$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: 8lW5qbHJWigHex5eh8OggaYL/UJGPhnQkzwTWkThgDA= Subject key identifier: FC:ED:83:28:E6:6D:E9:27:24:36:F8:C0:D8:D8:7B:A3:BA:E3:9A:77 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07D6 Signing time: Fri 22 Aug 2025 21:12:41 +0000 Manifest this update: Fri 22 Aug 2025 21:12:40 +0000 Manifest next update: Fri 29 Aug 2025 21:12:40 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: YLZ6BaANG+qSqiL2+4wiBLH+1jJeQwTn0ykbdmMLYeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Aug 22 21:12:40 2025 GMT Not After : Aug 29 21:12:40 2025 GMT Subject: CN=68a8dd48-5726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:eb:91:57:3a:7a:2e:da:c7:e3:58:ef:7b:fd: f5:8c:58:27:63:4f:93:fd:ba:28:d7:ca:f6:31:9a: ab:65:47:e9:0d:9f:34:1b:12:8f:b2:28:5d:26:6d: 5e:a8:47:78:7b:2e:da:15:8e:f1:d4:e5:2c:5a:dd: ce:23:25:75:1f:ed:d4:b7:02:d8:05:a1:b7:3e:66: 4f:06:c3:8a:fb:fa:db:44:c5:6b:1d:10:d4:d1:65: e9:c0:5d:36:3f:69:0e:7a:1e:9c:b9:3f:96:50:1f: 9c:5c:00:af:63:01:01:96:5a:72:bb:db:4e:91:cf: b3:b7:34:8b:53:a0:d8:bc:11:7a:7b:a8:0d:69:5c: e5:13:23:bb:9c:be:b2:ae:80:91:22:80:84:53:92: 89:e8:95:4f:13:e4:39:51:f2:6a:09:54:e2:08:5e: f2:23:bc:cb:aa:7f:7c:34:ca:db:d5:ad:f2:d7:68: 4a:0f:28:17:03:a9:14:6c:05:62:ca:d2:b3:c3:37: e9:b8:a4:d9:f8:a9:8c:84:47:b1:45:fe:93:24:96: 22:26:98:04:7d:84:24:ff:c8:1d:6c:6f:1b:ae:35: fb:b2:36:ab:23:e7:9f:b6:aa:4d:e4:06:a0:6d:cc: 29:6a:ad:e1:86:74:b1:fc:80:de:ee:89:ba:53:d7: 6a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:ED:83:28:E6:6D:E9:27:24:36:F8:C0:D8:D8:7B:A3:BA:E3:9A:77 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:25:52:81:f4:2a:94:71:f0:a5:4c:9c:02:b2:85:6a:8b:d3: c8:bb:83:ed:fe:37:20:21:88:de:62:98:ec:6d:f6:d4:64:ec: d8:71:1e:6a:7b:43:07:59:20:6b:74:61:e2:6e:7b:1b:60:9b: f7:2a:d9:62:60:2a:0b:3d:83:a6:25:67:52:2d:5f:f2:f5:cd: 4e:b6:e5:25:17:f2:d4:7e:42:f5:3c:d3:6a:cc:91:e7:2d:61: 18:64:08:c3:12:59:ef:56:af:3e:c9:9d:49:5c:c5:5c:79:7f: 41:43:63:78:e1:25:f7:0e:b8:65:05:ed:e0:2d:1b:af:e0:39: 4e:3c:2e:79:89:7a:4b:60:f6:bb:7e:56:2e:a1:6e:fa:13:0c: 52:69:28:ec:d6:54:e7:73:6f:58:15:03:73:10:b5:14:9b:c3: 27:d3:3f:ca:83:66:33:2f:8e:c9:10:2e:48:c0:e0:6e:e8:bf: 33:65:4f:f4:8a:34:6e:65:b7:d3:a0:d7:2a:a9:a5:8b:00:75: 17:bc:5f:1e:0a:5a:2b:cc:a8:5c:ce:fa:2a:61:e3:f8:23:0d: 6c:bb:4c:9c:fe:e5:0c:60:a2:fc:e0:12:32:ed:a0:2a:0c:5a: 44:02:35:7a:2f:11:7c:5a:c6:91:91:01:fe:62:5c:80:27:de: b4:97:f8:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUwODIyMjExMjQwWhcNMjUwODI5MjExMjQwWjAYMRYwFAYD VQQDEw02OGE4ZGQ0OC01NzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8uuRVzp6LtrH41jve/31jFgnY0+T/boo18r2MZqrZUfpDZ80GxKPsihdJm1e qEd4ey7aFY7x1OUsWt3OIyV1H+3UtwLYBaG3PmZPBsOK+/rbRMVrHRDU0WXpwF02 P2kOeh6cuT+WUB+cXACvYwEBllpyu9tOkc+ztzSLU6DYvBF6e6gNaVzlEyO7nL6y roCRIoCEU5KJ6JVPE+Q5UfJqCVTiCF7yI7zLqn98NMrb1a3y12hKDygXA6kUbAVi ytKzwzfpuKTZ+KmMhEexRf6TJJYiJpgEfYQk/8gdbG8brjX7sjarI+eftqpN5Aag bcwpaq3hhnSx/IDe7om6U9dq7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPztgyjm beknJDb4wNjYe6O645p3MB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfJVKB9CqUcfClTJwCsoVqi9PIu4Pt/jcgIYjeYpjsbfbUZOzYcR5q e0MHWSBrdGHibnsbYJv3KtliYCoLPYOmJWdSLV/y9c1OtuUlF/LUfkL1PNNqzJHn LWEYZAjDElnvVq8+yZ1JXMVceX9BQ2N44SX3DrhlBe3gLRuv4DlOPC55iXpLYPa7 flYuoW76EwxSaSjs1lTnc29YFQNzELUUm8Mn0z/Kg2YzL47JEC5IwOBu6L8zZU/0 ijRuZbfToNcqqaWLAHUXvF8eClorzKhczvoqYeP4Iw1su0yc/uUMYKL84BIy7aAq DFpEAjV6LxF8WsaRkQH+YlyAJ960l/gI -----END CERTIFICATE-----Generated at Sun Aug 24 22:16:13 2025 by rpki-client