$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft File: 64mHxSCv7Nwk9ByG_Gut08Fvpio.mft (raw, json) Hash identifier: nI5OiwUOfsSfCowG7pNfi7lw+ruX+f1rWidUCnMEHNM= Subject key identifier: 91:50:EC:B6:11:C9:96:41:CC:60:46:0C:54:38:70:6C:BC:C5:51:0B Authority key identifier: EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A Certificate issuer: /CN=A91B1C73/serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft Manifest number: 8B Signing time: Sat 23 Aug 2025 06:47:22 +0000 Manifest this update: Sat 23 Aug 2025 06:47:22 +0000 Manifest next update: Sat 30 Aug 2025 06:47:22 +0000 Files and hashes: 1: 64mHxSCv7Nwk9ByG_Gut08Fvpio.crl (hash: 7rLyxX3m++EtvsZ78SAXke2MmKDsvVEa8JpZTi9egVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C73, serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Validity Not Before: Aug 23 06:47:22 2025 GMT Not After : Aug 30 06:47:22 2025 GMT Subject: CN=68a963fa-8fc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c0:88:9d:3f:98:c9:b7:d2:1b:6d:f6:cb:dc: 4f:94:a2:94:3a:4e:1a:bf:e8:0f:b9:6a:77:ac:6c: bd:86:f7:f4:9d:54:bb:bd:6a:40:11:58:f5:c8:89: f4:92:cb:5f:3f:cb:f0:51:3f:f3:e5:3c:e0:9e:f9: 22:99:8e:79:1d:b0:8f:23:35:5a:26:1f:37:9f:1f: ad:d5:e8:4f:e6:54:e2:3c:4a:c8:1d:26:fc:4b:c1: bd:df:7c:7b:bb:c1:68:06:1d:e2:80:d8:bc:15:7e: 81:87:7a:e5:a2:79:40:60:77:c2:d3:4b:48:35:f6: 79:ec:23:88:28:c1:13:be:c2:d0:f5:a1:e4:9b:c8: ea:3e:22:70:50:43:a7:12:fa:eb:7e:cf:ef:22:75: 0f:b2:f0:46:77:7a:21:67:af:f7:ba:70:10:e5:20: fd:21:91:56:77:0a:18:87:b8:e6:a4:12:cb:bf:dc: d2:31:56:f4:f2:be:9a:b1:82:b9:5c:de:28:ab:7f: 8f:fc:e5:ce:9a:4c:da:2c:a2:ef:15:83:19:6c:60: ea:e0:51:5a:71:2c:69:08:61:41:d3:b0:7f:a1:67: 00:f2:cc:a6:16:38:06:2d:0a:86:39:c9:e5:db:6b: c9:f7:5e:97:d1:3f:bd:57:96:1c:a0:95:31:8d:b7: c3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:50:EC:B6:11:C9:96:41:CC:60:46:0C:54:38:70:6C:BC:C5:51:0B X509v3 Authority Key Identifier: keyid:EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:16:af:1d:d1:51:79:ac:a9:be:e8:f5:0d:b8:0f:20:74:3d: e2:ba:0d:13:38:4f:6f:2b:44:d0:5a:16:69:8c:ba:d6:c8:e8: cf:c7:31:e0:f6:29:b3:57:06:89:b0:02:4c:d6:b6:60:57:f0: 96:e2:71:ed:25:d6:97:fd:be:ca:98:a4:46:20:a9:26:db:43: 31:11:56:e5:45:ef:23:69:89:1a:72:ae:df:10:f3:d9:6c:ef: fc:92:0e:a2:93:43:69:77:54:9a:9c:ee:e5:aa:5c:1f:66:5e: 2b:ec:f6:a0:54:20:54:ea:a3:98:c6:d6:38:d3:d7:be:19:1e: a3:1b:9f:68:4d:33:e4:56:e6:90:39:25:a5:ce:db:1a:13:eb: a3:2d:14:70:d0:4b:24:6b:0c:ec:c1:b1:09:b9:3c:fa:1f:7c: d5:23:e2:45:7d:0d:5e:05:91:e1:1a:16:87:77:e9:1b:a6:b7: d8:8c:89:46:02:e4:87:fe:3d:09:7f:1a:3a:01:f7:fe:c4:68: a5:a7:a7:92:34:fe:37:86:56:3d:3c:3d:9d:6b:29:01:96:ae: ac:88:e2:a1:99:b8:94:98:12:8a:5b:81:76:64:23:ff:7c:4a: 7c:f1:d8:9b:39:51:7f:7d:85:fb:9b:68:fd:4c:16:8d:9f:ab: fb:86:3b:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDNzMxMTAvBgNVBAUTKEVCODk4N0M1MjBBRkVDREMyNEY0MUM4NkZDNkJBREQz QzE2RkE2MkEwHhcNMjUwODIzMDY0NzIyWhcNMjUwODMwMDY0NzIyWjAYMRYwFAYD VQQDEw02OGE5NjNmYS04ZmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8CInT+YybfSG232y9xPlKKUOk4av+gPuWp3rGy9hvf0nVS7vWpAEVj1yIn0 kstfP8vwUT/z5TzgnvkimY55HbCPIzVaJh83nx+t1ehP5lTiPErIHSb8S8G933x7 u8FoBh3igNi8FX6Bh3rlonlAYHfC00tINfZ57COIKMETvsLQ9aHkm8jqPiJwUEOn Evrrfs/vInUPsvBGd3ohZ6/3unAQ5SD9IZFWdwoYh7jmpBLLv9zSMVb08r6asYK5 XN4oq3+P/OXOmkzaLKLvFYMZbGDq4FFacSxpCGFB07B/oWcA8symFjgGLQqGOcnl 22vJ916X0T+9V5YcoJUxjbfD2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFQ7LYR yZZBzGBGDFQ4cGy8xVELMB8GA1UdIwQYMBaAFOuJh8Ugr+zcJPQchvxrrdPBb6Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM3My9DNDkxQkE0RUFD MEQxMUVGOTg3OTkyNkVDNEY5QUUwMi82NG1IeFNDdjdOd2s5QnlHX0d1dDA4RnZw aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0bUh4U0N2N053azlCeUdfR3V0MDhGdnBpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM3My9DNDkxQkE0RUFDMEQxMUVGOTg3OTkyNkVDNEY5QUUwMi82NG1IeFNDdjdO d2s5QnlHX0d1dDA4RnZwaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Fq8d0VF5rKm+6PUNuA8gdD3iug0TOE9vK0TQWhZpjLrWyOjPxzHg 9imzVwaJsAJM1rZgV/CW4nHtJdaX/b7KmKRGIKkm20MxEVblRe8jaYkacq7fEPPZ bO/8kg6ik0Npd1SanO7lqlwfZl4r7PagVCBU6qOYxtY409e+GR6jG59oTTPkVuaQ OSWlztsaE+ujLRRw0EskawzswbEJuTz6H3zVI+JFfQ1eBZHhGhaHd+kbprfYjIlG AuSH/j0Jfxo6Aff+xGilp6eSNP43hlY9PD2daykBlq6siOKhmbiUmBKKW4F2ZCP/ fEp88dibOVF/fYX7m2j9TBaNn6v7hjvk -----END CERTIFICATE-----Generated at Sun Aug 24 05:16:09 2025 by rpki-client