$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: a0td61hKCsF+JqG9h0eN/UYRCTg/1tL279DcPeCaD7Y= Subject key identifier: 52:B4:3A:20:11:5F:3D:68:F7:4C:A4:2E:7C:1E:90:95:30:69:BD:2D Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2C0D Signing time: Sun 24 Aug 2025 16:46:41 +0000 Manifest this update: Sun 24 Aug 2025 16:46:40 +0000 Manifest next update: Sun 31 Aug 2025 16:46:40 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: vzBWxMbFlUBlt7Q0zkXqcbVoCbFriT2/0TTroGMxnig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3887 (0xf2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Aug 24 16:46:40 2025 GMT Not After : Aug 31 16:46:40 2025 GMT Subject: CN=68ab41f0-09ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f3:24:76:ef:c5:45:65:ec:17:bd:84:32:b0: f2:e9:be:1b:eb:e7:39:b5:ac:66:fc:37:37:08:2c: 53:9e:cc:33:a1:9c:b1:76:3c:ee:62:5b:13:e8:97: 4c:34:de:63:5f:a9:db:4f:6b:35:17:24:a1:84:15: 00:38:84:5b:ad:64:70:b8:0e:2f:5f:24:28:8f:a4: 8e:65:24:fd:25:9c:6c:42:8b:28:e3:93:4b:a6:3a: 5c:7c:f5:33:ad:9a:7b:20:27:71:1b:89:19:ca:a6: b6:bb:dd:5f:5c:61:62:a1:03:5c:30:c1:39:3d:16: ad:b6:e1:a4:08:52:39:8a:2d:34:bb:fa:00:61:c2: ab:52:0b:9d:a3:ae:23:d9:b8:19:92:b2:85:7d:d5: f4:7b:f1:71:6d:48:8a:24:85:59:9e:18:96:1e:be: 2a:f0:54:bf:83:46:af:f6:6f:2b:40:b6:74:e0:de: ab:d8:58:98:21:68:8e:69:b7:ea:44:c3:26:37:93: c5:01:f1:73:98:7a:20:d9:cc:33:15:95:20:26:d5: b8:fc:41:ef:f3:a5:74:04:41:df:b6:8d:c7:8b:b5: 33:9f:2f:4a:8d:e5:63:6c:43:22:9c:f8:bc:6b:31: 15:bd:e7:03:e5:20:de:ae:0d:66:11:3b:5c:40:5a: 82:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:B4:3A:20:11:5F:3D:68:F7:4C:A4:2E:7C:1E:90:95:30:69:BD:2D X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:9b:8a:16:23:d2:11:96:95:03:69:a4:40:be:e1:66:ab:6e: 28:e3:b5:da:a7:3d:6a:92:1e:ac:26:dd:01:1a:0b:7d:9f:33: 19:f2:45:08:b2:51:f1:13:c9:b1:da:3d:88:fd:6d:4e:4d:57: 8c:d7:72:b1:db:17:31:5c:90:a3:87:67:bb:d5:0c:e1:26:e4: 6e:0b:4c:48:11:f4:a8:21:b4:b6:b8:46:ae:f8:88:70:51:27: 94:3a:a5:01:a6:94:61:af:f6:31:65:e1:8f:17:07:a1:21:4b: 5d:fb:34:41:51:a2:fe:f7:66:65:f3:71:0f:43:ad:03:a1:54: 39:5c:9c:90:29:b6:ae:9b:3c:83:66:3b:a4:73:d3:19:6d:57: 75:01:d5:12:4e:20:1b:6a:b3:d7:81:78:49:63:2d:58:80:78: 52:bf:8c:9d:e2:37:43:6d:35:c3:68:a4:c7:be:a3:c4:6c:c5: 42:c0:1e:a5:84:c0:61:a4:c0:40:70:2a:3f:9e:08:d7:e0:db: 36:83:0a:b4:5a:ac:e9:e5:39:30:57:af:19:4d:1d:fb:d1:0f: d7:c0:63:4a:35:2e:70:68:c7:02:99:c7:6e:4d:06:e2:41:e6: e3:31:29:11:01:8a:4a:1a:50:cb:b3:ca:4a:04:52:0d:90:d6: 30:3f:5f:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwODI0MTY0NjQwWhcNMjUwODMxMTY0NjQwWjAYMRYwFAYD VQQDEw02OGFiNDFmMC0wOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPMkdu/FRWXsF72EMrDy6b4b6+c5taxm/Dc3CCxTnswzoZyxdjzuYlsT6JdM NN5jX6nbT2s1FyShhBUAOIRbrWRwuA4vXyQoj6SOZST9JZxsQoso45NLpjpcfPUz rZp7ICdxG4kZyqa2u91fXGFioQNcMME5PRattuGkCFI5ii00u/oAYcKrUgudo64j 2bgZkrKFfdX0e/FxbUiKJIVZnhiWHr4q8FS/g0av9m8rQLZ04N6r2FiYIWiOabfq RMMmN5PFAfFzmHog2cwzFZUgJtW4/EHv86V0BEHfto3Hi7Uzny9KjeVjbEMinPi8 azEVvecD5SDerg1mETtcQFqCnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFK0OiAR Xz1o90ykLnwekJUwab0tMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFm4oWI9IRlpUDaaRAvuFmq24o47Xapz1qkh6sJt0BGgt9nzMZ8kUI slHxE8mx2j2I/W1OTVeM13Kx2xcxXJCjh2e71QzhJuRuC0xIEfSoIbS2uEau+Ihw USeUOqUBppRhr/YxZeGPFwehIUtd+zRBUaL+92Zl83EPQ60DoVQ5XJyQKbaumzyD Zjukc9MZbVd1AdUSTiAbarPXgXhJYy1YgHhSv4yd4jdDbTXDaKTHvqPEbMVCwB6l hMBhpMBAcCo/ngjX4Ns2gwq0Wqzp5TkwV68ZTR370Q/XwGNKNS5waMcCmcduTQbi QebjMSkRAYpKGlDLs8pKBFINkNYwP18e -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:14 2025 by rpki-client