$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft File: 7AffwfGIh38OvP3gtIHMAiw0NrI.mft (raw, json) Hash identifier: iyVIRDDd8mUYA2ELahHBO/ovLioW03FfMzETxFayr7Y= Subject key identifier: 7C:00:FE:2E:8D:EF:B8:C3:40:A4:AA:75:1A:FE:2D:11:F1:39:22:32 Authority key identifier: EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 Certificate issuer: /CN=A91BEE1D/serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft Manifest number: 80 Signing time: Fri 05 Sep 2025 07:08:37 +0000 Manifest this update: Fri 05 Sep 2025 07:08:37 +0000 Manifest next update: Fri 12 Sep 2025 07:08:37 +0000 Files and hashes: 1: 7AffwfGIh38OvP3gtIHMAiw0NrI.crl (hash: u9a+F3cC37GtrTeQhGcZ1DFAZY8ygHBSOCyxPY6FMfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Validity Not Before: Sep 5 07:08:37 2025 GMT Not After : Sep 12 07:08:37 2025 GMT Subject: CN=68ba8c75-cdcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:63:b9:6a:54:df:3c:7a:2d:45:21:d2:3c:8a: 93:61:73:15:6b:f6:5d:8a:37:2e:dd:0a:19:24:6c: 1d:fd:ca:2c:75:c5:9b:89:3d:e8:11:1d:bd:f9:7d: 65:2d:f4:03:4f:bb:6c:a4:11:4b:b1:2e:ec:84:ce: 1c:48:50:b6:cd:1c:7c:e9:ec:be:9d:58:d7:ff:48: 55:9e:57:ed:e8:a5:cd:40:47:73:77:cd:2d:a9:0d: 00:e0:c3:67:52:58:fb:d3:75:64:b6:02:49:a5:75: d7:dd:29:df:a9:ad:e3:4b:e4:83:0a:f0:4c:2a:83: 7a:44:64:e1:40:01:a8:97:e9:87:27:19:da:74:d7: 9d:ca:13:a5:79:16:1b:e1:44:22:d1:55:a6:16:b4: ea:56:91:68:a6:f6:b5:5f:5a:23:31:67:a1:73:a7: 01:71:f7:ca:4f:c4:a1:e2:db:9a:f2:54:32:10:41: 99:aa:6b:39:80:ce:b8:b6:21:69:a1:b0:fb:94:fa: f4:2f:6f:4a:52:47:a2:1e:69:9c:25:9f:5a:a6:38: 83:20:a7:21:85:34:46:60:63:74:ec:b1:ee:26:c3: 0b:06:e1:16:36:52:ce:44:e5:0c:11:a8:23:a3:31: 64:e8:e5:50:1f:fa:cc:87:7b:96:20:42:87:1c:0c: f8:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:00:FE:2E:8D:EF:B8:C3:40:A4:AA:75:1A:FE:2D:11:F1:39:22:32 X509v3 Authority Key Identifier: keyid:EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:89:84:a8:a6:b6:d3:f8:d7:ca:6c:39:46:fb:49:06:0c:d1: 32:cd:56:17:1d:6b:83:8b:9f:84:26:34:0c:7b:cf:9a:57:72: a0:78:3c:10:ca:6f:87:28:a9:06:32:14:d1:da:e1:26:12:a6: 46:8d:42:80:07:ef:ff:05:71:88:57:98:6e:ab:e4:00:ac:d2: d6:50:c4:f3:43:d6:61:27:08:e0:e4:91:18:6f:e0:00:ce:8d: 54:09:07:11:a6:9a:12:80:4e:eb:27:25:62:5f:54:cc:ab:42: f3:16:ac:34:fb:54:b6:89:3b:af:63:c1:eb:1e:15:4d:90:0e: ae:da:36:23:6b:cf:06:07:ff:45:b9:13:0a:8f:6f:50:bf:9e: 4b:ad:43:3c:89:eb:05:a6:0c:89:a2:a4:49:ba:25:64:51:83: 64:49:31:92:e2:96:f0:70:ca:0d:40:37:e6:9a:f1:19:16:8a: d0:02:d7:67:74:4a:94:99:db:b2:34:f8:b3:84:2c:6c:15:d9: 6e:07:6b:fc:04:36:dd:e7:ed:13:b8:9c:f2:a1:ff:39:24:13: 35:9e:81:d7:8b:02:09:86:6a:1e:e0:40:33:9e:b4:8a:c0:b9: 2a:f2:d3:ed:06:2c:af:48:cd:31:1c:0f:08:52:b3:2c:c4:74: b1:f3:77:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKEVDMDdERkMxRjE4ODg3N0YwRUJDRkRFMEI0ODFDQzAy MkMzNDM2QjIwHhcNMjUwOTA1MDcwODM3WhcNMjUwOTEyMDcwODM3WjAYMRYwFAYD VQQDEw02OGJhOGM3NS1jZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWO5alTfPHotRSHSPIqTYXMVa/Zdijcu3QoZJGwd/cosdcWbiT3oER29+X1l LfQDT7tspBFLsS7shM4cSFC2zRx86ey+nVjX/0hVnlft6KXNQEdzd80tqQ0A4MNn Ulj703VktgJJpXXX3Snfqa3jS+SDCvBMKoN6RGThQAGol+mHJxnadNedyhOleRYb 4UQi0VWmFrTqVpFopva1X1ojMWehc6cBcffKT8Sh4tua8lQyEEGZqms5gM64tiFp obD7lPr0L29KUkeiHmmcJZ9apjiDIKchhTRGYGN07LHuJsMLBuEWNlLOROUMEagj ozFk6OVQH/rMh3uWIEKHHAz4nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwA/i6N 77jDQKSqdRr+LRHxOSIyMB8GA1UdIwQYMBaAFOwH38HxiId/Drz94LSBzAIsNDay MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85Mjc4MjIzNEM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi83QWZmd2ZHSWgzOE92UDNndElITUFpdzBO ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdBZmZ3ZkdJaDM4T3ZQM2d0SUhNQWl3ME5ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85Mjc4MjIzNEM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi83QWZmd2ZHSWgz OE92UDNndElITUFpdzBOckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqiYSoprbT+NfKbDlG+0kGDNEyzVYXHWuDi5+EJjQMe8+aV3KgeDwQ ym+HKKkGMhTR2uEmEqZGjUKAB+//BXGIV5huq+QArNLWUMTzQ9ZhJwjg5JEYb+AA zo1UCQcRppoSgE7rJyViX1TMq0LzFqw0+1S2iTuvY8HrHhVNkA6u2jYja88GB/9F uRMKj29Qv55LrUM8iesFpgyJoqRJuiVkUYNkSTGS4pbwcMoNQDfmmvEZForQAtdn dEqUmduyNPizhCxsFdluB2v8BDbd5+0TuJzyof85JBM1noHXiwIJhmoe4EAznrSK wLkq8tPtBiyvSM0xHA8IUrMsxHSx83fs -----END CERTIFICATE-----Generated at Sat Sep 6 15:24:06 2025 by rpki-client