$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft File: -L4s6ssxJNZg8w-KJzgGZIr0PIc.mft (raw, json) Hash identifier: l/9SBZ3sMAgIrnDEEn733xp2S3nKPpefaL/FKBsq6E8= Subject key identifier: AC:D7:38:54:3F:E6:7D:96:32:AB:EA:95:C5:6E:7E:DF:A6:1F:3D:3B Authority key identifier: F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 Certificate issuer: /CN=A91AFAAC/serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft Manifest number: 31 Signing time: Sat 23 Aug 2025 07:53:09 +0000 Manifest this update: Sat 23 Aug 2025 07:53:08 +0000 Manifest next update: Sat 30 Aug 2025 07:53:08 +0000 Files and hashes: 1: -L4s6ssxJNZg8w-KJzgGZIr0PIc.crl (hash: W2I16LDbo29pnsvlsINDzhQ6AEzv5iEM3ZgxMP07HlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:53:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Validity Not Before: Aug 23 07:53:08 2025 GMT Not After : Aug 30 07:53:08 2025 GMT Subject: CN=68a97365-01ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d3:b9:cd:a2:aa:69:1f:4f:79:6d:60:67:fd: 08:00:57:dd:eb:83:eb:cd:eb:72:98:61:ce:8e:61: e7:0f:17:b5:c3:15:0f:75:88:2a:38:ea:30:eb:8e: 85:cc:a1:b7:36:68:a9:92:04:6a:3d:6c:1d:aa:cd: ed:4b:ef:c0:99:d3:15:51:b3:8b:e5:ae:5a:f7:72: e5:7f:fe:bb:26:df:8f:12:aa:de:c3:94:2f:6e:24: 83:02:df:ba:7a:82:22:5d:62:a8:f9:dc:dd:58:c9: 70:5e:ed:22:e7:ea:2c:3f:84:fe:c1:b1:ee:5b:f2: 1b:c9:b9:94:3d:a8:75:ad:78:b0:5a:f3:ad:5e:78: 33:3f:94:4f:8c:4e:c1:4a:16:40:8e:ad:58:ce:16: 3b:8d:df:d4:80:d1:3c:87:6d:af:b1:2e:cc:e2:3b: 65:4d:d0:4e:99:71:ae:0a:bd:a0:f8:c7:3c:34:78: 6c:4a:62:c5:0a:95:e7:32:68:6b:5d:ff:14:44:69: 5f:bc:3c:1b:55:bf:32:ae:52:26:4a:1d:d3:99:51: aa:8d:07:76:d3:00:35:50:5b:dd:7a:cb:16:ab:d4: ae:7c:8c:0e:a1:71:5a:c4:69:de:db:0c:2f:db:97: bc:88:14:f6:e6:62:53:f3:90:8c:56:db:73:7b:88: 7a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D7:38:54:3F:E6:7D:96:32:AB:EA:95:C5:6E:7E:DF:A6:1F:3D:3B X509v3 Authority Key Identifier: keyid:F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:68:91:e3:ea:ee:67:46:d3:98:09:90:e7:4c:53:19:9a:eb: 6e:81:ac:48:81:b4:72:e7:06:36:e8:0d:5a:a7:0a:2d:53:7a: 29:6f:32:fc:8f:ef:57:aa:8b:1a:ef:13:d3:27:94:9b:53:52: d5:07:57:78:21:7f:c4:ae:43:dd:71:92:6f:34:85:e3:02:39: 5f:20:d8:b2:f9:78:96:e6:4a:6f:35:2d:de:0e:39:89:9d:ad: 3f:ff:b1:3a:81:d2:b6:72:65:83:7b:96:27:be:3b:d9:05:49: ed:38:b9:88:77:1f:a3:9b:db:2e:1e:57:71:3b:e0:92:a7:e4: 77:27:cf:c9:af:ab:f1:ee:5c:11:22:c4:17:b2:0d:75:e0:06: 56:b3:0a:7d:27:d2:ab:c8:58:19:84:ee:8a:6b:19:7b:2c:58: ca:91:1a:50:34:d9:46:c3:aa:82:b4:cb:46:c6:58:e8:35:9c: cf:a1:78:12:f8:e9:11:d7:d9:36:66:d7:17:39:9c:5f:d5:40: 9a:ae:f2:fe:3c:da:15:b1:39:7c:a7:2b:60:ff:e2:f3:df:a0: b4:21:2a:2b:55:f7:3e:0d:c1:9c:ce:f0:04:cf:36:aa:d7:c9: 5f:bf:1b:8b:c1:69:b3:d6:f8:31:37:9b:c6:57:61:db:fe:a1: 07:bf:70:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoRjhCRTJDRUFDQjMxMjRENjYwRjMwRjhBMjczODA2NjQ4 QUY0M0M4NzAeFw0yNTA4MjMwNzUzMDhaFw0yNTA4MzAwNzUzMDhaMBgxFjAUBgNV BAMTDTY4YTk3MzY1LTAxY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDt07nNoqppH095bWBn/QgAV93rg+vN63KYYc6OYecPF7XDFQ91iCo46jDrjoXM obc2aKmSBGo9bB2qze1L78CZ0xVRs4vlrlr3cuV//rsm348Sqt7DlC9uJIMC37p6 giJdYqj53N1YyXBe7SLn6iw/hP7Bse5b8hvJuZQ9qHWteLBa861eeDM/lE+MTsFK FkCOrVjOFjuN39SA0TyHba+xLsziO2VN0E6Zca4KvaD4xzw0eGxKYsUKlecyaGtd /xREaV+8PBtVvzKuUiZKHdOZUaqNB3bTADVQW916yxar1K58jA6hcVrEad7bDC/b l7yIFPbmYlPzkIxW23N7iHqZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrNc4VD/m fZYyq+qVxW5+36YfPTswHwYDVR0jBBgwFoAU+L4s6ssxJNZg8w+KJzgGZIr0PIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzUzRDU1Q0Q2MzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5aZzh3LUtKemdHWklyMFBJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLUw0czZzc3hKTlpnOHctS0p6Z0daSXIwUEljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzUzRDU1Q0Q2MzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5a Zzh3LUtKemdHWklyMFBJYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAERokePq7mdG05gJkOdMUxma626BrEiBtHLnBjboDVqnCi1TeilvMvyP 71eqixrvE9MnlJtTUtUHV3ghf8SuQ91xkm80heMCOV8g2LL5eJbmSm81Ld4OOYmd rT//sTqB0rZyZYN7lie+O9kFSe04uYh3H6Ob2y4eV3E74JKn5Hcnz8mvq/HuXBEi xBeyDXXgBlazCn0n0qvIWBmE7oprGXssWMqRGlA02UbDqoK0y0bGWOg1nM+heBL4 6RHX2TZm1xc5nF/VQJqu8v482hWxOXynK2D/4vPfoLQhKitV9z4NwZzO8ATPNqrX yV+/G4vBabPW+DE3m8ZXYdv+oQe/cAM= -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:23 2025 by rpki-client