$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: /qzn2nPvPTOe48Wj5sT8am0+K8AjAb3l5CVY1A1V5HQ= Subject key identifier: 68:63:FD:91:95:36:FF:ED:4B:C4:53:41:14:78:13:C8:BA:3F:0D:5C Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2CC8 Signing time: Fri 22 Aug 2025 16:31:41 +0000 Manifest this update: Fri 22 Aug 2025 16:31:40 +0000 Manifest next update: Fri 29 Aug 2025 16:31:40 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: EuTyvQ/s4aWCK75x+SAROUyIhL/OXa5QBG3vje3q/aM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3076 (0xc04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Aug 22 16:31:40 2025 GMT Not After : Aug 29 16:31:40 2025 GMT Subject: CN=68a89b6d-ffbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9f:68:88:4e:2b:6e:90:43:73:9a:04:c7:ee: 9d:be:24:41:59:5a:5f:15:3a:8f:d2:de:13:24:1d: 45:7b:7e:d6:32:bf:11:d9:94:8e:09:0d:73:0d:f5: 7d:af:41:01:82:b7:10:aa:42:40:f6:ef:7d:0c:32: ee:02:5b:08:45:60:48:57:e7:d3:b8:86:bd:c8:8e: 97:ad:e7:4d:ca:0a:3a:d3:33:4c:43:ff:2f:46:bb: 01:10:29:de:20:97:c3:31:0e:33:04:22:da:41:2a: bd:63:15:b3:20:2a:3c:6c:d2:64:48:8a:3c:9b:27: 16:35:01:ca:ea:a8:59:b6:2a:82:66:4c:2e:e3:23: be:ef:cc:37:f0:a5:46:0e:d9:33:f9:40:ac:d4:8b: 34:d2:9b:4a:34:77:b4:3b:85:8c:59:a5:fc:78:69: 9b:79:9f:a0:e5:1a:14:77:7b:14:47:a1:c2:10:9d: 02:ba:b7:4f:32:d5:af:dd:81:7f:5b:35:e9:48:f5: 93:30:f6:0e:90:11:1b:6c:b4:dd:f8:80:05:81:68: 70:69:bc:cb:ca:3d:33:08:0e:a1:55:c3:16:7b:04: 70:8e:04:91:6a:98:87:22:08:e3:ed:a6:f9:0a:86: 4d:9b:7c:c2:72:63:5b:db:da:7d:79:ea:07:e1:46: 7e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:63:FD:91:95:36:FF:ED:4B:C4:53:41:14:78:13:C8:BA:3F:0D:5C X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:54:3f:12:e5:55:ad:10:76:ce:71:75:0a:5c:9c:dc:82:3e: 70:cd:01:eb:fb:61:1d:ee:7e:d0:96:79:ab:7a:8c:79:15:f6: ba:d3:1a:9d:1f:16:92:ec:ab:f6:a7:29:26:c9:94:c0:f8:ae: 2c:ae:00:76:48:6f:c0:f6:13:b2:e6:1b:bf:4c:ec:cb:0b:50: 5d:1e:a9:22:ef:ef:3b:bb:af:04:a0:66:85:ab:f2:70:30:1e: e5:16:39:33:79:38:ec:c7:aa:23:7c:d1:0a:04:af:41:0f:4b: 91:35:a7:78:55:c3:4d:9d:c0:70:8f:f7:91:d4:1a:d3:fe:7c: 48:9d:0c:e3:23:85:3d:c4:80:bc:e1:5d:69:b1:9c:26:14:69: 60:6d:55:33:7e:3a:39:f2:30:07:c4:a0:0e:c0:64:10:e3:b4: 49:69:13:85:d7:8f:4a:17:27:c3:6b:b4:41:3d:a8:da:ba:64: 58:6e:12:4b:e6:a1:2d:9c:49:7e:e1:9a:0c:a8:33:3b:eb:e8: 3c:fd:01:a1:ce:08:ea:73:85:1f:da:27:81:f5:18:d0:a7:c5: 7e:49:26:f9:f0:e4:c9:12:fe:47:91:84:c7:e9:dc:1e:c6:07: 04:13:bc:1b:18:4c:8f:1f:61:39:e2:af:03:77:bd:eb:76:11: 19:b3:70:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUwODIyMTYzMTQwWhcNMjUwODI5MTYzMTQwWjAYMRYwFAYD VQQDEw02OGE4OWI2ZC1mZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9J9oiE4rbpBDc5oEx+6dviRBWVpfFTqP0t4TJB1Fe37WMr8R2ZSOCQ1zDfV9 r0EBgrcQqkJA9u99DDLuAlsIRWBIV+fTuIa9yI6XredNygo60zNMQ/8vRrsBECne IJfDMQ4zBCLaQSq9YxWzICo8bNJkSIo8mycWNQHK6qhZtiqCZkwu4yO+78w38KVG Dtkz+UCs1Is00ptKNHe0O4WMWaX8eGmbeZ+g5RoUd3sUR6HCEJ0CurdPMtWv3YF/ WzXpSPWTMPYOkBEbbLTd+IAFgWhwabzLyj0zCA6hVcMWewRwjgSRapiHIgjj7ab5 CoZNm3zCcmNb29p9eeoH4UZ+wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhj/ZGV Nv/tS8RTQRR4E8i6Pw1cMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsVD8S5VWtEHbOcXUKXJzcgj5wzQHr+2Ed7n7Qlnmreox5Ffa60xqd HxaS7Kv2pykmyZTA+K4srgB2SG/A9hOy5hu/TOzLC1BdHqki7+87u68EoGaFq/Jw MB7lFjkzeTjsx6ojfNEKBK9BD0uRNad4VcNNncBwj/eR1BrT/nxInQzjI4U9xIC8 4V1psZwmFGlgbVUzfjo58jAHxKAOwGQQ47RJaROF149KFyfDa7RBPajaumRYbhJL 5qEtnEl+4ZoMqDM76+g8/QGhzgjqc4Uf2ieB9RjQp8V+SSb58OTJEv5HkYTH6dwe xgcEE7wbGEyPH2E54q8Dd73rdhEZs3AO -----END CERTIFICATE-----Generated at Sat Aug 23 17:12:28 2025 by rpki-client