$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: pdItA8sGdbTqJnfGuFGQLF/YYJ9YV+QsHKY5VqcPKvY= Subject key identifier: 72:AA:DF:F6:39:66:BD:5C:04:74:9F:02:1E:24:54:19:29:10:5E:BE Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: AD Signing time: Sat 19 Jul 2025 06:15:09 +0000 Manifest this update: Sat 19 Jul 2025 06:15:09 +0000 Manifest next update: Sat 26 Jul 2025 06:15:09 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: laSn8US/i6smoj3GojlMS217YbCOXrn3BtwRxFLcF44=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: tNd1A1Pa4JpDSAJTUxSzKVvWvdR5TDXaWTiFNabeiYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Jul 19 06:15:09 2025 GMT Not After : Jul 26 06:15:09 2025 GMT Subject: CN=687b37ed-82ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a2:b8:fc:58:f9:eb:81:b9:3d:1e:f5:ba:0f: 41:f1:f2:e3:c3:ea:9b:dd:ea:88:e1:9f:00:04:7e: de:c4:2d:01:68:d9:9e:da:36:f3:b7:dd:fd:5c:f5: bd:f4:74:7c:af:07:8d:5d:c4:3d:e5:13:df:76:68: d4:71:44:95:fa:88:22:8b:35:27:fc:62:b0:7c:f7: a9:36:d2:26:43:8f:5e:8c:e4:7c:89:09:b1:27:4f: bb:a1:51:73:24:94:c5:81:8e:45:a4:47:c4:35:1a: fa:da:10:8d:67:4a:3d:78:4f:d5:e2:ed:85:75:e8: 64:a9:cc:0d:a7:17:69:af:35:b1:59:07:7e:8c:16: b1:d5:b1:c8:95:d8:e2:26:da:4f:9d:75:0a:2a:45: ee:e3:19:28:fe:88:ac:06:5b:28:a4:3f:91:35:cf: 64:ea:26:4c:6f:c4:84:a4:7c:7d:a6:39:d7:7f:fc: 13:d8:e5:87:19:74:7b:64:b8:95:8b:50:ff:d4:b7: ab:30:f3:81:1d:eb:ee:be:5d:3b:34:d2:d1:6d:9d: b5:35:7b:03:77:d9:30:3e:c2:2f:e1:92:2d:cd:68: 74:95:dc:df:11:f0:43:d0:58:11:79:d1:22:c6:b2: 57:91:05:f1:da:f9:4d:65:8b:e8:06:46:0f:b7:0f: e4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AA:DF:F6:39:66:BD:5C:04:74:9F:02:1E:24:54:19:29:10:5E:BE X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:d7:f2:fc:14:11:0f:43:5a:38:27:74:d2:78:1b:69:12:4f: ce:7a:a0:61:5c:27:bf:64:56:14:94:f2:5c:7c:9c:f3:b1:32: 89:d8:ae:5d:01:c0:14:3d:e0:53:98:6b:3e:33:a5:36:df:19: ee:4b:86:bf:9b:a3:99:60:7d:33:58:1c:b1:e0:11:40:d4:c8: 5c:ac:b4:17:1f:91:43:5d:37:ad:77:b8:d2:b7:97:72:95:64: 8c:87:9c:64:c1:2e:69:90:e0:56:fd:d7:67:b1:ea:ec:71:ff: f9:36:70:d1:6e:b5:c0:5d:76:48:39:b1:e4:e2:ca:60:75:54: 94:91:2a:16:7f:1f:47:3f:2d:36:ab:a8:6d:32:af:e9:aa:84: 2c:7a:a2:88:b4:10:b3:6a:8f:68:bd:c8:ba:91:b7:0f:d8:75: 03:0f:6f:8b:11:8d:2f:ea:96:3b:d9:95:63:9f:fc:0d:3e:4c: 72:a5:26:e3:16:e3:0d:9d:36:f6:cd:34:d8:a2:4a:5d:e5:db: 0a:4c:87:7f:fb:cc:01:7e:4f:46:65:1b:8b:0e:c7:1d:a2:d3: b5:aa:4d:ea:b4:dc:e4:e6:48:24:d8:9b:dd:1f:19:82:03:4c: f2:89:1d:c4:4c:00:8c:83:e5:84:87:ca:6a:53:6e:88:97:9d: 76:fd:83:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjUwNzE5MDYxNTA5WhcNMjUwNzI2MDYxNTA5WjAYMRYwFAYD VQQDEw02ODdiMzdlZC04MmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36K4/Fj564G5PR71ug9B8fLjw+qb3eqI4Z8ABH7exC0BaNme2jbzt939XPW9 9HR8rweNXcQ95RPfdmjUcUSV+ogiizUn/GKwfPepNtImQ49ejOR8iQmxJ0+7oVFz JJTFgY5FpEfENRr62hCNZ0o9eE/V4u2FdehkqcwNpxdprzWxWQd+jBax1bHIldji JtpPnXUKKkXu4xko/oisBlsopD+RNc9k6iZMb8SEpHx9pjnXf/wT2OWHGXR7ZLiV i1D/1LerMPOBHevuvl07NNLRbZ21NXsDd9kwPsIv4ZItzWh0ldzfEfBD0FgRedEi xrJXkQXx2vlNZYvoBkYPtw/kPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKq3/Y5 Zr1cBHSfAh4kVBkpEF6+MB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ1/L8FBEPQ1o4J3TSeBtpEk/OeqBhXCe/ZFYUlPJcfJzzsTKJ2K5d AcAUPeBTmGs+M6U23xnuS4a/m6OZYH0zWByx4BFA1MhcrLQXH5FDXTetd7jSt5dy lWSMh5xkwS5pkOBW/ddnserscf/5NnDRbrXAXXZIObHk4spgdVSUkSoWfx9HPy02 q6htMq/pqoQseqKItBCzao9ovci6kbcP2HUDD2+LEY0v6pY72ZVjn/wNPkxypSbj FuMNnTb2zTTYokpd5dsKTId/+8wBfk9GZRuLDscdotO1qk3qtNzk5kgk2JvdHxmC A0zyiR3ETACMg+WEh8pqU26Il512/YO4 -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:27 2025 by rpki-client