$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft File: aR7cVncnIjOjjzNRkaropa4q97k.mft (raw, json) Hash identifier: yORrbXUVQyZj1+8VSumxkwsK+wZp9Ict3KWBCr1S2wI= Subject key identifier: B3:34:E1:55:2D:5E:C4:D4:C3:79:0E:16:76:C8:60:DD:EE:77:53:00 Authority key identifier: 69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 Certificate issuer: /CN=A9155725/serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft Manifest number: 4F Signing time: Sat 23 Aug 2025 07:33:09 +0000 Manifest this update: Sat 23 Aug 2025 07:33:09 +0000 Manifest next update: Sat 30 Aug 2025 07:33:08 +0000 Files and hashes: 1: aR7cVncnIjOjjzNRkaropa4q97k.crl (hash: jDb5D2Shw3vwxIw0KJeOdAfRxY6qKKx5cY4eheY0Bs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Validity Not Before: Aug 23 07:33:09 2025 GMT Not After : Aug 30 07:33:08 2025 GMT Subject: CN=68a96eb5-d205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ed:95:ff:6e:7b:7f:a5:23:58:75:34:d6:78: 9f:53:54:26:64:01:ca:1a:58:d8:74:af:3b:1a:ad: 96:ab:87:a9:7a:25:3f:2c:5b:c2:e3:e4:12:7c:01: ab:7f:bd:3e:33:9f:d3:3c:a8:81:50:b2:ee:c6:a1: bd:8c:87:06:86:e9:1a:0b:be:37:a1:c8:e4:28:7a: b2:35:f6:b3:67:a2:92:d5:8f:f8:0a:ce:44:bf:41: c6:93:20:b4:c7:05:f2:ad:72:72:bf:85:6c:4f:d3: 0d:72:bc:ba:2f:a3:3a:89:74:2c:84:4b:1b:f8:bf: 61:8a:88:ea:0e:38:91:5f:6d:18:0f:f2:94:f7:45: 72:1d:63:b7:54:ce:9a:f6:b1:e2:73:b0:d2:68:a9: 27:ae:f8:20:d7:aa:b8:12:74:56:c5:87:c9:65:97: b7:f7:12:e6:1e:3a:a9:6d:ca:5d:89:56:54:23:a8: 09:22:16:e7:24:31:42:0b:e3:ec:e3:8f:59:d0:7e: 52:9d:3e:fd:c3:19:b3:09:92:ed:c2:56:2a:ca:59: 5c:48:c8:6f:46:a2:50:28:99:30:a0:bb:2b:25:e9: 51:0d:5a:ab:4a:a6:df:b8:4e:e1:96:e9:82:0a:03: e4:fd:1b:44:4a:b5:e1:df:e8:8b:9e:d2:c0:f4:f2: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:34:E1:55:2D:5E:C4:D4:C3:79:0E:16:76:C8:60:DD:EE:77:53:00 X509v3 Authority Key Identifier: keyid:69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:3e:81:bb:b0:40:c4:01:27:c2:e4:30:ed:8c:84:00:b2:c4: 05:4d:2a:7e:05:84:b5:9c:b1:7c:c7:f1:18:7a:36:a4:67:a2: 9f:22:5d:97:3b:13:b1:0a:a1:46:22:16:ee:cf:3d:fc:a1:1e: 53:e4:ae:00:dc:98:11:4a:e6:7e:bc:43:da:b9:74:71:de:b1: ed:d7:85:79:88:65:43:49:70:cb:0c:4e:64:d6:46:25:ec:0d: d4:c0:c3:dc:73:86:30:17:95:17:9d:d3:01:d1:d2:90:98:dd: c8:a6:64:c0:9d:ae:e4:66:50:70:92:51:ac:16:ae:f3:e2:d0: d2:75:7f:4c:1b:50:98:84:c0:2c:6d:39:cb:3a:10:8e:bb:81: 7f:bb:55:12:3b:ec:32:b0:d3:17:5e:ce:32:21:7b:d4:8d:b6: cf:9f:59:7a:9c:c6:5a:8b:33:20:8f:de:20:d4:46:fe:be:af: e8:b2:da:04:68:4b:e7:d9:e5:7b:94:7f:fe:d2:0b:91:12:c1: bd:f9:02:04:c8:96:b9:df:14:51:2a:c0:9c:b5:08:5a:8c:03: 6a:f8:29:c9:23:b0:05:c0:e9:22:b3:04:93:98:01:35:31:f3: 47:51:fb:14:2a:6e:80:5a:9f:f8:83:5e:00:ba:56:b4:b3:16: 37:51:88:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoNjkxRURDNTY3NzI3MjIzM0EzOEYzMzUxOTFBQUU4QTVB RTJBRjdCOTAeFw0yNTA4MjMwNzMzMDlaFw0yNTA4MzAwNzMzMDhaMBgxFjAUBgNV BAMTDTY4YTk2ZWI1LWQyMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCo7ZX/bnt/pSNYdTTWeJ9TVCZkAcoaWNh0rzsarZarh6l6JT8sW8Lj5BJ8Aat/ vT4zn9M8qIFQsu7Gob2MhwaG6RoLvjehyOQoerI19rNnopLVj/gKzkS/QcaTILTH BfKtcnK/hWxP0w1yvLovozqJdCyESxv4v2GKiOoOOJFfbRgP8pT3RXIdY7dUzpr2 seJzsNJoqSeu+CDXqrgSdFbFh8lll7f3EuYeOqltyl2JVlQjqAkiFuckMUIL4+zj j1nQflKdPv3DGbMJku3CVirKWVxIyG9GolAomTCguysl6VENWqtKpt+4TuGW6YIK A+T9G0RKteHf6Iue0sD08oMDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUszThVS1e xNTDeQ4Wdshg3e53UwAwHwYDVR0jBBgwFoAUaR7cVncnIjOjjzNRkaropa4q97kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzVBNjZDRjY4MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpPamp6TlJrYXJvcGE0cTk3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVI3Y1ZuY25Jak9qanpOUmthcm9wYTRxOTdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzVBNjZDRjY4MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpP amp6TlJrYXJvcGE0cTk3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFc+gbuwQMQBJ8LkMO2MhACyxAVNKn4FhLWcsXzH8Rh6NqRnop8iXZc7 E7EKoUYiFu7PPfyhHlPkrgDcmBFK5n68Q9q5dHHese3XhXmIZUNJcMsMTmTWRiXs DdTAw9xzhjAXlRed0wHR0pCY3cimZMCdruRmUHCSUawWrvPi0NJ1f0wbUJiEwCxt Ocs6EI67gX+7VRI77DKw0xdezjIhe9SNts+fWXqcxlqLMyCP3iDURv6+r+iy2gRo S+fZ5XuUf/7SC5ESwb35AgTIlrnfFFEqwJy1CFqMA2r4KckjsAXA6SKzBJOYATUx 80dR+xQqboBan/iDXgC6VrSzFjdRiMY= -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:26 2025 by rpki-client