$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: Lint1d1QAC6Yj/Fb6QCXDPxxdMr8ESbCWHszUO1bctk= Subject key identifier: 7D:CE:12:7C:8E:88:7C:68:B3:FB:88:5B:CF:45:A7:21:09:9D:07:8B Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0601 Signing time: Fri 22 Aug 2025 23:03:22 +0000 Manifest this update: Fri 22 Aug 2025 23:03:22 +0000 Manifest next update: Fri 29 Aug 2025 23:03:22 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: 9j9cq4I8aE2rDW1BYovy5SX5mA/02G/8VnwUzwaUiaU=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Aug 22 23:03:22 2025 GMT Not After : Aug 29 23:03:22 2025 GMT Subject: CN=68a8f73a-a76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:d5:9a:47:3e:b9:c8:8d:c3:23:a3:22:80: c9:e6:1a:08:2e:1d:c3:be:5c:52:43:4d:ce:cb:64: 7a:a5:ec:00:4a:e8:ef:6c:7a:26:63:4f:66:ee:5f: 4d:3d:68:26:59:d8:7c:6b:de:33:94:0a:77:1f:26: ff:7c:ec:8f:c5:11:f3:db:39:e6:21:43:97:d3:be: fd:b6:3a:f6:6a:66:2c:1b:b5:7d:55:4b:33:5e:a4: a5:01:27:b5:46:8d:b7:28:66:80:27:e0:fa:08:8d: 51:c8:99:8b:84:0b:11:53:65:3a:28:18:ea:c6:dc: 07:df:e7:10:7f:ab:6e:2e:a5:3b:f8:de:34:b2:4d: 3a:99:20:69:83:ed:28:a6:72:df:f2:a0:b8:7e:64: 51:4b:a4:40:f7:95:23:32:4e:29:c8:50:63:d0:dc: 34:e1:f4:7f:d4:4d:9b:92:ef:cc:84:92:b1:5f:a1: 8a:47:1f:e1:67:f6:c8:a0:7c:1a:f8:21:d2:a5:fb: 12:f2:5e:b3:1b:5e:a6:75:c6:76:49:d0:79:45:08: b3:5e:97:e6:b2:9f:3f:69:4a:f2:b3:61:16:cf:52: de:9f:81:31:b0:6f:ba:0a:90:c5:21:16:1f:4f:0d: d2:a7:70:0c:45:61:54:a5:99:b6:72:2a:f5:ed:88: c2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CE:12:7C:8E:88:7C:68:B3:FB:88:5B:CF:45:A7:21:09:9D:07:8B X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:0c:1c:b6:fe:7f:2b:ce:10:8e:1e:c6:3e:09:3a:e0:63:17: c6:5f:11:a6:d1:40:39:fb:ea:97:2f:2c:08:6e:26:f4:d5:49: 4e:69:ef:2d:f3:04:ce:bd:3c:b6:0b:a9:d5:dd:30:f5:b6:b9: e8:77:f4:aa:e9:96:dd:20:eb:32:39:5c:86:41:6d:03:f4:92: 63:17:69:a3:0b:9c:22:f1:de:9a:9e:64:61:02:bd:6e:ed:8e: ee:b0:01:53:3c:e9:33:fb:ed:e2:d6:a9:5f:5a:a0:4d:ab:ac: 63:10:4f:9a:a6:e1:57:bd:03:80:bc:5d:bc:4a:ef:5c:1f:56: a9:39:71:08:5d:61:e3:b7:21:60:df:ae:ca:ca:a9:fb:18:08: c6:96:10:eb:8e:aa:96:aa:bd:2e:74:05:b3:48:74:15:e4:6c: b1:03:ed:b7:ad:b4:77:ca:7f:a8:fe:1b:5a:68:ec:4a:a9:e0: ea:62:65:de:f5:a0:c9:d7:30:15:73:8a:4e:9d:ac:a9:57:9a: 33:7e:d5:08:bf:27:84:da:31:15:8a:d7:2b:09:93:0c:08:e1: 04:6e:d2:50:c9:2d:0f:d1:ed:a7:59:b3:2e:52:30:55:8c:43: 3c:79:ca:7d:1a:39:41:86:e6:67:50:0d:f8:c5:8e:9d:db:c7: 50:10:95:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwODIyMjMwMzIyWhcNMjUwODI5MjMwMzIyWjAYMRYwFAYD VQQDEw02OGE4ZjczYS1hNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLDVmkc+uciNwyOjIoDJ5hoILh3DvlxSQ03Oy2R6pewASujvbHomY09m7l9N PWgmWdh8a94zlAp3Hyb/fOyPxRHz2znmIUOX0779tjr2amYsG7V9VUszXqSlASe1 Ro23KGaAJ+D6CI1RyJmLhAsRU2U6KBjqxtwH3+cQf6tuLqU7+N40sk06mSBpg+0o pnLf8qC4fmRRS6RA95UjMk4pyFBj0Nw04fR/1E2bku/MhJKxX6GKRx/hZ/bIoHwa +CHSpfsS8l6zG16mdcZ2SdB5RQizXpfmsp8/aUrys2EWz1Len4ExsG+6CpDFIRYf Tw3Sp3AMRWFUpZm2cir17YjCVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3OEnyO iHxos/uIW89FpyEJnQeLMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZDBy2/n8rzhCOHsY+CTrgYxfGXxGm0UA5++qXLywIbib01UlOae8t 8wTOvTy2C6nV3TD1trnod/Sq6ZbdIOsyOVyGQW0D9JJjF2mjC5wi8d6anmRhAr1u 7Y7usAFTPOkz++3i1qlfWqBNq6xjEE+apuFXvQOAvF28Su9cH1apOXEIXWHjtyFg 367Kyqn7GAjGlhDrjqqWqr0udAWzSHQV5GyxA+23rbR3yn+o/htaaOxKqeDqYmXe 9aDJ1zAVc4pOnaypV5ozftUIvyeE2jEVitcrCZMMCOEEbtJQyS0P0e2nWbMuUjBV jEM8ecp9GjlBhuZnUA34xY6d28dQEJXZ -----END CERTIFICATE-----Generated at Sat Aug 23 16:34:15 2025 by rpki-client