$ rpki-client -vvf rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft File: P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft (raw, json) Hash identifier: VrFt83JPz2tN1MB2cLbtn01Yabob611K62jXI4+SV3Y= Subject key identifier: 61:49:F2:4F:05:68:A7:9E:8F:CA:11:94:89:1F:07:48:36:36:00:58 Authority key identifier: 3F:48:AC:A1:2A:59:27:A7:02:EC:EE:24:41:51:89:19:4E:D4:AA:80 Certificate issuer: /CN=A916A2FB/serialNumber=3F48ACA12A5927A702ECEE24415189194ED4AA80 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft Manifest number: 27 Signing time: Sat 23 Aug 2025 08:01:08 +0000 Manifest this update: Sat 23 Aug 2025 08:01:07 +0000 Manifest next update: Sat 30 Aug 2025 08:01:07 +0000 Files and hashes: 1: P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl (hash: eM0cx9jFBcH7dWhEtLN885UmG9EHjdTnvotrraTR/Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A2FB, serialNumber=3F48ACA12A5927A702ECEE24415189194ED4AA80 Validity Not Before: Aug 23 08:01:07 2025 GMT Not After : Aug 30 08:01:07 2025 GMT Subject: CN=68a97543-44af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:81:30:82:59:cd:6b:a3:84:36:ee:d9:ec:35: cd:ba:03:9e:9a:e3:10:ec:13:7a:98:cf:40:26:e1: 72:21:bd:ad:0d:0b:b0:c3:ce:9e:e6:35:5a:55:bf: 3d:3d:0f:df:0b:da:cf:e3:c7:22:b7:c2:34:bc:55: 5a:a5:ab:32:95:51:4c:22:49:bb:8a:f7:23:9b:e2: a6:1c:7b:56:0c:fb:b5:cc:86:fd:77:bb:a2:4f:26: ca:d4:d6:01:9e:78:ca:1c:7f:23:a4:67:d0:8e:9b: d3:29:be:9c:78:4f:cb:d1:d1:fe:76:4c:02:42:11: 89:cb:03:24:f2:e0:d8:1d:e0:4b:bc:26:12:6f:f7: 25:47:7a:0a:39:b1:98:7e:4f:7c:99:d1:46:0e:25: 9f:1f:75:7d:06:fc:d7:d2:1d:3b:33:f0:b7:7a:72: 9e:40:69:64:4f:81:9f:b7:10:11:af:4c:52:d3:e0: 5e:17:fc:0c:29:f4:a8:74:a7:48:b4:70:1b:fe:cb: dd:8b:02:b8:bd:7c:66:b7:db:39:63:81:5a:a9:53: df:bb:99:df:ce:45:2e:a7:47:d4:bf:d0:cc:72:f3: f2:70:d2:fa:99:32:0c:30:1e:13:ec:bd:be:23:7d: e4:b9:8e:3d:e3:c1:5b:a2:56:ef:2c:fe:c3:4c:f5: 73:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:49:F2:4F:05:68:A7:9E:8F:CA:11:94:89:1F:07:48:36:36:00:58 X509v3 Authority Key Identifier: keyid:3F:48:AC:A1:2A:59:27:A7:02:EC:EE:24:41:51:89:19:4E:D4:AA:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0isoSpZJ6cC7O4kQVGJGU7UqoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A2FB/9F8F9D00468711F0AF642744C4F9AE02/P0isoSpZJ6cC7O4kQVGJGU7UqoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ef:dd:bd:fb:58:55:03:4e:20:7b:18:a8:ca:08:9e:d3:91: be:55:12:e1:77:7b:c9:c8:85:a1:32:c1:dd:12:83:b8:8a:36: 55:bd:0a:d6:9e:15:21:7a:2e:4a:07:e7:e0:4e:0e:76:3f:ec: 61:d9:97:e3:40:35:ad:c4:f7:b1:69:c2:cd:61:67:fa:f6:16: b2:e3:a3:a9:aa:98:9e:a9:fd:8c:a5:6f:c2:8c:70:25:bb:bc: a7:de:32:2a:c3:b3:27:ee:64:0b:2e:0e:6c:ba:7c:78:e8:d0: 13:57:0a:2e:ca:37:5b:06:5d:26:1b:e7:b5:eb:c5:b8:12:03: e9:2f:84:26:19:ab:e6:b1:c0:20:eb:3c:b0:ef:60:2b:d0:af: 9b:9c:30:db:ba:58:8a:f7:ef:f8:a2:ea:b3:b0:c5:31:54:aa: ba:60:be:a2:ad:d5:34:e5:97:31:b7:eb:73:b6:eb:6b:3a:0f: 98:9f:70:5c:11:fb:31:16:ca:31:45:a2:26:a4:0e:1e:77:d9: 8d:c1:31:00:16:fe:26:57:59:2e:7a:f8:69:9c:60:34:f9:fe: a1:55:4a:ea:9b:76:b2:46:99:22:8a:ca:c2:01:57:49:17:ca: 79:ba:23:5b:5d:79:d4:a6:ee:2a:e2:c5:56:e6:d2:5b:56:e1: f0:44:69:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTJGQjExMC8GA1UEBRMoM0Y0OEFDQTEyQTU5MjdBNzAyRUNFRTI0NDE1MTg5MTk0 RUQ0QUE4MDAeFw0yNTA4MjMwODAxMDdaFw0yNTA4MzAwODAxMDdaMBgxFjAUBgNV BAMTDTY4YTk3NTQzLTQ0YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtgTCCWc1ro4Q27tnsNc26A56a4xDsE3qYz0Am4XIhva0NC7DDzp7mNVpVvz09 D98L2s/jxyK3wjS8VVqlqzKVUUwiSbuK9yOb4qYce1YM+7XMhv13u6JPJsrU1gGe eMocfyOkZ9COm9Mpvpx4T8vR0f52TAJCEYnLAyTy4Ngd4Eu8JhJv9yVHego5sZh+ T3yZ0UYOJZ8fdX0G/NfSHTsz8Ld6cp5AaWRPgZ+3EBGvTFLT4F4X/Awp9Kh0p0i0 cBv+y92LAri9fGa32zljgVqpU9+7md/ORS6nR9S/0Mxy8/Jw0vqZMgwwHhPsvb4j feS5jj3jwVuiVu8s/sNM9XMxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYUnyTwVo p56PyhGUiR8HSDY2AFgwHwYDVR0jBBgwFoAUP0isoSpZJ6cC7O4kQVGJGU7UqoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBMkZCLzlGOEY5RDAwNDY4 NzExRjBBRjY0Mjc0NEM0RjlBRTAyL1AwaXNvU3BaSjZjQzdPNGtRVkdKR1U3VXFv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUDBpc29TcFpKNmNDN080a1FWR0pHVTdVcW9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB MkZCLzlGOEY5RDAwNDY4NzExRjBBRjY0Mjc0NEM0RjlBRTAyL1AwaXNvU3BaSjZj QzdPNGtRVkdKR1U3VXFvQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJnv3b37WFUDTiB7GKjKCJ7Tkb5VEuF3e8nIhaEywd0Sg7iKNlW9Ctae FSF6LkoH5+BODnY/7GHZl+NANa3E97Fpws1hZ/r2FrLjo6mqmJ6p/Yylb8KMcCW7 vKfeMirDsyfuZAsuDmy6fHjo0BNXCi7KN1sGXSYb57XrxbgSA+kvhCYZq+axwCDr PLDvYCvQr5ucMNu6WIr37/ii6rOwxTFUqrpgvqKt1TTllzG363O262s6D5ifcFwR +zEWyjFFoiakDh532Y3BMQAW/iZXWS56+GmcYDT5/qFVSuqbdrJGmSKKysIBV0kX ynm6I1tdedSm7irixVbm0ltW4fBEaaE= -----END CERTIFICATE-----Generated at Sat Aug 23 14:19:25 2025 by rpki-client