$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft File: F11CAiv1C9bCDzCxxa2MlOCFvE4.mft (raw, json) Hash identifier: V3cKYiQsXhe4ot5xG9nXCIMiEXwIo2ibDx7GzgWh4Ro= Subject key identifier: 20:94:A7:57:01:C6:2D:B9:B0:3D:45:B0:58:A7:ED:BE:78:E2:F1:C8 Authority key identifier: 17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E Certificate issuer: /CN=A91F89D9/serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft Manifest number: A3 Signing time: Sat 19 Jul 2025 06:28:53 +0000 Manifest this update: Sat 19 Jul 2025 06:28:53 +0000 Manifest next update: Sat 26 Jul 2025 06:28:53 +0000 Files and hashes: 1: F11CAiv1C9bCDzCxxa2MlOCFvE4.crl (hash: tFoEOcIvAdrm1aV+NivH8wzebRicNq+lIPqnb95SRm0=) 2: A18C777C6F5F11EFAF849B28C4F9AE02.roa (hash: fujb24eQPYgPwcrZc8i7YcmXNyel+exUWMY7rJXI438=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Validity Not Before: Jul 19 06:28:53 2025 GMT Not After : Jul 26 06:28:53 2025 GMT Subject: CN=687b3b25-1ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:57:b2:61:a4:c2:d5:c0:ea:6b:ea:1d:59:69: 4f:c2:6e:4d:08:b9:bc:95:61:0b:7b:50:f1:b4:66: ae:42:d7:dd:b3:6a:b4:d2:6c:b3:03:8e:c7:be:f5: a8:93:13:4f:c6:08:a4:75:59:d8:b1:84:b2:14:71: e6:74:ec:13:68:bc:48:19:6c:dc:ca:2e:8c:d7:7d: 4c:bf:75:d7:e6:d5:c5:e2:18:a5:1c:12:74:42:08: ad:22:29:49:78:da:3e:8e:9c:5c:a9:71:89:54:60: 44:aa:b5:77:9d:ac:80:96:c3:67:85:75:34:21:2a: d6:e3:19:68:56:90:de:c9:db:46:d9:e8:5a:5e:3b: c8:de:75:06:0a:1f:36:e8:de:be:ac:23:a5:8f:45: c1:2f:f1:b2:2c:0a:a5:ee:45:c1:ac:07:f8:bb:ab: 83:90:ad:19:ee:8b:c3:32:d1:cc:f5:63:4a:3d:37: 7c:dc:e9:da:57:56:35:a9:f2:b2:6a:df:b0:7a:c5: 43:d9:65:d9:d3:63:14:ff:20:1a:21:25:4a:d8:d7: 7f:8a:2d:a7:45:5a:cf:05:ea:5c:10:ef:6e:43:d6: 27:78:36:04:32:42:7f:4e:2e:7b:54:f5:c1:df:3b: 3c:35:68:1d:73:58:b8:de:65:3b:d5:8c:00:0d:e4: cd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:94:A7:57:01:C6:2D:B9:B0:3D:45:B0:58:A7:ED:BE:78:E2:F1:C8 X509v3 Authority Key Identifier: keyid:17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:ba:0e:97:26:9e:2d:40:23:e7:ee:a8:b7:7d:dc:4c:d4:6a: 5f:1e:a8:75:ab:2e:08:56:84:2b:01:47:18:6f:28:fd:2e:9d: 37:68:8f:b6:dc:c1:d1:8a:c4:50:da:e7:0a:f3:ca:1d:5c:6a: 60:56:c5:87:51:0c:d7:3b:9e:7b:66:79:69:aa:f0:9c:06:22: 35:fe:87:89:b9:c4:56:27:6a:94:a1:41:6c:97:27:7d:96:3e: 6f:7e:27:9f:72:ad:bc:c7:dc:ad:a1:23:21:fb:f3:33:b9:3f: c6:77:4c:87:a1:13:63:3e:af:13:0e:00:51:b9:9c:85:cb:33: 28:31:23:5c:7b:d1:9b:65:92:ec:c2:7a:be:48:50:be:e1:b7: b3:bc:31:49:bd:12:62:50:81:4a:df:2b:23:f9:3f:f8:6c:11: c5:1f:53:25:64:70:cb:b2:39:07:81:46:46:24:8f:41:05:34: f5:7a:e2:58:ce:4d:b1:8d:2a:60:40:3d:8e:e9:d0:dd:33:12: 93:6f:bb:07:be:39:4d:65:ce:48:81:1f:ce:2c:dc:56:d4:3e: ad:87:fe:09:44:47:0b:0d:bc:68:74:72:8a:bc:af:f1:39:0d: a4:89:ba:21:d4:ce:41:cf:c8:38:4d:75:37:35:54:b0:b6:70: 33:79:5e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5RDkxMTAvBgNVBAUTKDE3NUQ0MjAyMkJGNTBCRDZDMjBGMzBCMUM1QUQ4Qzk0 RTA4NUJDNEUwHhcNMjUwNzE5MDYyODUzWhcNMjUwNzI2MDYyODUzWjAYMRYwFAYD VQQDEw02ODdiM2IyNS0xYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArleyYaTC1cDqa+odWWlPwm5NCLm8lWELe1DxtGauQtfds2q00myzA47HvvWo kxNPxgikdVnYsYSyFHHmdOwTaLxIGWzcyi6M131Mv3XX5tXF4hilHBJ0QgitIilJ eNo+jpxcqXGJVGBEqrV3nayAlsNnhXU0ISrW4xloVpDeydtG2ehaXjvI3nUGCh82 6N6+rCOlj0XBL/GyLAql7kXBrAf4u6uDkK0Z7ovDMtHM9WNKPTd83OnaV1Y1qfKy at+wesVD2WXZ02MU/yAaISVK2Nd/ii2nRVrPBepcEO9uQ9YneDYEMkJ/Ti57VPXB 3zs8NWgdc1i43mU71YwADeTNZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCUp1cB xi25sD1FsFin7b544vHIMB8GA1UdIwQYMBaAFBddQgIr9QvWwg8wscWtjJTghbxO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlEOS9FQUJGRUJGMjZG NUMxMUVGODM1QTdCNjZDNEY5QUUwMi9GMTFDQWl2MUM5YkNEekN4eGEyTWxPQ0Z2 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0YxMUNBaXYxQzliQ0R6Q3h4YTJNbE9DRnZFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlEOS9FQUJGRUJGMjZGNUMxMUVGODM1QTdCNjZDNEY5QUUwMi9GMTFDQWl2MUM5 YkNEekN4eGEyTWxPQ0Z2RTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6ug6XJp4tQCPn7qi3fdxM1GpfHqh1qy4IVoQrAUcYbyj9Lp03aI+2 3MHRisRQ2ucK88odXGpgVsWHUQzXO557ZnlpqvCcBiI1/oeJucRWJ2qUoUFslyd9 lj5vfiefcq28x9ytoSMh+/MzuT/Gd0yHoRNjPq8TDgBRuZyFyzMoMSNce9GbZZLs wnq+SFC+4bezvDFJvRJiUIFK3ysj+T/4bBHFH1MlZHDLsjkHgUZGJI9BBTT1euJY zk2xjSpgQD2O6dDdMxKTb7sHvjlNZc5IgR/OLNxW1D6th/4JREcLDbxodHKKvK/x OQ2kiboh1M5Bz8g4TXU3NVSwtnAzeV50 -----END CERTIFICATE-----Generated at Sun Jul 20 20:37:42 2025 by rpki-client