$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft File: dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft (raw, json) Hash identifier: go2AWOpvxSV3BwSD7qK8S3A/nbtKAc7yfpp0VugGSys= Subject key identifier: 81:45:D1:17:A1:7D:B2:BD:C5:27:FF:1F:C5:AD:9E:37:7D:59:46:71 Authority key identifier: 76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F Certificate issuer: /CN=A91B7E17/serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft Manifest number: 067C Signing time: Fri 22 Aug 2025 22:34:19 +0000 Manifest this update: Fri 22 Aug 2025 22:34:18 +0000 Manifest next update: Fri 29 Aug 2025 22:34:18 +0000 Files and hashes: 1: dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl (hash: rriC9YQcP3wBlBu5oc2nnBHPUYGajLrWOQioQ84CPZM=) 2: 87F6FDDC880911EB96D8882DC4F9AE02.roa (hash: HlAv5VKHlCkHYXAj9IKNWvazVRDv1+Tmr+7FuDlOMWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7E17, serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Validity Not Before: Aug 22 22:34:18 2025 GMT Not After : Aug 29 22:34:18 2025 GMT Subject: CN=68a8f06a-4848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b7:fd:45:5d:6f:60:ea:42:b4:f9:9a:58:da: b9:e6:c3:6d:19:a0:53:9d:0c:f9:8b:d8:c2:c2:0f: f9:b6:66:b3:05:22:6c:3d:e7:39:dd:33:70:c7:01: 8b:25:9f:7e:1b:47:12:5e:9c:15:bf:71:a2:47:d5: c6:a9:02:58:92:3a:00:71:d8:eb:51:c9:aa:0b:12: b1:1a:12:eb:df:b4:61:34:15:08:fe:15:32:0c:b1: 7a:88:b4:eb:ca:71:8e:7c:ce:e3:0c:49:3a:ea:fd: d8:bf:d9:1f:cb:f4:b7:9d:02:a1:be:9f:6c:db:4b: eb:16:4b:6a:98:c6:bc:46:d8:8f:c2:f5:62:8d:4f: 20:77:5d:f9:c3:6c:6b:ab:80:31:9b:a8:e7:ef:14: 52:1b:2f:c4:28:be:bc:3e:cf:23:53:57:b4:f4:ac: a7:0a:56:a6:aa:76:15:08:0b:53:d6:27:2f:c1:64: c8:50:dc:d5:3b:75:d5:ec:47:15:c8:1c:f8:71:36: 2a:85:f6:d9:7f:fa:0b:cd:6a:46:0a:3a:03:54:2b: e4:40:7b:b4:b2:45:54:4f:b8:c7:0b:6d:9e:b0:39: c8:6b:15:fb:9b:b9:c3:98:a0:e6:40:b4:5d:c2:50: 90:00:40:b3:29:7e:dc:00:39:82:8c:4d:7a:cd:91: 2b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:45:D1:17:A1:7D:B2:BD:C5:27:FF:1F:C5:AD:9E:37:7D:59:46:71 X509v3 Authority Key Identifier: keyid:76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:af:89:ec:eb:eb:75:60:ea:be:c3:31:d6:f2:a8:6b:2c:92: c4:3c:ed:48:81:2f:ac:24:16:35:96:88:a8:4f:98:0c:c6:e8: 9e:bb:fc:03:ef:ae:d5:06:73:f5:48:32:fb:8b:37:5b:82:4a: c4:0a:82:3d:b0:58:91:d8:cf:85:6c:74:e7:b9:eb:12:a5:32: ae:17:f4:df:ec:fe:00:32:6b:ba:0b:5a:9a:ea:8d:b8:ac:26: bb:a2:55:1e:6f:ca:f1:8f:26:c8:97:a3:25:6a:cf:6d:3e:99: 89:76:43:72:25:94:13:9f:a6:c1:57:2e:26:c3:0e:8b:b7:69: b1:59:ca:74:b3:4f:fb:ff:c5:1c:22:7b:76:c0:e9:ea:02:9f: d0:5b:e2:43:df:e6:35:8f:91:5c:5d:fa:76:5a:fa:74:96:8e: 17:12:20:3b:fa:87:74:55:a1:00:93:bf:b8:a5:30:39:81:2a: d0:99:8d:ea:66:3b:eb:fa:5f:51:53:31:bf:88:0d:7d:83:4a: 33:63:4a:98:68:f3:e9:00:ca:a6:bd:93:fb:2a:bb:e4:a8:03: 9b:70:50:96:1f:ca:25:a2:50:bd:d2:01:75:e5:04:47:75:37: fc:1b:58:05:88:e5:6d:18:de:4b:7f:7a:a2:66:28:47:bb:a7: 82:b6:dd:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdFMTcxMTAvBgNVBAUTKDc2RDFGNjZDMDE2REMxODQ3MzRFNkQ5QkUxQkVFOTA4 MDFGRkEwMUYwHhcNMjUwODIyMjIzNDE4WhcNMjUwODI5MjIzNDE4WjAYMRYwFAYD VQQDEw02OGE4ZjA2YS00ODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLf9RV1vYOpCtPmaWNq55sNtGaBTnQz5i9jCwg/5tmazBSJsPec53TNwxwGL JZ9+G0cSXpwVv3GiR9XGqQJYkjoAcdjrUcmqCxKxGhLr37RhNBUI/hUyDLF6iLTr ynGOfM7jDEk66v3Yv9kfy/S3nQKhvp9s20vrFktqmMa8RtiPwvVijU8gd135w2xr q4Axm6jn7xRSGy/EKL68Ps8jU1e09KynClamqnYVCAtT1icvwWTIUNzVO3XV7EcV yBz4cTYqhfbZf/oLzWpGCjoDVCvkQHu0skVUT7jHC22esDnIaxX7m7nDmKDmQLRd wlCQAECzKX7cADmCjE16zZErPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFF0Reh fbK9xSf/H8Wtnjd9WUZxMB8GA1UdIwQYMBaAFHbR9mwBbcGEc05tm+G+6QgB/6Af MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0UxNy83QUIwQjU2Njg4 MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZUnpUbTJiNGI3cENBSF9v QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0SDJiQUZ0d1lSelRtMmI0YjdwQ0FIX29COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0UxNy83QUIwQjU2Njg4MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZ UnpUbTJiNGI3cENBSF9vQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwr4ns6+t1YOq+wzHW8qhrLJLEPO1IgS+sJBY1loioT5gMxuieu/wD 767VBnP1SDL7izdbgkrECoI9sFiR2M+FbHTnuesSpTKuF/Tf7P4AMmu6C1qa6o24 rCa7olUeb8rxjybIl6Mlas9tPpmJdkNyJZQTn6bBVy4mww6Lt2mxWcp0s0/7/8Uc Int2wOnqAp/QW+JD3+Y1j5FcXfp2Wvp0lo4XEiA7+od0VaEAk7+4pTA5gSrQmY3q Zjvr+l9RUzG/iA19g0ozY0qYaPPpAMqmvZP7KrvkqAObcFCWH8ololC90gF15QRH dTf8G1gFiOVtGN5Lf3qiZihHu6eCtt0K -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:16 2025 by rpki-client