$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: iJSVyxJ86wbAYyt7TZnP5IKejZ7NDO+ePceDxwuAgDE= Subject key identifier: 39:18:08:B2:A3:B0:D9:69:27:89:37:61:74:51:F3:D2:5A:F5:EB:4F Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 168A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 1683 Signing time: Sun 20 Jul 2025 22:46:13 +0000 Manifest this update: Sun 20 Jul 2025 22:46:13 +0000 Manifest next update: Sun 27 Jul 2025 22:46:13 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: 2Y1ZOihSuSXKI56giIGN7lqFlig2ail6YJMeBhOfQsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5770 (0x168a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: Jul 20 22:46:13 2025 GMT Not After : Jul 27 22:46:13 2025 GMT Subject: CN=687d71b5-ff9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:50:54:db:c2:54:fd:ac:a6:59:14:4f:d7:1c: 0b:76:23:7c:5f:ba:22:16:9e:8a:42:3a:b0:8d:e5: 6b:a8:ee:f3:25:86:47:4a:e3:32:dc:92:99:e1:fc: b9:db:74:2e:e9:da:82:b6:4e:5e:eb:53:2b:f3:57: 00:4b:f0:69:57:f1:91:13:76:3d:8d:e0:87:d9:45: 96:9f:19:0e:ea:08:38:2c:dd:3a:24:15:7e:ce:ce: cb:fb:d4:03:39:70:3a:ab:60:1a:d5:49:28:56:11: 3d:50:e2:8d:b7:80:65:43:ab:87:c0:86:38:e8:c2: a6:70:59:33:91:1c:18:1c:df:f9:2e:fa:a8:89:ea: 1e:38:c8:22:22:ec:cf:40:13:b9:b9:d2:05:e2:06: 57:8c:16:09:f8:55:f9:22:82:16:f6:f8:7b:33:46: 9c:39:16:52:fc:44:36:ba:50:df:3c:19:86:36:15: 51:13:c3:d2:41:b8:7e:49:13:3a:9d:5d:e0:c5:5d: 0a:66:a6:dc:16:52:13:40:88:64:e3:3c:0a:f6:c9: 28:d6:6d:b5:43:40:98:ef:8b:8f:72:e4:68:cb:95: ce:f8:c9:26:1f:74:3d:d9:d7:5d:0b:a8:08:e4:87: 8b:65:16:e9:32:cf:5d:13:7c:7d:a4:f0:a9:73:3d: c6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:18:08:B2:A3:B0:D9:69:27:89:37:61:74:51:F3:D2:5A:F5:EB:4F X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:6a:d7:78:fd:4b:89:5a:69:92:cc:b6:77:00:85:37:85:bd: d4:fd:5e:a8:b8:2c:32:4f:bb:c3:40:31:9c:fd:51:ab:58:5b: 18:72:4e:2a:e9:f5:22:f9:a2:83:39:f4:1a:f2:7b:8d:fa:ef: 9c:89:46:09:ff:39:93:08:f3:3d:a9:b3:a8:c3:02:ab:17:e7: 2b:c1:fd:8d:48:2d:e4:f4:fb:90:80:eb:61:e4:38:68:89:63: ac:91:55:91:db:20:01:9f:99:e2:7a:85:d2:4a:c7:c6:f4:fa: df:c6:71:75:18:26:18:cd:5d:4c:28:76:09:d1:65:1b:42:b7: ef:8a:50:69:f0:d2:37:b7:a6:69:73:06:23:bc:5d:b4:58:58: 04:e8:4f:ad:e1:ec:72:55:63:42:20:d8:a8:59:f6:f9:68:c0: a2:7c:6a:bb:ca:b3:d1:be:ec:1f:09:6f:7b:f4:59:25:ee:a8: 12:e7:40:83:7e:3d:91:95:34:5a:e8:75:90:6f:dc:18:a5:18: c6:0f:5d:2a:d2:79:78:b0:94:e3:84:cb:ab:24:19:bc:db:57: 35:71:a6:12:e6:06:52:7f:a0:5a:e0:b2:ae:3f:a3:37:88:b4: 0a:54:d3:c8:e0:93:0d:a9:48:ff:4e:bb:df:66:18:f6:60:01: 7c:7f:18:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjUwNzIwMjI0NjEzWhcNMjUwNzI3MjI0NjEzWjAYMRYwFAYD VQQDEw02ODdkNzFiNS1mZjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VBU28JU/aymWRRP1xwLdiN8X7oiFp6KQjqwjeVrqO7zJYZHSuMy3JKZ4fy5 23Qu6dqCtk5e61Mr81cAS/BpV/GRE3Y9jeCH2UWWnxkO6gg4LN06JBV+zs7L+9QD OXA6q2Aa1UkoVhE9UOKNt4BlQ6uHwIY46MKmcFkzkRwYHN/5LvqoieoeOMgiIuzP QBO5udIF4gZXjBYJ+FX5IoIW9vh7M0acORZS/EQ2ulDfPBmGNhVRE8PSQbh+SRM6 nV3gxV0KZqbcFlITQIhk4zwK9sko1m21Q0CY74uPcuRoy5XO+MkmH3Q92dddC6gI 5IeLZRbpMs9dE3x9pPCpcz3GbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkYCLKj sNlpJ4k3YXRR89Ja9etPMB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQatd4/UuJWmmSzLZ3AIU3hb3U/V6ouCwyT7vDQDGc/VGrWFsYck4q 6fUi+aKDOfQa8nuN+u+ciUYJ/zmTCPM9qbOowwKrF+crwf2NSC3k9PuQgOth5Dho iWOskVWR2yABn5nieoXSSsfG9PrfxnF1GCYYzV1MKHYJ0WUbQrfvilBp8NI3t6Zp cwYjvF20WFgE6E+t4exyVWNCINioWfb5aMCifGq7yrPRvuwfCW979Fkl7qgS50CD fj2RlTRa6HWQb9wYpRjGD10q0nl4sJTjhMurJBm821c1caYS5gZSf6Ba4LKuP6M3 iLQKVNPI4JMNqUj/TrvfZhj2YAF8fxiz -----END CERTIFICATE-----Generated at Mon Jul 21 05:42:01 2025 by rpki-client