$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: D1Lfte8J6swUx8/nQZqxK6n4jfAICfWNpWYZl7uaXUk= Subject key identifier: 00:A7:6B:8E:1B:F6:87:80:E3:98:58:0B:45:D4:50:5E:8D:EA:FE:9D Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 07E6 Signing time: Fri 22 Aug 2025 21:11:20 +0000 Manifest this update: Fri 22 Aug 2025 21:11:20 +0000 Manifest next update: Fri 29 Aug 2025 21:11:20 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: 9QyawKd8zC3X32ktZeTuyJzMxsLD3Zo0IrZHeJtQrc8=) 2: 353932A29B3111EEAFB64748C4F9AE02.roa (hash: 9uk0usjnIlSyDjwPsAY9kObLcGremCDO3bEAYN35jzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Aug 22 21:11:20 2025 GMT Not After : Aug 29 21:11:20 2025 GMT Subject: CN=68a8dcf8-fc82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:db:34:c0:18:97:51:b1:bf:d6:29:7c:31:c9: 28:1d:c5:aa:de:6b:17:29:89:4d:b5:02:ac:2f:70: ce:55:83:41:56:82:1b:24:89:5a:31:50:ef:64:85: d6:82:f1:b7:df:cf:cf:46:93:f5:db:65:1c:94:4a: 7f:20:66:1c:9a:0a:17:14:73:13:a7:96:45:fc:49: 57:80:15:7b:5d:75:82:76:cd:9d:5c:0d:5c:2a:f4: 92:b5:17:b7:2b:4a:14:85:c3:d3:06:ba:af:fa:06: 71:5b:ec:e0:7a:68:3a:a8:74:22:0f:78:b2:2f:95: 5b:80:ec:15:cf:09:0c:37:fe:44:0e:20:53:bd:69: fd:5c:4c:aa:0c:58:ea:0f:fd:b4:c4:97:6a:ec:ef: 04:83:3e:a7:fe:2c:08:f9:34:96:fd:f3:04:b2:3a: 56:68:a4:5c:bc:46:06:47:c8:48:91:8e:28:7f:ca: d5:0f:ba:af:30:6b:28:72:b0:21:2c:8f:51:2d:ae: ba:09:c3:2e:5a:bf:4c:17:50:4b:ba:8f:f4:67:89: 8f:79:ab:3f:f1:da:17:64:74:1c:67:3e:cd:6a:1c: 7d:5b:71:e4:a0:69:4d:77:b0:e4:f9:59:d4:36:f5: 85:11:04:ff:b7:fc:83:80:b2:7e:6a:c7:59:79:8f: 0f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A7:6B:8E:1B:F6:87:80:E3:98:58:0B:45:D4:50:5E:8D:EA:FE:9D X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:4f:fb:3c:87:c1:0e:ea:0b:29:67:90:6f:9d:45:9d:86:9b: 7a:67:20:52:48:88:19:f7:24:0e:49:18:d9:1a:92:19:0f:04: a1:68:7c:04:d0:28:cf:bd:90:02:55:a0:ec:0f:28:ca:48:f8: 44:4f:cb:89:01:dc:20:9f:27:5e:6f:05:6f:53:df:56:4b:4f: 71:13:fa:e1:da:2f:f4:b2:04:7e:93:a0:20:37:ab:96:6b:20: dd:1c:ba:f6:8d:b4:a9:38:54:30:81:bb:b8:c0:99:77:98:ea: 0d:bd:23:5b:39:1b:fd:ae:49:d5:a4:90:b7:f0:90:d4:f2:a5: 87:5c:50:7d:1e:f4:41:b2:bb:d3:39:88:f7:5a:c0:33:8f:dd: fa:fc:c9:41:0e:f0:e0:53:4d:6d:48:09:c1:55:03:21:d3:89: 0a:15:75:77:18:95:63:fe:3f:a9:fc:85:36:1d:24:ca:58:08: 34:4e:33:ae:24:d9:bd:60:2d:37:fc:8a:99:57:3f:8e:fb:85: 6a:4f:d1:dc:22:96:19:05:d2:cc:f3:7f:7d:a1:ba:d4:60:c8: 22:a1:b6:2f:0e:7a:cb:80:41:91:6d:6f:f8:90:7e:31:ab:3a: 2d:d7:23:9e:1a:99:ac:d8:98:70:d1:93:d0:4f:a6:bb:37:96: 8b:9c:51:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjUwODIyMjExMTIwWhcNMjUwODI5MjExMTIwWjAYMRYwFAYD VQQDEw02OGE4ZGNmOC1mYzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ns0wBiXUbG/1il8MckoHcWq3msXKYlNtQKsL3DOVYNBVoIbJIlaMVDvZIXW gvG338/PRpP122UclEp/IGYcmgoXFHMTp5ZF/ElXgBV7XXWCds2dXA1cKvSStRe3 K0oUhcPTBrqv+gZxW+zgemg6qHQiD3iyL5VbgOwVzwkMN/5EDiBTvWn9XEyqDFjq D/20xJdq7O8Egz6n/iwI+TSW/fMEsjpWaKRcvEYGR8hIkY4of8rVD7qvMGsocrAh LI9RLa66CcMuWr9MF1BLuo/0Z4mPeas/8doXZHQcZz7Nahx9W3HkoGlNd7Dk+VnU NvWFEQT/t/yDgLJ+asdZeY8PRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACna44b 9oeA45hYC0XUUF6N6v6dMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUT/s8h8EO6gspZ5BvnUWdhpt6ZyBSSIgZ9yQOSRjZGpIZDwShaHwE 0CjPvZACVaDsDyjKSPhET8uJAdwgnydebwVvU99WS09xE/rh2i/0sgR+k6AgN6uW ayDdHLr2jbSpOFQwgbu4wJl3mOoNvSNbORv9rknVpJC38JDU8qWHXFB9HvRBsrvT OYj3WsAzj936/MlBDvDgU01tSAnBVQMh04kKFXV3GJVj/j+p/IU2HSTKWAg0TjOu JNm9YC03/IqZVz+O+4VqT9HcIpYZBdLM8399obrUYMgiobYvDnrLgEGRbW/4kH4x qzot1yOeGpms2Jhw0ZPQT6a7N5aLnFEr -----END CERTIFICATE-----Generated at Sun Aug 24 05:16:39 2025 by rpki-client