$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: MpQ75PCorpyprSw4ftr87KHpWAb2s6wW0Ya9EwX20LY= Subject key identifier: 88:AD:EC:80:B2:CB:80:D1:96:56:92:E9:21:D2:E1:2D:31:C1:8C:48 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 0544 Signing time: Thu 04 Sep 2025 23:44:40 +0000 Manifest this update: Thu 04 Sep 2025 23:44:39 +0000 Manifest next update: Thu 11 Sep 2025 23:44:39 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: hMHJPKwfySZid5xviQ5DmZlOpkm9GR4cY89CldNOc+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Sep 4 23:44:39 2025 GMT Not After : Sep 11 23:44:39 2025 GMT Subject: CN=68ba2467-7a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:41:0b:f3:b3:0c:3f:8c:03:f3:76:0e:b1:f3: 61:3d:54:20:ca:ed:08:cd:e9:a6:e9:78:95:f0:73: 46:af:a2:18:d4:78:fb:cc:18:d9:07:75:3b:f4:93: c9:92:a7:20:d0:b2:20:68:bb:13:cf:36:40:a6:a0: 56:80:ec:22:d7:19:41:7a:95:17:b2:6d:64:3e:60: 42:15:cd:9d:18:2e:9d:71:25:fd:2c:3f:d3:4c:a8: f9:3b:3d:74:72:cf:2e:e1:61:6a:bd:ec:07:55:fd: f5:af:55:66:09:d6:02:56:7f:fc:38:30:67:f0:e6: 83:9d:15:22:01:7f:8a:0c:ff:de:d1:e7:33:dd:88: d4:f5:12:1a:97:1c:c1:41:40:c4:e8:27:36:1b:ed: 6b:39:c9:78:d5:65:9c:54:e8:cf:52:e5:23:60:db: 20:0e:28:37:2f:22:3e:3c:71:fe:eb:02:d7:df:cc: fd:e8:b1:d7:2d:53:ac:a8:36:b1:bc:ac:b9:90:12: 1d:cf:b9:22:7c:a3:3c:0e:d5:7a:6b:5d:be:ca:d0: aa:03:ba:a5:c0:c3:aa:96:66:d6:5a:02:e5:9a:3d: 3f:aa:8b:6b:fa:14:32:57:3b:c9:e0:4e:23:33:c0: 35:ab:ae:a2:f5:a6:8e:02:c9:44:1b:ad:eb:74:4d: 3a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AD:EC:80:B2:CB:80:D1:96:56:92:E9:21:D2:E1:2D:31:C1:8C:48 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:93:d7:de:7a:4c:48:f3:56:d4:a7:45:79:9b:d6:66:35:69: 6d:e6:6a:f7:eb:13:8c:54:1e:33:b7:48:15:e5:17:0a:ff:c3: be:55:ab:4a:12:78:45:42:7e:e5:7b:c7:09:12:7b:1e:2d:21: 08:7d:17:36:4f:59:47:7e:54:12:e0:8d:f4:16:b0:a6:d7:db: ef:22:81:2b:90:af:48:68:dd:cb:a1:ba:48:ce:86:4b:a3:ed: 7a:1a:96:bd:32:fc:05:ee:e8:55:fe:18:6a:64:4a:a5:34:3c: b6:fa:39:56:59:84:83:0c:36:96:48:5a:8d:5d:ee:8a:8a:0f: 50:92:83:b3:02:f3:05:cd:52:c2:fd:5e:93:b7:3b:b5:1b:37: 20:1e:c5:32:7c:34:9d:59:e0:2e:b4:29:4b:ff:ce:51:63:8c: cf:52:8f:81:c4:07:c1:ab:a3:df:3f:68:5a:86:cc:de:8d:c8: 00:82:a2:b1:83:9a:dc:8d:f7:a8:ee:2f:7d:a8:e7:b3:a7:77: f5:9c:98:5e:c1:e9:c7:50:78:ca:e5:16:03:41:59:cd:06:5e: 88:72:e8:70:ba:cf:92:98:4f:5c:51:09:3e:db:cc:72:b0:d4: ad:de:0d:6d:11:1f:0a:2a:7c:2d:86:c7:94:ae:c7:4a:ad:0c: b3:7e:74:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUwOTA0MjM0NDM5WhcNMjUwOTExMjM0NDM5WjAYMRYwFAYD VQQDEw02OGJhMjQ2Ny03YTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kEL87MMP4wD83YOsfNhPVQgyu0Izemm6XiV8HNGr6IY1Hj7zBjZB3U79JPJ kqcg0LIgaLsTzzZApqBWgOwi1xlBepUXsm1kPmBCFc2dGC6dcSX9LD/TTKj5Oz10 cs8u4WFqvewHVf31r1VmCdYCVn/8ODBn8OaDnRUiAX+KDP/e0ecz3YjU9RIalxzB QUDE6Cc2G+1rOcl41WWcVOjPUuUjYNsgDig3LyI+PHH+6wLX38z96LHXLVOsqDax vKy5kBIdz7kifKM8DtV6a12+ytCqA7qlwMOqlmbWWgLlmj0/qotr+hQyVzvJ4E4j M8A1q66i9aaOAslEG63rdE067QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIit7ICy y4DRllaS6SHS4S0xwYxIMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADk9feekxI81bUp0V5m9ZmNWlt5mr36xOMVB4zt0gV5RcK/8O+VatK EnhFQn7le8cJEnseLSEIfRc2T1lHflQS4I30FrCm19vvIoErkK9IaN3LobpIzoZL o+16Gpa9MvwF7uhV/hhqZEqlNDy2+jlWWYSDDDaWSFqNXe6Kig9QkoOzAvMFzVLC /V6Ttzu1GzcgHsUyfDSdWeAutClL/85RY4zPUo+BxAfBq6PfP2hahszejcgAgqKx g5rcjfeo7i99qOezp3f1nJhewenHUHjK5RYDQVnNBl6Icuhwus+SmE9cUQk+28xy sNSt3g1tER8KKnwthseUrsdKrQyzfnSs -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:11 2025 by rpki-client