$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft File: loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft (raw, json) Hash identifier: RnsEIs+y2lO3pGdagTIfgcF8C8elZciqsgmn0//cE5I= Subject key identifier: EB:2A:0C:36:93:98:81:8C:68:0A:A5:8C:4D:AB:DF:8C:45:46:75:00 Authority key identifier: 96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 Certificate issuer: /CN=A91534B8/serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft Manifest number: 02BD Signing time: Sat 23 Aug 2025 01:45:12 +0000 Manifest this update: Sat 23 Aug 2025 01:45:11 +0000 Manifest next update: Sat 30 Aug 2025 01:45:11 +0000 Files and hashes: 1: loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl (hash: 9cCCx2XNY2xC0930EcfAvANcou2OLbYwxPX1hWifB2Y=) 2: E52CB968094711EDA5B20C0AC4F9AE02.roa (hash: +DAM4u0XWzGXzujdBmpBOJBuyDMu2NVi0XXcoENn480=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=96800573018C7C2FB5A0081E63C63F4DA4403CB6 Validity Not Before: Aug 23 01:45:11 2025 GMT Not After : Aug 30 01:45:11 2025 GMT Subject: CN=68a91d27-9924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:86:59:cf:8a:12:99:d5:9a:52:d9:95:d5:1d: ef:63:96:1b:df:0f:1d:c9:db:d0:cf:74:8c:65:dc: 98:67:c0:9c:a1:e8:41:f0:c0:02:63:ba:5d:80:66: 3d:a3:87:02:a3:fc:74:2b:5b:2e:55:41:34:0c:4f: a7:f2:a1:fc:7a:a8:83:64:3e:5d:46:11:c3:99:73: c4:60:c9:0f:c2:99:b7:a3:a7:93:f2:0c:cf:0c:bf: 73:37:92:98:e2:86:ac:ef:cc:33:8a:0e:71:65:71: b7:9e:3c:64:8c:93:c1:9d:14:83:bf:6e:9a:2c:0a: 1f:7f:88:f2:22:b7:a4:f8:21:86:42:91:d3:00:6f: 01:b6:ca:6b:1e:69:a9:1d:7b:eb:6d:0a:7d:fe:df: e4:5a:c6:3d:ab:79:64:df:30:a6:fd:fd:87:d0:9b: 74:30:97:82:77:d4:d4:22:36:02:6b:fb:9b:a8:d1: 78:ee:63:28:70:1a:28:e7:18:2a:6d:66:51:34:4a: 48:f4:8b:e2:3d:ad:ea:f5:b8:da:d5:6c:b6:30:ee: eb:ec:6d:d0:57:80:37:49:05:9d:3d:d9:60:a5:16: 57:34:a6:2e:ad:22:2d:6f:a0:b2:8e:d7:c6:df:04: eb:20:ba:40:05:88:9e:b0:1f:29:f1:f3:44:a7:f6: 55:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2A:0C:36:93:98:81:8C:68:0A:A5:8C:4D:AB:DF:8C:45:46:75:00 X509v3 Authority Key Identifier: keyid:96:80:05:73:01:8C:7C:2F:B5:A0:08:1E:63:C6:3F:4D:A4:40:3C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loAFcwGMfC-1oAgeY8Y_TaRAPLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/A86B375A094411ED8DD10971C4F9AE02/loAFcwGMfC-1oAgeY8Y_TaRAPLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:5b:0d:6e:21:58:42:b7:3f:31:1c:18:f0:7b:0f:2d:99:94: 24:6f:d7:ba:00:d7:fa:32:12:71:b9:a9:8a:b1:83:51:e8:2c: ab:8a:a2:72:eb:6e:6c:a0:1e:f5:a2:19:de:a0:2f:49:e2:2d: 75:c0:31:27:70:e9:54:0e:3d:9c:fa:3f:25:36:93:33:82:08: d4:24:ed:7d:a2:80:70:02:49:90:9c:4b:1d:03:4b:eb:8f:96: 62:73:db:1d:19:73:49:60:ea:5c:5b:b2:d2:ee:f8:0a:51:b0: 1c:85:59:6c:68:a5:da:a1:1d:27:a1:88:32:c9:1c:9f:51:a4: 2b:d8:81:ca:a5:60:5b:a3:e8:65:c9:ca:27:3d:b5:97:fe:f9: 0e:5d:4e:00:a2:41:c2:66:d8:da:6f:ac:5d:24:20:ff:46:0a: ef:91:74:1d:d5:20:18:27:9a:ee:d5:e3:04:9e:54:80:75:5c: f7:0c:0d:76:ce:96:51:a0:9e:b3:9a:00:ae:9e:72:4f:ce:a4: 29:44:41:96:1a:76:06:72:d7:12:df:c0:e4:38:f1:da:0a:be: da:a9:a7:79:43:94:5d:19:77:06:cc:72:ee:ae:f2:73:3c:36: 68:8e:4b:43:4d:8a:c9:8b:f8:40:f9:57:f5:4c:44:b0:7c:eb: 4b:47:80:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKDk2ODAwNTczMDE4QzdDMkZCNUEwMDgxRTYzQzYzRjRE QTQ0MDNDQjYwHhcNMjUwODIzMDE0NTExWhcNMjUwODMwMDE0NTExWjAYMRYwFAYD VQQDEw02OGE5MWQyNy05OTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4ZZz4oSmdWaUtmV1R3vY5Yb3w8dydvQz3SMZdyYZ8CcoehB8MACY7pdgGY9 o4cCo/x0K1suVUE0DE+n8qH8eqiDZD5dRhHDmXPEYMkPwpm3o6eT8gzPDL9zN5KY 4oas78wzig5xZXG3njxkjJPBnRSDv26aLAoff4jyIrek+CGGQpHTAG8BtsprHmmp HXvrbQp9/t/kWsY9q3lk3zCm/f2H0Jt0MJeCd9TUIjYCa/ubqNF47mMocBoo5xgq bWZRNEpI9IviPa3q9bja1Wy2MO7r7G3QV4A3SQWdPdlgpRZXNKYurSItb6CyjtfG 3wTrILpABYiesB8p8fNEp/ZVCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsqDDaT mIGMaAqljE2r34xFRnUAMB8GA1UdIwQYMBaAFJaABXMBjHwvtaAIHmPGP02kQDy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC9BODZCMzc1QTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZDLTFvQWdlWThZX1RhUkFQ TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvQUZjd0dNZkMtMW9BZ2VZOFlfVGFSQVBMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC9BODZCMzc1QTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi9sb0FGY3dHTWZD LTFvQWdlWThZX1RhUkFQTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZWw1uIVhCtz8xHBjwew8tmZQkb9e6ANf6MhJxuamKsYNR6CyriqJy 625soB71ohneoC9J4i11wDEncOlUDj2c+j8lNpMzggjUJO19ooBwAkmQnEsdA0vr j5Zic9sdGXNJYOpcW7LS7vgKUbAchVlsaKXaoR0noYgyyRyfUaQr2IHKpWBbo+hl yconPbWX/vkOXU4AokHCZtjab6xdJCD/RgrvkXQd1SAYJ5ru1eMEnlSAdVz3DA12 zpZRoJ6zmgCunnJPzqQpREGWGnYGctcS38DkOPHaCr7aqad5Q5RdGXcGzHLurvJz PDZojktDTYrJi/hA+Vf1TESwfOtLR4AE -----END CERTIFICATE-----Generated at Sat Aug 23 16:59:51 2025 by rpki-client