$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: ZnY4SFcKUP6k2qvlNcRm5TdSHn8NbKiUKm61U4aSDX8= Subject key identifier: 4F:47:F7:B0:D1:4E:52:E9:1D:85:9F:84:C6:1A:AA:70:1B:03:CC:52 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: 7C Signing time: Sat 23 Aug 2025 06:57:25 +0000 Manifest this update: Sat 23 Aug 2025 06:57:25 +0000 Manifest next update: Sat 30 Aug 2025 06:57:25 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: YBHCUONPn7dYCLEk8VR1ALIh7UbVk9P/TnjkN6ZOpDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Aug 23 06:57:25 2025 GMT Not After : Aug 30 06:57:25 2025 GMT Subject: CN=68a96655-e3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8d:88:85:17:f5:bf:ab:1d:f9:5c:c8:35:26: 8c:42:9d:82:7c:c5:42:85:8e:a5:47:40:49:ab:42: 5d:30:6a:9f:b2:9a:28:fb:76:33:d7:c7:ab:23:30: 12:37:c3:b4:d4:27:62:db:73:a4:88:43:9a:76:f3: a9:f1:10:c1:4e:56:d2:8a:be:69:21:94:ec:6e:2e: 8a:b8:cd:7d:7c:ee:e8:0b:6c:de:62:03:5a:fd:ac: b3:e3:b3:a2:5d:0a:52:a1:52:3c:26:81:b6:34:c7: e7:25:ea:4a:7f:59:a7:64:d3:64:71:e9:79:f1:63: 54:c3:7a:6b:96:a9:30:cf:be:f0:98:ff:1e:52:23: ee:18:e4:20:06:65:b0:20:98:ce:c0:d6:2e:ee:a0: 13:03:88:cc:0b:37:82:b8:41:4f:46:47:aa:da:8f: 74:1b:cf:71:8d:1b:5f:66:17:c3:66:f7:9c:d8:ea: e9:24:87:f6:08:a3:bf:14:b2:62:ce:52:14:38:1f: 43:82:54:da:a2:a9:3f:86:7a:9f:d9:c5:f6:93:20: b2:d0:c2:29:37:89:b3:b3:66:13:07:51:f7:8f:10: 07:bf:f9:a9:34:a9:b3:92:59:a9:bb:f4:c5:0b:3c: 49:7c:97:d1:31:90:0e:7c:56:ff:ad:c6:19:ef:7b: c3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:47:F7:B0:D1:4E:52:E9:1D:85:9F:84:C6:1A:AA:70:1B:03:CC:52 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:ca:86:d4:22:04:7f:e9:3f:06:e0:d2:b2:83:fe:78:58:3e: 53:23:23:0d:52:af:e4:c7:ba:0d:0a:70:c1:8d:fe:18:7c:8d: 74:69:83:af:e4:10:1c:3c:2d:e4:3a:cd:e4:f8:db:bc:43:54: 9f:47:e7:09:c8:80:d5:8a:57:95:7c:d6:33:03:c3:87:d7:a7: d2:da:ee:8e:d6:11:f0:77:d9:72:fa:59:e3:b7:ea:09:b4:04: 6d:c1:fd:ff:50:5b:6e:c1:ce:08:7f:40:4f:ac:1b:d6:4d:bb: 33:53:06:66:6f:0e:de:d1:7f:49:a4:89:ca:14:e9:db:8f:f0: 9a:02:cb:18:e0:01:37:dd:59:df:86:a5:4d:7c:d2:45:4f:cb: e7:96:46:4c:5e:66:df:07:d2:30:ea:48:af:a5:62:de:db:de: 3d:86:b1:73:68:bf:9e:10:54:3c:9e:07:21:7b:be:61:a7:ff: a6:86:5c:d2:70:69:6e:1d:c2:1f:f5:35:14:71:1a:78:28:0c: ea:f2:72:90:77:53:61:30:a4:1b:7c:4f:cd:82:69:93:57:96: 37:ee:2b:7c:3c:ec:32:61:a0:fe:ba:13:c2:c8:6b:56:89:ac: 42:25:4d:79:e9:09:8b:c1:0b:a4:1a:23:42:41:2f:6d:67:41: 25:2a:fd:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjIwNzExMC8GA1UEBRMoNzc3REI4OTc0NTcwRTlCNkMwNEUyNjU3RTZEMEE1MDM3 QzcxODg2QjAeFw0yNTA4MjMwNjU3MjVaFw0yNTA4MzAwNjU3MjVaMBgxFjAUBgNV BAMTDTY4YTk2NjU1LWUzYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsjYiFF/W/qx35XMg1JoxCnYJ8xUKFjqVHQEmrQl0wap+ymij7djPXx6sjMBI3 w7TUJ2Lbc6SIQ5p286nxEMFOVtKKvmkhlOxuLoq4zX187ugLbN5iA1r9rLPjs6Jd ClKhUjwmgbY0x+cl6kp/Wadk02Rx6XnxY1TDemuWqTDPvvCY/x5SI+4Y5CAGZbAg mM7A1i7uoBMDiMwLN4K4QU9GR6raj3Qbz3GNG19mF8Nm95zY6ukkh/YIo78UsmLO UhQ4H0OCVNqiqT+Gep/ZxfaTILLQwik3ibOzZhMHUfePEAe/+ak0qbOSWam79MUL PEl8l9ExkA58Vv+txhnve8PlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUT0f3sNFO UukdhZ+ExhqqcBsDzFIwHwYDVR0jBBgwFoAUd324l0Vw6bbATiZX5tClA3xxiGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGMjA3L0I0ODg2MUM2QzIy ODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMyNGwwVnc2YmJBVGlaWDV0Q2xBM3h4aUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG MjA3L0I0ODg2MUM2QzIyODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJi QVRpWlg1dENsQTN4eGlHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABvKhtQiBH/pPwbg0rKD/nhYPlMjIw1Sr+THug0KcMGN/hh8jXRpg6/k EBw8LeQ6zeT427xDVJ9H5wnIgNWKV5V81jMDw4fXp9La7o7WEfB32XL6WeO36gm0 BG3B/f9QW27Bzgh/QE+sG9ZNuzNTBmZvDt7Rf0mkicoU6duP8JoCyxjgATfdWd+G pU180kVPy+eWRkxeZt8H0jDqSK+lYt7b3j2GsXNov54QVDyeByF7vmGn/6aGXNJw aW4dwh/1NRRxGngoDOrycpB3U2EwpBt8T82CaZNXljfuK3w87DJhoP66E8LIa1aJ rEIlTXnpCYvBC6QaI0JBL21nQSUq/Zo= -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:32 2025 by rpki-client