$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: HdXDL4wlbsViBFOZ9kOgQkLSKxBcTieTD/8oU0BWM2U= Subject key identifier: 3C:5E:7D:86:8B:80:36:FA:C3:23:81:98:7A:EB:E1:7C:2B:F9:6E:1F Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0C75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0C6C Signing time: Fri 22 Aug 2025 18:31:43 +0000 Manifest this update: Fri 22 Aug 2025 18:31:43 +0000 Manifest next update: Fri 29 Aug 2025 18:31:43 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: 0O4yKxnrTwL2pI4PwVOuHWmeexUNDU819pXklzLsch8=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: SvZjqtxcRIhPhrqiLm27nklXEkCJpvMYZMwhSGgkVOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A, serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: Aug 22 18:31:43 2025 GMT Not After : Aug 29 18:31:43 2025 GMT Subject: CN=68a8b78f-1929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:66:73:37:75:63:ef:be:07:12:4e:2d:d7:ad: 4c:f7:de:75:a2:f3:4f:4b:c5:ac:7a:97:7c:e5:58: bd:06:d1:91:1b:42:53:cb:99:f8:2e:ca:d8:43:d8: 8a:b8:10:13:13:9c:2d:e4:fb:65:9c:f8:af:f5:b9: 19:5a:7e:ec:69:f3:0a:5c:31:87:22:f7:39:a5:34: ab:b7:c3:30:29:ad:ba:eb:20:79:89:3c:11:35:7b: d0:86:2d:00:60:a8:91:9d:e0:17:b4:9f:a3:d2:2a: 82:7e:04:54:32:5d:41:62:1f:cd:63:a5:47:4a:9c: 7d:8c:34:95:30:89:4d:cb:9a:65:16:a5:cc:79:0d: f9:f5:0b:78:65:4a:61:b2:96:ab:4c:64:2b:15:57: 59:e1:53:c5:58:52:06:1d:07:bd:8a:23:83:7b:fe: c9:e5:3a:40:39:f1:9a:97:ce:bd:1c:4b:2c:4a:1f: 6e:2e:fb:d6:96:51:c9:a0:3b:71:a8:36:a7:22:5f: 6f:f0:74:82:44:fb:50:41:2f:67:ed:c7:21:b4:d5: 7f:9c:6e:23:2f:e0:fd:af:2d:be:51:be:c4:ed:e5: a2:51:34:9d:5e:9a:84:22:4d:4a:d0:69:ab:6a:8f: 53:61:d4:80:75:89:9a:48:24:29:77:18:64:d2:2e: 85:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:5E:7D:86:8B:80:36:FA:C3:23:81:98:7A:EB:E1:7C:2B:F9:6E:1F X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:f6:95:f0:fb:95:8e:76:d2:c6:e8:99:1b:b9:90:ae:bc:7c: 1a:0c:19:09:0d:76:73:55:a3:58:ba:ad:25:89:79:5a:01:51: 23:f2:fc:92:a1:a7:a2:70:0b:35:25:88:45:ab:1a:0f:56:fb: d7:42:6b:c6:ae:de:17:72:0a:f9:fa:5a:cc:72:39:0b:6b:7e: e4:af:78:0e:51:09:11:e1:4b:df:7e:b0:eb:d0:ef:35:7f:8b: bb:6e:80:f8:74:c0:bb:6e:37:a6:9a:f8:dd:4a:89:fd:b3:90: cc:e8:67:dd:96:29:9a:cd:3b:87:cb:02:da:d0:25:f2:e4:0e: 81:42:73:5c:e1:7e:f5:de:9e:fe:ea:1f:be:52:ad:5d:c0:25: 94:9d:7a:33:11:92:61:ab:d6:50:55:b2:50:49:cc:19:f7:6b: 9e:d4:a0:c1:0a:6f:17:6f:ea:df:99:02:ae:c6:c8:b1:8b:23: 7f:a3:5f:ef:d2:6f:33:75:b5:d5:e4:37:07:92:d3:bf:22:ac: 8b:09:15:d9:f7:aa:d2:1f:38:4b:aa:da:7c:99:3a:6d:d9:56: c6:8a:d9:59:7f:f9:c7:f0:89:48:fa:d1:d4:bd:ad:53:ad:07: c8:23:f4:e0:5b:89:b2:59:89:b5:86:9f:5b:0e:5e:2f:53:63: 81:fa:67:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjUwODIyMTgzMTQzWhcNMjUwODI5MTgzMTQzWjAYMRYwFAYD VQQDEw02OGE4Yjc4Zi0xOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mZzN3Vj774HEk4t161M9951ovNPS8Wsepd85Vi9BtGRG0JTy5n4LsrYQ9iK uBATE5wt5PtlnPiv9bkZWn7safMKXDGHIvc5pTSrt8MwKa266yB5iTwRNXvQhi0A YKiRneAXtJ+j0iqCfgRUMl1BYh/NY6VHSpx9jDSVMIlNy5plFqXMeQ359Qt4ZUph sparTGQrFVdZ4VPFWFIGHQe9iiODe/7J5TpAOfGal869HEssSh9uLvvWllHJoDtx qDanIl9v8HSCRPtQQS9n7cchtNV/nG4jL+D9ry2+Ub7E7eWiUTSdXpqEIk1K0Gmr ao9TYdSAdYmaSCQpdxhk0i6FqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxefYaL gDb6wyOBmHrr4Xwr+W4fMB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA9pXw+5WOdtLG6JkbuZCuvHwaDBkJDXZzVaNYuq0liXlaAVEj8vyS oaeicAs1JYhFqxoPVvvXQmvGrt4Xcgr5+lrMcjkLa37kr3gOUQkR4UvffrDr0O81 f4u7boD4dMC7bjemmvjdSon9s5DM6GfdlimazTuHywLa0CXy5A6BQnNc4X713p7+ 6h++Uq1dwCWUnXozEZJhq9ZQVbJQScwZ92ue1KDBCm8Xb+rfmQKuxsixiyN/o1/v 0m8zdbXV5DcHktO/IqyLCRXZ96rSHzhLqtp8mTpt2VbGitlZf/nH8IlI+tHUva1T rQfII/TgW4myWYm1hp9bDl4vU2OB+md0 -----END CERTIFICATE-----Generated at Sun Aug 24 06:46:44 2025 by rpki-client