$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: 5PR+bbnFiQB04XnaF20ELTVyMW7sBvf+4UAyXbRHm6o= Subject key identifier: 10:E0:6E:3E:D3:D9:AF:C6:CC:7F:E4:AD:9D:8C:41:7A:CF:B2:18:BC Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0688 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 0685 Signing time: Mon 08 Sep 2025 14:46:49 +0000 Manifest this update: Mon 08 Sep 2025 14:46:49 +0000 Manifest next update: Mon 15 Sep 2025 14:46:49 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: gzScHLEf1Xmxid5LWj+DpoCjLnyFOt1FgQhSFNwixcs=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: oxmHGKf/WSOT7WzpjdLiOn3oXWfHw/6ypS3n/mBbPHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1672 (0x688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Sep 8 14:46:49 2025 GMT Not After : Sep 15 14:46:49 2025 GMT Subject: CN=68beec59-0be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fd:bb:bd:b9:b3:d6:8c:6f:d4:6a:53:70:c7: 79:3f:cd:6a:ea:27:94:ee:99:08:03:e3:67:45:42: 7c:f8:ee:42:04:ec:61:d1:c0:89:45:13:4e:9e:f2: 1f:46:5a:e8:ce:de:55:c2:03:25:6e:ca:01:91:1f: 6a:95:9e:16:a6:bc:17:e7:2a:bd:56:bf:cb:67:8a: f4:fe:1a:98:77:5e:c8:95:3e:90:2e:a2:da:66:d0: 73:5c:fb:aa:01:a1:cd:79:ac:7d:84:a0:b8:9e:4b: d6:14:cb:d8:4d:2d:db:3c:98:2c:10:ad:ae:bd:cf: 28:04:ae:84:bd:eb:d3:f9:34:d8:97:e2:01:12:49: ca:bf:44:3b:ca:26:49:40:2b:21:d4:4f:37:ec:8d: 11:07:3f:61:49:4f:c4:5c:dd:63:ff:de:66:44:73: ba:aa:c5:8a:cc:22:61:e8:bd:77:c6:d9:9e:e3:6f: 39:f8:fb:5a:62:96:77:c6:5f:60:ae:29:26:ac:30: ad:07:35:2b:d3:a8:74:46:32:f8:47:6e:19:17:80: 10:54:8f:46:e4:10:3a:67:eb:2f:3b:8f:58:b0:83: d8:69:26:bd:19:79:82:d1:b7:b1:cd:e8:32:d8:0e: f3:cd:4f:f4:0a:4e:5b:aa:ce:ee:f6:d3:51:05:65: d9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E0:6E:3E:D3:D9:AF:C6:CC:7F:E4:AD:9D:8C:41:7A:CF:B2:18:BC X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:ae:2e:5d:d5:a8:0f:70:70:8d:cc:a2:42:b0:d7:a0:63:82: 9c:ec:5e:24:48:86:e5:2b:23:01:58:f7:25:38:13:42:a5:2e: c9:c6:63:ca:1a:5f:87:8a:f3:cc:68:e5:5d:4d:55:a2:28:10: f9:36:17:dc:85:be:89:20:c8:15:1e:5c:48:03:15:1b:32:48: cd:ee:fb:3d:d4:41:c8:2b:a4:2a:92:b9:69:ce:dc:fa:0d:c7: dc:a0:33:ed:bd:34:22:e6:9b:a4:fc:1a:ff:85:4b:04:2f:9a: 98:b1:df:dd:d6:27:27:7b:f9:74:98:2d:29:c1:99:47:d9:67: af:36:85:01:f5:25:99:88:90:d2:2e:80:46:af:cf:9d:61:13: a9:00:21:dd:1e:5c:05:ba:b0:69:c4:42:67:6d:f4:a8:c6:2d: aa:f7:a7:45:d5:4f:56:c8:1d:d2:7c:cf:23:d7:f4:cf:c6:fe: 66:ec:ba:5c:67:0b:70:ce:82:e1:a4:9e:60:3a:a1:69:80:63: 0d:27:d6:2f:96:84:f6:ae:89:98:88:00:33:64:c1:28:ca:ff: 4b:25:45:ce:5b:01:4c:96:14:55:1b:58:00:2b:41:1d:55:58: b0:6c:b5:2c:6a:97:c6:bf:55:5c:fc:0d:bf:48:7e:e4:60:da: 49:77:cf:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUwOTA4MTQ0NjQ5WhcNMjUwOTE1MTQ0NjQ5WjAYMRYwFAYD VQQDEw02OGJlZWM1OS0wYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5P27vbmz1oxv1GpTcMd5P81q6ieU7pkIA+NnRUJ8+O5CBOxh0cCJRRNOnvIf Rlrozt5VwgMlbsoBkR9qlZ4WprwX5yq9Vr/LZ4r0/hqYd17IlT6QLqLaZtBzXPuq AaHNeax9hKC4nkvWFMvYTS3bPJgsEK2uvc8oBK6EvevT+TTYl+IBEknKv0Q7yiZJ QCsh1E837I0RBz9hSU/EXN1j/95mRHO6qsWKzCJh6L13xtme4285+PtaYpZ3xl9g rikmrDCtBzUr06h0RjL4R24ZF4AQVI9G5BA6Z+svO49YsIPYaSa9GXmC0bexzegy 2A7zzU/0Ck5bqs7u9tNRBWXZ4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDgbj7T 2a/GzH/krZ2MQXrPshi8MB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkri5d1agPcHCNzKJCsNegY4Kc7F4kSIblKyMBWPclOBNCpS7JxmPK Gl+HivPMaOVdTVWiKBD5Nhfchb6JIMgVHlxIAxUbMkjN7vs91EHIK6Qqkrlpztz6 DcfcoDPtvTQi5puk/Br/hUsEL5qYsd/d1icne/l0mC0pwZlH2WevNoUB9SWZiJDS LoBGr8+dYROpACHdHlwFurBpxEJnbfSoxi2q96dF1U9WyB3SfM8j1/TPxv5m7Lpc ZwtwzoLhpJ5gOqFpgGMNJ9YvloT2romYiAAzZMEoyv9LJUXOWwFMlhRVG1gAK0Ed VViwbLUsapfGv1Vc/A2/SH7kYNpJd88u -----END CERTIFICATE-----Generated at Tue Sep 9 08:49:21 2025 by rpki-client