$ rpki-client -vvf rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft File: 1H75KB4xQx3ljjR8aX45vydCkRk.mft (raw, json) Hash identifier: 8taN37f6a+wL1v0+ZytJ9GyMFzLoVxEhlAKdokJfxQQ= Subject key identifier: 96:38:44:F4:18:26:BA:6C:FC:BD:EB:01:9B:01:C6:07:B6:B2:21:AF Authority key identifier: D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 Certificate issuer: /CN=A91612FE/serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Certificate serial: 91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft Manifest number: 91 Signing time: Sat 23 Aug 2025 06:42:01 +0000 Manifest this update: Sat 23 Aug 2025 06:42:01 +0000 Manifest next update: Sat 30 Aug 2025 06:42:01 +0000 Files and hashes: 1: 1H75KB4xQx3ljjR8aX45vydCkRk.crl (hash: 4KdoDUh4hjz+6GxZbsTywTzshuFsnIcluad3YJpJJh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 145 (0x91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91612FE, serialNumber=D47EF9281E31431DE58E347C697E39BF27429119 Validity Not Before: Aug 23 06:42:01 2025 GMT Not After : Aug 30 06:42:01 2025 GMT Subject: CN=68a962b9-76da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:b4:ce:c4:e1:d5:5a:04:df:44:0d:dd:55: bb:ab:58:98:06:e7:ba:ad:88:e3:c1:73:62:37:c2: 63:f7:3b:83:01:31:b6:33:3d:25:ce:0e:b2:d7:1f: a9:b0:18:e6:5e:d3:d9:9f:ba:32:e4:79:f8:63:17: 0c:59:81:57:f8:34:2a:bb:0a:31:2b:b2:51:47:3c: 5f:95:58:6c:90:cf:61:5e:23:c3:2d:8e:f0:d5:72: b5:82:45:e5:7b:1d:42:75:42:bb:1b:60:5a:23:ca: f1:e2:bb:97:b6:96:a5:3d:a0:79:e6:b2:ab:8e:e0: 31:63:80:ef:75:92:02:0c:8f:aa:9c:6c:c9:a0:1f: 9d:5a:53:7c:1f:e7:e9:9f:6b:d3:59:c5:c7:62:fd: 3f:a9:60:f8:2b:37:4a:f1:cc:d7:28:58:dc:6d:5f: f0:bf:72:c4:b2:ff:38:7a:84:07:ad:9c:cb:f2:a0: fe:49:58:8b:3c:13:0b:ff:a7:fe:03:b4:c3:8b:b0: 11:dc:a8:37:15:ab:f7:75:ae:fe:dc:37:53:95:af: 44:1f:05:2c:e6:e4:7e:ba:27:71:57:fa:9d:d8:51: 9a:62:79:37:fa:e4:14:d2:7a:ef:db:cd:be:15:82: ed:8d:7f:8a:03:0e:92:f6:61:55:c1:52:97:3f:15: 49:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:38:44:F4:18:26:BA:6C:FC:BD:EB:01:9B:01:C6:07:B6:B2:21:AF X509v3 Authority Key Identifier: keyid:D4:7E:F9:28:1E:31:43:1D:E5:8E:34:7C:69:7E:39:BF:27:42:91:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1H75KB4xQx3ljjR8aX45vydCkRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91612FE/491D694CA25511EFB2CA782AC4F9AE02/1H75KB4xQx3ljjR8aX45vydCkRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:42:c3:91:d2:54:d1:32:b5:95:c2:9d:f1:1a:ce:4f:d5:4f: 7a:37:49:ee:89:2d:44:71:4d:a1:aa:75:fc:1f:eb:05:07:28: bc:6d:64:ab:81:3a:83:5c:21:d3:fb:04:e5:dd:6d:a0:2a:b3: 64:79:a2:13:2d:92:fd:0f:5b:a0:8d:3e:bf:97:13:8f:37:82: 42:ae:ea:a6:fc:6f:97:84:f3:82:c2:56:da:bb:57:db:03:b9: f5:c1:70:ed:a4:c2:3c:1b:ff:f5:95:42:e7:e8:c1:dd:b7:2b: cb:74:9d:00:a3:ae:f9:1e:c3:d5:e5:e8:bc:59:37:64:6d:82: 8b:c8:6f:18:bf:ed:bc:31:8d:1b:de:dd:d4:7c:8a:d6:58:be: 7e:75:ac:1e:ca:30:20:76:87:d3:7a:1f:e4:20:6d:86:87:9b: 62:dc:b9:1c:bc:ef:d1:99:e4:95:6f:d3:1c:49:aa:e0:cb:de: 8b:81:b8:1e:f5:41:b5:13:06:81:e3:7c:2d:84:81:a0:64:c2: fb:c0:50:f2:77:07:b5:be:34:2f:a0:c5:5a:4b:43:c2:40:c0: f7:02:21:57:19:54:7b:b4:a5:49:a7:a9:6d:8e:08:ac:80:33: 74:fe:8f:b9:12:9b:07:49:8f:44:dd:46:f0:5f:30:bc:c5:8c: b0:6d:b8:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEyRkUxMTAvBgNVBAUTKEQ0N0VGOTI4MUUzMTQzMURFNThFMzQ3QzY5N0UzOUJG Mjc0MjkxMTkwHhcNMjUwODIzMDY0MjAxWhcNMjUwODMwMDY0MjAxWjAYMRYwFAYD VQQDEw02OGE5NjJiOS03NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmq0zsTh1VoE30QN3VW7q1iYBue6rYjjwXNiN8Jj9zuDATG2Mz0lzg6y1x+p sBjmXtPZn7oy5Hn4YxcMWYFX+DQquwoxK7JRRzxflVhskM9hXiPDLY7w1XK1gkXl ex1CdUK7G2BaI8rx4ruXtpalPaB55rKrjuAxY4DvdZICDI+qnGzJoB+dWlN8H+fp n2vTWcXHYv0/qWD4KzdK8czXKFjcbV/wv3LEsv84eoQHrZzL8qD+SViLPBML/6f+ A7TDi7AR3Kg3Fav3da7+3DdTla9EHwUs5uR+uidxV/qd2FGaYnk3+uQU0nrv282+ FYLtjX+KAw6S9mFVwVKXPxVJlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJY4RPQY Jrps/L3rAZsBxge2siGvMB8GA1UdIwQYMBaAFNR++SgeMUMd5Y40fGl+Ob8nQpEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTJGRS80OTFENjk0Q0Ey NTUxMUVGQjJDQTc4MkFDNEY5QUUwMi8xSDc1S0I0eFF4M2xqalI4YVg0NXZ5ZENr UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFINzVLQjR4UXgzbGpqUjhhWDQ1dnlkQ2tSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTJGRS80OTFENjk0Q0EyNTUxMUVGQjJDQTc4MkFDNEY5QUUwMi8xSDc1S0I0eFF4 M2xqalI4YVg0NXZ5ZENrUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiQsOR0lTRMrWVwp3xGs5P1U96N0nuiS1EcU2hqnX8H+sFByi8bWSr gTqDXCHT+wTl3W2gKrNkeaITLZL9D1ugjT6/lxOPN4JCruqm/G+XhPOCwlbau1fb A7n1wXDtpMI8G//1lULn6MHdtyvLdJ0Ao675HsPV5ei8WTdkbYKLyG8Yv+28MY0b 3t3UfIrWWL5+daweyjAgdofTeh/kIG2Gh5ti3LkcvO/RmeSVb9McSargy96Lgbge 9UG1EwaB43wthIGgZML7wFDydwe1vjQvoMVaS0PCQMD3AiFXGVR7tKVJp6ltjgis gDN0/o+5EpsHSY9E3UbwXzC8xYywbbiv -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:09 2025 by rpki-client