$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: 8Q/qoT/OkFP1iE04dVQBs8AthnC5Cv8fl7zvXI/E9gM= Subject key identifier: DC:70:C7:9E:D4:AD:24:BF:CF:81:AA:68:27:25:74:F7:7F:06:39:96 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 018C Signing time: Mon 21 Jul 2025 03:33:59 +0000 Manifest this update: Mon 21 Jul 2025 03:33:59 +0000 Manifest next update: Mon 28 Jul 2025 03:33:59 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: ErRTJJCotjVUMqTrxeWsMFsd0ko+UhhbT/jM46e/OKQ=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: HMZ69Vk7ZS0Jv78BueT5h2a9dKdT1kZJMuqKYnjLHLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Jul 21 03:33:59 2025 GMT Not After : Jul 28 03:33:59 2025 GMT Subject: CN=687db527-8a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4d:70:d1:0c:35:7f:42:5f:af:16:21:bc:be: 4d:80:53:2c:81:76:44:9e:c8:43:90:d3:8d:b7:cd: 0c:1b:69:6e:c2:e6:c9:b7:21:2c:b7:74:ca:58:be: 03:36:90:f0:ea:b4:b9:51:3d:2e:b0:25:fe:ff:d8: 5e:9a:75:e7:a8:e6:47:b3:87:b8:a0:69:5b:ed:f2: 6e:8e:c6:a9:15:2f:b8:21:d9:2c:3b:f5:ca:76:11: b9:d1:37:96:e6:4e:67:56:f5:9d:22:1d:16:b6:cd: 5d:b5:16:0e:0f:a3:be:65:b4:7e:62:4b:b7:e4:09: 3b:2d:e6:1f:d8:01:e0:ea:fa:23:61:86:79:e9:68: 05:93:58:f7:91:01:14:64:4e:db:d5:1e:8b:dd:49: fe:90:2e:8e:05:e9:ed:56:bb:23:3e:5a:a3:c6:3a: 9b:0c:b2:c1:e3:60:ce:be:db:0b:83:5b:0f:8c:2c: 50:17:fc:e7:e0:e4:ad:82:a5:16:5e:0a:dc:fd:af: 7e:8f:a5:af:62:d4:47:78:bd:8b:f3:e5:9f:77:f0: 9a:20:34:6e:04:25:67:bc:d9:eb:ca:ed:7d:b2:9f: f7:e2:5c:14:86:0c:09:eb:09:d6:42:fa:f7:e5:5e: c9:18:14:a8:81:d2:cf:f3:c2:b8:b2:ff:7f:0e:b3: 6e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:70:C7:9E:D4:AD:24:BF:CF:81:AA:68:27:25:74:F7:7F:06:39:96 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:5e:ea:bf:d5:68:dc:30:fa:19:d3:8e:69:62:05:30:8e:a4: 9e:e2:e7:47:a5:43:c4:0f:5a:62:be:f9:72:4e:f6:ad:3e:42: ac:a9:ba:22:cd:4d:1e:a9:ba:ec:4d:1e:61:88:3e:f6:5a:1e: a7:04:0b:56:44:09:43:7b:6e:f8:d4:f2:6e:5d:83:04:9c:ba: b3:a6:dc:81:ab:e1:b7:4d:11:88:4b:e9:b6:a3:e0:01:18:a1: 00:92:7b:a9:46:1d:0f:b6:80:e1:79:e6:ab:52:e8:c8:f8:fc: d4:51:a2:50:7f:8c:ea:fd:c9:e6:73:a2:f2:0a:fb:4a:c9:93: a9:85:bc:a3:46:f0:b4:24:0b:22:8b:56:23:e0:11:80:6a:d8: af:70:2a:7a:07:f1:a9:6c:8e:46:68:4d:6c:6d:0a:c5:c1:de: c4:dc:4d:51:28:0f:22:d9:f8:38:bd:91:5a:b4:3c:08:cc:db: ea:56:56:fb:16:05:9d:e0:97:dc:da:4e:17:af:19:2f:86:70: d6:b5:c8:a5:f4:73:b8:18:c8:19:85:50:91:ea:d4:66:79:e9: 18:92:ac:c4:68:55:20:db:2d:b4:88:04:25:9d:4f:c5:3a:7d: c1:fc:7a:ec:f1:29:d7:75:73:ee:e0:1a:33:cf:5e:11:a4:76: 8f:55:f8:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjUwNzIxMDMzMzU5WhcNMjUwNzI4MDMzMzU5WjAYMRYwFAYD VQQDEw02ODdkYjUyNy04YTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzk1w0Qw1f0JfrxYhvL5NgFMsgXZEnshDkNONt80MG2luwubJtyEst3TKWL4D NpDw6rS5UT0usCX+/9hemnXnqOZHs4e4oGlb7fJujsapFS+4IdksO/XKdhG50TeW 5k5nVvWdIh0Wts1dtRYOD6O+ZbR+Yku35Ak7LeYf2AHg6vojYYZ56WgFk1j3kQEU ZE7b1R6L3Un+kC6OBentVrsjPlqjxjqbDLLB42DOvtsLg1sPjCxQF/zn4OStgqUW Xgrc/a9+j6WvYtRHeL2L8+Wfd/CaIDRuBCVnvNnryu19sp/34lwUhgwJ6wnWQvr3 5V7JGBSogdLP88K4sv9/DrNurQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNxwx57U rSS/z4GqaCcldPd/BjmWMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpXuq/1WjcMPoZ045pYgUwjqSe4udHpUPED1pivvlyTvatPkKsqboi zU0eqbrsTR5hiD72Wh6nBAtWRAlDe2741PJuXYMEnLqzptyBq+G3TRGIS+m2o+AB GKEAknupRh0PtoDheearUujI+PzUUaJQf4zq/cnmc6LyCvtKyZOphbyjRvC0JAsi i1Yj4BGAativcCp6B/GpbI5GaE1sbQrFwd7E3E1RKA8i2fg4vZFatDwIzNvqVlb7 FgWd4Jfc2k4XrxkvhnDWtcil9HO4GMgZhVCR6tRmeekYkqzEaFUg2y20iAQlnU/F On3B/Hrs8SnXdXPu4Bozz14RpHaPVfj1 -----END CERTIFICATE-----Generated at Mon Jul 21 12:50:05 2025 by rpki-client