$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: HfSRRqRYuFDxrTCoZE8DhONBs9z+a5OKkIeCZ7FhiGk= Subject key identifier: 9C:0E:C3:09:F3:CC:40:99:B3:C2:3D:0A:E1:B2:B4:02:20:07:BD:FB Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: 73 Signing time: Sat 19 Jul 2025 07:10:00 +0000 Manifest this update: Sat 19 Jul 2025 07:10:00 +0000 Manifest next update: Sat 26 Jul 2025 07:10:00 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: PyP+RV+L7vPKVV3QgRfdM/c7T2cQ1vjxofkU6c3d5ZA=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Jul 19 07:10:00 2025 GMT Not After : Jul 26 07:10:00 2025 GMT Subject: CN=687b44c8-4591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:19:59:7d:4d:32:78:2f:06:8f:4b:bb:ee:66: aa:00:25:dc:4c:eb:5f:a1:89:f7:ba:2e:c3:a1:2a: 10:3a:8a:15:e0:3f:09:b4:91:c0:65:5e:5a:b3:09: 1f:76:58:de:d9:fa:b4:92:48:ca:bd:d2:73:10:b1: 91:4b:76:2e:ad:fc:85:a6:55:d0:bd:2c:f7:d4:5f: 10:87:a9:5d:fd:b4:8f:a7:93:0a:20:6f:34:bf:79: d0:4d:72:02:70:3f:67:bf:8c:99:42:4c:90:0a:eb: 0d:cc:13:a9:bd:f3:de:30:33:6b:07:ec:da:ab:11: d9:64:78:0a:e5:9c:4c:9a:fe:8e:4b:b7:bd:1c:40: e1:24:2f:32:9f:bc:8c:30:b5:17:49:c3:05:c9:7f: 88:5e:aa:9d:7e:ac:8f:d3:58:74:15:0e:5c:e2:04: 00:bf:26:9c:a9:ca:61:62:0e:e3:fb:92:e9:e7:2c: 4a:29:68:bb:9f:ab:45:91:9e:70:00:19:de:52:4c: 89:ba:16:92:7d:cd:c8:63:5f:06:b6:02:71:a4:87: 38:ee:bc:9f:b4:90:17:6e:e4:e1:36:58:b1:7a:8b: 76:d2:26:34:8a:98:48:91:cb:13:4f:8c:99:7d:b3: 63:29:26:63:7c:fc:99:73:92:c9:c4:88:19:88:d6: a6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0E:C3:09:F3:CC:40:99:B3:C2:3D:0A:E1:B2:B4:02:20:07:BD:FB X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:74:90:ff:01:9b:a1:bd:35:57:c5:67:bd:91:34:1e:4b:60: 00:fb:97:b2:b7:d5:73:4d:d5:ad:b5:55:d5:73:f0:56:46:ac: 55:cd:70:44:06:d5:d6:a3:d3:d7:1e:61:a1:a4:c1:08:10:e1: 82:c1:7b:2c:4b:d1:98:e1:de:af:e1:87:3f:44:5c:20:d7:c6: 14:16:73:2e:66:1c:2a:e4:84:71:aa:aa:fe:ef:fe:71:dd:ff: c5:5d:10:5c:ff:dd:d0:c8:e6:f8:8c:86:f9:b0:8e:12:6c:7c: 65:d6:da:7e:0e:25:7a:40:5d:30:32:3a:22:3c:d7:e9:ac:86: 5c:f7:aa:98:1b:87:6c:3a:f4:89:31:03:97:c6:78:7a:1e:23: 28:24:13:96:97:d3:e3:71:6b:82:17:d1:76:7f:36:44:15:cc: 2e:4b:6f:5c:76:3b:9b:74:57:65:f9:df:dd:c2:6b:78:a7:fa: c6:89:8d:c6:53:ce:9e:04:40:b7:ab:53:f5:86:2a:de:64:82: 8c:21:03:16:7c:d6:74:6e:58:79:5c:5c:c1:79:1f:97:f3:64: 81:49:28:62:59:5e:e8:7f:98:f2:1c:a6:77:d3:98:25:92:5b: c1:50:0a:ff:eb:9c:ec:c1:05:2a:fb:39:f1:f5:d2:62:cc:ad: e5:29:87:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNkZEMDg4N0EzOTAzRTNENkUxN0JCOUNGRDhFRjI2OTI3 MEJBQ0IwNzAeFw0yNTA3MTkwNzEwMDBaFw0yNTA3MjYwNzEwMDBaMBgxFjAUBgNV BAMTDTY4N2I0NGM4LTQ1OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpGVl9TTJ4LwaPS7vuZqoAJdxM61+hife6LsOhKhA6ihXgPwm0kcBlXlqzCR92 WN7Z+rSSSMq90nMQsZFLdi6t/IWmVdC9LPfUXxCHqV39tI+nkwogbzS/edBNcgJw P2e/jJlCTJAK6w3ME6m9894wM2sH7NqrEdlkeArlnEya/o5Lt70cQOEkLzKfvIww tRdJwwXJf4heqp1+rI/TWHQVDlziBAC/JpypymFiDuP7kunnLEopaLufq0WRnnAA Gd5STIm6FpJ9zchjXwa2AnGkhzjuvJ+0kBdu5OE2WLF6i3bSJjSKmEiRyxNPjJl9 s2MpJmN8/JlzksnEiBmI1qb7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnA7DCfPM QJmzwj0K4bK0AiAHvfswHwYDVR0jBBgwFoAUb9CIejkD49bhe7nP2O8mknC6ywcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0U2RTZCRTQ0QkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjlDSWVqa0Q0OWJoZTduUDJPOG1rbkM2eXdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0U2RTZCRTQ0QkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL2I5Q0llamtENDli aGU3blAyTzhta25DNnl3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACh0kP8Bm6G9NVfFZ72RNB5LYAD7l7K31XNN1a21VdVz8FZGrFXNcEQG 1daj09ceYaGkwQgQ4YLBeyxL0Zjh3q/hhz9EXCDXxhQWcy5mHCrkhHGqqv7v/nHd /8VdEFz/3dDI5viMhvmwjhJsfGXW2n4OJXpAXTAyOiI81+mshlz3qpgbh2w69Ikx A5fGeHoeIygkE5aX0+Nxa4IX0XZ/NkQVzC5Lb1x2O5t0V2X5393Ca3in+saJjcZT zp4EQLerU/WGKt5kgowhAxZ81nRuWHlcXMF5H5fzZIFJKGJZXuh/mPIcpnfTmCWS W8FQCv/rnOzBBSr7OfH10mLMreUphyQ= -----END CERTIFICATE-----Generated at Sun Jul 20 21:56:48 2025 by rpki-client