$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft File: I8MbHNaMzE0c6105mlAbYFD9HUY.mft (raw, json) Hash identifier: NS9GBko7n83/qqDXKs+/DWq8C8oFT841msiGHSbqp3Y= Subject key identifier: 06:6B:60:3E:5C:C2:60:24:65:B5:E0:11:A7:40:CD:7A:90:C5:7F:9A Authority key identifier: 23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 Certificate issuer: /CN=A91A0FC0/serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft Manifest number: 04A4 Signing time: Mon 21 Jul 2025 00:53:38 +0000 Manifest this update: Mon 21 Jul 2025 00:53:37 +0000 Manifest next update: Mon 28 Jul 2025 00:53:37 +0000 Files and hashes: 1: I8MbHNaMzE0c6105mlAbYFD9HUY.crl (hash: zYPY5tZvaVBN7AWAGNu4hRjwqxohoWMWMehXXk6huD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0FC0, serialNumber=23C31B1CD68CCC4D1CEB5D399A501B6050FD1D46 Validity Not Before: Jul 21 00:53:37 2025 GMT Not After : Jul 28 00:53:37 2025 GMT Subject: CN=687d8f91-ce33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ad:c6:27:d0:22:1e:f9:97:76:74:ba:57:9e: e7:7e:8f:01:35:e8:2e:3d:f4:9b:4e:8e:90:c7:31: 82:5e:d3:b1:12:df:19:fe:18:a6:29:25:03:e0:e2: 09:86:0d:a0:08:68:b4:a6:7f:19:fc:9d:fe:6f:ab: 23:44:25:4f:9b:e2:2e:c0:2b:6a:13:07:9e:1d:65: 36:94:0e:90:ce:61:9b:16:40:0f:ab:0c:06:df:91: b5:f7:69:c6:41:04:fc:51:16:09:b3:6e:11:f6:46: 10:a2:91:9b:9c:ce:2f:00:e8:74:3c:50:02:4c:02: 12:f4:85:73:c1:71:9c:fb:a0:c2:b6:46:cb:83:e9: 0e:e8:68:32:0c:31:b8:04:f4:c5:a3:c8:31:b3:9d: 9b:d2:3b:2f:cb:12:4c:a4:b6:4b:21:8a:22:b2:84: 2e:0b:6d:01:7a:ec:ac:26:37:90:57:87:cc:13:77: 5f:bb:76:18:ef:cf:f1:1f:bc:31:b2:9f:7c:66:8f: 10:24:2a:21:2d:f4:2b:94:b9:03:08:00:93:d8:69: 0c:92:b5:fc:93:ff:ea:1f:7d:e2:20:92:15:28:ea: 21:9f:48:f4:30:0c:a2:a5:d5:e6:cd:d3:27:78:87: de:32:09:f3:23:21:2a:14:e3:7d:31:8b:6a:b0:d2: e5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6B:60:3E:5C:C2:60:24:65:B5:E0:11:A7:40:CD:7A:90:C5:7F:9A X509v3 Authority Key Identifier: keyid:23:C3:1B:1C:D6:8C:CC:4D:1C:EB:5D:39:9A:50:1B:60:50:FD:1D:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I8MbHNaMzE0c6105mlAbYFD9HUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0FC0/CDE09876957811ECA32CCF55C4F9AE02/I8MbHNaMzE0c6105mlAbYFD9HUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:33:42:35:4c:08:ca:d8:f0:ce:75:df:5a:cf:1d:fd:bb:e5: d3:0b:a0:c1:17:86:ad:e8:99:38:f8:60:da:fd:18:14:9f:34: f2:ca:c9:8d:ff:fe:5b:b5:19:7d:41:dd:02:11:76:de:7b:7a: 74:f3:bd:dc:a5:c7:45:ac:c3:b0:b6:08:9c:b4:78:cd:93:90: aa:90:04:52:ed:44:03:28:5b:dc:be:8c:8d:26:f0:79:af:22: 62:1f:1b:c8:19:a6:b2:84:29:f7:a6:b7:fa:aa:4e:4d:68:88: 73:21:8c:61:84:8a:6e:00:4f:31:5f:bd:6f:84:be:2f:e0:24: da:6f:76:2d:4d:2c:2e:83:00:ef:84:9f:18:78:c5:61:22:6c: dd:b2:13:64:2a:8f:01:54:0a:24:96:ec:d1:92:30:38:15:49: bf:2a:be:65:56:a5:69:2d:29:47:d1:6b:36:85:fc:98:fc:6f: eb:7e:da:cf:6e:e6:5f:47:da:f9:ba:cf:e7:0b:37:02:7e:7e: 3f:c0:ce:b9:cf:ad:6d:50:db:1c:9f:f1:a0:8a:92:a6:97:bc: 26:60:cb:87:8f:8a:a4:5a:c7:4c:e8:0a:1e:e8:81:46:28:9c: d2:ca:46:45:5d:05:03:20:ec:92:25:b4:5b:a2:d0:fb:a1:a7: dd:fb:39:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBGQzAxMTAvBgNVBAUTKDIzQzMxQjFDRDY4Q0NDNEQxQ0VCNUQzOTlBNTAxQjYw NTBGRDFENDYwHhcNMjUwNzIxMDA1MzM3WhcNMjUwNzI4MDA1MzM3WjAYMRYwFAYD VQQDEw02ODdkOGY5MS1jZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAua3GJ9AiHvmXdnS6V57nfo8BNeguPfSbTo6QxzGCXtOxEt8Z/himKSUD4OIJ hg2gCGi0pn8Z/J3+b6sjRCVPm+IuwCtqEweeHWU2lA6QzmGbFkAPqwwG35G192nG QQT8URYJs24R9kYQopGbnM4vAOh0PFACTAIS9IVzwXGc+6DCtkbLg+kO6GgyDDG4 BPTFo8gxs52b0jsvyxJMpLZLIYoisoQuC20BeuysJjeQV4fME3dfu3YY78/xH7wx sp98Zo8QJCohLfQrlLkDCACT2GkMkrX8k//qH33iIJIVKOohn0j0MAyipdXmzdMn eIfeMgnzIyEqFON9MYtqsNLlsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZrYD5c wmAkZbXgEadAzXqQxX+aMB8GA1UdIwQYMBaAFCPDGxzWjMxNHOtdOZpQG2BQ/R1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEZDMC9DREUwOTg3Njk1 NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpFMGM2MTA1bWxBYllGRDlI VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k4TWJITmFNekUwYzYxMDVtbEFiWUZEOUhVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEZDMC9DREUwOTg3Njk1NzgxMUVDQTMyQ0NGNTVDNEY5QUUwMi9JOE1iSE5hTXpF MGM2MTA1bWxBYllGRDlIVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXM0I1TAjK2PDOdd9azx39u+XTC6DBF4at6Jk4+GDa/RgUnzTyysmN //5btRl9Qd0CEXbee3p0873cpcdFrMOwtgictHjNk5CqkARS7UQDKFvcvoyNJvB5 ryJiHxvIGaayhCn3prf6qk5NaIhzIYxhhIpuAE8xX71vhL4v4CTab3YtTSwugwDv hJ8YeMVhImzdshNkKo8BVAokluzRkjA4FUm/Kr5lVqVpLSlH0Ws2hfyY/G/rftrP buZfR9r5us/nCzcCfn4/wM65z61tUNscn/GgipKml7wmYMuHj4qkWsdM6Aoe6IFG KJzSykZFXQUDIOySJbRbotD7oafd+zk5 -----END CERTIFICATE-----Generated at Mon Jul 21 09:27:54 2025 by rpki-client