$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: +HzBeTDQmuczxNDuOym8innUFNys1BYsj9VA8M5lPwM= Subject key identifier: DA:DD:99:45:EA:6E:F2:AF:3E:13:98:A7:AA:28:3B:92:C4:7D:8D:53 Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 06CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 06C8 Signing time: Fri 22 Aug 2025 22:14:00 +0000 Manifest this update: Fri 22 Aug 2025 22:13:59 +0000 Manifest next update: Fri 29 Aug 2025 22:13:59 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: brcLOLAo/Tf02T3i+tydf4tB+eZZkqlR30wv8b2S4uY=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: QHZWlLh2PyAY4WTgaNICz7qTAAizZpA7yqBBQ8slHlk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE, serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: Aug 22 22:13:59 2025 GMT Not After : Aug 29 22:13:59 2025 GMT Subject: CN=68a8eba7-e41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2a:55:b3:17:45:2f:97:e6:c0:ce:f7:e9:54: 24:41:ee:ef:4f:c4:42:82:f9:7c:65:2d:64:15:b6: de:9d:e9:06:f5:e1:bb:8d:c3:d6:ba:ae:d7:d9:25: 24:20:29:ce:35:4e:f8:04:ef:87:59:ed:cc:af:9b: 4d:5e:fb:6b:dd:4b:02:7f:94:75:3d:d9:e6:8f:9d: 63:3a:ec:75:d9:ab:f1:c7:9e:e9:5c:a5:2e:cb:90: 21:49:ec:a3:a0:2e:6b:14:0b:0e:bd:d7:5d:2b:8f: 3e:ac:d7:3a:a6:17:d9:20:c9:89:91:3d:3c:3a:3a: bd:82:d9:d6:44:ac:7c:cb:1f:30:62:f0:28:32:dc: 38:2f:69:2a:72:b6:83:7b:c6:7d:02:f4:e4:42:a2: 75:68:c1:96:c0:cb:7c:29:8b:b9:4a:52:67:7a:af: ad:7e:b4:60:8d:17:16:32:03:af:a6:ed:d5:82:f0: 4f:de:d2:58:50:f2:e9:13:1d:f3:dc:71:9c:04:3e: 9c:d0:84:2e:93:b9:3d:66:21:f3:bf:8c:a6:e8:41: e5:9a:37:dd:05:a1:68:fa:9f:52:c2:05:8c:86:ee: 71:f6:6e:f4:cf:90:b5:8e:55:65:8a:5a:52:77:51: 95:de:d4:ac:61:48:ad:a6:76:97:1e:46:2c:68:9f: 75:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DD:99:45:EA:6E:F2:AF:3E:13:98:A7:AA:28:3B:92:C4:7D:8D:53 X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:3b:53:f7:d4:db:a4:4d:a1:f7:8e:8d:38:00:1d:45:49:4a: 42:29:7b:8f:66:4a:95:cc:40:28:c3:12:9c:ae:bf:7e:a5:5b: a0:7a:98:32:15:d9:c5:fd:b8:b9:3d:43:8b:5e:0b:01:9b:fc: ac:de:8a:e6:38:00:ac:bb:bc:8c:24:1c:45:6e:23:6c:d7:65: 5d:cb:19:c5:4c:88:c7:d7:19:b0:c4:d2:45:ca:05:c8:a3:8d: 73:01:46:e6:2c:38:8d:47:ba:11:d1:a1:38:f5:53:5c:5a:ce: bf:72:7c:a4:8c:07:8c:20:1e:75:34:4d:4b:d9:bd:ac:42:ed: 22:fc:60:24:aa:e5:0e:58:89:19:90:cd:63:d7:13:d9:b4:40: fd:1e:47:5e:62:9b:d6:1b:c5:7c:df:8b:df:ac:a4:32:4e:fb: 05:22:41:f0:ed:57:4c:73:ea:7a:1c:ce:09:aa:30:12:1b:2f: ef:07:cb:e3:6c:44:c8:53:fc:c0:d8:32:af:7f:5f:5d:ec:d1: bf:b8:12:1d:36:39:04:e6:d1:f9:84:9e:4e:93:4a:8c:f8:78: a4:73:9e:79:ce:35:ba:a3:89:16:dd:d1:6c:26:cc:09:be:6b: e0:c9:5f:86:4f:fa:e5:3f:d7:4a:3c:82:4d:9e:85:34:bf:85: 1a:e3:d8:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjUwODIyMjIxMzU5WhcNMjUwODI5MjIxMzU5WjAYMRYwFAYD VQQDEw02OGE4ZWJhNy1lNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CpVsxdFL5fmwM736VQkQe7vT8RCgvl8ZS1kFbbenekG9eG7jcPWuq7X2SUk ICnONU74BO+HWe3Mr5tNXvtr3UsCf5R1Pdnmj51jOux12avxx57pXKUuy5AhSeyj oC5rFAsOvdddK48+rNc6phfZIMmJkT08Ojq9gtnWRKx8yx8wYvAoMtw4L2kqcraD e8Z9AvTkQqJ1aMGWwMt8KYu5SlJneq+tfrRgjRcWMgOvpu3VgvBP3tJYUPLpEx3z 3HGcBD6c0IQuk7k9ZiHzv4ym6EHlmjfdBaFo+p9SwgWMhu5x9m70z5C1jlVlilpS d1GV3tSsYUitpnaXHkYsaJ91ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrdmUXq bvKvPhOYp6ooO5LEfY1TMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvO1P31NukTaH3jo04AB1FSUpCKXuPZkqVzEAowxKcrr9+pVugepgy FdnF/bi5PUOLXgsBm/ys3ormOACsu7yMJBxFbiNs12VdyxnFTIjH1xmwxNJFygXI o41zAUbmLDiNR7oR0aE49VNcWs6/cnykjAeMIB51NE1L2b2sQu0i/GAkquUOWIkZ kM1j1xPZtED9HkdeYpvWG8V834vfrKQyTvsFIkHw7VdMc+p6HM4JqjASGy/vB8vj bETIU/zA2DKvf19d7NG/uBIdNjkE5tH5hJ5Ok0qM+Hikc555zjW6o4kW3dFsJswJ vmvgyV+GT/rlP9dKPIJNnoU0v4Ua49hh -----END CERTIFICATE-----Generated at Sun Aug 24 21:48:16 2025 by rpki-client