$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: CuEkaySO6Gtl4XiUj27viqWUtm5+gGmyEauXpis8tVc= Subject key identifier: F2:CF:C7:4D:1B:62:54:E2:95:8F:AC:C4:C6:CD:B3:0B:FB:32:AE:8A Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 53 Signing time: Sat 23 Aug 2025 07:32:35 +0000 Manifest this update: Sat 23 Aug 2025 07:32:35 +0000 Manifest next update: Sat 30 Aug 2025 07:32:35 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: L26+c6/Wk+8UwNLWVclsmYcEPuYKIzQfmNWgQ2I6lZg=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Aug 23 07:32:35 2025 GMT Not After : Aug 30 07:32:35 2025 GMT Subject: CN=68a96e93-7cad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4f:6e:1d:5e:f5:3c:22:c9:1c:c5:91:1b:36: 9c:e1:c2:6b:bd:8e:01:de:20:67:96:75:5a:56:18: e4:e2:08:25:a6:35:fe:fe:cd:91:13:36:15:cc:d7: d6:6a:1f:66:d3:03:f8:38:e1:23:eb:f4:21:06:27: 07:9e:30:fa:4c:4b:cb:a0:de:89:9c:4d:70:56:da: 91:3f:42:67:33:cc:fd:7e:df:79:0d:74:6a:bd:70: 8e:fc:06:0c:69:11:ba:c7:14:0e:cf:0a:bd:87:89: 7b:76:78:35:88:3a:d4:7d:cd:cc:eb:b9:a3:97:bd: 9b:83:a9:ba:cf:21:17:57:fc:0a:93:4f:ac:64:21: 10:f0:a9:3a:71:7a:7b:51:80:ba:14:c0:09:2e:22: 9d:cb:75:9f:a5:be:a0:ca:84:fb:f7:c9:53:3a:04: a4:1c:64:2b:6c:e4:3f:95:32:ae:04:a1:ba:ba:db: 6e:ce:b4:e7:28:04:fe:4b:62:18:11:eb:b6:81:dd: fb:54:a0:e0:ed:35:c1:24:80:3c:a5:9d:28:57:cf: dd:69:18:21:f8:59:70:e6:ca:96:09:52:21:b3:44: c2:df:ac:05:6d:be:b0:bf:f9:7b:6d:77:e4:4b:86: f7:f0:70:a0:62:f0:37:01:3c:86:1f:04:cb:ba:29: 15:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CF:C7:4D:1B:62:54:E2:95:8F:AC:C4:C6:CD:B3:0B:FB:32:AE:8A X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b5:30:cc:3f:3d:54:0e:a4:05:25:34:a8:80:ca:41:ae:96: b0:e5:a9:22:5b:9c:6d:63:07:f7:06:40:90:6a:6a:33:c9:d7: d9:1e:bc:c6:05:7b:26:8a:88:6d:90:37:49:6f:a9:de:ca:27: c7:f0:dd:b9:b3:30:e2:6c:27:80:01:5f:b0:00:00:48:8b:07: ba:9a:ab:25:c5:22:3f:d5:76:63:ee:63:aa:eb:e7:93:96:80: 93:29:cc:d5:68:e1:31:84:03:75:a1:3c:08:40:69:1b:07:c5: 1e:a8:00:1f:89:9c:7f:f4:76:fa:b1:59:e2:5b:64:34:98:38: 8b:77:1c:25:d3:02:98:6d:f9:6b:1d:6a:a6:8b:5a:2c:cc:f0: 83:ab:00:92:91:7e:6a:4c:49:9d:9d:d7:4b:b2:0b:5e:ab:fb: de:74:1f:42:52:7e:75:7b:c5:34:18:f1:a9:6a:38:09:53:1c: 4c:34:49:a0:17:49:03:d9:26:8a:d2:39:23:6c:4f:2a:f0:08: 6b:1f:01:23:39:0e:15:7f:8f:84:7a:89:b1:1d:89:da:24:25: c7:e2:c6:52:b4:df:88:43:12:4b:ec:e7:6a:67:aa:9a:f8:83: b5:bd:da:4a:f8:a8:9b:c0:94:44:10:6a:00:45:8c:81:33:6a: fd:44:fb:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA4MjMwNzMyMzVaFw0yNTA4MzAwNzMyMzVaMBgxFjAUBgNV BAMTDTY4YTk2ZTkzLTdjYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCT24dXvU8IskcxZEbNpzhwmu9jgHeIGeWdVpWGOTiCCWmNf7+zZETNhXM19Zq H2bTA/g44SPr9CEGJweeMPpMS8ug3omcTXBW2pE/QmczzP1+33kNdGq9cI78Bgxp EbrHFA7PCr2HiXt2eDWIOtR9zczruaOXvZuDqbrPIRdX/AqTT6xkIRDwqTpxentR gLoUwAkuIp3LdZ+lvqDKhPv3yVM6BKQcZCts5D+VMq4Eobq6227OtOcoBP5LYhgR 67aB3ftUoODtNcEkgDylnShXz91pGCH4WXDmypYJUiGzRMLfrAVtvrC/+Xttd+RL hvfwcKBi8DcBPIYfBMu6KRWBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8s/HTRti VOKVj6zExs2zC/syroowHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC61MMw/PVQOpAUlNKiAykGulrDlqSJbnG1jB/cGQJBqajPJ19kevMYF eyaKiG2QN0lvqd7KJ8fw3bmzMOJsJ4ABX7AAAEiLB7qaqyXFIj/VdmPuY6rr55OW gJMpzNVo4TGEA3WhPAhAaRsHxR6oAB+JnH/0dvqxWeJbZDSYOIt3HCXTApht+Wsd aqaLWizM8IOrAJKRfmpMSZ2d10uyC16r+950H0JSfnV7xTQY8alqOAlTHEw0SaAX SQPZJorSOSNsTyrwCGsfASM5DhV/j4R6ibEdidokJcfixlK034hDEkvs52pnqpr4 g7W92kr4qJvAlEQQagBFjIEzav1E+9c= -----END CERTIFICATE-----Generated at Sat Aug 23 13:45:51 2025 by rpki-client