$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: TeNhWvA86BwHQz/SIBnmJneRhXVGRPMyLz63dC6AVCQ= Subject key identifier: D7:BD:BC:83:52:03:1C:66:A4:6C:37:7B:36:DA:FD:86:1A:9A:E5:04 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 5302 Signing time: Fri 22 Aug 2025 15:06:17 +0000 Manifest this update: Fri 22 Aug 2025 15:06:16 +0000 Manifest next update: Fri 29 Aug 2025 15:06:16 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: qsFYNQ4l4E3DwmdWblf/AKFniivOPpTxHZ892Vt3xXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Aug 22 15:06:16 2025 GMT Not After : Aug 29 15:06:16 2025 GMT Subject: CN=68a88769-041b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:08:89:6a:9e:ea:b5:36:a8:72:fa:f9:3a:be: f7:08:54:9e:38:42:6e:ba:ad:c8:82:45:89:78:65: 61:56:79:e7:14:15:ab:01:55:99:19:e4:45:f7:7d: 70:24:d6:74:04:0b:b5:23:c7:7d:6f:a5:15:d4:f0: 15:eb:f9:51:58:f9:60:3a:18:b0:65:66:76:f1:8c: a1:a6:07:70:58:a5:6a:c3:6a:10:c7:8f:1a:30:e4: dd:ff:73:e4:3f:d1:b8:f5:85:30:9e:2d:d3:5a:bc: 8a:bc:49:01:4d:88:19:0a:97:58:25:5b:fd:75:e0: c7:b2:4c:c7:1b:e9:bd:5f:43:2e:ee:39:c8:d4:32: 84:cc:1f:49:39:37:6b:10:62:f5:20:dc:29:c6:52: 6c:4e:20:f1:50:7a:fb:5d:3e:76:32:d5:d5:3e:b9: ab:7a:fc:a7:45:a0:39:e9:c9:cc:9a:6a:51:cf:ae: ee:ef:56:fb:ed:91:5d:22:8d:17:98:46:42:22:68: 5d:60:d5:ee:71:06:ab:a2:8a:01:c4:27:a2:7e:ef: 6c:ad:fc:1d:69:b3:85:a8:1d:8a:db:18:9b:53:8f: 6a:5c:42:93:26:ff:e1:8a:f3:a8:b2:14:92:b9:83: 8f:f9:2b:39:23:8c:a8:2d:fa:f4:aa:e2:0e:b3:9c: d0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:BD:BC:83:52:03:1C:66:A4:6C:37:7B:36:DA:FD:86:1A:9A:E5:04 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:96:e2:dd:8c:1d:92:d5:d8:f6:3b:5f:81:b8:b0:2b:8f:0b: f6:59:9e:2c:4d:02:a0:b8:a3:cf:ae:7d:fc:90:d6:a7:7d:3f: 4d:9d:89:ae:1a:30:10:23:f7:7e:4c:8e:44:2d:1e:e8:c3:59: 36:55:65:5e:1f:e2:c7:24:22:93:a4:5b:ac:c5:93:fb:41:34: 18:cb:d3:1a:1c:dc:d9:42:c1:7d:c3:4d:94:e9:e9:e2:03:99: a4:a7:3b:63:a2:dd:0a:92:16:f7:0b:0b:ad:55:f4:2a:8b:ab: fd:47:68:7b:41:b2:a7:ac:5d:66:71:49:43:96:01:ff:1b:3a: cb:99:e4:89:f3:43:b0:d4:eb:1a:9a:02:5f:dd:b8:03:44:66: 35:74:33:c8:5f:78:ee:69:16:fc:7b:74:25:c5:d5:9d:f5:33: c2:63:30:12:0c:d5:e0:35:02:35:ac:c7:86:a8:67:24:cc:4f: f7:ed:77:be:8a:98:8b:8e:d2:55:50:bb:03:b6:d3:5c:21:52: 41:b3:94:a6:af:9f:a0:6c:48:50:2e:82:fd:e5:36:5a:f4:94: 62:f1:b9:c7:11:4e:56:66:c1:75:c1:8b:80:64:01:e0:8c:dd: a3:29:32:1c:96:7c:77:41:39:05:70:68:ca:fc:bc:ee:5b:8c: fa:cd:9f:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwODIyMTUwNjE2WhcNMjUwODI5MTUwNjE2WjAYMRYwFAYD VQQDEw02OGE4ODc2OS0wNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQiJap7qtTaocvr5Or73CFSeOEJuuq3IgkWJeGVhVnnnFBWrAVWZGeRF931w JNZ0BAu1I8d9b6UV1PAV6/lRWPlgOhiwZWZ28YyhpgdwWKVqw2oQx48aMOTd/3Pk P9G49YUwni3TWryKvEkBTYgZCpdYJVv9deDHskzHG+m9X0Mu7jnI1DKEzB9JOTdr EGL1INwpxlJsTiDxUHr7XT52MtXVPrmrevynRaA56cnMmmpRz67u71b77ZFdIo0X mEZCImhdYNXucQaroooBxCeifu9srfwdabOFqB2K2xibU49qXEKTJv/hivOoshSS uYOP+Ss5I4yoLfr0quIOs5zQewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNe9vINS AxxmpGw3ezba/YYamuUEMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOluLdjB2S1dj2O1+BuLArjwv2WZ4sTQKguKPPrn38kNanfT9NnYmu GjAQI/d+TI5ELR7ow1k2VWVeH+LHJCKTpFusxZP7QTQYy9MaHNzZQsF9w02U6eni A5mkpztjot0Kkhb3CwutVfQqi6v9R2h7QbKnrF1mcUlDlgH/GzrLmeSJ80Ow1Osa mgJf3bgDRGY1dDPIX3juaRb8e3QlxdWd9TPCYzASDNXgNQI1rMeGqGckzE/37Xe+ ipiLjtJVULsDttNcIVJBs5Smr5+gbEhQLoL95TZa9JRi8bnHEU5WZsF1wYuAZAHg jN2jKTIclnx3QTkFcGjK/LzuW4z6zZ+L -----END CERTIFICATE-----Generated at Sun Aug 24 00:08:07 2025 by rpki-client