$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: VMDtnrHyLX0D1L79wOFFbo6S9+bE11997N9X/oM1Up8= Subject key identifier: 97:CE:1F:BD:66:0C:7A:88:F5:01:F4:AE:01:C2:46:BE:4D:E7:3D:2C Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: BB Signing time: Sat 23 Aug 2025 06:08:22 +0000 Manifest this update: Sat 23 Aug 2025 06:08:22 +0000 Manifest next update: Sat 30 Aug 2025 06:08:22 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: ydUMt7irvEfrctpdQkwTUPTrG56OzFOYTDTatL6MPIM=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Aug 23 06:08:22 2025 GMT Not After : Aug 30 06:08:22 2025 GMT Subject: CN=68a95ad6-128c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8c:cb:8f:e8:d9:3f:1b:67:0b:81:57:92:51: 15:93:01:f9:70:36:78:90:a2:f4:4f:54:ec:2e:79: b1:09:7a:08:9a:4f:ad:fd:07:6c:c7:67:20:0f:b4: 92:f2:59:54:2a:84:78:96:04:97:cf:ba:7f:43:0d: de:66:0e:0e:1f:66:2b:a7:bb:bd:ed:a4:e3:8a:d2: 3e:14:72:52:75:57:2f:0b:32:a0:e2:71:46:9d:08: fb:f9:fb:24:c7:fc:70:97:c2:a0:68:ed:f9:09:20: 81:9f:58:ed:50:7a:c1:e1:56:72:43:d8:1c:6b:e9: ee:a3:e2:4a:b9:b9:bb:78:69:5e:25:c5:ed:30:04: 54:20:87:ff:2f:63:09:12:1b:93:03:e4:7f:5f:a8: d4:46:e9:3b:e4:57:56:ad:dd:b9:09:95:ef:f3:4f: e4:f0:84:ab:14:b0:f7:bd:da:b0:b0:de:30:2b:a6: 07:da:f5:db:07:9e:f3:1d:d4:39:07:5e:a6:13:49: fb:26:1b:be:38:6d:3b:c2:fe:b4:bc:1d:da:38:c5: 58:52:7f:5d:dd:31:79:b8:b7:c8:d9:28:9e:3f:6d: cd:d3:21:71:5b:7e:84:b2:ac:06:ff:2d:c9:b8:b1: de:76:14:72:b9:ba:15:5b:1e:59:bd:9b:a6:10:2a: cd:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CE:1F:BD:66:0C:7A:88:F5:01:F4:AE:01:C2:46:BE:4D:E7:3D:2C X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:25:e8:43:00:d8:f0:33:db:8b:e9:49:08:6f:02:e6:62:eb: 6e:87:f5:97:ed:da:dc:25:20:4b:dd:26:bc:c1:ae:a6:2e:29: 57:6a:c0:0d:c4:1a:46:2d:89:2a:13:a8:77:02:a5:d0:af:3a: de:ed:46:96:f1:07:fd:42:e1:95:35:e2:a1:88:1d:f7:04:7b: 4e:85:85:e3:5d:92:24:bb:2e:1c:84:24:fc:c8:cd:63:f5:2a: 87:12:91:1d:8d:f3:92:d8:06:9e:c7:64:54:8f:56:c0:ae:e6: 1c:48:28:54:67:1a:b7:54:2b:c0:cc:15:4c:ad:19:ed:c9:af: 36:d8:c5:56:78:78:d6:e5:18:e4:01:09:6b:01:ea:2e:f6:f3: 85:d5:27:b5:c0:0b:5b:a5:48:0b:2c:5d:4e:1b:90:40:ed:19: 70:f9:5a:94:d0:ca:2e:87:a8:03:e3:6b:54:77:86:90:5e:00: e3:cc:3e:7d:df:dc:fe:50:b3:c5:57:20:85:22:4a:e4:b1:1f: ee:9f:32:88:25:3a:d2:7f:1f:f4:52:17:62:d8:ca:0a:a9:38: 5b:53:e6:a3:5e:84:35:5d:ad:0f:d7:30:8c:4c:21:cb:2a:07: bb:1b:02:ae:19:fc:53:5b:51:94:b9:66:12:1b:c0:b2:94:84: 7f:84:84:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUwODIzMDYwODIyWhcNMjUwODMwMDYwODIyWjAYMRYwFAYD VQQDEw02OGE5NWFkNi0xMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54zLj+jZPxtnC4FXklEVkwH5cDZ4kKL0T1TsLnmxCXoImk+t/Qdsx2cgD7SS 8llUKoR4lgSXz7p/Qw3eZg4OH2Yrp7u97aTjitI+FHJSdVcvCzKg4nFGnQj7+fsk x/xwl8KgaO35CSCBn1jtUHrB4VZyQ9gca+nuo+JKubm7eGleJcXtMARUIIf/L2MJ EhuTA+R/X6jURuk75FdWrd25CZXv80/k8ISrFLD3vdqwsN4wK6YH2vXbB57zHdQ5 B16mE0n7Jhu+OG07wv60vB3aOMVYUn9d3TF5uLfI2SieP23N0yFxW36EsqwG/y3J uLHedhRyuboVWx5ZvZumECrN+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfOH71m DHqI9QH0rgHCRr5N5z0sMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiJehDANjwM9uL6UkIbwLmYutuh/WX7drcJSBL3Sa8wa6mLilXasAN xBpGLYkqE6h3AqXQrzre7UaW8Qf9QuGVNeKhiB33BHtOhYXjXZIkuy4chCT8yM1j 9SqHEpEdjfOS2Aaex2RUj1bAruYcSChUZxq3VCvAzBVMrRntya822MVWeHjW5Rjk AQlrAeou9vOF1Se1wAtbpUgLLF1OG5BA7Rlw+VqU0Mouh6gD42tUd4aQXgDjzD59 39z+ULPFVyCFIkrksR/unzKIJTrSfx/0Uhdi2MoKqThbU+ajXoQ1Xa0P1zCMTCHL Kge7GwKuGfxTW1GUuWYSG8CylIR/hIT8 -----END CERTIFICATE-----Generated at Sat Aug 23 14:22:20 2025 by rpki-client