$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: /DIMnqJpHLapccrLHRut5f0zxovZ7KlIscuap0SCank= Subject key identifier: AA:9F:89:A4:FC:3D:48:4D:AD:7B:08:EE:49:6F:8B:46:FA:E3:32:2A Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 1796 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1BC2 Signing time: Fri 22 Aug 2025 16:41:08 +0000 Manifest this update: Fri 22 Aug 2025 16:41:07 +0000 Manifest next update: Fri 29 Aug 2025 16:41:07 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: 5Pcgz16cQb2BFNj+E/Ye3jy9iqbiQdNNgmhFvSp303Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6038 (0x1796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Aug 22 16:41:07 2025 GMT Not After : Aug 29 16:41:07 2025 GMT Subject: CN=68a89da3-ed25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:01:bb:eb:b7:87:e6:25:7c:8a:0b:ec:83:fa: 94:83:f9:8f:b9:d2:0c:94:85:e5:1b:40:16:e0:b6: fe:12:34:6e:34:40:46:1c:35:a0:71:6a:ef:97:9d: bd:39:97:e1:82:9e:91:e2:b6:c0:2a:fd:12:ab:38: 8a:50:17:c1:b4:61:82:ff:af:a6:8f:56:f3:d3:39: dc:9a:dc:9f:80:08:8d:52:7b:b9:d5:97:a3:16:52: 93:0a:a0:11:bc:e5:f9:14:01:c4:13:f0:50:ea:98: e9:21:a2:ef:47:4e:5a:18:45:78:c2:ec:2f:11:ed: 2f:d8:de:90:d0:25:55:4d:6d:58:80:b2:f1:ff:22: 1b:1d:5f:18:d9:4c:83:9e:c6:64:92:20:43:36:c8: ae:f3:64:1a:64:15:ff:e6:09:be:00:7c:04:e7:11: 72:f9:e7:79:60:48:c1:75:e8:d5:66:0f:2b:bd:bd: cf:64:76:4c:e8:97:54:fb:6e:a7:c8:40:eb:29:37: 94:a2:a0:6f:c2:af:20:c1:8e:50:c7:ab:aa:a7:79: cb:70:6a:3e:cf:bf:04:88:15:c4:40:4d:b3:3f:3b: 5b:82:fe:24:93:21:10:aa:ce:55:77:a3:66:70:78: b7:65:a0:4f:db:66:46:b8:63:72:9b:3d:cc:9a:c1: f8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9F:89:A4:FC:3D:48:4D:AD:7B:08:EE:49:6F:8B:46:FA:E3:32:2A X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:95:e7:e2:af:50:03:8f:89:83:e9:34:0a:81:d2:e9:21:fa: ac:6b:cf:32:6e:ae:06:43:a2:54:27:67:a9:51:62:17:3b:79: be:42:0d:9a:83:04:02:f8:24:35:61:25:a8:2d:41:7b:95:5d: dc:48:18:84:02:a5:74:bd:b4:2d:6c:a3:4d:ce:4a:1f:fe:e8: 26:b8:ae:5e:ee:fd:9c:88:90:ed:14:10:7a:8f:3a:c3:b6:ab: 1f:df:8a:12:fc:00:ac:f4:ab:7c:f3:a6:1a:1e:a0:85:6d:52: 6b:f8:6e:21:b7:99:5e:74:11:45:25:31:4b:d8:a2:95:43:36: 61:48:a8:8d:16:67:d9:0b:84:40:8f:4d:ff:27:58:cd:14:ce: 8d:23:de:03:ca:90:12:e6:6c:b2:b5:b1:ea:ba:c5:70:99:d5: 94:36:38:fc:24:df:36:a3:18:6a:dc:14:54:c3:45:20:dc:dd: 1e:c6:0b:8f:49:fd:82:b2:75:a6:b4:91:65:f8:f3:3a:72:84: 5a:c9:43:db:2a:ed:b0:84:15:59:9c:46:0e:cc:9d:7d:05:0b: 43:90:14:8e:57:9a:18:d5:5d:27:d1:d2:e9:2d:d0:db:12:fb: 09:8a:65:da:fc:a0:e8:61:f8:1f:25:66:0f:ea:9f:41:3a:98: 89:05:b5:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUwODIyMTY0MTA3WhcNMjUwODI5MTY0MTA3WjAYMRYwFAYD VQQDEw02OGE4OWRhMy1lZDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgG767eH5iV8igvsg/qUg/mPudIMlIXlG0AW4Lb+EjRuNEBGHDWgcWrvl529 OZfhgp6R4rbAKv0SqziKUBfBtGGC/6+mj1bz0zncmtyfgAiNUnu51ZejFlKTCqAR vOX5FAHEE/BQ6pjpIaLvR05aGEV4wuwvEe0v2N6Q0CVVTW1YgLLx/yIbHV8Y2UyD nsZkkiBDNsiu82QaZBX/5gm+AHwE5xFy+ed5YEjBdejVZg8rvb3PZHZM6JdU+26n yEDrKTeUoqBvwq8gwY5Qx6uqp3nLcGo+z78EiBXEQE2zPztbgv4kkyEQqs5Vd6Nm cHi3ZaBP22ZGuGNymz3MmsH4UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqfiaT8 PUhNrXsI7klvi0b64zIqMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnlefir1ADj4mD6TQKgdLpIfqsa88ybq4GQ6JUJ2epUWIXO3m+Qg2a gwQC+CQ1YSWoLUF7lV3cSBiEAqV0vbQtbKNNzkof/ugmuK5e7v2ciJDtFBB6jzrD tqsf34oS/ACs9Kt886YaHqCFbVJr+G4ht5ledBFFJTFL2KKVQzZhSKiNFmfZC4RA j03/J1jNFM6NI94DypAS5myytbHqusVwmdWUNjj8JN82oxhq3BRUw0Ug3N0exguP Sf2CsnWmtJFl+PM6coRayUPbKu2whBVZnEYOzJ19BQtDkBSOV5oY1V0n0dLpLdDb EvsJimXa/KDoYfgfJWYP6p9BOpiJBbUK -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:44 2025 by rpki-client