$ rpki-client -vvf rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft File: W9l8Mex4xvFX13LBu1drgCSCtyg.mft (raw, json) Hash identifier: 7knKM2rayIIBQ2HLpeBRXYbK9jZw0/pqBR+O36KB7SM= Subject key identifier: 88:96:95:68:73:AA:45:D3:6C:4A:33:7D:AE:7E:A5:81:E3:24:F9:78 Authority key identifier: 5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 Certificate issuer: /CN=A91764A1/serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Certificate serial: 0C80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft Manifest number: 0C75 Signing time: Fri 22 Aug 2025 18:26:46 +0000 Manifest this update: Fri 22 Aug 2025 18:26:46 +0000 Manifest next update: Fri 29 Aug 2025 18:26:46 +0000 Files and hashes: 1: W9l8Mex4xvFX13LBu1drgCSCtyg.crl (hash: OXo7Rjew1DlSD2u9lBrbpsdariujvqGY8uu0VLfZnF0=) 2: 753703FE045C11EAB8BF0932C4F9AE02.roa (hash: iEFdnNUSTVmlnEmHIkSfOkDzcc3pJG72lpQKbTvUl98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764A1, serialNumber=5BD97C31EC78C6F157D772C1BB576B802482B728 Validity Not Before: Aug 22 18:26:46 2025 GMT Not After : Aug 29 18:26:46 2025 GMT Subject: CN=68a8b666-0835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:dd:33:4b:2a:de:9b:4a:92:98:c8:63:f2:ae: 72:3d:04:71:a5:89:04:1d:96:27:fc:5e:c1:c3:60: 9c:19:55:24:84:ac:e1:ed:58:63:36:b5:d6:ca:45: c0:9a:29:ec:c7:e0:97:ff:e4:18:d8:ba:ba:46:5b: ac:9d:12:be:52:d5:b4:59:e6:46:83:97:00:02:de: 7c:04:ef:82:6a:9d:72:5d:8f:de:ad:2c:c9:f6:d4: ff:d8:09:c4:00:43:73:83:73:83:d6:33:18:af:0a: 75:cc:7d:a3:1d:4c:5c:45:7a:01:85:2f:16:84:3f: 5e:05:c1:27:4e:da:f9:ef:17:49:66:82:0e:37:58: 9b:70:88:9f:93:26:dc:fc:43:07:7f:81:b5:43:28: 08:d6:3c:67:bf:8c:32:0c:fe:78:57:b1:61:ab:c3: ab:7b:ce:21:50:5a:93:78:c9:46:1d:42:37:24:95: d0:74:8f:aa:49:1a:77:37:94:88:8f:16:1a:a8:92: f4:68:ac:bc:5e:d4:f3:88:0e:cc:75:90:b3:b8:0b: c0:b2:04:1d:69:2d:06:b2:9c:c3:b9:41:d6:43:08: ca:f0:c7:63:87:19:a0:b7:e9:de:10:fc:0e:84:1c: 80:05:28:6d:12:61:b6:1c:6a:0a:f2:10:8f:bc:b3: 32:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:96:95:68:73:AA:45:D3:6C:4A:33:7D:AE:7E:A5:81:E3:24:F9:78 X509v3 Authority Key Identifier: keyid:5B:D9:7C:31:EC:78:C6:F1:57:D7:72:C1:BB:57:6B:80:24:82:B7:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9l8Mex4xvFX13LBu1drgCSCtyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764A1/6B7D69A6045311EAA8F8EC1DC4F9AE02/W9l8Mex4xvFX13LBu1drgCSCtyg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:aa:78:84:ec:27:37:02:ac:d9:a6:ee:1a:22:c9:94:3b:43: b2:c4:61:04:37:af:3e:a8:04:4f:91:28:9b:c3:b8:74:7a:2a: 57:c6:0a:00:97:7c:47:79:f1:62:6c:e1:84:c0:ca:71:d7:c2: 80:99:e0:83:67:3d:90:87:f4:b7:3d:ff:5c:b1:48:c4:c2:4e: b5:c0:62:e1:66:3b:da:41:66:ef:8c:4e:2b:e1:89:be:34:36: 8f:1b:83:25:24:eb:39:d6:21:12:98:88:a4:40:03:71:9f:41: 88:21:51:53:87:c7:cc:13:86:62:0c:b2:fd:06:59:6e:f2:82: 6c:96:a8:67:9d:05:df:e6:74:8a:42:06:fb:b5:97:b0:33:df: 0e:cf:a7:b9:bd:c6:49:4f:a6:56:19:b5:f2:5a:0a:4c:33:27: d9:30:32:b2:6a:fd:a9:f7:60:9e:22:34:b2:f3:e5:92:d1:82: 5d:11:f2:b9:5d:bc:9a:a1:5f:94:fa:20:77:a3:ef:b1:66:2f: c3:01:c8:17:a3:ff:ef:18:ee:e0:7e:4e:65:f1:21:2d:21:4c: d6:40:68:59:1b:1a:3a:3f:e6:93:d8:e1:1a:73:4c:ac:9c:1b: 57:43:b7:25:52:a5:7f:ce:61:ec:16:ee:8a:7d:49:d1:6a:12: c7:6b:f1:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0QTExMTAvBgNVBAUTKDVCRDk3QzMxRUM3OEM2RjE1N0Q3NzJDMUJCNTc2Qjgw MjQ4MkI3MjgwHhcNMjUwODIyMTgyNjQ2WhcNMjUwODI5MTgyNjQ2WjAYMRYwFAYD VQQDEw02OGE4YjY2Ni0wODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1d0zSyrem0qSmMhj8q5yPQRxpYkEHZYn/F7Bw2CcGVUkhKzh7VhjNrXWykXA minsx+CX/+QY2Lq6RlusnRK+UtW0WeZGg5cAAt58BO+Cap1yXY/erSzJ9tT/2AnE AENzg3OD1jMYrwp1zH2jHUxcRXoBhS8WhD9eBcEnTtr57xdJZoION1ibcIifkybc /EMHf4G1QygI1jxnv4wyDP54V7Fhq8Ore84hUFqTeMlGHUI3JJXQdI+qSRp3N5SI jxYaqJL0aKy8XtTziA7MdZCzuAvAsgQdaS0GspzDuUHWQwjK8Mdjhxmgt+neEPwO hByABShtEmG2HGoK8hCPvLMyzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiWlWhz qkXTbEozfa5+pYHjJPl4MB8GA1UdIwQYMBaAFFvZfDHseMbxV9dywbtXa4Akgrco MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRBMS82QjdENjlBNjA0 NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2RlgxM0xCdTFkcmdDU0N0 eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c5bDhNZXg0eHZGWDEzTEJ1MWRyZ0NTQ3R5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRBMS82QjdENjlBNjA0NTMxMUVBQThGOEVDMURDNEY5QUUwMi9XOWw4TWV4NHh2 RlgxM0xCdTFkcmdDU0N0eWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxqniE7Cc3AqzZpu4aIsmUO0OyxGEEN68+qARPkSibw7h0eipXxgoA l3xHefFibOGEwMpx18KAmeCDZz2Qh/S3Pf9csUjEwk61wGLhZjvaQWbvjE4r4Ym+ NDaPG4MlJOs51iESmIikQANxn0GIIVFTh8fME4ZiDLL9Bllu8oJslqhnnQXf5nSK Qgb7tZewM98Oz6e5vcZJT6ZWGbXyWgpMMyfZMDKyav2p92CeIjSy8+WS0YJdEfK5 XbyaoV+U+iB3o++xZi/DAcgXo//vGO7gfk5l8SEtIUzWQGhZGxo6P+aT2OEac0ys nBtXQ7clUqV/zmHsFu6KfUnRahLHa/Gg -----END CERTIFICATE-----Generated at Sat Aug 23 15:48:39 2025 by rpki-client