$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: qKT5c961A+/7U4X3lKjtNDZaqW17nFqNbwzmaC3Imww= Subject key identifier: 68:EC:FD:9A:DF:05:79:18:71:25:ED:65:4F:0A:40:D4:BB:2D:A8:6D Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: 55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: 54 Signing time: Sat 23 Aug 2025 07:29:27 +0000 Manifest this update: Sat 23 Aug 2025 07:29:26 +0000 Manifest next update: Sat 30 Aug 2025 07:29:26 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: dlBVgI97StLrU+lXuKoktcwapLZ/uQJiL4l5vFTPEPU=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Aug 23 07:29:26 2025 GMT Not After : Aug 30 07:29:26 2025 GMT Subject: CN=68a96dd7-7a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ec:db:ce:44:6a:39:20:ec:e6:77:6a:4b:31: c1:65:d5:ba:a4:28:46:e5:c0:43:21:b1:0d:1a:e7: 86:15:24:ad:f9:f9:5e:78:1b:e2:eb:b4:ff:ae:79: 95:9a:86:a7:cb:40:2e:19:e7:a3:ec:ce:2f:f3:5a: ac:b7:a9:ab:5b:44:98:1c:e4:bb:09:69:56:01:f1: 2c:ba:e7:bc:c8:1d:28:71:64:3a:03:89:e8:84:47: 68:cb:5d:6a:98:f1:a6:41:24:e3:2d:df:51:3c:d0: df:9f:b9:e8:00:fc:a5:03:fc:ed:0b:9a:54:82:b5: 6c:f4:a9:1c:fd:48:63:b1:8f:ea:67:d9:14:a6:1f: 7d:b0:5b:b2:f1:bb:79:b3:67:53:8e:eb:63:5b:2c: ed:95:ca:92:0f:60:46:cf:0b:1a:ef:97:14:9c:55: cc:f5:f5:8d:84:91:18:d6:a6:5f:9b:4f:8d:9b:3a: 2d:fa:48:20:2f:2a:25:ac:58:7d:ba:01:0b:2a:04: 86:3c:cc:51:60:56:24:82:05:e6:b0:69:a6:55:ed: a6:8f:31:33:8c:1b:58:d4:d3:4d:ab:50:b1:f1:ea: b4:f1:57:98:ba:c9:e0:36:9c:f8:e4:7b:95:cc:a8: bd:e7:aa:fa:d0:d8:80:e5:94:95:5c:6e:97:a3:4a: 10:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:EC:FD:9A:DF:05:79:18:71:25:ED:65:4F:0A:40:D4:BB:2D:A8:6D X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:9c:22:4a:9c:d5:cb:5f:2b:1e:9c:36:08:19:f4:64:a2:fa: ac:d0:7e:25:51:71:ae:7b:ad:4e:72:07:6a:ad:90:a9:52:c0: 43:2a:2b:24:a8:56:b6:d5:87:4d:4b:5f:37:35:6f:ee:41:51: a7:ee:47:e3:9e:6c:e9:95:59:4b:68:b8:02:55:cc:a2:d2:7f: dc:5f:f6:0a:43:07:34:66:61:0c:f1:9a:18:20:be:8c:29:c9: 0c:18:4f:c2:53:44:f1:60:cd:1a:03:b4:31:30:7d:f9:7e:71: fd:cd:f5:10:82:b7:fe:81:73:63:71:aa:07:0e:cd:dd:46:f6: 34:10:0a:3e:b7:ae:17:4e:db:d8:fe:50:a3:9b:97:5d:bd:13: 84:d2:4f:16:4c:6d:81:69:5d:16:65:ad:39:33:3f:e1:de:8f: 9b:ad:6e:0d:7c:88:a4:8d:c7:37:9a:af:de:d3:95:d6:6c:c4: 5a:a0:c2:df:99:de:f6:eb:e9:44:71:8f:5e:9e:67:66:d6:35: 4e:f0:4d:e7:ab:26:2e:8d:d5:f9:51:64:09:10:e6:61:2f:ad: 08:49:b1:b5:e0:43:b6:30:00:72:83:95:2a:d2:c8:c6:92:0f: ac:81:c5:2a:d6:e7:df:39:f3:f5:2c:e2:b6:0c:1f:b7:24:10: 2b:f1:79:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QThDMjExMC8GA1UEBRMoRDI0RkNDQUQzQUNFN0ZGRTVCRjAyQTZBOEY2OEMwNjAy RTFDMUI1MTAeFw0yNTA4MjMwNzI5MjZaFw0yNTA4MzAwNzI5MjZaMBgxFjAUBgNV BAMTDTY4YTk2ZGQ3LTdhNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ7NvORGo5IOzmd2pLMcFl1bqkKEblwEMhsQ0a54YVJK35+V54G+LrtP+ueZWa hqfLQC4Z56Pszi/zWqy3qatbRJgc5LsJaVYB8Sy657zIHShxZDoDieiER2jLXWqY 8aZBJOMt31E80N+fuegA/KUD/O0LmlSCtWz0qRz9SGOxj+pn2RSmH32wW7Lxu3mz Z1OO62NbLO2VypIPYEbPCxrvlxScVcz19Y2EkRjWpl+bT42bOi36SCAvKiWsWH26 AQsqBIY8zFFgViSCBeawaaZV7aaPMTOMG1jU002rULHx6rTxV5i6yeA2nPjke5XM qL3nqvrQ2IDllJVcbpejShAxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaOz9mt8F eRhxJe1lTwpA1LstqG0wHwYDVR0jBBgwFoAU0k/MrTrOf/5b8Cpqj2jAYC4cG1Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBOEMyLzk1QTY5QkUyMDA1 MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGtfTXJUck9mXzViOENwcWoyakFZQzRjRzFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB OEMyLzk1QTY5QkUyMDA1MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81 YjhDcHFqMmpBWUM0Y0cxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD6cIkqc1ctfKx6cNggZ9GSi+qzQfiVRca57rU5yB2qtkKlSwEMqKySo VrbVh01LXzc1b+5BUafuR+OebOmVWUtouAJVzKLSf9xf9gpDBzRmYQzxmhggvowp yQwYT8JTRPFgzRoDtDEwffl+cf3N9RCCt/6Bc2NxqgcOzd1G9jQQCj63rhdO29j+ UKObl129E4TSTxZMbYFpXRZlrTkzP+Hej5utbg18iKSNxzear97TldZsxFqgwt+Z 3vbr6URxj16eZ2bWNU7wTeerJi6N1flRZAkQ5mEvrQhJsbXgQ7YwAHKDlSrSyMaS D6yBxSrW59858/Us4rYMH7ckECvxeR4= -----END CERTIFICATE-----Generated at Sat Aug 23 16:16:47 2025 by rpki-client