$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft File: oC73fAXKEwwiKYXNdK6TjaeaT78.mft (raw, json) Hash identifier: WEyFs199qisO8mC+Ft4WegcKCQlx0oTCYz74jfUrpYs= Subject key identifier: 4F:40:F5:F2:82:44:FB:10:9F:F0:19:DD:8E:9F:82:B7:A4:B8:80:AE Authority key identifier: A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF Certificate issuer: /CN=A91398E5/serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Certificate serial: 0967 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft Manifest number: 20A1 Signing time: Fri 22 Aug 2025 16:43:16 +0000 Manifest this update: Fri 22 Aug 2025 16:43:15 +0000 Manifest next update: Fri 29 Aug 2025 16:43:15 +0000 Files and hashes: 1: oC73fAXKEwwiKYXNdK6TjaeaT78.crl (hash: Vd0IyBvSTYfT7JfTfZhPKgd1oohDAdCcdX+dNh8og8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2407 (0x967) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Validity Not Before: Aug 22 16:43:15 2025 GMT Not After : Aug 29 16:43:15 2025 GMT Subject: CN=68a89e24-d3e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:03:65:ad:27:e3:d2:ea:50:6e:70:e3:7d: b7:aa:a7:67:cc:9b:8e:ee:f4:1c:d7:2f:43:29:d8: ab:42:d4:19:8f:b9:00:15:8d:fe:e4:b7:53:00:6a: 5f:55:b8:c3:c1:37:48:0c:40:a9:b8:8b:16:3a:26: 4c:67:a5:44:7c:04:74:82:71:c7:da:18:c9:e4:8c: f8:97:48:d3:cc:60:73:47:4b:88:f5:03:a2:76:21: bf:06:5a:17:a8:36:97:e3:da:50:41:9c:6f:bf:0e: 97:27:a1:ca:05:23:8a:97:8a:2d:07:93:d6:7f:f6: 56:e0:d6:1f:21:df:0a:7b:aa:f7:c4:cc:22:8e:99: 05:39:8a:30:d4:49:86:4b:1c:2f:98:fc:ed:46:e0: 26:8b:0b:e2:bf:2a:5e:f7:9d:0e:27:ef:82:de:f3: 9b:c9:bc:f5:39:4f:bf:fd:31:a2:e6:3d:c1:88:82: ea:ec:2c:0f:7a:f9:da:86:b9:8f:d2:11:1b:ae:df: f5:2d:48:3e:e3:fc:14:47:ee:31:a1:aa:82:bc:3a: a7:bc:a4:fa:5d:f3:77:f2:e6:6d:27:47:14:ad:56: 02:f3:27:de:26:72:3d:47:96:4f:4f:98:44:33:41: 56:0e:b1:ef:45:78:68:ce:d7:ec:c8:f1:db:0e:c9: 41:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:40:F5:F2:82:44:FB:10:9F:F0:19:DD:8E:9F:82:B7:A4:B8:80:AE X509v3 Authority Key Identifier: keyid:A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:8a:06:a8:a6:5c:4b:46:21:50:30:3f:be:af:d7:98:12:01: 25:95:fe:1f:b0:20:68:82:0d:da:76:26:26:b6:2e:1b:8d:1b: 15:d0:87:70:34:f5:aa:f6:36:37:1b:f2:d5:89:7a:e3:da:99: 2f:d7:f0:32:45:f3:18:60:fa:f1:f8:05:38:c1:04:e9:1f:fc: f3:79:4f:df:d9:26:ea:d7:48:c6:f8:80:df:bc:4a:a4:7f:c2: 0d:90:0f:72:68:0e:06:7e:d2:ee:f1:1f:38:5a:01:33:10:3a: a3:b0:ba:d1:de:b2:d7:30:ec:5e:82:10:e9:64:f8:35:e4:9e: 99:33:7c:99:f4:f4:97:6a:89:d0:02:12:df:c5:e0:df:71:03: c2:8d:87:8b:93:fc:cf:c3:74:4e:f1:1c:da:ba:84:2a:b2:da: 3b:75:9b:92:67:e6:ae:63:ad:8b:68:0f:31:b1:e3:24:fe:b1: da:27:d3:6f:20:f1:66:5f:a8:6f:d8:77:d3:94:71:be:4c:0d: 88:86:ce:6f:19:ad:95:a7:c7:99:b9:61:cf:d0:f6:86:9a:02: 66:dc:16:a6:c4:a0:52:8a:c6:86:27:cc:12:0c:2c:1d:5d:e8: 1a:c1:89:7c:84:85:10:da:bb:fc:eb:96:93:05:13:6d:61:55: 95:9b:a7:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKEEwMkVGNzdDMDVDQTEzMEMyMjI5ODVDRDc0QUU5MzhE QTc5QTRGQkYwHhcNMjUwODIyMTY0MzE1WhcNMjUwODI5MTY0MzE1WjAYMRYwFAYD VQQDEw02OGE4OWUyNC1kM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAursDZa0n49LqUG5w4323qqdnzJuO7vQc1y9DKdirQtQZj7kAFY3+5LdTAGpf VbjDwTdIDECpuIsWOiZMZ6VEfAR0gnHH2hjJ5Iz4l0jTzGBzR0uI9QOidiG/BloX qDaX49pQQZxvvw6XJ6HKBSOKl4otB5PWf/ZW4NYfId8Ke6r3xMwijpkFOYow1EmG SxwvmPztRuAmiwvivype950OJ++C3vObybz1OU+//TGi5j3BiILq7CwPevnahrmP 0hEbrt/1LUg+4/wUR+4xoaqCvDqnvKT6XfN38uZtJ0cUrVYC8yfeJnI9R5ZPT5hE M0FWDrHvRXhoztfsyPHbDslBNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9A9fKC RPsQn/AZ3Y6fgrekuICuMB8GA1UdIwQYMBaAFKAu93wFyhMMIimFzXSuk42nmk+/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3d2lLWVhOZEs2VGphZWFU NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29DNzNmQVhLRXd3aUtZWE5kSzZUamFlYVQ3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3 d2lLWVhOZEs2VGphZWFUNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEigaoplxLRiFQMD++r9eYEgEllf4fsCBogg3adiYmti4bjRsV0Idw NPWq9jY3G/LViXrj2pkv1/AyRfMYYPrx+AU4wQTpH/zzeU/f2Sbq10jG+IDfvEqk f8INkA9yaA4GftLu8R84WgEzEDqjsLrR3rLXMOxeghDpZPg15J6ZM3yZ9PSXaonQ AhLfxeDfcQPCjYeLk/zPw3RO8RzauoQqsto7dZuSZ+auY62LaA8xseMk/rHaJ9Nv IPFmX6hv2HfTlHG+TA2Ihs5vGa2Vp8eZuWHP0PaGmgJm3BamxKBSisaGJ8wSDCwd XegawYl8hIUQ2rv865aTBRNtYVWVm6dI -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:49 2025 by rpki-client