$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: YguVVVO6MOgsOqhnGztGswum8R3zt2ub2Gn+WCuuVPc= Subject key identifier: 83:DC:EA:90:87:72:1B:CA:3A:86:7C:B8:B3:5E:9F:76:B2:3A:BF:F0 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 08CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 08C5 Signing time: Fri 22 Aug 2025 20:36:07 +0000 Manifest this update: Fri 22 Aug 2025 20:36:07 +0000 Manifest next update: Fri 29 Aug 2025 20:36:07 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: MwVVekVslFFLds5walyxtDiAgkBVpbIrk2iSCcpPLm8=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2253 (0x8cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: Aug 22 20:36:07 2025 GMT Not After : Aug 29 20:36:07 2025 GMT Subject: CN=68a8d4b7-8883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:83:91:9e:b6:ec:98:6a:36:cf:f8:4d:d4:14: f6:9b:6d:84:03:1c:06:e0:a6:11:d3:80:2f:30:b7: 50:95:3b:c9:59:99:f6:64:36:70:57:e9:fa:72:50: 4a:7c:e9:7f:20:f6:be:d1:b0:3f:81:3a:7c:cc:93: e3:20:c3:1b:a4:d5:52:55:22:46:4c:ce:ed:f3:ac: 71:4c:51:68:49:b4:d4:16:50:85:6d:ad:2f:8a:af: 89:b2:22:90:99:0b:52:d5:14:ff:b9:f6:5c:f5:d6: 07:78:3c:f9:f3:68:52:2d:86:e9:b1:b3:f2:5c:26: 6a:98:20:01:99:cb:85:5f:14:46:07:f8:3c:50:54: a2:c9:bc:ae:19:c1:25:6a:9a:a7:51:4e:fe:cb:84: e8:fd:0e:2a:f4:bf:a9:67:9f:ab:b0:a8:1f:96:4e: bc:34:21:47:db:d4:a6:22:f8:d0:1d:20:0e:c6:93: 06:89:e1:b0:b1:9a:db:0f:d2:83:fc:25:c8:d4:3b: e0:19:f4:9a:0d:cf:66:09:23:da:1b:d0:3c:04:6a: 63:c0:e4:03:2f:e5:62:9d:26:05:1c:2a:e7:09:19: f4:db:de:a1:41:d4:d1:81:89:2e:64:12:fb:77:8a: 86:09:19:a5:8d:c7:ad:84:1c:5e:49:af:51:cd:a2: b1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DC:EA:90:87:72:1B:CA:3A:86:7C:B8:B3:5E:9F:76:B2:3A:BF:F0 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b4:3b:a2:de:5d:f0:4d:e6:33:28:6d:3e:f7:f6:fe:71:57: e1:55:32:8c:fd:ae:34:11:f9:af:39:31:c2:c5:39:74:eb:59: 59:c9:70:fb:18:c3:63:35:de:b4:fc:b4:12:ac:17:db:7e:2b: f1:5d:41:e4:b3:02:82:17:ed:f7:8d:3d:7e:bb:0a:60:6e:4c: b6:fc:b2:a8:fd:6e:62:83:0c:ee:b8:57:e9:fb:17:64:c9:a3: 07:21:ce:8d:74:e3:6e:50:eb:cf:c8:9f:52:ec:c2:6f:40:62: ec:65:21:73:36:2c:89:bd:21:15:f8:ed:f2:da:12:c3:e4:60: f4:4d:44:2e:b2:41:b3:f0:84:a0:d5:70:bf:dc:e2:5e:fd:7b: be:d4:b1:5f:4f:ac:fc:4d:dc:71:b9:84:e0:ef:6b:1e:39:23: cf:40:12:7d:8b:22:db:85:0b:7a:0b:33:b2:45:f2:15:f0:78: 43:ce:6f:dd:c6:c0:48:b0:11:3f:7f:72:cc:2d:7c:fb:38:27: 0c:29:d0:9d:34:de:f0:2e:b7:f2:8e:4b:86:7e:d9:60:89:67: 58:00:e5:c7:90:39:bc:cd:fe:8d:8e:0e:75:a6:da:5d:83:8a: d5:87:47:10:1f:74:df:73:09:7b:ea:4c:94:ab:d9:de:e2:c5: 30:69:44:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUwODIyMjAzNjA3WhcNMjUwODI5MjAzNjA3WjAYMRYwFAYD VQQDEw02OGE4ZDRiNy04ODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IORnrbsmGo2z/hN1BT2m22EAxwG4KYR04AvMLdQlTvJWZn2ZDZwV+n6clBK fOl/IPa+0bA/gTp8zJPjIMMbpNVSVSJGTM7t86xxTFFoSbTUFlCFba0viq+JsiKQ mQtS1RT/ufZc9dYHeDz582hSLYbpsbPyXCZqmCABmcuFXxRGB/g8UFSiybyuGcEl apqnUU7+y4To/Q4q9L+pZ5+rsKgflk68NCFH29SmIvjQHSAOxpMGieGwsZrbD9KD /CXI1DvgGfSaDc9mCSPaG9A8BGpjwOQDL+VinSYFHCrnCRn0296hQdTRgYkuZBL7 d4qGCRmljcethBxeSa9RzaKx0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPc6pCH chvKOoZ8uLNen3ayOr/wMB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAtDui3l3wTeYzKG0+9/b+cVfhVTKM/a40EfmvOTHCxTl061lZyXD7 GMNjNd60/LQSrBfbfivxXUHkswKCF+33jT1+uwpgbky2/LKo/W5igwzuuFfp+xdk yaMHIc6NdONuUOvPyJ9S7MJvQGLsZSFzNiyJvSEV+O3y2hLD5GD0TUQuskGz8ISg 1XC/3OJe/Xu+1LFfT6z8TdxxuYTg72seOSPPQBJ9iyLbhQt6CzOyRfIV8HhDzm/d xsBIsBE/f3LMLXz7OCcMKdCdNN7wLrfyjkuGftlgiWdYAOXHkDm8zf6Njg51ptpd g4rVh0cQH3Tfcwl76kyUq9ne4sUwaUSu -----END CERTIFICATE-----Generated at Sat Aug 23 17:52:52 2025 by rpki-client