$ rpki-client -vvf rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft File: 1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft (raw, json) Hash identifier: I7GGKwyM8JJ1smMJyExUJM2uTsy7Ze4lG0xc8V8VAn4= Subject key identifier: 12:07:2B:D0:2C:12:1C:07:35:BA:07:CE:89:9C:B1:16:41:F5:49:F6 Authority key identifier: D4:34:E5:9E:98:E4:50:8E:EA:A4:0D:F9:60:DA:4F:33:42:41:67:59 Certificate issuer: /CN=A91233F8/serialNumber=D434E59E98E4508EEAA40DF960DA4F3342416759 Certificate serial: 01EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft Manifest number: 06F4 Signing time: Fri 22 Aug 2025 23:49:39 +0000 Manifest this update: Fri 22 Aug 2025 23:49:39 +0000 Manifest next update: Fri 29 Aug 2025 23:49:39 +0000 Files and hashes: 1: 1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl (hash: B6BInKGVmJ/+ItcG+MUin8rdHqBxoBM00j2ZL+cAJtc=) 2: 1B4BA08497A711EDA815F80AC4F9AE02.roa (hash: i3AC8vPuhzwp18lBIjdc3QexvCV8/oJkEtYwjXr5lB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:49:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233F8, serialNumber=D434E59E98E4508EEAA40DF960DA4F3342416759 Validity Not Before: Aug 22 23:49:39 2025 GMT Not After : Aug 29 23:49:39 2025 GMT Subject: CN=68a90213-f2c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f3:d3:04:72:03:14:40:3a:c2:ae:82:3a:b8: 17:28:5f:05:b9:35:10:57:66:a0:8f:8b:ab:3f:e8: ff:95:32:23:40:70:0b:3f:13:a4:64:c3:1e:a3:42: f1:b0:f0:a8:de:53:2c:ac:60:55:8d:e4:2f:a2:e5: fc:66:31:87:73:01:f2:46:34:8b:92:ca:09:9c:75: bd:2c:97:cf:68:cd:60:ea:7d:3a:eb:4b:26:fb:f3: 91:6b:3a:f6:e2:c1:70:dd:ea:07:25:19:06:c0:28: b5:c0:b0:07:f5:f0:58:84:df:0a:bb:7c:e9:e0:a9: b5:e3:98:b8:4d:9d:12:cc:01:e9:74:ff:0c:7d:6e: 74:55:d7:ca:c8:46:b5:8c:dc:24:eb:64:5b:02:c0: 6b:fe:21:79:b6:03:4e:bd:72:4e:ed:f2:97:32:20: 63:69:61:0c:e7:db:dc:d4:f0:92:19:15:00:56:0a: ed:30:c5:01:e1:56:84:00:8d:80:be:af:2c:92:c5: 49:4b:a6:cd:a6:a4:d5:ed:41:d2:fd:dc:4e:8b:59: a4:dc:f9:9e:73:ef:0f:e0:cb:a6:65:bb:ad:c9:bd: 0e:53:23:1b:89:77:74:32:64:17:39:25:80:3e:37: 7d:d9:a3:01:86:19:35:05:69:6c:4d:78:19:85:1f: 3e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:07:2B:D0:2C:12:1C:07:35:BA:07:CE:89:9C:B1:16:41:F5:49:F6 X509v3 Authority Key Identifier: keyid:D4:34:E5:9E:98:E4:50:8E:EA:A4:0D:F9:60:DA:4F:33:42:41:67:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:97:41:10:8c:99:f3:a4:a9:d0:91:42:23:2f:55:3a:97:f4: 72:86:77:30:aa:66:8f:76:08:79:3f:96:86:1b:e1:10:a2:ec: 09:42:81:71:ea:e3:ed:ed:d5:a5:a1:25:41:6a:c2:ce:0e:e1: 29:7a:bd:78:21:58:b3:7c:0b:9a:c1:87:00:fd:0a:7a:36:f1: 48:c2:68:fe:1a:ca:6f:84:42:81:0e:d6:82:0e:5e:07:1a:67: 9d:75:52:25:37:fa:72:53:a1:60:cb:c8:58:3e:6b:c8:e2:be: 5b:a1:51:41:3d:f5:a9:f2:9f:f9:a2:1a:b7:f9:ff:69:77:db: 5a:0b:9d:1f:d0:b8:53:61:c7:74:ec:2a:67:30:34:13:b4:a9: 90:b2:db:92:c3:f3:10:d2:ed:28:d4:f2:ee:f0:64:d1:a6:4b: 5d:c1:4d:f5:9f:3c:ed:8c:63:9a:b9:57:bb:92:2f:a1:af:e1: 0e:93:ef:ef:06:3b:3b:5e:48:ea:b7:08:e6:ec:d6:38:85:04: c1:82:62:22:1c:9f:c2:3e:1d:d5:52:44:f7:2e:e3:48:9f:f9: 54:de:6a:6e:e5:0c:ee:07:67:b3:36:0c:bf:ab:c9:f6:af:cc: 19:52:d2:f7:7d:18:e6:8e:76:41:bf:8b:ef:1d:4c:eb:63:f8: 92:e2:67:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRjgxMTAvBgNVBAUTKEQ0MzRFNTlFOThFNDUwOEVFQUE0MERGOTYwREE0RjMz NDI0MTY3NTkwHhcNMjUwODIyMjM0OTM5WhcNMjUwODI5MjM0OTM5WjAYMRYwFAYD VQQDEw02OGE5MDIxMy1mMmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPPTBHIDFEA6wq6COrgXKF8FuTUQV2agj4urP+j/lTIjQHALPxOkZMMeo0Lx sPCo3lMsrGBVjeQvouX8ZjGHcwHyRjSLksoJnHW9LJfPaM1g6n0660sm+/ORazr2 4sFw3eoHJRkGwCi1wLAH9fBYhN8Ku3zp4Km145i4TZ0SzAHpdP8MfW50VdfKyEa1 jNwk62RbAsBr/iF5tgNOvXJO7fKXMiBjaWEM59vc1PCSGRUAVgrtMMUB4VaEAI2A vq8sksVJS6bNpqTV7UHS/dxOi1mk3Pmec+8P4MumZbutyb0OUyMbiXd0MmQXOSWA Pjd92aMBhhk1BWlsTXgZhR8+iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIHK9As EhwHNboHzomcsRZB9Un2MB8GA1UdIwQYMBaAFNQ05Z6Y5FCO6qQN+WDaTzNCQWdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNGOC9GMDkwMTlENjFC QjcxMUVDOTAzRDhBNENDNEY5QUUwMi8xRFRsbnBqa1VJN3FwQTM1WU5wUE0wSkJa MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFEVGxucGprVUk3cXBBMzVZTnBQTTBKQloxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNGOC9GMDkwMTlENjFCQjcxMUVDOTAzRDhBNENDNEY5QUUwMi8xRFRsbnBqa1VJ N3FwQTM1WU5wUE0wSkJaMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCl0EQjJnzpKnQkUIjL1U6l/RyhncwqmaPdgh5P5aGG+EQouwJQoFx 6uPt7dWloSVBasLODuEper14IVizfAuawYcA/Qp6NvFIwmj+GspvhEKBDtaCDl4H GmeddVIlN/pyU6Fgy8hYPmvI4r5boVFBPfWp8p/5ohq3+f9pd9taC50f0LhTYcd0 7CpnMDQTtKmQstuSw/MQ0u0o1PLu8GTRpktdwU31nzztjGOauVe7ki+hr+EOk+/v Bjs7Xkjqtwjm7NY4hQTBgmIiHJ/CPh3VUkT3LuNIn/lU3mpu5QzuB2ezNgy/q8n2 r8wZUtL3fRjmjnZBv4vvHUzrY/iS4mfA -----END CERTIFICATE-----Generated at Sat Aug 23 17:15:19 2025 by rpki-client