$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: 4J0PHY9uY8eAtHeYBlhThGKPtQOja7awq4UqXRWwzBA= Subject key identifier: 6B:9E:78:BF:10:FD:5E:C9:87:33:C2:F9:F9:33:B3:FE:BD:67:25:34 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: C1 Signing time: Sat 23 Aug 2025 05:59:25 +0000 Manifest this update: Sat 23 Aug 2025 05:59:24 +0000 Manifest next update: Sat 30 Aug 2025 05:59:24 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: mkqbksGRJzAzflGXJCCqxeaOO+5iFIpLn91qXVVogNU=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Aug 23 05:59:24 2025 GMT Not After : Aug 30 05:59:24 2025 GMT Subject: CN=68a958bd-450c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:92:a1:82:c0:3d:21:f9:db:90:68:7f:20:6a: 4f:8d:f6:35:5d:66:f8:78:99:d5:91:2b:25:d0:e7: 1d:e6:68:91:b4:4f:b8:a2:4a:85:38:58:0b:72:3a: 0f:aa:f7:08:f8:7c:88:58:f7:d5:f0:76:f3:16:7b: f9:ee:3d:ff:49:eb:ac:dd:76:a3:63:a9:d5:c5:71: 78:f5:62:b0:14:0c:e9:ab:7b:3a:85:eb:e2:a3:ba: 0b:8d:d3:d7:b9:1d:68:51:9f:52:9d:b3:af:00:87: 1c:c6:68:64:0a:ca:55:ed:00:75:6c:7b:97:15:53: 8c:74:10:9e:13:80:c7:b1:8f:17:c6:a9:56:76:e5: e0:d6:94:8b:00:ca:79:19:cd:ae:c1:c2:f1:c9:a9: 87:82:53:dc:2e:43:86:8a:e8:e2:64:46:9e:b2:99: bd:43:6c:ae:ce:e6:4b:04:15:3c:e5:f1:0f:2b:2a: d4:ef:36:e1:20:78:6a:6e:7e:4e:8f:49:61:5f:f4: 8d:f4:2c:51:5c:8d:58:94:80:63:d3:b1:d4:99:ca: 2a:da:34:35:05:7f:bf:bb:6a:78:b6:46:b4:5b:ac: 6e:7e:00:6d:40:99:1c:58:52:92:b2:5f:18:b8:82: 86:1e:cc:33:5f:c7:7a:8d:d6:8a:e3:4d:52:f0:08: 77:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9E:78:BF:10:FD:5E:C9:87:33:C2:F9:F9:33:B3:FE:BD:67:25:34 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:16:c5:2d:88:55:2a:56:be:d4:48:22:c4:f7:69:94:08:d1: 84:ad:a1:e6:36:b9:58:82:c8:ec:b0:68:4a:12:be:c8:6d:9e: 0a:fb:c7:83:c1:6a:a5:22:8f:93:3e:54:d3:9c:f8:f0:05:78: 4d:c3:ec:d3:3f:5e:78:f5:aa:ce:a0:db:3a:6a:7a:a8:61:13: c2:9b:67:a3:56:8e:bf:bd:36:1c:39:8e:a0:2e:62:7a:21:a9: e2:f1:18:89:4f:c9:fc:bb:c9:52:ca:e7:e3:77:62:f1:ac:ff: fd:bc:73:f4:49:57:b2:9c:79:e1:5b:ed:cb:e7:86:03:3f:35: 4c:a7:9c:02:f2:87:e2:c1:c3:67:b7:97:1a:82:6d:6c:80:ad: 9d:18:61:d9:a5:4d:82:0b:a4:c5:86:a9:53:bb:87:76:5e:34: 92:93:f0:70:55:57:6c:07:69:32:b3:4f:db:93:6a:3e:e5:c9: d6:4e:93:d2:c9:2d:ca:39:bf:6e:4e:49:69:5e:13:18:f8:05: 9b:ec:85:a9:70:60:2c:f1:ef:36:08:69:d6:6c:e1:0a:f5:0d: 28:91:2f:42:d4:fb:c2:1f:c2:80:d8:56:cf:7f:02:35:40:6d: ae:89:8b:fd:56:c6:40:d2:e3:f3:2b:db:1a:0e:0c:2a:e3:6c: ef:0d:81:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUwODIzMDU1OTI0WhcNMjUwODMwMDU1OTI0WjAYMRYwFAYD VQQDEw02OGE5NThiZC00NTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJKhgsA9IfnbkGh/IGpPjfY1XWb4eJnVkSsl0Ocd5miRtE+4okqFOFgLcjoP qvcI+HyIWPfV8HbzFnv57j3/Seus3XajY6nVxXF49WKwFAzpq3s6hevio7oLjdPX uR1oUZ9SnbOvAIccxmhkCspV7QB1bHuXFVOMdBCeE4DHsY8XxqlWduXg1pSLAMp5 Gc2uwcLxyamHglPcLkOGiujiZEaespm9Q2yuzuZLBBU85fEPKyrU7zbhIHhqbn5O j0lhX/SN9CxRXI1YlIBj07HUmcoq2jQ1BX+/u2p4tka0W6xufgBtQJkcWFKSsl8Y uIKGHswzX8d6jdaK401S8Ah3tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGueeL8Q /V7JhzPC+fkzs/69ZyU0MB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDhFsUtiFUqVr7USCLE92mUCNGEraHmNrlYgsjssGhKEr7IbZ4K+8eD wWqlIo+TPlTTnPjwBXhNw+zTP1549arOoNs6anqoYRPCm2ejVo6/vTYcOY6gLmJ6 Iani8RiJT8n8u8lSyufjd2LxrP/9vHP0SVeynHnhW+3L54YDPzVMp5wC8ofiwcNn t5cagm1sgK2dGGHZpU2CC6TFhqlTu4d2XjSSk/BwVVdsB2kys0/bk2o+5cnWTpPS yS3KOb9uTklpXhMY+AWb7IWpcGAs8e82CGnWbOEK9Q0okS9C1PvCH8KA2FbPfwI1 QG2uiYv9VsZA0uPzK9saDgwq42zvDYF9 -----END CERTIFICATE-----Generated at Sat Aug 23 21:16:45 2025 by rpki-client