$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: Sdto4C4SiLm2jijtBzkkfemlBkjSZumOsmsieohCvuA= Subject key identifier: 42:AD:82:7E:84:9B:91:6B:2F:7D:38:83:C9:BC:29:93:CA:7B:19:FA Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 020C Signing time: Sat 23 Aug 2025 02:18:35 +0000 Manifest this update: Sat 23 Aug 2025 02:18:34 +0000 Manifest next update: Sat 30 Aug 2025 02:18:34 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: gskKN+2wGEoYjYGgEjrKRiUMzskZfmlV9LAS5/4UmHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Aug 23 02:18:34 2025 GMT Not After : Aug 30 02:18:34 2025 GMT Subject: CN=68a924fa-1481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0f:86:76:5d:95:c9:3b:b8:df:1f:e0:14:7d: 05:5d:0b:9b:5f:b4:bf:d5:f0:64:5b:ec:a1:0d:1b: c9:70:de:35:68:3b:92:49:b5:fe:b3:53:62:02:11: 8d:5b:14:d9:8b:35:53:ac:df:2e:2a:ac:6c:ce:c8: a6:61:a3:e7:9a:74:60:e6:b5:ca:90:ad:6c:90:df: b7:09:32:16:59:66:28:17:7e:ce:57:40:99:61:b7: ae:de:14:55:da:49:6c:e9:34:de:2f:f2:f2:c1:6c: 17:d8:86:91:23:18:ee:7c:f0:17:7b:85:60:4c:f1: 99:c8:b4:0c:83:61:0f:0f:cb:95:c5:4f:43:3c:54: c2:ce:b9:2b:ea:b7:d0:c2:ea:86:7b:bc:e4:a5:5e: 68:5b:6b:ed:ed:ad:89:60:d0:03:a5:ef:b8:c9:ae: 7a:63:ef:ba:64:fe:34:41:35:cc:ba:a3:61:30:c1: c0:a6:99:e6:ac:bc:6a:02:45:2c:8a:d1:b2:1d:9f: 28:b7:c4:47:45:b0:67:03:e8:4f:53:a5:dc:12:cf: 5c:f4:cf:90:42:f2:0d:4a:8a:3a:98:8e:4c:e0:0d: a6:a0:c0:29:aa:e8:57:71:bb:93:95:8e:84:79:15: 76:a0:84:e5:d7:8f:c5:9b:8c:0f:66:e4:e7:d0:0a: 1a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:AD:82:7E:84:9B:91:6B:2F:7D:38:83:C9:BC:29:93:CA:7B:19:FA X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:ff:06:b7:b9:ad:0f:8f:5c:ef:2e:40:5f:94:d7:7c:e0:1e: af:85:ef:88:22:fd:52:a8:ea:f9:46:a0:38:8b:77:3a:48:f4: dc:78:08:65:2d:c5:75:d5:b8:4c:07:d2:c4:86:39:05:d6:64: 5e:7a:28:c3:f3:73:72:77:db:54:84:34:41:62:13:7c:c6:75: c3:f1:05:04:e8:54:22:a1:52:dc:4d:c0:26:a9:bc:b3:78:1f: 6a:69:62:05:24:24:64:d3:74:7c:70:7f:47:56:82:b3:db:16: 7f:4a:d2:9f:c7:b5:78:ed:0d:23:10:47:e0:ca:0f:e6:31:0e: 6f:68:b6:e3:a0:f7:16:f0:80:6d:1f:24:8b:be:17:ac:57:e6: 2a:a8:e8:70:5a:7c:ae:06:07:a2:92:52:d9:70:57:df:c7:5d: 8c:6e:78:03:d0:d7:11:7b:91:6f:fa:dc:74:47:b7:bf:15:72: ff:ef:d4:67:8b:20:5a:3b:ca:63:e7:33:82:ca:78:72:f9:e7: 3c:30:be:39:b7:f8:d9:4b:dc:ab:4a:0b:37:c6:9b:34:a7:c0: 8f:a1:65:47:c6:07:72:3d:a2:ea:29:b2:94:4e:6f:3f:b8:22: 17:4d:c7:f7:4e:83:91:56:75:b8:33:cd:09:a7:c3:b6:3d:c3: 62:fb:7c:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUwODIzMDIxODM0WhcNMjUwODMwMDIxODM0WjAYMRYwFAYD VQQDEw02OGE5MjRmYS0xNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA+Gdl2VyTu43x/gFH0FXQubX7S/1fBkW+yhDRvJcN41aDuSSbX+s1NiAhGN WxTZizVTrN8uKqxszsimYaPnmnRg5rXKkK1skN+3CTIWWWYoF37OV0CZYbeu3hRV 2kls6TTeL/LywWwX2IaRIxjufPAXe4VgTPGZyLQMg2EPD8uVxU9DPFTCzrkr6rfQ wuqGe7zkpV5oW2vt7a2JYNADpe+4ya56Y++6ZP40QTXMuqNhMMHAppnmrLxqAkUs itGyHZ8ot8RHRbBnA+hPU6XcEs9c9M+QQvINSoo6mI5M4A2moMApquhXcbuTlY6E eRV2oITl14/Fm4wPZuTn0AoaQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKtgn6E m5FrL304g8m8KZPKexn6MB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb/wa3ua0Pj1zvLkBflNd84B6vhe+IIv1SqOr5RqA4i3c6SPTceAhl LcV11bhMB9LEhjkF1mReeijD83Nyd9tUhDRBYhN8xnXD8QUE6FQioVLcTcAmqbyz eB9qaWIFJCRk03R8cH9HVoKz2xZ/StKfx7V47Q0jEEfgyg/mMQ5vaLbjoPcW8IBt HySLvhesV+YqqOhwWnyuBgeiklLZcFffx12MbngD0NcRe5Fv+tx0R7e/FXL/79Rn iyBaO8pj5zOCynhy+ec8ML45t/jZS9yrSgs3xps0p8CPoWVHxgdyPaLqKbKUTm8/ uCIXTcf3ToORVnW4M80Jp8O2PcNi+3zv -----END CERTIFICATE-----Generated at Sun Aug 24 08:27:02 2025 by rpki-client