$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: 1926cS9kVg5bQCLdF+TU2OZ8/CQsfOTi+o5CAhS13LM= Subject key identifier: 43:3A:E1:F3:C8:3C:40:E6:91:93:A0:18:EB:54:3E:9A:62:EC:03:CB Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 060B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 060B Signing time: Fri 18 Jul 2025 23:08:07 +0000 Manifest this update: Fri 18 Jul 2025 23:08:07 +0000 Manifest next update: Fri 25 Jul 2025 23:08:07 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: vvGi5c/wATiowFDcl8+JVufp8WYqj8UoZF+ceRZMSAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27, serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Validity Not Before: Jul 18 23:08:07 2025 GMT Not After : Jul 25 23:08:07 2025 GMT Subject: CN=687ad3d7-cce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:67:de:13:1b:95:18:c7:c7:84:86:79:6f: 39:64:97:a3:8b:5c:32:ff:94:ed:b1:63:d1:55:5d: bf:a4:8e:7b:27:d2:5b:8c:68:a5:32:a2:be:a8:b2: da:99:9f:e8:79:72:11:f5:d6:d1:72:5c:4f:f4:55: 6c:25:81:3c:fe:cd:81:48:2c:42:7b:13:76:4f:71: 82:0e:d9:40:ec:05:7d:ef:6a:11:f1:cc:df:db:8b: 95:b2:5c:ee:0d:dc:0d:b5:cf:df:ea:f5:c7:ca:e1: 68:2d:28:a9:b5:91:d0:8f:04:21:98:79:ce:90:8e: 42:bd:ef:83:50:f3:25:f9:1b:19:5b:26:71:83:22: b0:d5:8c:6b:f9:38:fc:3c:67:1b:09:0a:d1:41:22: 20:7b:73:e2:8d:4f:3d:ca:3c:03:36:af:8f:06:c1: ef:64:0d:77:77:2f:2f:88:1c:76:74:54:d0:b6:1d: 3b:a0:43:8f:d5:69:14:a4:b0:27:7b:3a:05:cb:58: 19:b9:bd:ec:d7:c2:de:19:db:64:41:06:c0:ae:a3: 9d:da:9f:ae:65:15:b0:0a:5f:14:b0:78:3b:60:b9: 6b:a5:8f:e5:a5:f1:60:f9:36:18:c7:8d:6a:40:9d: 84:cb:9e:a7:c1:b8:c1:dd:75:93:0e:83:50:38:7c: 62:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3A:E1:F3:C8:3C:40:E6:91:93:A0:18:EB:54:3E:9A:62:EC:03:CB X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:0b:cd:78:f7:55:d1:a9:5c:ed:f2:76:4e:4c:26:50:87:46: 86:a7:d2:05:ac:9f:d4:78:0b:01:3e:ab:cf:4c:24:48:ae:50: 1e:4e:9f:20:63:ce:88:f1:54:10:56:5f:22:5b:44:27:c3:54: 93:9d:67:62:05:2f:61:1c:50:31:99:dc:3d:7f:c4:22:17:b4: d8:78:13:27:2c:9b:ae:1d:4e:e5:cc:ef:f5:e0:c6:97:34:a7: 80:d1:b7:c4:7e:2a:01:91:1e:0f:11:7c:51:6c:a3:5e:99:da: 3f:a9:06:0f:f1:de:06:0e:4c:ad:73:c1:1a:90:35:92:a2:93: 09:53:be:f7:23:06:a1:ff:f3:f5:4f:a7:0d:bb:59:39:98:a0: 70:8b:2f:37:15:d8:bc:a7:7d:cc:bc:6e:74:31:ad:cb:4a:7e: 00:b4:a4:74:fc:8e:4c:f0:4c:cc:3a:7f:b0:3c:45:01:31:60: 6b:41:e8:e8:09:fb:c2:8e:ea:25:73:0d:a5:4e:5b:fc:ff:9d: 81:cd:3d:10:71:0a:9a:9e:7a:c9:da:87:78:25:ab:8b:aa:ff: 82:68:39:11:78:9b:0b:5b:a3:6d:20:03:d4:c5:6d:b1:c9:b0: e4:7b:26:46:7d:29:90:f3:39:38:8a:da:a6:55:d7:4c:f9:37: 61:80:bf:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjUwNzE4MjMwODA3WhcNMjUwNzI1MjMwODA3WjAYMRYwFAYD VQQDEw02ODdhZDNkNy1jY2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eRn3hMblRjHx4SGeW85ZJeji1wy/5TtsWPRVV2/pI57J9JbjGilMqK+qLLa mZ/oeXIR9dbRclxP9FVsJYE8/s2BSCxCexN2T3GCDtlA7AV972oR8czf24uVslzu DdwNtc/f6vXHyuFoLSiptZHQjwQhmHnOkI5Cve+DUPMl+RsZWyZxgyKw1Yxr+Tj8 PGcbCQrRQSIge3PijU89yjwDNq+PBsHvZA13dy8viBx2dFTQth07oEOP1WkUpLAn ezoFy1gZub3s18LeGdtkQQbArqOd2p+uZRWwCl8UsHg7YLlrpY/lpfFg+TYYx41q QJ2Ey56nwbjB3XWTDoNQOHxiewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEM64fPI PEDmkZOgGOtUPppi7APLMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtC81491XRqVzt8nZOTCZQh0aGp9IFrJ/UeAsBPqvPTCRIrlAeTp8g Y86I8VQQVl8iW0Qnw1STnWdiBS9hHFAxmdw9f8QiF7TYeBMnLJuuHU7lzO/14MaX NKeA0bfEfioBkR4PEXxRbKNemdo/qQYP8d4GDkytc8EakDWSopMJU773Iwah//P1 T6cNu1k5mKBwiy83Fdi8p33MvG50Ma3LSn4AtKR0/I5M8EzMOn+wPEUBMWBrQejo CfvCjuolcw2lTlv8/52BzT0QcQqannrJ2od4JauLqv+CaDkReJsLW6NtIAPUxW2x ybDkeyZGfSmQ8zk4itqmVddM+TdhgL8L -----END CERTIFICATE-----Generated at Sun Jul 20 07:17:57 2025 by rpki-client