$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft File: 0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft (raw, json) Hash identifier: GVIZyoXgZSVAxxtRflNdsM8WN4xNKl7roPemk9Lr1oo= Subject key identifier: 02:4E:7E:A4:D5:F0:0D:66:2D:2C:47:6B:14:97:D9:DD:7F:FB:C1:C4 Authority key identifier: D0:E0:3A:C0:97:DC:00:12:9D:03:25:3F:1C:9D:D7:6D:2A:71:D8:F4 Certificate issuer: /CN=A91EB820/serialNumber=D0E03AC097DC00129D03253F1C9DD76D2A71D8F4 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft Manifest number: 12 Signing time: Sat 23 Aug 2025 08:17:58 +0000 Manifest this update: Sat 23 Aug 2025 08:17:57 +0000 Manifest next update: Sat 30 Aug 2025 08:17:57 +0000 Files and hashes: 1: 0OA6wJfcABKdAyU_HJ3XbSpx2PQ.crl (hash: p2/lISqtBPJ71pEY2MIOHGK8K3Bkhv9wBXTZc1yf0XY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.crl rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB820, serialNumber=D0E03AC097DC00129D03253F1C9DD76D2A71D8F4 Validity Not Before: Aug 23 08:17:57 2025 GMT Not After : Aug 30 08:17:57 2025 GMT Subject: CN=68a97936-2300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:86:e2:2b:87:28:e6:f6:07:91:9a:22:c7:43: cb:01:87:d9:d3:e5:d8:98:69:0f:12:3c:f7:9a:39: 42:e5:7f:b9:18:a8:d1:8d:79:20:5a:fe:b8:31:8e: 05:58:cc:9a:40:f8:ef:ef:b0:3a:a9:e4:39:ee:a0: 5c:33:8b:1b:2d:55:3c:03:3c:00:5a:03:04:19:c5: 70:0e:47:99:31:d3:63:db:20:f8:79:40:55:d5:cb: 1b:b7:68:e4:c8:38:66:c9:c6:2b:99:4d:b7:70:9d: da:bb:86:b0:8b:7c:14:9c:d6:84:87:85:f4:6f:e0: 45:4b:bd:ac:ba:29:e8:aa:8b:1e:23:2a:20:8e:10: ea:1e:0e:c0:c1:64:82:99:87:da:83:23:b9:4e:79: 43:60:fb:63:26:bf:d1:05:40:a2:00:ac:5e:04:7e: 5d:bd:66:c4:75:f0:e9:52:68:e5:cb:0e:dd:88:79: dd:fa:d1:1c:76:6c:44:07:0e:b0:7a:87:62:6a:e4: db:53:fb:76:39:1c:fc:42:77:fc:41:58:0e:75:49: 0e:a7:cb:33:52:03:42:27:97:fb:2a:0d:cc:30:b0: aa:87:42:39:b4:fb:cc:ad:06:66:88:10:d1:b5:29: f5:58:ef:5c:29:43:59:6d:de:3b:9a:0a:27:34:e5: 25:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4E:7E:A4:D5:F0:0D:66:2D:2C:47:6B:14:97:D9:DD:7F:FB:C1:C4 X509v3 Authority Key Identifier: keyid:D0:E0:3A:C0:97:DC:00:12:9D:03:25:3F:1C:9D:D7:6D:2A:71:D8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB820/9A22DEC4684011F0A940476BC4F9AE02/0OA6wJfcABKdAyU_HJ3XbSpx2PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:f3:d5:60:55:86:a2:e8:9e:cc:13:3f:62:e1:ef:af:00:1a: 92:ef:a3:c9:cf:61:1e:4d:ba:3e:8e:21:30:9a:91:b4:64:92: d9:5e:ce:44:45:5f:cf:f1:8b:00:ae:53:e9:8e:d7:db:3c:07: e3:05:e5:52:eb:4c:0f:80:03:57:48:55:3c:34:2c:92:7e:16: df:e5:b4:3e:0b:75:4d:b6:55:f0:3a:06:0c:57:12:76:16:19: 71:d5:1b:6b:b6:02:24:86:b5:a5:42:c4:58:b3:d3:5a:92:4f: 81:9c:ed:f1:24:0b:63:7d:87:a3:aa:d4:2c:be:d1:cf:74:c3: 7f:30:90:29:3e:3a:19:66:a0:5c:bf:ab:25:22:8e:48:1b:7f: 4a:ca:c4:87:72:a4:f6:25:f3:73:38:1e:fe:a9:cb:5d:d9:50: a2:87:e9:ee:57:eb:eb:f9:3c:13:f2:7e:cc:10:a0:85:89:1f: 8c:ad:d9:19:80:a2:87:ba:99:c2:e9:c5:f4:36:d8:8d:13:0a: f1:8c:de:df:35:8b:fe:27:91:8a:02:b7:cb:ad:5b:b2:7c:6a: 25:5e:58:dc:d1:20:4e:82:14:d3:7d:65:bd:d5:a7:87:af:23: e6:29:67:17:18:5c:bf:14:17:a3:2d:31:74:26:60:31:d3:83: 5a:20:f8:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QjgyMDExMC8GA1UEBRMoRDBFMDNBQzA5N0RDMDAxMjlEMDMyNTNGMUM5REQ3NkQy QTcxRDhGNDAeFw0yNTA4MjMwODE3NTdaFw0yNTA4MzAwODE3NTdaMBgxFjAUBgNV BAMTDTY4YTk3OTM2LTIzMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQhuIrhyjm9geRmiLHQ8sBh9nT5diYaQ8SPPeaOULlf7kYqNGNeSBa/rgxjgVY zJpA+O/vsDqp5DnuoFwzixstVTwDPABaAwQZxXAOR5kx02PbIPh5QFXVyxu3aOTI OGbJxiuZTbdwndq7hrCLfBSc1oSHhfRv4EVLvay6Keiqix4jKiCOEOoeDsDBZIKZ h9qDI7lOeUNg+2Mmv9EFQKIArF4Efl29ZsR18OlSaOXLDt2Ied360Rx2bEQHDrB6 h2Jq5NtT+3Y5HPxCd/xBWA51SQ6nyzNSA0Inl/sqDcwwsKqHQjm0+8ytBmaIENG1 KfVY71wpQ1lt3juaCic05SWhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAk5+pNXw DWYtLEdrFJfZ3X/7wcQwHwYDVR0jBBgwFoAU0OA6wJfcABKdAyU/HJ3XbSpx2PQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCODIwLzlBMjJERUM0Njg0 MDExRjBBOTQwNDc2QkM0RjlBRTAyLzBPQTZ3SmZjQUJLZEF5VV9ISjNYYlNweDJQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvME9BNndKZmNBQktkQXlVX0hKM1hiU3B4MlBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC ODIwLzlBMjJERUM0Njg0MDExRjBBOTQwNDc2QkM0RjlBRTAyLzBPQTZ3SmZjQUJL ZEF5VV9ISjNYYlNweDJQUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAObz1WBVhqLonswTP2Lh768AGpLvo8nPYR5Nuj6OITCakbRkktlezkRF X8/xiwCuU+mO19s8B+MF5VLrTA+AA1dIVTw0LJJ+Ft/ltD4LdU22VfA6BgxXEnYW GXHVG2u2AiSGtaVCxFiz01qST4Gc7fEkC2N9h6Oq1Cy+0c90w38wkCk+OhlmoFy/ qyUijkgbf0rKxIdypPYl83M4Hv6py13ZUKKH6e5X6+v5PBPyfswQoIWJH4yt2RmA ooe6mcLpxfQ22I0TCvGM3t81i/4nkYoCt8utW7J8aiVeWNzRIE6CFNN9Zb3Vp4ev I+YpZxcYXL8UF6MtMXQmYDHTg1og+MQ= -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:09 2025 by rpki-client