$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft File: cri4zRAwexYyTYeYJ98ypKqNaqE.mft (raw, json) Hash identifier: oGvNxAcv9X3qjtJ8ZHynom9wCqKf+IOCsgU2VnfgtZc= Subject key identifier: 80:D9:82:C8:47:56:A0:4A:47:45:A7:2F:07:60:BD:D3:E2:A5:24:FB Authority key identifier: 72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 Certificate issuer: /CN=A91FF19B/serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Certificate serial: 045E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft Manifest number: 0454 Signing time: Sat 23 Aug 2025 00:29:00 +0000 Manifest this update: Sat 23 Aug 2025 00:29:00 +0000 Manifest next update: Sat 30 Aug 2025 00:29:00 +0000 Files and hashes: 1: cri4zRAwexYyTYeYJ98ypKqNaqE.crl (hash: U/LWKTDxIGLiO+dPa2+Q/YEQ7fQyJecInY9kbqnLRXo=) 2: 0C023160C4C911EE9278E261C4F9AE02.roa (hash: IyhV9MGtQ1VyJp3y60dauCI+itu5hIIH24D+SkqtwwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF19B, serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Validity Not Before: Aug 23 00:29:00 2025 GMT Not After : Aug 30 00:29:00 2025 GMT Subject: CN=68a90b4c-e4cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:23:08:0e:a0:25:a6:15:a5:81:55:77:c8:7b: b9:c2:7f:3f:c7:45:94:ba:7e:3b:4b:ce:0d:49:4e: ef:08:32:c3:f1:68:b5:df:c6:d7:96:b7:aa:23:6b: 2e:a6:01:7b:8e:a7:be:53:c9:0a:b6:81:06:3f:5a: ec:dc:76:72:02:4e:36:78:15:06:5c:73:61:fa:31: 90:54:28:c5:67:79:62:a0:1c:d4:89:9b:82:91:f5: c2:2c:e2:52:ac:5e:69:32:47:22:0d:54:5f:de:9c: f9:41:4b:8b:7a:47:f9:c9:7c:dd:3e:da:24:5a:61: ab:d9:e3:1e:e3:3e:e9:43:18:c4:d2:c4:c4:4a:38: 52:af:2e:53:a1:6c:b1:2e:fa:7c:ad:15:3b:f3:c8: ea:2c:11:ce:5d:65:c8:49:e2:a9:c3:78:a0:78:e1: 7c:79:4f:2e:2d:3a:6d:1d:34:77:7a:5a:b0:bb:64: f6:1c:ad:41:90:fb:0b:00:17:f9:54:35:7d:e4:98: b3:bf:a4:39:98:df:cf:4b:61:62:b7:3b:be:87:12: 95:a6:57:5b:dd:7c:da:2b:6d:70:8b:db:e8:cb:8e: a8:55:75:4c:72:ca:65:c7:53:ae:6a:1c:1c:92:34: e4:9e:ff:14:02:4e:e2:91:63:b3:12:08:3c:41:4d: 06:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D9:82:C8:47:56:A0:4A:47:45:A7:2F:07:60:BD:D3:E2:A5:24:FB X509v3 Authority Key Identifier: keyid:72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:fa:5d:88:44:92:f3:f1:be:16:2a:57:82:88:13:25:ef:40: 74:84:01:8b:ab:e2:16:33:4e:5c:d8:a3:77:79:f2:ec:e7:51: 07:da:15:72:ad:be:7d:5c:73:75:ef:c8:df:89:aa:24:52:6b: 77:1d:91:3f:69:d6:70:d6:91:69:29:15:c7:0b:7a:6b:fb:c7: 7d:27:8a:9f:f6:c3:80:f3:9a:1d:19:79:a3:c8:79:db:19:ba: f3:fc:e0:22:91:0e:bf:cd:6c:e3:4c:13:3a:4e:c2:63:12:51: 76:57:dd:79:04:a2:df:08:f8:5d:3a:cb:5c:83:22:87:66:a7: a1:21:09:9e:38:34:49:ad:6e:f5:6d:0e:5a:17:23:16:26:b8: 5b:2e:af:02:3f:de:f6:35:e4:7f:f0:89:49:df:4d:01:ee:91: 99:81:19:60:5b:b3:a5:f6:0b:92:d6:d1:39:0a:d0:c8:ab:e8: 7b:db:1e:e3:d2:e5:09:fc:fa:7c:50:be:d2:36:6a:3d:35:db: f0:8b:e5:45:76:35:f5:37:00:a9:49:10:e8:82:b3:d0:ab:61: a1:e6:9e:a1:30:8a:1d:73:79:5e:d5:60:b4:ff:41:20:c2:a4: a6:69:11:13:af:f5:17:1b:f6:a7:98:96:7f:8b:f8:04:60:7f: 38:3c:f5:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxOUIxMTAvBgNVBAUTKDcyQjhCOENEMTAzMDdCMTYzMjREODc5ODI3REYzMkE0 QUE4RDZBQTEwHhcNMjUwODIzMDAyOTAwWhcNMjUwODMwMDAyOTAwWjAYMRYwFAYD VQQDEw02OGE5MGI0Yy1lNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyMIDqAlphWlgVV3yHu5wn8/x0WUun47S84NSU7vCDLD8Wi138bXlreqI2su pgF7jqe+U8kKtoEGP1rs3HZyAk42eBUGXHNh+jGQVCjFZ3lioBzUiZuCkfXCLOJS rF5pMkciDVRf3pz5QUuLekf5yXzdPtokWmGr2eMe4z7pQxjE0sTESjhSry5ToWyx Lvp8rRU788jqLBHOXWXISeKpw3igeOF8eU8uLTptHTR3elqwu2T2HK1BkPsLABf5 VDV95Jizv6Q5mN/PS2Fitzu+hxKVpldb3XzaK21wi9voy46oVXVMcsplx1Ouahwc kjTknv8UAk7ikWOzEgg8QU0GdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDZgshH VqBKR0WnLwdgvdPipST7MB8GA1UdIwQYMBaAFHK4uM0QMHsWMk2HmCffMqSqjWqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjE5Qi8zNjQ4OEQ4MDY2 NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4WXlUWWVZSjk4eXBLcU5h cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NyaTR6UkF3ZXhZeVRZZVlKOTh5cEtxTmFxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjE5Qi8zNjQ4OEQ4MDY2NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4 WXlUWWVZSjk4eXBLcU5hcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8+l2IRJLz8b4WKleCiBMl70B0hAGLq+IWM05c2KN3efLs51EH2hVy rb59XHN178jfiaokUmt3HZE/adZw1pFpKRXHC3pr+8d9J4qf9sOA85odGXmjyHnb Gbrz/OAikQ6/zWzjTBM6TsJjElF2V915BKLfCPhdOstcgyKHZqehIQmeODRJrW71 bQ5aFyMWJrhbLq8CP972NeR/8IlJ300B7pGZgRlgW7Ol9guS1tE5CtDIq+h72x7j 0uUJ/Pp8UL7SNmo9Ndvwi+VFdjX1NwCpSRDogrPQq2Gh5p6hMIodc3le1WC0/0Eg wqSmaRETr/UXG/anmJZ/i/gEYH84PPWj -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:26 2025 by rpki-client