$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: OKOuHmLlCwmh/gyjUAk3lFcsMKtlmzUQ4T42orETMlc= Subject key identifier: 2A:9B:32:62:A9:B4:49:CC:47:46:AF:0F:53:C9:9B:9A:51:A8:55:1F Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 0735 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 072A Signing time: Fri 22 Aug 2025 21:58:56 +0000 Manifest this update: Fri 22 Aug 2025 21:58:56 +0000 Manifest next update: Fri 29 Aug 2025 21:58:56 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: Svg4xgxaApHWudC8rwtKmvZa+YO8ABucemcwDCHTcrQ=) 2: FD9457225B1011F0A31EF763C4F9AE02.roa (hash: f2u+VQYSLCUV6iKDxcf/7BZ46ThgcrDUrUJ8DXZ7tUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:58:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Aug 22 21:58:56 2025 GMT Not After : Aug 29 21:58:56 2025 GMT Subject: CN=68a8e820-7e3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2e:97:47:f0:40:9c:40:5c:90:33:85:d7:7b: 4a:95:bf:57:6d:75:86:92:bd:25:8d:d5:eb:cf:5a: 63:a8:91:44:e4:85:5d:9a:4c:66:b5:53:84:cc:79: 05:27:79:e7:9c:57:a6:97:74:8a:2d:3b:37:70:9c: 55:23:46:e2:e5:b1:b7:2d:27:31:7f:a0:a1:66:6a: de:fa:62:a6:bc:ec:4a:6c:09:25:df:7d:42:e9:48: 07:55:91:e1:1c:28:f4:e6:73:f6:f1:ef:e7:eb:88: 41:b1:f9:c7:77:57:f2:26:be:3d:9f:05:49:81:06: cd:ec:13:2f:c7:32:c8:bd:eb:31:69:ef:ec:a4:16: 39:48:cc:b8:42:d1:00:64:3b:a0:e5:de:8f:24:e1: 30:89:f6:da:c1:8e:c8:2a:45:62:0b:2d:3d:45:4a: 03:08:61:c9:ac:86:a9:90:2a:5b:4d:b9:cb:4b:48: d8:75:1a:41:38:5f:30:df:86:3e:73:70:54:ba:46: 33:d8:2e:45:0b:b8:44:0b:4e:15:4a:a4:d9:97:da: 04:f8:87:0d:74:18:7b:f6:64:e5:ad:22:72:47:08: c7:81:f3:e2:c0:d4:ee:da:18:74:67:5a:07:48:39: ef:22:1a:44:bb:45:cf:fc:5b:be:68:9e:76:c1:20: 94:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9B:32:62:A9:B4:49:CC:47:46:AF:0F:53:C9:9B:9A:51:A8:55:1F X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:3c:41:88:4c:7d:88:f8:fc:4b:1e:77:58:36:aa:05:41:a0: 5d:84:a6:d0:e3:43:9e:3d:41:fe:12:92:d0:a5:99:1a:1c:f5: a4:a1:c7:a1:a6:8d:d4:65:bc:74:65:d4:3c:40:df:75:d8:8c: 40:5d:06:78:b7:9c:42:e6:57:2b:d9:f6:98:12:31:70:f3:d1: fd:9f:bd:8c:5d:64:30:63:3b:fc:71:fc:5a:1a:1c:37:85:6c: 51:8c:03:de:db:1a:9d:4f:f1:49:6f:28:07:34:3e:7a:b6:bb: 93:df:12:fe:48:e2:ea:cb:c9:62:2e:ac:ba:bf:50:39:41:56: 4c:fe:b7:22:1a:52:57:d4:fb:83:d5:ac:28:64:47:f0:60:3b: e7:6f:28:b4:fd:13:fd:6b:e9:c8:8e:f9:23:15:a4:96:91:28: 70:23:0d:fc:85:b7:37:4c:84:d7:85:b3:bd:f4:27:08:ec:52: f2:8b:af:b5:6a:fd:dd:98:22:e6:30:2f:cb:a9:36:a5:57:ee: ad:2d:f8:96:4e:37:71:2d:27:bd:bc:d6:8d:7a:aa:a2:65:24: 62:b9:f4:5a:6e:ba:b7:09:21:29:de:38:d6:e1:6f:11:62:da: 7b:49:31:5b:d2:7c:2a:8c:6d:5e:f5:92:6a:8b:b3:7e:47:d3: 96:00:74:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUwODIyMjE1ODU2WhcNMjUwODI5MjE1ODU2WjAYMRYwFAYD VQQDEw02OGE4ZTgyMC03ZTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxy6XR/BAnEBckDOF13tKlb9XbXWGkr0ljdXrz1pjqJFE5IVdmkxmtVOEzHkF J3nnnFeml3SKLTs3cJxVI0bi5bG3LScxf6ChZmre+mKmvOxKbAkl331C6UgHVZHh HCj05nP28e/n64hBsfnHd1fyJr49nwVJgQbN7BMvxzLIvesxae/spBY5SMy4QtEA ZDug5d6PJOEwifbawY7IKkViCy09RUoDCGHJrIapkCpbTbnLS0jYdRpBOF8w34Y+ c3BUukYz2C5FC7hEC04VSqTZl9oE+IcNdBh79mTlrSJyRwjHgfPiwNTu2hh0Z1oH SDnvIhpEu0XP/Fu+aJ52wSCURQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqbMmKp tEnMR0avD1PJm5pRqFUfMB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyPEGITH2I+PxLHndYNqoFQaBdhKbQ40OePUH+EpLQpZkaHPWkoceh po3UZbx0ZdQ8QN912IxAXQZ4t5xC5lcr2faYEjFw89H9n72MXWQwYzv8cfxaGhw3 hWxRjAPe2xqdT/FJbygHND56truT3xL+SOLqy8liLqy6v1A5QVZM/rciGlJX1PuD 1awoZEfwYDvnbyi0/RP9a+nIjvkjFaSWkShwIw38hbc3TITXhbO99CcI7FLyi6+1 av3dmCLmMC/LqTalV+6tLfiWTjdxLSe9vNaNeqqiZSRiufRabrq3CSEp3jjW4W8R Ytp7STFb0nwqjG1e9ZJqi7N+R9OWAHSQ -----END CERTIFICATE-----Generated at Sat Aug 23 17:21:47 2025 by rpki-client