$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: aFTnTYGwywpan9GxdYYnh4HTmIUg/1xZ38noTzQiTO8= Subject key identifier: FE:BD:4F:80:71:10:4B:3F:DF:CA:78:C9:77:BA:78:DD:91:05:3D:80 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1A8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 21A6 Signing time: Sun 20 Jul 2025 15:58:52 +0000 Manifest this update: Sun 20 Jul 2025 15:58:51 +0000 Manifest next update: Sun 27 Jul 2025 15:58:51 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: vg9ecIgbFRtShA65peVfz53bxT8yAKiaFvk/U5LE1pM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6799 (0x1a8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Jul 20 15:58:51 2025 GMT Not After : Jul 27 15:58:51 2025 GMT Subject: CN=687d123c-f28c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a7:8a:4e:ea:58:53:b9:cb:27:8d:3d:ef:c0: d0:f0:91:a2:28:88:88:e7:41:1e:b6:c7:58:57:bc: 0c:cc:b4:b9:8b:7d:51:56:66:20:8b:58:7d:a3:16: 41:a0:d9:3e:19:83:6f:14:a1:eb:ab:2e:ca:4a:dd: 67:8a:b3:39:54:b6:97:2e:1b:bb:88:62:50:df:85: 71:d5:6a:da:58:ca:1b:bd:9d:5c:99:27:d6:29:31: 57:88:82:da:93:d4:ee:79:6e:48:23:d3:05:d7:cf: e1:6b:b5:d8:50:87:90:7c:d6:f0:00:3d:6b:c7:3f: 02:65:e8:4c:5f:e3:45:62:97:f3:56:33:a0:e8:38: f2:5e:4e:1c:8d:ac:8d:97:42:a4:89:99:2b:f8:ff: fe:5e:4f:ea:c8:3e:d4:69:7b:6e:8e:38:fa:cc:78: 6d:9a:01:86:b1:86:e3:2e:17:e0:03:a7:42:db:2e: c4:69:ed:a0:dc:e7:b6:b0:59:88:a6:06:02:f6:8c: 84:ff:96:f5:d7:b7:4e:8a:8f:3a:a0:cd:fb:36:10: 67:88:e9:cb:db:b1:bb:55:96:67:41:f1:ce:35:26: 99:78:fc:28:e4:eb:3f:06:29:61:f0:fb:06:4e:f9: 32:9d:10:4d:c8:82:79:07:3a:a8:09:c1:62:bc:95: b3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BD:4F:80:71:10:4B:3F:DF:CA:78:C9:77:BA:78:DD:91:05:3D:80 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:6b:aa:ee:57:ef:e2:16:69:48:f5:c0:c0:74:f5:22:2c:01: 63:4e:0f:04:5b:e5:b0:d5:43:86:d7:62:9f:b1:82:c0:d2:2d: cd:72:62:85:39:8b:5d:25:6b:92:e8:be:0e:63:fb:11:6c:77: cd:35:85:18:46:fe:bc:6c:57:ae:6d:d9:41:07:5a:b2:4a:78: fc:d4:5c:e9:35:65:35:f3:1c:9a:5f:51:ef:f4:be:68:ce:1e: c3:72:ea:9a:25:f6:ad:f9:f6:f5:04:a7:7a:b3:5e:39:05:c4: 41:c2:ab:de:58:ce:17:8e:78:c8:21:bb:c2:d0:ba:2e:a6:7e: 92:95:14:16:d6:17:2e:e8:2d:e7:cb:3d:8d:86:cc:cd:da:e3: 96:41:55:2e:b2:21:06:fc:00:fb:7f:7d:52:e1:95:18:e7:f2: b6:40:37:4f:3f:73:71:e7:80:9a:fc:32:df:5d:e1:a2:07:2a: 28:c0:e8:40:f9:52:7b:3d:a8:94:e6:8a:d5:7e:c3:91:ba:09: cb:30:c0:d5:ed:29:cf:39:93:04:c0:80:a4:ef:53:59:d8:35: 2b:61:02:3f:66:da:3c:c9:51:80:c9:f6:71:95:f7:3d:59:10: f0:68:c6:42:e2:f3:ce:e6:a9:48:ce:3d:f2:29:e1:b5:dd:3e: 46:eb:74:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjUwNzIwMTU1ODUxWhcNMjUwNzI3MTU1ODUxWjAYMRYwFAYD VQQDEw02ODdkMTIzYy1mMjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaeKTupYU7nLJ40978DQ8JGiKIiI50EetsdYV7wMzLS5i31RVmYgi1h9oxZB oNk+GYNvFKHrqy7KSt1nirM5VLaXLhu7iGJQ34Vx1WraWMobvZ1cmSfWKTFXiILa k9TueW5II9MF18/ha7XYUIeQfNbwAD1rxz8CZehMX+NFYpfzVjOg6DjyXk4cjayN l0KkiZkr+P/+Xk/qyD7UaXtujjj6zHhtmgGGsYbjLhfgA6dC2y7Eae2g3Oe2sFmI pgYC9oyE/5b117dOio86oM37NhBniOnL27G7VZZnQfHONSaZePwo5Os/Bilh8PsG TvkynRBNyIJ5BzqoCcFivJWzWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP69T4Bx EEs/38p4yXe6eN2RBT2AMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKa6ruV+/iFmlI9cDAdPUiLAFjTg8EW+Ww1UOG12KfsYLA0i3NcmKF OYtdJWuS6L4OY/sRbHfNNYUYRv68bFeubdlBB1qySnj81FzpNWU18xyaX1Hv9L5o zh7DcuqaJfat+fb1BKd6s145BcRBwqveWM4XjnjIIbvC0Loupn6SlRQW1hcu6C3n yz2NhszN2uOWQVUusiEG/AD7f31S4ZUY5/K2QDdPP3Nx54Ca/DLfXeGiByoowOhA +VJ7PaiU5orVfsORugnLMMDV7SnPOZMEwICk71NZ2DUrYQI/Zto8yVGAyfZxlfc9 WRDwaMZC4vPO5qlIzj3yKeG13T5G63T0 -----END CERTIFICATE-----Generated at Sun Jul 20 18:38:33 2025 by rpki-client