$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: h30DBx8+jNXE+3rC0Dye3dBrTOmTkDl7ddHXRM2TaVU= Subject key identifier: 1E:DE:E1:8E:AD:30:D5:1B:CF:67:E4:23:C1:A7:B7:87:1F:0B:EE:AA Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: 6F Signing time: Sat 23 Aug 2025 07:08:11 +0000 Manifest this update: Sat 23 Aug 2025 07:08:11 +0000 Manifest next update: Sat 30 Aug 2025 07:08:11 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: RHeFAtnlwtWSXZSd/FZwz9tmNwTKf3u89U4Bd8TCFjQ=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Validity Not Before: Aug 23 07:08:11 2025 GMT Not After : Aug 30 07:08:11 2025 GMT Subject: CN=68a968db-056a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:3b:09:6b:4b:90:da:5d:aa:73:01:3c:83:f8: 3e:aa:3b:d6:ac:e2:48:21:7f:dd:87:2b:e8:f5:70: a3:25:df:b9:35:f9:c4:04:bf:dc:74:ad:2a:03:42: 20:49:3d:76:f7:7c:3a:84:fe:38:5f:70:dd:c0:c7: 29:c2:2a:61:1e:65:28:a5:26:28:92:23:85:93:3a: 62:b5:8b:0e:80:e3:81:f6:4d:28:6a:ab:89:0e:32: 1a:d7:4a:63:5b:4b:73:cf:89:f4:c1:0a:d4:d8:7c: 78:8a:9f:9a:f6:a0:da:d1:0a:26:40:12:ed:bc:ef: b8:6d:49:57:d0:ba:37:f3:2e:d5:e1:ca:f3:36:a1: b7:2f:4d:51:f9:81:f4:f5:7f:e4:ea:0f:e4:05:17: 66:ae:04:eb:e7:04:56:64:f6:b1:ec:0a:33:70:d8: c0:a1:19:81:ee:b9:3c:f5:f5:3f:33:8d:b1:83:30: 8f:33:3c:a7:88:9e:92:8e:80:77:bc:a1:cb:10:ce: 3e:e9:d1:9f:db:07:6c:1a:3e:83:ec:88:65:9f:c8: c4:d8:7b:fc:49:25:24:f4:64:8a:e9:a2:93:c9:e7: e6:97:d4:2e:fe:27:45:fe:79:16:c2:99:9f:a7:9f: f6:1e:8c:96:71:7f:77:5a:91:24:69:ed:78:a2:51: 42:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DE:E1:8E:AD:30:D5:1B:CF:67:E4:23:C1:A7:B7:87:1F:0B:EE:AA X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:7e:72:db:98:c0:88:bb:b6:3f:ec:0d:e3:07:01:5e:e4:d8: f2:d7:51:2f:dc:78:bf:69:6b:d3:3f:4d:a9:78:c9:e4:58:a2: 5e:19:1d:df:6b:68:42:fe:37:db:41:72:f3:54:5a:ca:f6:05: ad:49:39:27:38:25:82:32:20:4f:e7:b5:ab:35:3b:ec:a7:de: d9:f3:6a:26:31:9a:fd:b1:af:20:41:c1:8d:76:cb:da:10:6f: d8:e5:c1:0a:35:63:79:86:68:61:e7:07:3c:4b:32:44:45:85: c8:d5:71:28:fd:95:15:e3:43:21:b1:5d:d9:96:7f:47:1a:be: 46:a6:11:4a:ae:a8:83:3c:38:a9:2b:e2:6d:31:41:4b:f4:f8: df:aa:eb:d9:06:d1:69:16:65:04:d7:66:0f:7d:64:14:ce:00: da:29:b1:3a:9d:91:b8:fd:5f:19:a7:12:63:14:03:f6:b0:40: 76:1f:a5:57:cd:40:c1:5c:c1:bb:5f:47:5b:f7:37:42:7b:8e: 7e:2f:c0:3e:2b:fc:51:14:5f:53:ec:17:ee:c2:1f:11:0b:7b: 96:e1:ce:ce:d9:85:33:33:34:2c:74:34:2f:62:3e:e5:b7:dd: 88:c6:42:db:6e:f9:ff:67:6a:a8:c1:65:49:08:92:8d:be:c0: 32:f2:17:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzFGNTExMC8GA1UEBRMoNDkxMzY2NzVFN0UyMzRFN0QyRjg4NDU5OThFMkM2MkRC NDg4ODJDQTAeFw0yNTA4MjMwNzA4MTFaFw0yNTA4MzAwNzA4MTFaMBgxFjAUBgNV BAMTDTY4YTk2OGRiLTA1NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfOwlrS5DaXapzATyD+D6qO9as4kghf92HK+j1cKMl37k1+cQEv9x0rSoDQiBJ PXb3fDqE/jhfcN3AxynCKmEeZSilJiiSI4WTOmK1iw6A44H2TShqq4kOMhrXSmNb S3PPifTBCtTYfHiKn5r2oNrRCiZAEu2877htSVfQujfzLtXhyvM2obcvTVH5gfT1 f+TqD+QFF2auBOvnBFZk9rHsCjNw2MChGYHuuTz19T8zjbGDMI8zPKeInpKOgHe8 ocsQzj7p0Z/bB2waPoPsiGWfyMTYe/xJJST0ZIrpopPJ5+aX1C7+J0X+eRbCmZ+n n/YejJZxf3dakSRp7XiiUULzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHt7hjq0w 1RvPZ+Qjwae3hx8L7qowHwYDVR0jBBgwFoAUSRNmdefiNOfS+IRZmOLGLbSIgsow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzMUY1L0E3NTREMzgwRDZF QzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdz by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU1JObWRlZmlOT2ZTLUlSWm1PTEdMYlNJZ3NvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz MUY1L0E3NTREMzgwRDZFQzExRUZBMjc5OUM2OUM0RjlBRTAyL1NSTm1kZWZpTk9m Uy1JUlptT0xHTGJTSWdzby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADB+ctuYwIi7tj/sDeMHAV7k2PLXUS/ceL9pa9M/Tal4yeRYol4ZHd9r aEL+N9tBcvNUWsr2Ba1JOSc4JYIyIE/ntas1O+yn3tnzaiYxmv2xryBBwY12y9oQ b9jlwQo1Y3mGaGHnBzxLMkRFhcjVcSj9lRXjQyGxXdmWf0cavkamEUquqIM8OKkr 4m0xQUv0+N+q69kG0WkWZQTXZg99ZBTOANopsTqdkbj9XxmnEmMUA/awQHYfpVfN QMFcwbtfR1v3N0J7jn4vwD4r/FEUX1PsF+7CHxELe5bhzs7ZhTMzNCx0NC9iPuW3 3YjGQttu+f9naqjBZUkIko2+wDLyFw8= -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:36 2025 by rpki-client