$ rpki-client -vvf rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft File: 0KCTtlEHkzVIStC6HXZhX1w2aIo.mft (raw, json) Hash identifier: tXpJLdPo/CzoRNANvaeUV5MAcDGd5ijxY9x3IZM7AlM= Subject key identifier: 98:8F:B8:45:7F:A2:B4:3D:14:8C:37:28:CB:BF:C3:5D:80:30:42:F7 Authority key identifier: D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A Certificate issuer: /CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Certificate serial: 3333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft Manifest number: 9A6F Signing time: Sun 20 Jul 2025 15:18:37 +0000 Manifest this update: Sun 20 Jul 2025 15:18:37 +0000 Manifest next update: Sun 27 Jul 2025 15:18:37 +0000 Files and hashes: 1: 0KCTtlEHkzVIStC6HXZhX1w2aIo.crl (hash: +UFbY5jDXIQYCp3zwB/Dfm3aSLrFrCRmvkpgk694RjY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13107 (0x3333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E275B, serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Validity Not Before: Jul 20 15:18:37 2025 GMT Not After : Jul 27 15:18:37 2025 GMT Subject: CN=687d08cd-516c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:63:4b:7e:02:bc:f9:18:94:0b:fe:ee:d3:f8: bf:48:f3:1c:b7:07:6f:51:a2:c1:40:e6:86:a8:80: 79:c8:b1:4b:92:72:98:10:37:eb:c8:4e:52:8b:51: 10:60:2a:97:12:9b:fa:bd:a6:b2:05:2f:49:3c:a7: 17:b3:1d:45:c7:04:9c:04:f7:45:fa:39:d7:60:36: 91:40:ae:b4:7a:2f:7d:d4:2a:e4:d9:c4:f6:57:18: 79:51:61:1a:ce:4c:38:bc:b2:1b:a3:f7:51:d7:9e: e2:0b:08:fe:b2:37:da:8d:0b:da:16:ad:cd:1f:0d: 5e:d6:1a:c5:4e:30:66:58:a6:cc:2e:da:4b:be:e7: ed:ab:b9:86:7d:15:a2:30:08:25:a1:f4:98:d4:d7: f5:c8:d9:80:4d:50:15:2d:e4:d9:52:72:ce:34:a7: 00:29:9f:52:f7:4f:f9:79:e1:75:42:16:fc:14:b1: f0:b6:e7:08:27:6a:45:33:ba:36:a4:4d:be:be:d2: e0:6e:02:f7:08:73:e2:9d:9b:bb:45:51:81:0a:e3: d5:f9:f0:b3:a0:5a:a4:28:d5:2d:b6:b6:5f:bd:b8: a8:82:7f:34:28:c0:b1:e4:86:a4:2a:0a:dc:ca:ea: 0c:7a:89:df:55:5c:b3:62:52:01:84:05:b1:a1:bd: d6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8F:B8:45:7F:A2:B4:3D:14:8C:37:28:CB:BF:C3:5D:80:30:42:F7 X509v3 Authority Key Identifier: keyid:D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:11:60:1a:e8:47:0e:6f:07:05:0b:5d:aa:d8:45:5c:93:0e: 2a:c5:d9:fe:39:fc:f4:44:7b:a8:76:5e:54:2b:43:4f:b7:23: a4:d5:36:3c:57:ee:2e:bb:00:32:d4:b8:26:57:40:e2:aa:90: 44:ee:b5:17:ed:7c:75:27:09:ad:61:7c:7e:93:74:36:cc:d0: 3e:ef:93:e8:14:a1:60:24:2d:8b:eb:04:53:ad:9d:4a:25:b5: d4:44:5a:30:48:2e:ad:79:9f:5e:1a:54:43:bb:88:62:46:ef: 99:73:f6:72:73:b5:f6:d8:58:b4:f7:9e:37:4f:bc:e1:1f:a3: a8:86:a8:4d:b0:46:f3:f8:96:5b:01:58:5d:8f:98:4e:11:23: 0f:42:e5:7b:e2:f1:33:1b:2c:5f:0c:5d:d8:64:4e:10:96:6f: 99:96:7d:ba:94:29:d4:c7:e8:3a:75:15:90:2b:f4:0e:19:13: 7d:c8:1b:61:c0:65:fe:6d:65:f7:16:53:bd:c4:49:50:46:35: 29:fb:40:f5:72:ec:07:1b:20:c8:67:d1:ff:a1:9c:48:2e:da: 0b:ca:9a:5c:bd:e8:09:74:cc:49:35:56:1b:41:05:5e:47:40: 40:00:79:3f:38:8c:8c:9c:e8:50:d1:4f:a6:49:bf:94:2f:18: 03:c0:10:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3NUIxMTAvBgNVBAUTKEQwQTA5M0I2NTEwNzkzMzU0ODRBRDBCQTFENzY2MTVG NUMzNjY4OEEwHhcNMjUwNzIwMTUxODM3WhcNMjUwNzI3MTUxODM3WjAYMRYwFAYD VQQDEw02ODdkMDhjZC01MTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2NLfgK8+RiUC/7u0/i/SPMctwdvUaLBQOaGqIB5yLFLknKYEDfryE5Si1EQ YCqXEpv6vaayBS9JPKcXsx1FxwScBPdF+jnXYDaRQK60ei991Crk2cT2Vxh5UWEa zkw4vLIbo/dR157iCwj+sjfajQvaFq3NHw1e1hrFTjBmWKbMLtpLvuftq7mGfRWi MAglofSY1Nf1yNmATVAVLeTZUnLONKcAKZ9S90/5eeF1Qhb8FLHwtucIJ2pFM7o2 pE2+vtLgbgL3CHPinZu7RVGBCuPV+fCzoFqkKNUttrZfvbiogn80KMCx5IakKgrc yuoMeonfVVyzYlIBhAWxob3WaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiPuEV/ orQ9FIw3KMu/w12AMEL3MB8GA1UdIwQYMBaAFNCgk7ZRB5M1SErQuh12YV9cNmiK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjc1Qi9BQjIwMjIzMDFE QTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6VklTdEM2SFhaaFgxdzJh SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBLQ1R0bEVIa3pWSVN0QzZIWFpoWDF3MmFJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mjc1Qi9BQjIwMjIzMDFEQTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6 VklTdEM2SFhaaFgxdzJhSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbEWAa6EcObwcFC12q2EVckw4qxdn+Ofz0RHuodl5UK0NPtyOk1TY8 V+4uuwAy1LgmV0DiqpBE7rUX7Xx1JwmtYXx+k3Q2zNA+75PoFKFgJC2L6wRTrZ1K JbXURFowSC6teZ9eGlRDu4hiRu+Zc/Zyc7X22Fi09543T7zhH6OohqhNsEbz+JZb AVhdj5hOESMPQuV74vEzGyxfDF3YZE4Qlm+Zln26lCnUx+g6dRWQK/QOGRN9yBth wGX+bWX3FlO9xElQRjUp+0D1cuwHGyDIZ9H/oZxILtoLyppcvegJdMxJNVYbQQVe R0BAAHk/OIyMnOhQ0U+mSb+ULxgDwBBc -----END CERTIFICATE-----Generated at Mon Jul 21 06:50:55 2025 by rpki-client