$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: T/4ttugyoisjqhjU/0y/6bJNEZFpaPO5lvzbMcwrQek= Subject key identifier: C9:0C:D2:CC:5E:26:F1:D5:AD:BB:82:04:37:CF:70:8B:88:16:92:9B Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0E8C Signing time: Fri 22 Aug 2025 17:57:11 +0000 Manifest this update: Fri 22 Aug 2025 17:57:10 +0000 Manifest next update: Fri 29 Aug 2025 17:57:10 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: TMoR5WpEyuUvip0MLR/t2PzgDVUE4ZW7cT2v0LZm+Ww=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: vEfRiQNE3h/B834WLq9GOeXPVajCjfh3DLWpODG+4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Aug 22 17:57:10 2025 GMT Not After : Aug 29 17:57:10 2025 GMT Subject: CN=68a8af76-e660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b8:1e:cf:48:2f:1a:90:a4:9a:f1:6f:46:17: 54:38:d2:fd:a0:1b:b3:97:f9:cf:17:3c:48:c1:37: 75:75:f8:57:ee:ed:98:41:b2:65:50:95:0b:94:11: 41:58:ea:f3:a1:fd:8a:b2:c1:d1:6a:be:15:f1:06: 28:95:74:60:f6:fc:c4:45:ce:55:f7:bc:9b:b7:d4: c7:07:e3:ec:58:84:fc:b3:be:da:99:5e:ea:2d:95: 5d:41:69:02:7d:46:68:43:26:8d:6f:fb:47:af:f5: e1:86:75:22:62:fc:39:dc:aa:d2:2b:8d:d3:bb:ec: cc:7c:56:98:09:39:0c:71:a4:44:31:9c:c7:d2:a1: 54:1d:3a:bc:25:e2:e1:1e:12:61:47:56:0e:00:44: 16:fc:7e:4d:a4:e9:96:ed:33:4d:8f:f2:8e:e6:f9: 3b:d9:89:30:61:f1:fa:30:0c:78:5b:d4:e3:b0:3e: 77:0d:43:70:b3:c0:5f:47:4f:9b:6e:b3:ca:06:22: ee:2a:57:fa:70:9b:ab:b4:51:a6:06:bf:05:21:12: aa:d2:ea:5f:74:68:a8:e2:26:07:a9:db:57:e7:e6: 6f:c1:56:72:97:48:aa:5a:31:2a:4f:86:56:e0:f2: c8:1c:66:e2:81:f4:c5:20:4d:89:13:76:36:78:55: 2a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0C:D2:CC:5E:26:F1:D5:AD:BB:82:04:37:CF:70:8B:88:16:92:9B X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:99:e5:be:79:bf:c8:68:1e:ab:85:a3:ef:30:54:57:3f:98: ca:fa:fd:5c:90:0d:45:50:c7:77:35:59:7c:75:aa:73:11:bf: 57:c5:a3:be:c2:82:1c:2e:69:1d:e4:a6:e3:99:80:d4:ff:82: 75:31:bd:26:31:10:e3:c5:61:4e:cb:d6:ec:73:e5:32:88:c1: fb:17:e0:b0:97:0f:b3:4b:3f:bd:2d:d5:a0:95:8b:05:ba:55: 8f:2f:3c:ca:6c:85:72:c5:ba:a2:58:11:99:2f:23:16:80:b0: b4:04:69:d6:6d:dd:59:07:b2:71:12:d3:c3:70:0c:5f:3d:3a: a3:ed:62:f7:ad:53:8a:fc:13:11:3a:83:0d:2e:88:fc:69:55: ec:4e:1c:e2:17:de:dc:c5:68:bb:45:c5:e5:0d:7d:2a:8c:3e: d7:59:be:cf:09:54:f4:ed:a1:4e:70:66:2f:bb:2c:c7:cb:a8: cf:28:2a:7a:42:49:6b:62:19:49:0f:7c:34:ce:c9:66:b2:0e: 65:f1:a2:6e:0f:a9:cb:72:14:63:7f:b5:77:e3:d1:68:58:c2: 02:de:8f:e1:b9:e3:4d:b4:fb:01:7f:27:44:db:c2:22:8e:3c: 36:a9:e4:d6:d5:95:e5:4d:bf:15:c4:19:06:a2:54:3e:a5:95: 33:a2:86:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzJDQzExMC8GA1UEBRMoREI3OEQ5RjkzNThFNTY3RDMwNkVFM0JEMUVBQzc0OEU5 NjA2QkY4RjAeFw0yNTA4MjIxNzU3MTBaFw0yNTA4MjkxNzU3MTBaMBgxFjAUBgNV BAMTDTY4YThhZjc2LWU2NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+uB7PSC8akKSa8W9GF1Q40v2gG7OX+c8XPEjBN3V1+Ffu7ZhBsmVQlQuUEUFY 6vOh/YqywdFqvhXxBiiVdGD2/MRFzlX3vJu31McH4+xYhPyzvtqZXuotlV1BaQJ9 RmhDJo1v+0ev9eGGdSJi/DncqtIrjdO77Mx8VpgJOQxxpEQxnMfSoVQdOrwl4uEe EmFHVg4ARBb8fk2k6ZbtM02P8o7m+TvZiTBh8fowDHhb1OOwPncNQ3CzwF9HT5tu s8oGIu4qV/pwm6u0UaYGvwUhEqrS6l90aKjiJgep21fn5m/BVnKXSKpaMSpPhlbg 8sgcZuKB9MUgTYkTdjZ4VSqhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyQzSzF4m 8dWtu4IEN89wi4gWkpswHwYDVR0jBBgwFoAU23jZ+TWOVn0wbuO9Hqx0jpYGv48w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MkNDLzQzMzBBQzlDQjM2 RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjNqWi1UV09WbjB3YnVPOUhxeDBqcFlHdjQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 MkNDLzQzMzBBQzlDQjM2RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4w d2J1TzlIcXgwanBZR3Y0OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMmZ5b55v8hoHquFo+8wVFc/mMr6/VyQDUVQx3c1WXx1qnMRv1fFo77C ghwuaR3kpuOZgNT/gnUxvSYxEOPFYU7L1uxz5TKIwfsX4LCXD7NLP70t1aCViwW6 VY8vPMpshXLFuqJYEZkvIxaAsLQEadZt3VkHsnES08NwDF89OqPtYvetU4r8ExE6 gw0uiPxpVexOHOIX3tzFaLtFxeUNfSqMPtdZvs8JVPTtoU5wZi+7LMfLqM8oKnpC SWtiGUkPfDTOyWayDmXxom4PqctyFGN/tXfj0WhYwgLej+G54020+wF/J0TbwiKO PDap5NbVleVNvxXEGQaiVD6llTOihqo= -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:21 2025 by rpki-client