$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft File: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft (raw, json) Hash identifier: ag+4xQwFtss8BX+bKvD3Soo3ZAa7agE9YCK5NcVah44= Subject key identifier: 98:98:32:19:19:76:2D:C9:B4:2F:E6:17:E2:6E:F0:8F:18:B6:0B:7F Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0FFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft Manifest number: 0F7F Signing time: Sun 10 Aug 2025 17:37:40 +0000 Manifest this update: Sun 10 Aug 2025 17:37:39 +0000 Manifest next update: Sun 17 Aug 2025 17:37:39 +0000 Files and hashes: 1: d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl (hash: QEQFShSN+bRV0TzGg5gH8mHMmMru5lcQkvXxSXU9cbU=) 2: B2AB6010721811F09FD98A22C4F9AE02.roa (hash: wIEPKrCJxeZRSiZdLH1odZTLGWweMxawrTUKzvXI4fM=) 3: B35E5B46334111EF9770A542C4F9AE02.roa (hash: UPuDmnzuzvNsFm0+p8zRrUqRDIqQAuxYTPJw8nD+iQM=) 4: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (hash: wE9Ja7ZzAfw7/oCX8jXb3Mmdvu+AmH7Xr6q2xftQxQg=) 5: B1F39E9C334111EF9770A542C4F9AE02.roa (hash: gH07d0tdWpzxCvfeG7l6D2uFfEY6tpwzzgDCtY/pYyE=) 6: 6AB0F2A2892611EEB5E27D69C4F9AE02.roa (hash: nicSmvXStk5YSg3xIJcJaFbSV0F719Jx8dhmknr9Hs0=) 7: 2EFFC95471DC11F0B648E61EC4F9AE02.roa (hash: IrKqf3WwcP3c1t/kdOeFbTBkd7MIU0BN08Rqrji/qUU=) 8: B2A71CE2334111EF9770A542C4F9AE02.roa (hash: pfS5+RaNkCZt3S0EiNJ59HEgMt0xojAMbKbcs9rYZR4=) 9: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (hash: HvCeCNMd3cDYBcsUNmnAZgRE0yTF+p8FgFeiy4l06fs=) 10: 7BD12E3A480811EE8C512B0DC4F9AE02.roa (hash: PTHJR1ja6PHKnchzMzvjSZlwBo+yBYxt/AqG4ozJw5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4093 (0xffd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Aug 10 17:37:39 2025 GMT Not After : Aug 17 17:37:39 2025 GMT Subject: CN=6898d8e3-675f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:30:83:e7:c9:a7:83:44:22:b8:19:b3:05:6c: f7:4b:5e:33:b0:c6:26:91:28:2d:e1:de:bc:09:91: 37:ce:60:6d:bd:48:be:63:41:1c:ff:60:0d:2f:24: 47:84:4a:62:0f:14:33:e4:1c:6b:74:72:14:c2:ed: 99:b0:9e:bc:b7:23:2d:d0:e4:28:cc:60:49:0d:70: 06:32:d4:4e:66:9f:35:02:46:96:4d:30:45:de:4d: bc:1b:92:d4:06:5c:52:dc:06:da:ab:a8:b1:ef:13: 5a:69:e2:c8:fb:0b:8a:bc:c2:43:af:48:8c:55:b8: 48:41:0b:00:75:dc:20:cd:cb:ed:9d:5c:d1:6b:a6: ec:d3:94:37:c2:55:bd:9e:9c:34:e0:0e:41:e9:94: 77:d5:27:f9:4c:f4:8f:e2:93:20:fa:de:86:d3:4d: ae:29:9f:ff:89:84:29:d1:d8:b5:40:ac:5d:b1:6c: 12:4a:12:03:e9:ea:c9:a3:e0:31:78:87:3e:5e:3d: 3d:95:4f:4a:72:d5:b4:d7:91:6b:a2:fc:fc:16:61: 0f:b4:5e:0c:db:f3:a7:d7:c2:d7:de:ff:ac:91:2e: a4:e6:79:e4:e0:09:a5:91:d0:ed:0e:e3:06:c9:ab: ad:c3:1c:7f:c1:4f:e0:92:8d:9f:9c:0a:53:bd:13: 62:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:98:32:19:19:76:2D:C9:B4:2F:E6:17:E2:6E:F0:8F:18:B6:0B:7F X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c1:eb:21:22:99:a8:8d:b9:d5:b8:02:e0:e5:0f:fb:a0:6b: bb:2f:cf:6e:0e:3a:77:ac:b3:f6:d0:94:74:fb:5c:c3:23:7c: 50:f4:40:f4:8e:a2:b7:ac:e5:96:a7:f6:ec:05:7b:a6:f5:5c: 0b:1d:d7:e1:41:1b:0e:05:e0:e5:17:74:e2:6e:49:7f:9e:01: 8e:78:a4:69:71:97:29:32:c3:ce:23:40:e7:22:ce:80:ad:77: e0:9e:4b:4c:e9:67:3b:bc:23:60:89:10:c3:66:c2:c6:6c:0f: b1:d6:21:e3:7d:da:4a:50:1c:56:cf:38:b1:5f:84:65:db:67: 37:54:3d:aa:d6:1f:86:ee:c9:b9:c2:46:78:95:35:7f:d1:ae: 74:2a:5a:cd:da:cd:31:74:59:02:7d:49:52:84:4a:01:0d:17: 03:c6:00:8b:59:b1:e6:5a:1a:e2:8b:0f:38:9b:52:09:83:48: 24:1e:da:c4:19:06:2a:f4:47:2f:e4:c4:ff:6d:4a:70:1c:2e: 4d:31:53:5c:12:5f:5e:8f:b9:8c:a7:29:69:de:8b:b8:8c:2b: c7:82:09:6c:8e:45:5f:8d:91:fc:ef:d3:f6:e5:31:86:d3:a9: 49:fe:b2:11:3d:90:09:8b:f5:a4:d3:d6:c4:0b:b4:81:66:b7: fd:62:33:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUwODEwMTczNzM5WhcNMjUwODE3MTczNzM5WjAYMRYwFAYD VQQDEw02ODk4ZDhlMy02NzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzCD58mng0QiuBmzBWz3S14zsMYmkSgt4d68CZE3zmBtvUi+Y0Ec/2ANLyRH hEpiDxQz5BxrdHIUwu2ZsJ68tyMt0OQozGBJDXAGMtROZp81AkaWTTBF3k28G5LU BlxS3Abaq6ix7xNaaeLI+wuKvMJDr0iMVbhIQQsAddwgzcvtnVzRa6bs05Q3wlW9 npw04A5B6ZR31Sf5TPSP4pMg+t6G002uKZ//iYQp0di1QKxdsWwSShID6erJo+Ax eIc+Xj09lU9KctW015Frovz8FmEPtF4M2/On18LX3v+skS6k5nnk4AmlkdDtDuMG yautwxx/wU/gko2fnApTvRNiTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiYMhkZ di3JtC/mF+Ju8I8Ytgt/MB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDNy83OTFDNkEzNDdCMzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91 dmFqeVZjVUJRUnNCOFlfMGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLweshIpmojbnVuALg5Q/7oGu7L89uDjp3rLP20JR0+1zDI3xQ9ED0 jqK3rOWWp/bsBXum9VwLHdfhQRsOBeDlF3Tibkl/ngGOeKRpcZcpMsPOI0DnIs6A rXfgnktM6Wc7vCNgiRDDZsLGbA+x1iHjfdpKUBxWzzixX4Rl22c3VD2q1h+G7sm5 wkZ4lTV/0a50KlrN2s0xdFkCfUlShEoBDRcDxgCLWbHmWhriiw84m1IJg0gkHtrE GQYq9Ecv5MT/bUpwHC5NMVNcEl9ej7mMpylp3ou4jCvHgglsjkVfjZH879P25TGG 06lJ/rIRPZAJi/Wk09bEC7SBZrf9YjPZ -----END CERTIFICATE-----Generated at Sun Aug 10 19:58:01 2025 by rpki-client