$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: SLMxtbbLvOuVTSjhGY+20c+HH6G0p/S6CGWTVfWCYqk= Subject key identifier: 16:2F:79:45:66:B1:75:DE:FB:74:DE:49:CD:28:B7:58:3B:B6:F0:38 Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0C05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2CCB Signing time: Sun 24 Aug 2025 16:25:12 +0000 Manifest this update: Sun 24 Aug 2025 16:25:12 +0000 Manifest next update: Sun 31 Aug 2025 16:25:12 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: oS6I91/zQnq7EF1hpsuMZ2NNhiWdcmpiSaDZ1fcIRiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3077 (0xc05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B, serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Aug 24 16:25:12 2025 GMT Not After : Aug 31 16:25:12 2025 GMT Subject: CN=68ab3ce8-50b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:91:5b:31:8a:39:f3:56:f3:2f:6e:95:30: 6e:5c:5b:43:c4:16:34:23:58:15:39:70:81:c8:d1: 8e:71:46:0d:42:71:3c:57:7d:e8:18:ae:d3:cb:72: 9b:eb:f1:5b:92:47:b8:8e:a2:3a:f9:6b:66:87:43: 19:24:15:26:9c:c2:73:55:81:bd:76:17:5c:b1:e8: 88:79:c3:31:5a:e3:b6:42:d1:13:10:e7:04:4d:b7: 83:c4:91:71:7f:3d:63:d4:88:1a:0d:ae:38:01:5e: 3b:47:2e:e6:7f:0a:dd:da:12:0f:2d:5f:3a:f9:b5: d9:7a:d3:a3:11:60:b7:61:31:4f:c2:f7:12:10:fc: a6:bd:a6:48:14:2b:b1:d7:b1:58:32:04:cd:f4:f4: 1f:b0:9c:1c:7c:ac:47:c4:4d:f4:8c:cd:bb:f8:ea: 12:66:85:3b:00:43:1f:98:20:bb:97:49:d5:92:cd: 3f:ad:ed:6c:d0:da:31:7b:c1:28:af:fb:e4:5e:0a: e2:f8:b2:5d:aa:d4:1a:72:44:02:3e:05:8f:4e:ab: fe:fd:77:a8:7b:0c:3e:7b:86:6e:bb:65:a8:2b:2e: 86:6d:e5:c0:17:4e:7b:3f:61:8d:ad:a0:20:19:7d: 69:8f:69:26:04:d0:b9:c0:29:55:22:26:90:4f:02: 06:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:2F:79:45:66:B1:75:DE:FB:74:DE:49:CD:28:B7:58:3B:B6:F0:38 X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a5:c9:e7:b4:fc:87:0e:33:af:4e:b8:89:15:14:1b:04:fe: 79:ca:0d:f2:cb:4f:18:28:38:d3:4e:e4:cc:c5:af:b6:03:00: 48:37:54:8e:2e:cc:0b:d9:19:03:e5:b9:a1:29:46:1c:44:e4: 49:11:a1:a4:73:c7:df:77:07:5c:cf:7b:bb:8e:5c:c5:24:d2: e1:d8:4a:db:6f:8f:53:06:fe:a0:69:4f:88:a3:a8:61:07:30: 7e:8d:cb:0e:5a:fa:83:f2:0e:80:ce:81:ec:0c:d4:f9:33:a0: 24:e5:96:c5:6b:7a:2f:dc:f1:97:a8:ce:5c:0b:ae:72:7c:7b: 05:57:bc:28:60:56:93:c3:d0:55:5c:0d:ce:2d:71:09:72:81: cf:be:74:08:1d:6b:e5:94:25:40:ff:53:83:a7:3e:d4:2f:ac: d5:8f:b8:e2:c6:6c:e2:11:59:95:2e:31:a0:5e:45:7b:cb:10: f4:f8:df:b1:88:d0:46:c8:e4:7f:7d:dd:89:64:53:4b:2b:ce: 49:2a:c4:32:86:cc:30:4e:d9:c7:c9:47:cf:5d:e8:56:0c:31: b3:7b:eb:46:44:6b:0d:a7:a2:11:c2:e4:84:62:24:2b:62:7f: 87:7c:55:34:d3:c8:43:8e:9a:30:1a:86:e5:85:b2:e0:69:e9: f1:f8:ea:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjUwODI0MTYyNTEyWhcNMjUwODMxMTYyNTEyWjAYMRYwFAYD VQQDEw02OGFiM2NlOC01MGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnqRWzGKOfNW8y9ulTBuXFtDxBY0I1gVOXCByNGOcUYNQnE8V33oGK7Ty3Kb 6/Fbkke4jqI6+Wtmh0MZJBUmnMJzVYG9dhdcseiIecMxWuO2QtETEOcETbeDxJFx fz1j1IgaDa44AV47Ry7mfwrd2hIPLV86+bXZetOjEWC3YTFPwvcSEPymvaZIFCux 17FYMgTN9PQfsJwcfKxHxE30jM27+OoSZoU7AEMfmCC7l0nVks0/re1s0Noxe8Eo r/vkXgri+LJdqtQackQCPgWPTqv+/Xeoeww+e4Zuu2WoKy6GbeXAF057P2GNraAg GX1pj2kmBNC5wClVIiaQTwIGlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYveUVm sXXe+3TeSc0ot1g7tvA4MB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAppcnntPyHDjOvTriJFRQbBP55yg3yy08YKDjTTuTMxa+2AwBIN1SO LswL2RkD5bmhKUYcRORJEaGkc8ffdwdcz3u7jlzFJNLh2Erbb49TBv6gaU+Io6hh BzB+jcsOWvqD8g6AzoHsDNT5M6Ak5ZbFa3ov3PGXqM5cC65yfHsFV7woYFaTw9BV XA3OLXEJcoHPvnQIHWvllCVA/1ODpz7UL6zVj7jixmziEVmVLjGgXkV7yxD0+N+x iNBGyOR/fd2JZFNLK85JKsQyhswwTtnHyUfPXehWDDGze+tGRGsNp6IRwuSEYiQr Yn+HfFU008hDjpowGoblhbLgaenx+OoG -----END CERTIFICATE-----Generated at Sun Aug 24 21:44:32 2025 by rpki-client