$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft File: 60yRrrkBmKp9PHgiHY4Ytwdd77k.mft (raw, json) Hash identifier: +IkURHDGH3UYNqvBujiAZj3qATmImD89znh5QqEit/8= Subject key identifier: FA:0A:13:BF:BA:96:C1:7D:A2:85:08:E3:D5:CA:2B:88:39:14:7D:89 Authority key identifier: EB:4C:91:AE:B9:01:98:AA:7D:3C:78:22:1D:8E:18:B7:07:5D:EF:B9 Certificate issuer: /CN=A91D0F0F/serialNumber=EB4C91AEB90198AA7D3C78221D8E18B7075DEFB9 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/60yRrrkBmKp9PHgiHY4Ytwdd77k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft Manifest number: 19 Signing time: Sat 23 Aug 2025 08:11:32 +0000 Manifest this update: Sat 23 Aug 2025 08:11:31 +0000 Manifest next update: Sat 30 Aug 2025 08:11:31 +0000 Files and hashes: 1: 60yRrrkBmKp9PHgiHY4Ytwdd77k.crl (hash: ikGjiHCdoHEhnARqX1Y2HfDp3kIDVDQ3q8MFrxz8av0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.crl rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/60yRrrkBmKp9PHgiHY4Ytwdd77k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0F0F, serialNumber=EB4C91AEB90198AA7D3C78221D8E18B7075DEFB9 Validity Not Before: Aug 23 08:11:31 2025 GMT Not After : Aug 30 08:11:31 2025 GMT Subject: CN=68a977b4-71e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:86:3a:8c:aa:6c:02:91:94:a4:1a:22:51: 4c:a6:be:d8:63:34:8d:09:c8:13:8c:47:08:0c:bd: b2:b4:9b:d6:12:7e:81:ab:03:56:5c:c2:a0:a0:bb: 28:70:ec:8b:7e:c5:99:35:ea:3d:f2:14:77:94:6f: f4:c0:88:a5:d2:2d:e2:32:df:64:21:e3:b3:b1:88: 05:01:ef:87:7d:b0:1e:48:21:f4:d3:fb:1b:ba:5d: 8f:fa:ab:7b:35:60:ef:9f:84:8b:11:c1:24:d7:57: 93:4d:9f:2a:fd:1c:e3:c1:a0:4b:7e:1f:03:9e:3b: d9:88:8f:1e:1f:d3:0b:c0:01:85:d0:73:b3:f1:36: 1f:dc:af:89:5e:d3:d8:b9:1d:16:45:9c:80:c3:dc: b9:4d:2e:7c:4e:38:09:df:70:65:11:83:1a:5d:51: b9:91:5a:64:d4:ea:3b:88:cf:ca:91:b7:e7:5e:7b: cd:13:57:60:db:0a:25:5d:8a:8e:3d:67:0e:56:d2: 5c:f3:0f:a2:7f:f5:96:a6:e4:a3:3f:75:5a:bb:02: 60:16:0f:6c:9b:5b:be:2d:b5:2d:9e:9c:39:c3:59: e2:75:e7:35:cb:9b:03:29:43:54:a2:a1:49:83:48: 49:c9:38:0b:35:7c:4b:98:5b:cf:92:da:05:2b:42: 92:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:0A:13:BF:BA:96:C1:7D:A2:85:08:E3:D5:CA:2B:88:39:14:7D:89 X509v3 Authority Key Identifier: keyid:EB:4C:91:AE:B9:01:98:AA:7D:3C:78:22:1D:8E:18:B7:07:5D:EF:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/60yRrrkBmKp9PHgiHY4Ytwdd77k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0F0F/52DFFC9E5DE711F0A867914EC4F9AE02/60yRrrkBmKp9PHgiHY4Ytwdd77k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:6e:e8:14:cb:84:6d:3e:e2:05:d3:7d:3c:b5:d6:aa:9c:04: f9:9a:84:51:96:a6:15:3b:05:46:7d:3b:e6:76:ed:fc:ea:20: 49:5b:00:87:a2:64:3b:a2:31:46:ca:fd:cc:ae:a3:ff:57:05: 09:3a:b0:60:5e:d0:7a:b5:c8:38:a6:95:ed:0b:ed:5e:a1:44: c6:a8:a5:21:84:96:75:23:65:9b:39:cf:06:36:9e:f9:50:30: 35:5a:50:5b:a0:56:76:9b:6b:b0:15:b3:78:f9:d9:d9:fe:78: 4e:cb:0a:38:64:4d:e2:b4:d9:b4:77:aa:d2:93:7b:ec:7d:b9: 89:37:69:f0:93:dc:35:f3:4e:22:31:e5:74:af:b2:e2:73:c9: fa:ab:e6:3b:fb:28:fd:81:22:e8:2d:49:3c:05:1a:a4:57:f6: 09:0e:46:b9:c9:86:e0:ee:b2:17:b1:96:b6:19:76:9c:77:be: 6d:5a:b4:e7:d9:58:7d:99:07:be:67:24:41:d3:a2:fe:97:e8: 90:36:45:67:db:b3:4c:a9:8a:36:bf:ce:61:cb:b2:48:d2:58: c1:b1:e0:b9:64:2b:35:7a:77:c3:a5:b3:f8:1b:9c:d2:67:be: 63:98:62:56:8d:63:19:18:5c:74:5f:ae:15:7a:1e:68:b9:99: 3c:8f:a3:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEYwRjExMC8GA1UEBRMoRUI0QzkxQUVCOTAxOThBQTdEM0M3ODIyMUQ4RTE4Qjcw NzVERUZCOTAeFw0yNTA4MjMwODExMzFaFw0yNTA4MzAwODExMzFaMBgxFjAUBgNV BAMTDTY4YTk3N2I0LTcxZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4WYY6jKpsApGUpBoiUUymvthjNI0JyBOMRwgMvbK0m9YSfoGrA1ZcwqCguyhw 7It+xZk16j3yFHeUb/TAiKXSLeIy32Qh47OxiAUB74d9sB5IIfTT+xu6XY/6q3s1 YO+fhIsRwSTXV5NNnyr9HOPBoEt+HwOeO9mIjx4f0wvAAYXQc7PxNh/cr4le09i5 HRZFnIDD3LlNLnxOOAnfcGURgxpdUbmRWmTU6juIz8qRt+dee80TV2DbCiVdio49 Zw5W0lzzD6J/9Zam5KM/dVq7AmAWD2ybW74ttS2enDnDWeJ15zXLmwMpQ1SioUmD SEnJOAs1fEuYW8+S2gUrQpLFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+goTv7qW wX2ihQjj1coriDkUfYkwHwYDVR0jBBgwFoAU60yRrrkBmKp9PHgiHY4Ytwdd77kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwRjBGLzUyREZGQzlFNURF NzExRjBBODY3OTE0RUM0RjlBRTAyLzYweVJycmtCbUtwOVBIZ2lIWTRZdHdkZDc3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjB5UnJya0JtS3A5UEhnaUhZNFl0d2RkNzdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw RjBGLzUyREZGQzlFNURFNzExRjBBODY3OTE0RUM0RjlBRTAyLzYweVJycmtCbUtw OVBIZ2lIWTRZdHdkZDc3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD9u6BTLhG0+4gXTfTy11qqcBPmahFGWphU7BUZ9O+Z27fzqIElbAIei ZDuiMUbK/cyuo/9XBQk6sGBe0Hq1yDimle0L7V6hRMaopSGElnUjZZs5zwY2nvlQ MDVaUFugVnaba7AVs3j52dn+eE7LCjhkTeK02bR3qtKTe+x9uYk3afCT3DXzTiIx 5XSvsuJzyfqr5jv7KP2BIugtSTwFGqRX9gkORrnJhuDushexlrYZdpx3vm1atOfZ WH2ZB75nJEHTov6X6JA2RWfbs0ypija/zmHLskjSWMGx4LlkKzV6d8Ols/gbnNJn vmOYYlaNYxkYXHRfrhV6Hmi5mTyPo+M= -----END CERTIFICATE-----Generated at Sat Aug 23 12:26:21 2025 by rpki-client