$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft File: 0WtcAvVxqLjfvUc87xSokssNAOE.mft (raw, json) Hash identifier: Gaw8J5Ql2XxMP9FF6aQxMf/Iqw3Y6lUMtYzCJzTvVCw= Subject key identifier: DE:79:B1:42:9B:69:EC:1E:EA:BF:15:C5:FB:E7:82:6E:07:02:C7:7C Authority key identifier: D1:6B:5C:02:F5:71:A8:B8:DF:BD:47:3C:EF:14:A8:92:CB:0D:00:E1 Certificate issuer: /CN=A91C4102/serialNumber=D16B5C02F571A8B8DFBD473CEF14A892CB0D00E1 Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft Manifest number: 1234 Signing time: Fri 22 Aug 2025 19:43:42 +0000 Manifest this update: Fri 22 Aug 2025 19:43:41 +0000 Manifest next update: Fri 29 Aug 2025 19:43:41 +0000 Files and hashes: 1: 0WtcAvVxqLjfvUc87xSokssNAOE.crl (hash: oOFY9Zdrf7ZEMEX9QjqKMUMvmpiYkwL9sVHgB5j0BuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.crl rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:43:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4102, serialNumber=D16B5C02F571A8B8DFBD473CEF14A892CB0D00E1 Validity Not Before: Aug 22 19:43:41 2025 GMT Not After : Aug 29 19:43:41 2025 GMT Subject: CN=68a8c86d-44aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:14:23:4b:7a:2f:71:cb:98:e7:a4:e0:71:81: 7d:99:96:b2:23:98:7d:fd:d3:62:52:3f:7f:5e:9b: 44:52:40:fe:a3:37:9f:3c:65:18:52:b7:8b:54:89: d8:c3:c5:d9:77:92:c6:48:f6:09:b1:e6:28:54:78: 05:9a:7d:77:cd:c5:94:0a:76:d2:04:2d:f5:7b:c0: d7:76:97:73:ab:d2:c8:3a:8a:3d:92:bb:8d:0d:8c: a9:f4:e2:f3:46:8a:0f:23:28:b1:fa:b5:45:9c:ee: 12:a7:2a:c2:1d:a4:3e:85:ed:c4:c1:74:4e:50:71: d5:d7:4b:28:15:0b:66:10:96:2f:6f:ab:8c:cc:0e: 29:82:6e:91:b6:c4:1b:1d:2d:49:30:72:5b:f0:dd: 93:12:33:27:fb:c3:e7:35:47:7c:24:63:86:68:bd: 5a:60:98:c6:c0:43:a7:35:26:46:fd:59:eb:39:ac: b5:9d:1f:53:d7:07:69:6a:cb:8b:1b:b5:7d:47:74: da:28:d4:66:8c:6a:3b:cd:34:e3:da:6a:a7:ed:7d: c2:cb:43:ff:f9:3e:1c:6e:c1:25:fa:f5:03:76:5a: 0b:8c:b0:8c:4c:76:88:d0:a0:e5:43:2d:4c:8f:3b: d3:7f:bb:98:28:46:3d:4e:89:e5:7e:a6:34:88:e9: 64:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:79:B1:42:9B:69:EC:1E:EA:BF:15:C5:FB:E7:82:6E:07:02:C7:7C X509v3 Authority Key Identifier: keyid:D1:6B:5C:02:F5:71:A8:B8:DF:BD:47:3C:EF:14:A8:92:CB:0D:00:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0WtcAvVxqLjfvUc87xSokssNAOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4102/B78AA7F4654D11EA86E5017FC4F9AE02/0WtcAvVxqLjfvUc87xSokssNAOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:cf:99:5f:40:e3:80:83:85:99:1d:82:2c:fe:72:5a:ea:9c: bc:05:a4:6b:eb:11:d5:c2:36:f2:54:64:1e:88:6d:e3:db:9b: 42:b6:69:0e:bd:f7:ad:3c:86:b2:d3:e3:99:b1:ed:a1:c6:ac: 1b:64:e0:34:64:c7:e3:67:58:16:5f:8a:5f:87:d9:20:76:69: d8:0b:50:67:8b:3c:0f:9d:f9:b3:f7:e0:a9:3b:78:09:a8:e5: 8d:21:f7:68:1c:4c:81:1a:57:c3:52:76:a0:f4:07:64:9a:96: 94:cd:28:8b:6f:8d:05:39:95:84:72:42:df:4d:5a:05:38:bc: 02:cb:86:20:16:4d:d4:20:30:47:e8:3e:87:ac:64:dc:57:9b: e8:4a:2e:73:ea:37:76:4e:a6:09:d4:82:8f:75:8d:e8:15:86: 71:a8:94:34:ba:b8:8f:bd:78:b1:28:29:96:94:22:57:f1:95: 16:c9:04:0f:f4:3a:f0:04:9d:d5:d2:5e:e0:bc:1e:0c:9f:83: 44:fd:98:65:d2:72:a1:25:72:1d:d1:d2:77:7d:6f:23:2e:11: e5:67:7f:62:ae:bb:07:78:e1:7c:b2:16:94:24:d5:10:5c:ba: 6f:b3:c3:ae:c3:89:e5:0e:b0:37:da:57:01:d3:c5:eb:8c:0b: 3c:83:be:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQxMDIxMTAvBgNVBAUTKEQxNkI1QzAyRjU3MUE4QjhERkJENDczQ0VGMTRBODky Q0IwRDAwRTEwHhcNMjUwODIyMTk0MzQxWhcNMjUwODI5MTk0MzQxWjAYMRYwFAYD VQQDEw02OGE4Yzg2ZC00NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRQjS3ovccuY56TgcYF9mZayI5h9/dNiUj9/XptEUkD+ozefPGUYUreLVInY w8XZd5LGSPYJseYoVHgFmn13zcWUCnbSBC31e8DXdpdzq9LIOoo9kruNDYyp9OLz RooPIyix+rVFnO4SpyrCHaQ+he3EwXROUHHV10soFQtmEJYvb6uMzA4pgm6RtsQb HS1JMHJb8N2TEjMn+8PnNUd8JGOGaL1aYJjGwEOnNSZG/VnrOay1nR9T1wdpasuL G7V9R3TaKNRmjGo7zTTj2mqn7X3Cy0P/+T4cbsEl+vUDdloLjLCMTHaI0KDlQy1M jzvTf7uYKEY9TonlfqY0iOlkzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN55sUKb aewe6r8Vxfvngm4HAsd8MB8GA1UdIwQYMBaAFNFrXAL1cai4371HPO8UqJLLDQDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDEwMi9CNzhBQTdGNDY1 NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi8wV3RjQXZWeHFMamZ2VWM4N3hTb2tzc05B T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBXdGNBdlZ4cUxqZnZVYzg3eFNva3NzTkFPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDEwMi9CNzhBQTdGNDY1NEQxMUVBODZFNTAxN0ZDNEY5QUUwMi8wV3RjQXZWeHFM amZ2VWM4N3hTb2tzc05BT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALz5lfQOOAg4WZHYIs/nJa6py8BaRr6xHVwjbyVGQeiG3j25tCtmkO vfetPIay0+OZse2hxqwbZOA0ZMfjZ1gWX4pfh9kgdmnYC1BnizwPnfmz9+CpO3gJ qOWNIfdoHEyBGlfDUnag9AdkmpaUzSiLb40FOZWEckLfTVoFOLwCy4YgFk3UIDBH 6D6HrGTcV5voSi5z6jd2TqYJ1IKPdY3oFYZxqJQ0uriPvXixKCmWlCJX8ZUWyQQP 9DrwBJ3V0l7gvB4Mn4NE/Zhl0nKhJXId0dJ3fW8jLhHlZ39irrsHeOF8shaUJNUQ XLpvs8Ouw4nlDrA32lcB08XrjAs8g74o -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:15 2025 by rpki-client