46:b4:04:e8:77:b9:1f:1a:67: ad:79:0b:c3:03:d7:d9:be:5b:f4:3b:c0:af:9c:b3:ad:b0:0c: f1:ca:a9:8a:21:67:fe:fb:1c:b2:7f:e3:4d:19:28:f1:4c:e0: 3b:0c:36:fb:59:14:76:72:a2:64:a6:87:f5:b5:b0:35:dc:4e: 60:96:99:10:47:bd:f7:e2:a7:e6:dd:a6:bf:10:41:c6:6b:b5: ec:48:e7:62:b8:96:62:2c:55:a9:7f:2c:2d:e1:01:52:fc:fc: 72:50:d6:db:ad:ba:bd:78:a9:21:dd:37:1a:d0:68:4f:79:9d: 7d:b2:e8:4c:f4:89:ea:19:e0:ca:f3:bc:f9:f1:52:a3:7f:5a: f3:66:ce:d1:45:fa:89:68:d4:b0:f3:80:f6:e9:72:62:6a:10: 65:9d:cf:1f:2a:7e:35:67:a9:3f:84:6c:3d:81:8d:1a:bb:38: 4f:88:cc:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKDhCNDg2QUNDQUYxMkE2N0E5NTY4OEU4RDExQkQ2NThD MDQxQzEyNUEwHhcNMjUwNzE5MDYyOTI5WhcNMjUwNzI2MDYyOTI5WjAYMRYwFAYD VQQDEw02ODdiM2I0YS04YTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5x+8zooxIwR8RGK3DoKqiL7nSHFhOAxBI2taW3clNZtNb01mUqA8rWngoZ7 SVJsvbrUlFskc1BNMHYzpkwxhz2WIZCqv8FiI7azjUtroabxK8ySu8vGflPN/aZG oHuOYVV3Si98+qvfsEnLHXuwXxUWWSFFFJWwWLZqTUc6i9P2KG0Rh8utlYO+gU7P i8tPfKnekxep+4bb7LtO+BTkC7ZMm5osxg2xQf5+yl1Pl29gO4qJEtMkVeDPpAom oZ2iVGzP1WbG3Y396OOnwl2B1+X3qHU6JsZ0uePt1N+8xsLEyzEOL1aY0dS4OZHx GTSjxhqCSZnuk26xwrLoSS8KtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH57j4wo VoEe5AsGU8H41KKnhfEOMB8GA1UdIwQYMBaAFItIasyvEqZ6lWiOjRG9ZYwEHBJa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi80RDdDRTY2QTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3BucVZhSTZORWIxbGpBUWNF bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi80RDdDRTY2QTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi9pMGhxeks4U3Bu cVZhSTZORWIxbGpBUWNFbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRhu1Stj8K7MOHfgoVsWK2s9smzPBovdoSpYfxv9D0RUo8eJBkM9t5 8MzYs5C7U/19iOo9tE8MqOFfWFBUfpP+mx+jO0JOgQ/b6qxaJRXNpqBGtATod7kf GmeteQvDA9fZvlv0O8CvnLOtsAzxyqmKIWf++xyyf+NNGSjxTOA7DDb7WRR2cqJk pof1tbA13E5glpkQR7334qfm3aa/EEHGa7XsSOdiuJZiLFWpfywt4QFS/PxyUNbb rbq9eKkh3Tca0GhPeZ19suhM9InqGeDK87z58VKjf1rzZs7RRfqJaNSw84D26XJi ahBlnc8fKn41Z6k/hGw9gY0auzhPiMwr -----END CERTIFICATE-----Generated at Sun Jul 20 20:25:35 2025 by rpki-client