$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: mhiI+EyT78kM16mFC3IdjulmgxLs1ms9vSwA+2ymSWE= Subject key identifier: AE:29:2C:06:92:B5:A9:C0:ED:65:B3:A5:53:FA:A5:D6:EC:8F:C5:70 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1A8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 21A2 Signing time: Wed 16 Jul 2025 16:01:29 +0000 Manifest this update: Wed 16 Jul 2025 16:01:28 +0000 Manifest next update: Wed 23 Jul 2025 16:01:28 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: WSV+Kefd/hr1qBVSZ5QfyaXNomaClmxV59WpUk//XfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 16:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6797 (0x1a8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Jul 16 16:01:28 2025 GMT Not After : Jul 23 16:01:28 2025 GMT Subject: CN=6877ccd8-a31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0f:31:c8:c1:52:ad:3b:a8:a1:37:7d:06:9b: 86:f8:d4:82:5e:79:38:a0:b5:0b:c2:02:0f:2b:ab: 7e:bf:d7:13:58:1f:26:a3:d5:33:8c:59:dd:42:9e: 42:6d:bb:59:42:21:40:2f:c3:a1:ab:7d:6d:ae:69: d8:4d:dd:6c:62:c2:e6:f8:62:04:24:3d:ed:48:02: 0f:87:cd:36:91:cc:e0:4e:8e:c2:8e:56:8f:ac:69: 6d:d7:5a:29:43:da:9c:a1:49:f8:77:c6:12:6d:99: 6e:1d:b9:2e:4c:76:d5:97:60:b6:5b:aa:53:fb:73: ea:20:06:c1:97:ad:f7:db:42:4f:4d:27:a8:6b:e6: 02:2b:69:18:92:81:51:b6:6d:af:91:dd:fc:cc:98: b5:b8:01:87:3d:1b:ab:b8:12:a8:dc:2c:c0:d9:d3: 1e:29:0c:f8:1f:c9:1b:6c:50:7b:bb:ce:d0:98:71: 46:60:c3:f5:98:c6:72:7d:c6:69:86:0b:2d:1a:0c: 58:5f:fd:c8:73:f6:33:d7:71:1d:a3:52:11:ac:ca: 5c:b6:51:65:2a:73:7e:1c:66:49:4d:8d:d0:98:8b: 1a:cd:e3:bd:02:ff:08:03:f7:25:6a:81:ee:fb:14: ed:23:a6:c3:a7:e6:55:fc:2a:89:e3:5d:29:08:6e: cd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:29:2C:06:92:B5:A9:C0:ED:65:B3:A5:53:FA:A5:D6:EC:8F:C5:70 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:cd:4c:7c:80:1c:97:45:f0:87:90:04:e4:77:97:1a:7a:16: 3c:8f:ea:58:ac:a9:eb:e6:6f:db:c3:1e:1f:7f:f1:cf:c8:af: 79:19:0c:36:77:cb:bb:9b:cf:0e:85:b2:4b:5d:dd:b8:ea:d7: 00:7d:20:4c:25:38:b9:8a:6f:e2:bc:d4:84:6e:65:8c:a4:7b: cb:0a:4b:ab:b6:eb:d6:52:93:2d:71:d4:23:a5:2b:10:67:86: d0:8a:da:29:89:8b:bc:0b:19:da:0b:8e:fd:2e:d1:b4:a7:14: 7a:2c:ca:a3:6e:f5:2e:40:07:82:ae:5c:8d:84:b6:c9:d3:bf: 83:10:0d:23:47:12:5f:15:57:01:38:a4:df:6f:bf:6c:34:82: c3:33:35:19:f4:c5:98:13:47:d9:15:20:b2:90:e6:8f:8b:b4: 01:05:1b:28:72:96:6f:34:50:e1:17:a1:a4:4d:32:97:a9:9e: 75:b6:01:4e:56:a5:2d:13:49:f7:fd:3f:43:d8:f8:25:e8:d4: dd:b3:8b:96:d8:61:37:a9:79:8d:b5:65:cb:10:41:68:78:40: 19:b6:62:ae:ad:4c:1e:08:00:c3:42:84:5a:25:1d:c2:b2:b3: e1:6f:55:41:74:ce:15:f5:56:6c:7f:d8:bc:1e:55:8e:92:cb: 56:68:68:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjUwNzE2MTYwMTI4WhcNMjUwNzIzMTYwMTI4WjAYMRYwFAYD VQQDEw02ODc3Y2NkOC1hMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw8xyMFSrTuooTd9BpuG+NSCXnk4oLULwgIPK6t+v9cTWB8mo9UzjFndQp5C bbtZQiFAL8Ohq31trmnYTd1sYsLm+GIEJD3tSAIPh802kczgTo7CjlaPrGlt11op Q9qcoUn4d8YSbZluHbkuTHbVl2C2W6pT+3PqIAbBl63320JPTSeoa+YCK2kYkoFR tm2vkd38zJi1uAGHPRuruBKo3CzA2dMeKQz4H8kbbFB7u87QmHFGYMP1mMZyfcZp hgstGgxYX/3Ic/Yz13Edo1IRrMpctlFlKnN+HGZJTY3QmIsazeO9Av8IA/claoHu +xTtI6bDp+ZV/CqJ410pCG7NdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4pLAaS tanA7WWzpVP6pdbsj8VwMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0zUx8gByXRfCHkATkd5caehY8j+pYrKnr5m/bwx4ff/HPyK95GQw2 d8u7m88OhbJLXd246tcAfSBMJTi5im/ivNSEbmWMpHvLCkurtuvWUpMtcdQjpSsQ Z4bQitopiYu8CxnaC479LtG0pxR6LMqjbvUuQAeCrlyNhLbJ07+DEA0jRxJfFVcB OKTfb79sNILDMzUZ9MWYE0fZFSCykOaPi7QBBRsocpZvNFDhF6GkTTKXqZ51tgFO VqUtE0n3/T9D2Pgl6NTds4uW2GE3qXmNtWXLEEFoeEAZtmKurUweCADDQoRaJR3C srPhb1VBdM4V9VZsf9i8HlWOkstWaGh5 -----END CERTIFICATE-----Generated at Wed Jul 16 23:09:46 2025 by rpki-client