$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: c761GUb3qw3+tW+mpXELzLvHUugfvCMC/eXBRnD7tEw= Subject key identifier: 56:1D:F9:44:CC:F8:4C:70:BA:0D:9E:46:DA:EA:5F:36:FA:A3:94:54 Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: 44 Signing time: Wed 23 Jul 2025 07:48:05 +0000 Manifest this update: Wed 23 Jul 2025 07:48:04 +0000 Manifest next update: Wed 30 Jul 2025 07:48:04 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: n/LgxUjPvAZIYUfaU9DcV1xnOhbSVkjA19jz3XL2dnk=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Jul 23 07:48:04 2025 GMT Not After : Jul 30 07:48:04 2025 GMT Subject: CN=688093b5-6ab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:09:70:6a:a7:eb:49:25:d1:80:71:f5:cd:25: e9:27:64:df:b9:96:4b:48:14:bc:e0:59:96:33:57: 60:12:88:c9:5b:8e:c2:9d:eb:90:cf:6b:c6:76:0a: 65:7b:df:6d:12:41:cc:bb:0a:29:cb:9e:d4:06:af: 98:f7:c6:51:ab:1f:3e:7b:33:11:11:10:3c:ae:ff: 8f:ec:11:7a:f4:8b:8a:3e:6a:16:3c:fb:c0:e5:52: 79:d5:2f:9c:aa:9d:cf:e9:7c:97:32:c6:02:6e:ee: d0:44:45:68:84:20:47:b5:63:bc:d8:08:f6:4b:29: a2:ab:82:3d:c6:57:39:66:3a:4f:83:93:98:81:9e: 83:d6:26:03:04:e4:8a:e3:f7:9b:d2:28:79:43:37: 24:c2:f3:2d:1d:7d:9e:e8:04:cb:e8:73:44:b4:13: d6:64:15:59:7a:d5:4a:a2:4d:b2:61:13:25:8b:a8: 37:62:fb:f0:89:c6:7b:e8:8a:d0:35:60:92:ab:b8: 77:b5:4a:bf:fc:9b:43:f4:48:3a:3f:16:af:e4:da: 62:75:22:33:da:0c:a7:68:f2:aa:f5:b4:a5:b4:e7: 5c:01:b5:31:37:54:d9:ba:c9:7f:17:3e:a2:10:6b: f2:5f:1f:ad:c3:1b:15:27:02:34:19:a4:e7:c6:fe: 35:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1D:F9:44:CC:F8:4C:70:BA:0D:9E:46:DA:EA:5F:36:FA:A3:94:54 X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:8a:b5:5b:44:96:3f:be:88:f2:66:2d:c7:c6:61:ab:27:69: d9:1a:46:c2:ee:80:5e:c8:1b:04:93:4c:96:72:9c:9d:cb:f2: 09:d4:f8:64:e6:08:fb:46:d9:25:ff:c4:49:44:ae:a3:79:53: ea:68:e1:b5:46:b9:89:6d:f5:30:a1:fc:e0:15:7d:44:14:2d: ea:04:11:e2:db:4d:9b:60:53:da:08:19:df:00:b7:0c:15:ed: 9a:3d:ca:d2:35:4b:e7:00:41:8b:cc:9d:fd:06:1b:48:8e:58: 2a:09:62:46:d7:d3:a5:0c:cf:16:29:00:ec:e5:6a:17:a6:94: 9d:b6:ff:49:9d:0c:d3:ad:72:3e:7f:58:a7:9e:66:98:30:da: 33:b5:63:ca:b0:95:78:ca:ae:88:91:9e:7e:ec:e4:22:dc:d4: 96:1d:a1:44:e0:a0:11:43:11:9a:1a:49:d8:d3:c6:94:dd:82: 51:1f:9b:6d:c1:1d:c4:9e:67:38:62:a6:37:f7:28:41:f6:38: d2:31:17:01:ff:41:2a:d7:43:23:8b:84:e3:82:c1:5a:aa:d3: 8f:90:53:21:63:0a:b1:19:87:62:a2:16:0f:04:49:95:e2:27: ca:b8:0c:1f:e4:8e:17:c2:e7:90:08:77:e8:6b:8c:00:86:15: b4:06:aa:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QThDMjExMC8GA1UEBRMoRDI0RkNDQUQzQUNFN0ZGRTVCRjAyQTZBOEY2OEMwNjAy RTFDMUI1MTAeFw0yNTA3MjMwNzQ4MDRaFw0yNTA3MzAwNzQ4MDRaMBgxFjAUBgNV BAMTDTY4ODA5M2I1LTZhYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqCXBqp+tJJdGAcfXNJeknZN+5lktIFLzgWZYzV2ASiMlbjsKd65DPa8Z2CmV7 320SQcy7CinLntQGr5j3xlGrHz57MxEREDyu/4/sEXr0i4o+ahY8+8DlUnnVL5yq nc/pfJcyxgJu7tBERWiEIEe1Y7zYCPZLKaKrgj3GVzlmOk+Dk5iBnoPWJgME5Irj 95vSKHlDNyTC8y0dfZ7oBMvoc0S0E9ZkFVl61UqiTbJhEyWLqDdi+/CJxnvoitA1 YJKruHe1Sr/8m0P0SDo/Fq/k2mJ1IjPaDKdo8qr1tKW051wBtTE3VNm6yX8XPqIQ a/JfH63DGxUnAjQZpOfG/jWhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVh35RMz4 THC6DZ5G2upfNvqjlFQwHwYDVR0jBBgwFoAU0k/MrTrOf/5b8Cpqj2jAYC4cG1Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBOEMyLzk1QTY5QkUyMDA1 MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGtfTXJUck9mXzViOENwcWoyakFZQzRjRzFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB OEMyLzk1QTY5QkUyMDA1MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81 YjhDcHFqMmpBWUM0Y0cxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2KtVtElj++iPJmLcfGYasnadkaRsLugF7IGwSTTJZynJ3L8gnU+GTm CPtG2SX/xElErqN5U+po4bVGuYlt9TCh/OAVfUQULeoEEeLbTZtgU9oIGd8AtwwV 7Zo9ytI1S+cAQYvMnf0GG0iOWCoJYkbX06UMzxYpAOzlahemlJ22/0mdDNOtcj5/ WKeeZpgw2jO1Y8qwlXjKroiRnn7s5CLc1JYdoUTgoBFDEZoaSdjTxpTdglEfm23B HcSeZzhipjf3KEH2ONIxFwH/QSrXQyOLhOOCwVqq04+QUyFjCrEZh2KiFg8ESZXi J8q4DB/kjhfC55AId+hrjACGFbQGqlw= -----END CERTIFICATE-----Generated at Thu Jul 24 08:21:09 2025 by rpki-client