$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: iEuXAcjbDAB6GklApa213BKAeopMA9UoL8xwzBgKK8I= Subject key identifier: 23:14:F2:1B:49:69:C9:2F:4B:86:55:A2:C4:8D:17:76:F7:B8:52:74 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C20 Signing time: Sun 24 Aug 2025 18:43:29 +0000 Manifest this update: Sun 24 Aug 2025 18:43:28 +0000 Manifest next update: Sun 31 Aug 2025 18:43:28 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: deWXhwlD0r+4VgjfZl43cQurCm5MB5Hpjm/2S6NOpR0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Aug 24 18:43:28 2025 GMT Not After : Aug 31 18:43:28 2025 GMT Subject: CN=68ab5d50-5566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d7:72:38:e6:c9:02:35:ea:0b:50:f1:e6:c7: c2:08:20:d2:ea:65:b0:da:be:5e:e0:b2:7d:be:35: ce:af:a2:0b:6e:a0:ec:f4:b6:82:68:39:ba:d1:a9: 5c:6d:7b:78:86:d1:d9:5a:a0:b1:4c:d0:f6:ea:e2: b1:8b:10:68:5b:c8:fe:1a:fb:88:6d:aa:97:f3:0a: 85:2c:72:db:86:d5:89:65:42:dd:16:c9:2e:a5:ab: 26:9c:75:2a:f4:23:df:ac:38:a8:91:24:56:05:f5: 75:b3:be:83:8e:43:91:07:c0:9b:8b:e2:ba:0f:b2: 31:1b:66:8d:53:57:2b:95:ca:13:5f:80:d3:ee:ac: c8:fb:c6:43:f4:7c:ce:76:0f:e1:30:8a:e2:2c:1f: f4:0b:55:20:f3:fc:c9:e5:fd:54:d8:0c:17:54:f2: 22:81:da:27:9d:68:3f:54:bb:36:d6:21:38:b0:db: 44:07:cf:33:7b:73:e8:7c:1f:3f:ef:5c:d1:d0:52: c4:71:cb:1b:41:ff:76:a0:21:f8:85:3e:d8:71:53: 5a:70:be:24:ff:69:6e:7c:f7:32:2e:e6:32:aa:9a: f6:41:96:ff:25:8c:70:6d:7b:dd:55:55:38:51:76: 0b:20:89:14:b7:e4:ec:de:80:57:d6:ec:e2:30:25: 5f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:14:F2:1B:49:69:C9:2F:4B:86:55:A2:C4:8D:17:76:F7:B8:52:74 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:ab:e3:4d:04:1a:f5:3f:aa:fd:33:9d:07:b3:fd:d9:61:08: c8:71:5f:33:a5:4d:0e:22:6f:6d:74:c1:10:ab:24:b4:6f:08: a1:7e:bd:2c:bb:a8:bf:c7:2c:66:e4:32:15:c5:9a:c4:a1:30: 54:24:e6:6d:e6:1f:78:44:cd:8b:a2:42:d2:8c:f0:ac:38:94: 4e:03:6e:3f:da:f6:d0:ba:1c:92:41:78:cc:8d:c3:40:06:27: 4a:85:00:d6:f1:43:5f:51:92:07:e9:89:ed:b5:e7:f9:00:29: 00:4a:5a:a7:79:6c:c0:99:60:b0:1a:ed:e4:e7:e7:06:36:24: df:15:05:23:6e:80:97:78:42:05:86:9f:2a:dc:ef:a1:08:39: c4:03:1c:97:9c:31:d6:26:ca:23:db:b6:0f:58:06:fe:f1:5b: f8:fb:fb:20:d0:88:b4:57:7c:09:f1:50:5d:fb:86:01:62:22: 23:ef:51:c8:af:e3:32:a6:08:77:cc:36:17:04:f5:fb:dc:2a: f8:77:72:a2:48:82:b7:6b:d3:c0:ae:8e:c9:5a:24:8b:67:ab: 5b:b0:d6:b7:c7:2c:af:82:5c:ef:ab:b8:4f:c2:d7:c1:1d:28: 8f:cf:4b:7b:e4:63:16:8a:d0:5c:c6:11:82:ee:41:db:d0:2e: 16:e4:34:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUwODI0MTg0MzI4WhcNMjUwODMxMTg0MzI4WjAYMRYwFAYD VQQDEw02OGFiNWQ1MC01NTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ddyOObJAjXqC1Dx5sfCCCDS6mWw2r5e4LJ9vjXOr6ILbqDs9LaCaDm60alc bXt4htHZWqCxTND26uKxixBoW8j+GvuIbaqX8wqFLHLbhtWJZULdFskupasmnHUq 9CPfrDiokSRWBfV1s76DjkORB8Cbi+K6D7IxG2aNU1crlcoTX4DT7qzI+8ZD9HzO dg/hMIriLB/0C1Ug8/zJ5f1U2AwXVPIigdonnWg/VLs21iE4sNtEB88ze3PofB8/ 71zR0FLEccsbQf92oCH4hT7YcVNacL4k/2lufPcyLuYyqpr2QZb/JYxwbXvdVVU4 UXYLIIkUt+Ts3oBX1uziMCVfiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMU8htJ ackvS4ZVosSNF3b3uFJ0MB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+q+NNBBr1P6r9M50Hs/3ZYQjIcV8zpU0OIm9tdMEQqyS0bwihfr0s u6i/xyxm5DIVxZrEoTBUJOZt5h94RM2LokLSjPCsOJROA24/2vbQuhySQXjMjcNA BidKhQDW8UNfUZIH6Ynttef5ACkASlqneWzAmWCwGu3k5+cGNiTfFQUjboCXeEIF hp8q3O+hCDnEAxyXnDHWJsoj27YPWAb+8Vv4+/sg0Ii0V3wJ8VBd+4YBYiIj71HI r+Mypgh3zDYXBPX73Cr4d3KiSIK3a9PAro7JWiSLZ6tbsNa3xyyvglzvq7hPwtfB HSiPz0t75GMWitBcxhGC7kHb0C4W5DTL -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:58 2025 by rpki-client