$ rpki-client -vvf rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft File: 13OnYxe8qx7vA29fbkx7NMSra3s.mft (raw, json) Hash identifier: B+MM6fQu5QBW0j6kAfAC9+HXxhRKKI5z0qYrJer7Tto= Subject key identifier: 23:44:E1:3A:29:83:5C:BE:17:57:66:5B:8B:CE:E5:E1:98:F4:B0:29 Authority key identifier: D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B Certificate issuer: /CN=A917AE24/serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Certificate serial: 04D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft Manifest number: 04D5 Signing time: Wed 20 Aug 2025 23:53:55 +0000 Manifest this update: Wed 20 Aug 2025 23:53:54 +0000 Manifest next update: Wed 27 Aug 2025 23:53:54 +0000 Files and hashes: 1: 13OnYxe8qx7vA29fbkx7NMSra3s.crl (hash: zmR7q+20whyPAOXh65kmRbyCevZ56XJfrommDLLsuBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AE24, serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Validity Not Before: Aug 20 23:53:54 2025 GMT Not After : Aug 27 23:53:54 2025 GMT Subject: CN=68a66012-7dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:23:26:e7:c8:ed:0d:33:6c:5e:1a:60:e6:1e: 8c:5b:41:b0:2f:2e:0d:0c:1d:e5:da:94:b1:14:15: 9b:10:1a:d7:c1:81:b7:af:5f:83:af:be:f2:54:49: 14:42:5e:9b:9c:d3:c1:84:9c:a3:99:b1:6c:07:ea: b0:f6:e3:ae:34:04:3c:01:f6:82:01:b6:21:d4:54: 2c:65:47:d7:5b:d1:cd:39:28:25:a2:bd:c5:e9:b4: 9b:4e:04:c4:44:ae:b5:e7:da:63:b7:fa:61:49:c9: 60:15:83:ee:f3:54:8b:0d:e5:d3:60:22:cc:36:10: 81:a6:4a:a0:1e:4d:1d:71:00:43:40:e5:ad:e8:3a: 19:67:b4:b7:ff:88:a7:67:46:11:84:60:ba:5a:5e: 09:da:67:89:53:ff:9c:69:df:f7:1a:33:c1:35:14: 62:64:75:2b:06:9a:be:71:d0:71:57:6f:0b:69:f3: 59:c6:17:31:76:22:d8:fe:ab:5b:02:1a:7d:28:f4: b8:b2:1e:d5:39:b9:5d:ad:7e:dd:0a:52:bf:61:5d: 9d:9d:64:35:b3:47:72:36:ba:10:e1:d6:e3:da:e3: f1:5c:17:9b:92:6d:ae:5a:a0:1a:5c:5b:7f:ba:2d: 8d:fd:d2:a6:d5:77:83:f6:ef:b3:ed:8b:62:23:9a: 17:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:44:E1:3A:29:83:5C:BE:17:57:66:5B:8B:CE:E5:E1:98:F4:B0:29 X509v3 Authority Key Identifier: keyid:D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:15:35:7f:ae:11:d1:2a:2b:16:2f:8e:fb:17:ce:79:29:b1: fd:46:97:2b:89:68:fd:e7:65:ee:9e:2d:4d:3c:fd:88:76:76: 4e:d1:0c:ed:fa:5f:c1:76:30:a6:4f:dc:f0:ac:81:48:20:90: 5d:be:20:9d:0b:67:72:a7:86:42:26:8a:b3:7a:e4:5e:11:e5: 95:5a:bb:d7:15:f1:8b:d9:60:a8:5b:43:a9:db:ee:d9:32:9c: 76:46:90:98:42:50:b9:d2:78:a0:e2:8e:c2:4f:a3:10:40:47: 13:17:35:9f:90:43:a8:cb:10:2c:8e:4c:97:5a:4f:22:61:01: be:d1:4b:dd:46:43:15:ad:3a:9d:0e:11:6a:06:d4:9f:8c:54: d2:0a:98:82:25:82:d3:f5:5a:c3:ff:11:c6:a9:5b:8b:46:04: 7f:71:6d:7a:53:46:69:e4:1b:84:96:34:b1:ad:02:bd:a2:56: 5d:fa:2c:24:0c:04:93:78:78:37:49:62:3b:61:41:0f:90:e5: 04:fd:1a:af:19:ae:5e:7a:f8:7e:e6:18:ba:ae:98:59:3e:e6: bd:7b:38:a7:01:46:34:88:e2:9b:d3:5e:3f:de:7c:46:99:30: 75:35:39:45:a3:20:e0:5a:d9:00:c9:84:c6:09:39:83:28:f0: fe:e3:ff:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FFMjQxMTAvBgNVBAUTKEQ3NzNBNzYzMTdCQ0FCMUVFRjAzNkY1RjZFNEM3QjM0 QzRBQjZCN0IwHhcNMjUwODIwMjM1MzU0WhcNMjUwODI3MjM1MzU0WjAYMRYwFAYD VQQDEw02OGE2NjAxMi03ZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApiMm58jtDTNsXhpg5h6MW0GwLy4NDB3l2pSxFBWbEBrXwYG3r1+Dr77yVEkU Ql6bnNPBhJyjmbFsB+qw9uOuNAQ8AfaCAbYh1FQsZUfXW9HNOSglor3F6bSbTgTE RK6159pjt/phSclgFYPu81SLDeXTYCLMNhCBpkqgHk0dcQBDQOWt6DoZZ7S3/4in Z0YRhGC6Wl4J2meJU/+cad/3GjPBNRRiZHUrBpq+cdBxV28LafNZxhcxdiLY/qtb Ahp9KPS4sh7VObldrX7dClK/YV2dnWQ1s0dyNroQ4dbj2uPxXBebkm2uWqAaXFt/ ui2N/dKm1XeD9u+z7YtiI5oX2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNE4Top g1y+F1dmW4vO5eGY9LApMB8GA1UdIwQYMBaAFNdzp2MXvKse7wNvX25MezTEq2t7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUUyNC84RUM0MDA5NDMw QTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4N3ZBMjlmYmt4N05NU3Jh M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzT25ZeGU4cXg3dkEyOWZia3g3Tk1TcmEzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUUyNC84RUM0MDA5NDMwQTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4 N3ZBMjlmYmt4N05NU3JhM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9FTV/rhHRKisWL477F855KbH9RpcriWj952Xuni1NPP2IdnZO0Qzt +l/BdjCmT9zwrIFIIJBdviCdC2dyp4ZCJoqzeuReEeWVWrvXFfGL2WCoW0Op2+7Z Mpx2RpCYQlC50nig4o7CT6MQQEcTFzWfkEOoyxAsjkyXWk8iYQG+0UvdRkMVrTqd DhFqBtSfjFTSCpiCJYLT9VrD/xHGqVuLRgR/cW16U0Zp5BuEljSxrQK9olZd+iwk DASTeHg3SWI7YUEPkOUE/RqvGa5eevh+5hi6rphZPua9ezinAUY0iOKb014/3nxG mTB1NTlFoyDgWtkAyYTGCTmDKPD+4//l -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:14 2025 by rpki-client