$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: 4ppx0/ej0M4eFsWqeyd9AfDCT6rdms8SFkUttJADmp0= Subject key identifier: C5:89:27:29:79:81:7B:B7:C7:97:D3:C7:04:AC:47:9D:42:5A:88:52 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 01CC Signing time: Sat 23 Aug 2025 03:00:44 +0000 Manifest this update: Sat 23 Aug 2025 03:00:43 +0000 Manifest next update: Sat 30 Aug 2025 03:00:43 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: h0hvtJethhvZFI3BVtJMWkDVtrvOrYoO9XWu4cSyw9w=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Aug 23 03:00:43 2025 GMT Not After : Aug 30 03:00:43 2025 GMT Subject: CN=68a92edc-ceca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f3:32:7d:2e:b6:be:b9:24:ed:4c:5f:a3:57: 15:3a:68:d8:10:91:3f:3e:72:2d:f2:07:e4:e0:5a: 0a:f3:f9:22:9f:3b:e4:d6:20:e0:79:05:84:d5:eb: 45:3a:9d:43:a0:8c:64:b6:9d:12:47:43:24:9d:97: 45:74:6a:4c:b3:a5:41:63:f7:36:fc:d1:e2:06:ce: b7:d2:53:f3:4f:05:b1:43:b2:ed:48:a0:1c:89:3b: e3:db:2e:d1:ad:ec:e8:c3:a6:60:23:2a:63:1e:b8: 9d:60:c6:f1:35:b7:5b:d3:56:b4:a0:44:64:d9:9f: ed:5f:d7:7e:94:43:a3:25:64:1f:51:9d:a6:90:5b: 6d:08:00:dd:92:bd:ea:64:9d:24:72:6d:65:76:a8: 56:e8:70:3a:3c:94:3f:39:79:39:df:2e:68:5f:ee: 91:0a:6f:19:89:f8:d0:44:5e:ca:77:d2:c6:9d:ce: b0:96:0b:0a:63:96:86:2e:8c:7d:d8:bc:82:f3:81: 9c:c8:d2:c4:d8:cd:c6:c3:47:62:8f:5e:06:8a:ce: 38:68:54:93:5e:46:b5:7d:5b:06:e0:97:ce:8e:9f: 84:ba:47:6a:4b:f5:13:aa:47:bb:31:33:3d:23:4d: 76:f2:68:a1:19:1f:4f:ef:d7:9d:7b:07:a3:3d:f0: 46:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:89:27:29:79:81:7B:B7:C7:97:D3:C7:04:AC:47:9D:42:5A:88:52 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:3f:21:c7:3d:dd:e9:4b:50:d6:39:97:bd:76:42:f7:17:09: 8a:19:51:c2:52:81:26:17:a9:34:92:8f:3b:06:ed:a3:fb:70: 2d:46:f4:ce:5b:86:62:dd:2e:98:78:7c:dc:c5:0f:11:10:5c: 2a:ab:3e:de:8d:c9:3c:46:d1:5d:74:56:9c:d4:a6:eb:32:ad: 73:55:24:7a:f4:52:bb:64:2f:b7:87:3e:4f:f0:96:21:97:ce: 83:7b:4a:08:f2:ff:ea:d9:2d:d9:a5:69:38:d4:34:5c:99:d1: c4:af:1e:98:82:89:1b:42:52:3a:2f:c2:be:12:85:b2:f9:d1: c9:14:27:13:f7:14:93:76:9c:6b:c3:db:2f:2e:9d:bb:95:ee: 82:5e:58:04:fd:5e:f5:b8:b3:de:98:e9:45:2b:a4:9a:1e:15: 54:08:af:3e:09:3f:58:9f:56:b8:af:a1:85:bc:ae:3a:93:82: 5e:af:74:13:c7:7a:34:cf:15:41:6a:3d:fd:0d:f9:30:ba:2e: e0:09:1c:9b:1c:38:54:ca:61:21:ba:a6:67:0e:d2:f4:9d:b9: 1a:da:a2:b5:98:5e:5e:84:a9:8e:d4:5d:50:57:bd:fb:e8:01: f6:c4:eb:c9:d1:3a:e4:97:9c:e9:58:08:67:cc:97:1e:ea:41: 3f:0b:5f:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUwODIzMDMwMDQzWhcNMjUwODMwMDMwMDQzWjAYMRYwFAYD VQQDEw02OGE5MmVkYy1jZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fMyfS62vrkk7Uxfo1cVOmjYEJE/PnIt8gfk4FoK8/kinzvk1iDgeQWE1etF Op1DoIxktp0SR0MknZdFdGpMs6VBY/c2/NHiBs630lPzTwWxQ7LtSKAciTvj2y7R rezow6ZgIypjHridYMbxNbdb01a0oERk2Z/tX9d+lEOjJWQfUZ2mkFttCADdkr3q ZJ0kcm1ldqhW6HA6PJQ/OXk53y5oX+6RCm8ZifjQRF7Kd9LGnc6wlgsKY5aGLox9 2LyC84GcyNLE2M3Gw0dij14Gis44aFSTXka1fVsG4JfOjp+EukdqS/UTqke7MTM9 I0128mihGR9P79edewejPfBGGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWJJyl5 gXu3x5fTxwSsR51CWohSMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGPyHHPd3pS1DWOZe9dkL3FwmKGVHCUoEmF6k0ko87Bu2j+3AtRvTO W4Zi3S6YeHzcxQ8REFwqqz7ejck8RtFddFac1KbrMq1zVSR69FK7ZC+3hz5P8JYh l86De0oI8v/q2S3ZpWk41DRcmdHErx6YgokbQlI6L8K+EoWy+dHJFCcT9xSTdpxr w9svLp27le6CXlgE/V71uLPemOlFK6SaHhVUCK8+CT9Yn1a4r6GFvK46k4Jer3QT x3o0zxVBaj39Dfkwui7gCRybHDhUymEhuqZnDtL0nbka2qK1mF5ehKmO1F1QV737 6AH2xOvJ0Trkl5zpWAhnzJce6kE/C18k -----END CERTIFICATE-----Generated at Sat Aug 23 19:00:17 2025 by rpki-client