$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft File: D1kUy7lqcNoGsR7z3StjyeQHsxw.mft (raw, json) Hash identifier: 9CJT5ZAfRnvcY9wUq21A7ab2yagKgfgsrKvWvju885c= Subject key identifier: 78:17:0C:AF:00:45:3A:68:24:00:8E:6E:36:21:29:31:F9:4C:90:C2 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft Manifest number: E7 Signing time: Mon 11 Aug 2025 05:36:53 +0000 Manifest this update: Mon 11 Aug 2025 05:36:52 +0000 Manifest next update: Mon 18 Aug 2025 05:36:52 +0000 Files and hashes: 1: D1kUy7lqcNoGsR7z3StjyeQHsxw.crl (hash: 4cq2XV4n01/bGq11ZPkudsIq11Gizh9ui+7mXIbLOy8=) 2: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (hash: 7t/pdYKTKmwUGR/lE+qnEM4TrcYeXROZCsv49aYTSqk=) 3: 507C31C21D7211EFA095B25AC4F9AE02.roa (hash: c1LdcyfxBkh65MfHEWuLe4Y+neliIailfDFE8qX4bKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC, serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Aug 11 05:36:52 2025 GMT Not After : Aug 18 05:36:52 2025 GMT Subject: CN=68998175-610a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:ee:59:61:ba:f2:b7:ed:b0:25:51:32:f0: 9b:98:65:c5:0e:ad:b2:32:8c:f4:a2:f4:0e:35:88: 53:22:39:10:64:c3:b4:55:86:c5:fe:af:90:89:82: 1a:aa:b4:ee:27:62:6d:4a:24:83:f8:6b:36:75:72: 62:7d:d8:d6:85:8a:23:61:34:1c:57:70:52:96:de: 46:30:48:22:39:5f:b7:2f:9a:7d:ae:ea:6d:d8:3f: 52:13:de:5c:5c:49:ca:44:2f:90:34:b4:c7:92:ee: 22:9d:6d:bd:cd:e7:35:0d:51:e0:15:e1:1d:a4:89: 01:3f:7d:92:e8:82:3c:ae:34:9e:de:1f:bc:61:89: a3:56:ea:e4:78:be:10:b8:bf:9a:0e:31:a9:bc:41: 34:54:cc:7d:14:9e:1d:e0:cb:69:7f:e0:7b:2b:b0: 58:38:9c:e3:35:e9:df:d1:43:4d:c1:9e:0c:e5:e9: b7:8e:d1:ea:37:54:40:84:8d:9f:00:20:7e:b0:02: bf:67:7f:f3:e3:41:54:79:c9:b8:d8:ed:4e:89:73: 88:59:7e:7b:b3:2d:49:fa:6d:d8:2b:c8:b4:a8:19: 22:1a:4b:10:1b:84:c7:c0:f6:f9:b1:2d:94:f8:bd: 8e:ed:5d:10:a6:30:e5:df:b1:fe:ad:8e:b7:bb:8d: d0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:17:0C:AF:00:45:3A:68:24:00:8E:6E:36:21:29:31:F9:4C:90:C2 X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:7c:15:7b:cb:80:74:76:7a:60:e0:e5:a6:6a:52:f5:41:50: 64:1f:31:46:74:b7:7a:ae:26:aa:ee:78:9f:83:64:49:8b:3c: ce:a2:a2:8c:20:c9:5d:e1:62:b0:36:2b:10:19:cd:4c:8f:10: b5:5c:92:d6:d6:03:e9:e4:6e:c9:70:a1:ce:38:98:c5:26:73: 72:98:e1:f7:31:79:79:7c:53:d1:2c:d1:ff:43:ab:ac:f6:39: cc:47:8a:b1:9d:fe:39:1f:67:5d:84:7d:6d:25:84:d5:89:14: f4:de:49:d0:80:0e:65:0c:22:e8:f8:be:99:d8:91:cf:d6:99: a1:33:41:6a:d6:08:51:12:82:cf:37:97:33:15:0a:b5:62:7c: 59:8d:dc:0d:e3:61:bc:f8:d3:97:2b:07:92:93:c7:da:21:4e: aa:0a:0f:96:65:c5:9a:48:d1:f4:fa:6b:c4:28:39:01:20:c3: 68:e5:a3:e5:fa:13:6d:a8:16:6b:5b:fa:e5:40:20:b1:ca:c6: d1:8e:92:86:60:7f:44:18:8e:25:75:98:12:a7:c5:51:57:50: 7d:94:6d:c3:cf:2f:a4:bb:23:b7:ed:4b:de:95:2e:14:e9:c7: dd:ef:4c:18:d2:44:7d:37:d9:08:59:8b:9a:19:95:08:d6:8e: 54:cf:bb:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRkMxMTAvBgNVBAUTKDBGNTkxNENCQjk2QTcwREEwNkIxMUVGM0REMkI2M0M5 RTQwN0IzMUMwHhcNMjUwODExMDUzNjUyWhcNMjUwODE4MDUzNjUyWjAYMRYwFAYD VQQDEw02ODk5ODE3NS02MTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOTuWWG68rftsCVRMvCbmGXFDq2yMoz0ovQONYhTIjkQZMO0VYbF/q+QiYIa qrTuJ2JtSiSD+Gs2dXJifdjWhYojYTQcV3BSlt5GMEgiOV+3L5p9rupt2D9SE95c XEnKRC+QNLTHku4inW29zec1DVHgFeEdpIkBP32S6II8rjSe3h+8YYmjVurkeL4Q uL+aDjGpvEE0VMx9FJ4d4Mtpf+B7K7BYOJzjNenf0UNNwZ4M5em3jtHqN1RAhI2f ACB+sAK/Z3/z40FUecm42O1OiXOIWX57sy1J+m3YK8i0qBkiGksQG4THwPb5sS2U +L2O7V0QpjDl37H+rY63u43QHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgXDK8A RTpoJACObjYhKTH5TJDCMB8GA1UdIwQYMBaAFA9ZFMu5anDaBrEe890rY8nkB7Mc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNGQy9DN0IwOTM1NjFE NzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNOb0dzUjd6M1N0anllUUhz eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi9EMWtVeTdscWNO b0dzUjd6M1N0anllUUhzeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzfBV7y4B0dnpg4OWmalL1QVBkHzFGdLd6riaq7nifg2RJizzOoqKM IMld4WKwNisQGc1MjxC1XJLW1gPp5G7JcKHOOJjFJnNymOH3MXl5fFPRLNH/Q6us 9jnMR4qxnf45H2ddhH1tJYTViRT03knQgA5lDCLo+L6Z2JHP1pmhM0Fq1ghREoLP N5czFQq1YnxZjdwN42G8+NOXKweSk8faIU6qCg+WZcWaSNH0+mvEKDkBIMNo5aPl +hNtqBZrW/rlQCCxysbRjpKGYH9EGI4ldZgSp8VRV1B9lG3Dzy+kuyO37UvelS4U 6cfd70wY0kR9N9kIWYuaGZUI1o5Uz7sj -----END CERTIFICATE-----Generated at Tue Aug 12 18:54:21 2025 by rpki-client