$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: X84NOUv5Bz2cVr1LoHVJTU/LTC34o8/toRsI/2QWEhA= Subject key identifier: B8:D7:D2:FF:BF:C6:09:D4:F9:2E:92:7D:39:31:7F:63:E6:59:E9:A1 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: E0 Signing time: Sat 23 Aug 2025 05:36:16 +0000 Manifest this update: Sat 23 Aug 2025 05:36:16 +0000 Manifest next update: Sat 30 Aug 2025 05:36:16 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: DZUQSNZIQYiI8fKUm7SZyPwwy1p8gaGJy1OeVmXhIRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:36:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85, serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: Aug 23 05:36:16 2025 GMT Not After : Aug 30 05:36:16 2025 GMT Subject: CN=68a95350-eac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:22:2c:85:2e:7b:f6:0a:e6:69:73:74:2a:e3: dd:b7:e1:75:62:02:ff:83:03:1b:15:c5:86:7a:1f: a8:51:78:67:30:e3:c0:11:56:70:e1:fe:8f:ac:55: e2:00:5b:34:1b:fe:6d:59:99:18:13:18:d0:37:49: 96:b2:fb:ff:69:13:d2:aa:09:71:49:0f:45:7f:33: 7e:cc:6a:71:76:55:ac:5b:96:01:10:65:d8:18:12: c0:0f:30:ac:92:8e:c0:f6:85:a9:98:aa:8e:de:4b: 11:63:8a:95:cd:09:2e:e0:a7:58:aa:81:32:e5:83: c1:a2:c2:f2:38:20:c4:e0:d7:63:e5:33:0e:d7:1e: 00:b4:c6:b0:18:b9:23:fe:a4:1b:84:c5:d1:bd:a6: 6c:34:ac:1e:e9:93:ef:76:37:87:d3:34:26:bb:6c: 66:34:81:61:a3:a9:c3:82:6d:a0:b0:e6:a5:b6:09: 96:ce:0c:4c:8b:29:d6:a7:a8:96:cd:7c:cc:11:3b: 86:64:ad:ce:4d:09:b1:98:50:5f:f8:0d:b8:b7:14: f6:fa:0f:9b:5f:10:81:64:55:a2:a5:00:5a:53:67: b8:52:92:fc:7e:b7:81:c8:d3:1b:69:ac:28:0d:15: 80:47:6b:8f:61:b1:95:db:b0:e5:5d:7b:85:7a:8e: ed:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D7:D2:FF:BF:C6:09:D4:F9:2E:92:7D:39:31:7F:63:E6:59:E9:A1 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:07:28:98:cf:9a:92:cc:de:3e:b9:a0:7a:a7:75:bd:99:e1: 64:78:fd:dc:b2:96:a1:2f:ef:8a:92:0f:1f:ff:2f:62:8d:c6: bb:42:5c:64:19:ee:c1:cb:a0:f2:6a:65:3a:23:1a:cd:bd:93: c6:24:ee:1f:48:35:25:d9:83:c2:4a:a7:ce:44:ba:d7:46:c6: 31:50:74:14:53:0f:39:75:79:45:0d:00:11:41:5a:4b:06:25: eb:6c:35:ac:fa:94:11:5f:74:57:ea:c5:a5:f6:cc:bf:82:26: 5e:3b:f1:86:9d:4b:1d:3b:41:dd:d1:da:b9:84:7e:95:93:83: c9:fc:6e:39:33:87:cc:3c:1e:e8:5c:47:eb:fe:51:70:ab:7d: 8a:77:b8:1c:fb:22:1e:c1:c9:96:7a:fc:f3:15:d0:01:11:41: 0f:4a:07:bd:ad:31:3a:02:b0:3d:42:39:ee:87:22:1a:70:cb: 3b:01:e4:b8:92:2d:cd:0d:9a:c0:17:48:86:fc:af:37:6f:b9: 9e:9d:16:08:81:97:b9:0d:0e:56:cb:fe:0d:f5:63:52:72:35: e9:58:2f:90:54:27:b6:99:19:51:a8:b4:7c:64:b6:43:bc:ee: 76:fb:6b:f7:3b:49:3a:ab:b9:f9:0e:ee:6e:10:83:e7:5f:3a: 44:a2:19:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZDODUxMTAvBgNVBAUTKEVEMzE2MDg0N0RDNEFFRDkyRDhDNTlEMTk4NDY1QjFD QkVGMkRGMjIwHhcNMjUwODIzMDUzNjE2WhcNMjUwODMwMDUzNjE2WjAYMRYwFAYD VQQDEw02OGE5NTM1MC1lYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSIshS579grmaXN0KuPdt+F1YgL/gwMbFcWGeh+oUXhnMOPAEVZw4f6PrFXi AFs0G/5tWZkYExjQN0mWsvv/aRPSqglxSQ9FfzN+zGpxdlWsW5YBEGXYGBLADzCs ko7A9oWpmKqO3ksRY4qVzQku4KdYqoEy5YPBosLyOCDE4Ndj5TMO1x4AtMawGLkj /qQbhMXRvaZsNKwe6ZPvdjeH0zQmu2xmNIFho6nDgm2gsOaltgmWzgxMiynWp6iW zXzMETuGZK3OTQmxmFBf+A24txT2+g+bXxCBZFWipQBaU2e4UpL8freByNMbaawo DRWAR2uPYbGV27DlXXuFeo7trwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjX0v+/ xgnU+S6SfTkxf2PmWemhMB8GA1UdIwQYMBaAFO0xYIR9xK7ZLYxZ0ZhGWxy+8t8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkM4NS8yODcwN0NCRTI4 ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0a3RqRm5SbUVaYkhMN3kz eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkM4NS8yODcwN0NCRTI4ODYxMUVGOEYxRkIxODVDNEY5QUUwMi83VEZnaEgzRXJ0 a3RqRm5SbUVaYkhMN3kzeUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVByiYz5qSzN4+uaB6p3W9meFkeP3cspahL++Kkg8f/y9ijca7Qlxk Ge7By6DyamU6IxrNvZPGJO4fSDUl2YPCSqfORLrXRsYxUHQUUw85dXlFDQARQVpL BiXrbDWs+pQRX3RX6sWl9sy/giZeO/GGnUsdO0Hd0dq5hH6Vk4PJ/G45M4fMPB7o XEfr/lFwq32Kd7gc+yIewcmWevzzFdABEUEPSge9rTE6ArA9QjnuhyIacMs7AeS4 ki3NDZrAF0iG/K83b7menRYIgZe5DQ5Wy/4N9WNScjXpWC+QVCe2mRlRqLR8ZLZD vO52+2v3O0k6q7n5Du5uEIPnXzpEohmM -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:14 2025 by rpki-client