$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: snyE6FmNFIC8QsARkwJ2J6aG81uoK1O7QOFn0tsaBdc= Subject key identifier: 0C:95:C4:88:DF:B2:C5:84:64:26:97:D6:AD:3E:20:77:59:CF:B7:1B Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: 79 Signing time: Sat 23 Aug 2025 06:59:09 +0000 Manifest this update: Sat 23 Aug 2025 06:59:09 +0000 Manifest next update: Sat 30 Aug 2025 06:59:09 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: lLp+/jq932FM9gzk/kJ/p51AG0PbksTMq6C3ujPUk6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Aug 23 06:59:09 2025 GMT Not After : Aug 30 06:59:09 2025 GMT Subject: CN=68a966bd-3931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e7:59:39:86:34:73:ec:ba:c2:9b:b1:d6:8b: 60:87:a5:6d:fb:e6:79:45:10:6b:24:c6:9f:92:d9: 3e:ee:a4:f8:29:50:a9:eb:31:6c:96:ab:5d:6f:27: ac:9d:94:f5:40:45:3c:5b:03:4d:14:7a:18:20:52: 65:52:bd:f0:16:0c:54:10:e9:0d:5f:68:59:a5:e6: 38:79:af:6a:65:28:5e:32:80:02:6d:d8:26:1a:a0: a5:e6:b9:9b:1a:69:f7:ce:31:94:fc:c1:bb:b0:21: 6d:09:cf:14:f9:92:6a:b5:44:e8:71:ee:89:ef:e5: 41:56:05:3c:a0:73:f1:43:70:80:2b:36:a4:7c:47: 9e:b6:4d:94:4d:7a:b8:87:04:7a:93:a0:cf:b8:05: 7d:1d:8e:3e:c3:1b:6d:53:54:35:cc:55:07:bc:e4: 29:eb:7a:30:9d:a3:8b:45:31:92:a6:64:98:5d:c0: 4d:d3:24:88:68:ef:43:23:bb:f9:a6:d1:b3:8b:8b: 04:6c:15:e3:39:aa:36:7b:6e:e4:16:60:48:70:6b: f0:4b:b9:3b:58:b8:1e:a6:e9:94:76:50:17:37:f7: 38:88:74:09:73:e3:2d:38:d2:07:ae:58:ff:c4:3e: 1e:31:af:79:0c:45:fe:36:fa:cc:e6:07:43:09:e5: c7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:95:C4:88:DF:B2:C5:84:64:26:97:D6:AD:3E:20:77:59:CF:B7:1B X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:29:a2:8d:37:91:9c:bd:a7:6f:81:f8:dd:c8:35:fb:c8:2f: bf:74:90:e0:34:44:e2:c0:0b:de:c3:e3:95:07:a7:d2:4d:f1: 0a:db:79:4c:78:14:17:f9:b1:ad:64:3d:6f:97:26:ff:74:0f: 77:26:20:5a:ac:52:3a:84:79:71:a0:1d:31:ce:4a:66:b6:4f: 02:e2:a0:9d:8d:0d:d4:25:8e:bb:ef:6e:3b:1e:e3:2f:63:be: ff:d0:bb:f4:a9:0e:d4:f0:8d:3f:12:a5:56:04:5f:9e:d7:98: cf:db:47:4b:84:02:e8:a4:fb:3d:f2:ca:a7:ee:2e:0e:6b:a2: ce:eb:ff:9f:b9:18:7d:dc:45:f9:85:d5:11:81:8d:cb:ad:3a: 5f:de:96:23:1d:f5:44:97:81:cc:4c:c8:dc:ef:0c:04:1c:9a: cd:8d:54:f3:bb:b4:17:ca:f5:20:6f:7b:53:93:03:f5:09:17: 7b:3e:3d:8f:d3:c1:98:69:bb:1a:77:42:0c:7d:bb:39:ec:8b: 4c:d5:d4:a4:a7:a0:5f:8e:d5:cd:29:d2:1a:61:92:d8:2c:1a: 9b:98:27:5a:c0:c1:83:d5:bb:5a:d6:a5:f7:4c:57:be:ef:95: ca:ab:c2:85:1b:1f:5d:b3:d3:d1:44:3b:99:52:56:e0:7a:0b: 71:3e:f4:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUUxRDExMC8GA1UEBRMoOEFENjEwQUM4QjYyRjJBNkZDQTgyNTg5NTVENUYxMjQ5 MjdCM0EwMDAeFw0yNTA4MjMwNjU5MDlaFw0yNTA4MzAwNjU5MDlaMBgxFjAUBgNV BAMTDTY4YTk2NmJkLTM5MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ51k5hjRz7LrCm7HWi2CHpW375nlFEGskxp+S2T7upPgpUKnrMWyWq11vJ6yd lPVARTxbA00UehggUmVSvfAWDFQQ6Q1faFml5jh5r2plKF4ygAJt2CYaoKXmuZsa affOMZT8wbuwIW0JzxT5kmq1ROhx7onv5UFWBTygc/FDcIArNqR8R562TZRNeriH BHqToM+4BX0djj7DG21TVDXMVQe85CnrejCdo4tFMZKmZJhdwE3TJIho70Mju/mm 0bOLiwRsFeM5qjZ7buQWYEhwa/BLuTtYuB6m6ZR2UBc39ziIdAlz4y040geuWP/E Ph4xr3kMRf42+szmB0MJ5cdFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDJXEiN+y xYRkJpfWrT4gd1nPtxswHwYDVR0jBBgwFoAUitYQrIti8qb8qCWJVdXxJJJ7OgAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFRTFELzlBREFEQURFQzcw RTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09n QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXRZUXJJdGk4cWI4cUNXSlZkWHhKSko3T2dBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF RTFELzlBREFEQURFQzcwRTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFi OHFDV0pWZFh4SkpKN09nQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKgpoo03kZy9p2+B+N3INfvIL790kOA0ROLAC97D45UHp9JN8QrbeUx4 FBf5sa1kPW+XJv90D3cmIFqsUjqEeXGgHTHOSma2TwLioJ2NDdQljrvvbjse4y9j vv/Qu/SpDtTwjT8SpVYEX57XmM/bR0uEAuik+z3yyqfuLg5ros7r/5+5GH3cRfmF 1RGBjcutOl/eliMd9USXgcxMyNzvDAQcms2NVPO7tBfK9SBve1OTA/UJF3s+PY/T wZhpuxp3Qgx9uznsi0zV1KSnoF+O1c0p0hphktgsGpuYJ1rAwYPVu1rWpfdMV77v lcqrwoUbH12z09FEO5lSVuB6C3E+9Ms= -----END CERTIFICATE-----Generated at Sat Aug 23 16:46:10 2025 by rpki-client