$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: bue7SCezJMdhN1WbPatWRUgD6Q88DB3shG3pI8PjMJo= Subject key identifier: 78:39:A4:47:6F:3D:DE:4D:94:07:24:01:32:42:D8:F4:FB:AA:49:11 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0FF0 Signing time: Fri 22 Aug 2025 17:55:46 +0000 Manifest this update: Fri 22 Aug 2025 17:55:46 +0000 Manifest next update: Fri 29 Aug 2025 17:55:46 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: GLcbXPkLCazJaT4uaMupKPuEGMG5j5zvGXBxDlg/y94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Aug 22 17:55:46 2025 GMT Not After : Aug 29 17:55:46 2025 GMT Subject: CN=68a8af22-249f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d3:9b:ef:4f:fa:d5:c1:51:b0:f6:25:cd:3b: ef:16:d0:e7:39:d9:97:53:0c:8f:db:fb:74:b6:da: f3:94:2f:0a:3e:13:0c:87:30:e7:cf:36:03:3f:ac: 93:05:f0:8f:1a:33:3e:5d:91:91:cf:6a:d0:3b:60: c8:be:c9:61:02:67:c4:c8:9a:01:fc:ae:df:0f:4f: 02:19:64:90:56:be:ef:83:26:3f:ac:d9:42:b5:28: 7a:09:7a:24:d3:41:49:c1:8e:1a:3b:f0:6e:14:cc: 37:98:ae:01:4f:d1:cb:79:d9:ab:9f:10:4d:c1:b6: cb:fa:cf:b7:67:45:7e:19:92:47:a3:91:c0:b9:c2: 9b:fc:e6:cd:c6:ec:1b:4a:09:b6:39:d0:0f:54:44: ee:2f:05:93:95:92:73:a4:9c:c8:f8:1a:52:46:8e: 35:cc:cc:f0:d5:3a:2c:96:b1:a4:f1:0e:14:d4:96: aa:68:f6:5b:f3:55:c5:b6:4e:48:7e:1d:f9:eb:67: 88:df:81:4b:5c:70:6c:c0:5f:7d:7a:95:51:6f:de: a0:f8:8b:7c:b5:c9:e9:b8:01:04:cb:86:26:fa:f5: b5:9a:90:2f:4e:74:e9:12:a3:b2:23:9e:40:0e:ff: 64:ba:21:c0:65:cf:5d:0d:d9:15:da:f4:c0:20:44: ad:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:39:A4:47:6F:3D:DE:4D:94:07:24:01:32:42:D8:F4:FB:AA:49:11 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:8c:4a:c3:b0:3c:8c:82:41:c8:cd:9c:d7:74:d1:ab:d4:b4: 65:36:37:36:7e:2f:ca:6c:52:0f:10:58:ae:7b:06:0c:fe:c5: c3:c0:63:94:1e:59:c3:46:3c:48:98:52:b5:ce:ff:fe:be:2b: 86:6d:90:0e:31:e9:a0:61:49:d2:e5:5f:58:97:17:35:20:72: a4:f4:a2:32:03:da:56:b6:89:74:e2:68:29:72:5c:08:0d:3b: ce:01:3f:77:3f:db:25:ad:13:37:76:d5:3d:a4:b2:23:bd:dd: cd:41:68:81:e3:89:f3:c8:4a:40:cf:1d:30:aa:90:f1:d0:f2: 45:38:8e:c9:9a:fc:ec:a1:71:d9:23:67:65:e1:ba:ab:b8:fa: 51:7d:79:0b:cf:cd:11:9b:14:63:4e:6f:4a:65:49:ad:bc:2a: 69:ba:de:ce:10:b6:2a:54:62:44:cc:63:37:e4:38:cd:b6:0c: 21:01:08:8d:31:3a:d7:d5:39:64:ab:ab:15:29:6a:b6:b4:c8: 46:73:ab:f2:a2:ed:90:7b:c9:30:b6:2c:9a:03:a9:e9:5b:f4: 73:1b:19:06:fb:6e:61:d9:3b:d5:df:22:e6:d7:75:b4:de:99: cb:7a:e8:26:2f:91:60:cf:8f:46:64:5d:50:35:ce:4b:8a:9f: e8:95:7d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwODIyMTc1NTQ2WhcNMjUwODI5MTc1NTQ2WjAYMRYwFAYD VQQDEw02OGE4YWYyMi0yNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNOb70/61cFRsPYlzTvvFtDnOdmXUwyP2/t0ttrzlC8KPhMMhzDnzzYDP6yT BfCPGjM+XZGRz2rQO2DIvslhAmfEyJoB/K7fD08CGWSQVr7vgyY/rNlCtSh6CXok 00FJwY4aO/BuFMw3mK4BT9HLedmrnxBNwbbL+s+3Z0V+GZJHo5HAucKb/ObNxuwb Sgm2OdAPVETuLwWTlZJzpJzI+BpSRo41zMzw1ToslrGk8Q4U1JaqaPZb81XFtk5I fh3562eI34FLXHBswF99epVRb96g+It8tcnpuAEEy4Ym+vW1mpAvTnTpEqOyI55A Dv9kuiHAZc9dDdkV2vTAIESt6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHg5pEdv Pd5NlAckATJC2PT7qkkRMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCjErDsDyMgkHIzZzXdNGr1LRlNjc2fi/KbFIPEFiuewYM/sXDwGOU HlnDRjxImFK1zv/+viuGbZAOMemgYUnS5V9Ylxc1IHKk9KIyA9pWtol04mgpclwI DTvOAT93P9slrRM3dtU9pLIjvd3NQWiB44nzyEpAzx0wqpDx0PJFOI7JmvzsoXHZ I2dl4bqruPpRfXkLz80RmxRjTm9KZUmtvCpput7OELYqVGJEzGM35DjNtgwhAQiN MTrX1Tlkq6sVKWq2tMhGc6vyou2Qe8kwtiyaA6npW/RzGxkG+25h2TvV3yLm13W0 3pnLeugmL5Fgz49GZF1QNc5Lip/olX02 -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:06 2025 by rpki-client