$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: PWEovstRwlwhRnY8jvR4aZZs662vGdQf3GjkNaQ/KBA= Subject key identifier: 04:CB:6E:5A:6A:E0:5F:CF:60:C0:74:86:60:AA:6C:DD:01:AA:63:A4 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1AA6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 21D4 Signing time: Tue 02 Sep 2025 16:07:00 +0000 Manifest this update: Tue 02 Sep 2025 16:06:59 +0000 Manifest next update: Tue 09 Sep 2025 16:06:59 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: BmtN1j8qAeGmPjQeUYUzNmRqlOzUWP949UG2nW9mpg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 16:06:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6822 (0x1aa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Sep 2 16:06:59 2025 GMT Not After : Sep 9 16:06:59 2025 GMT Subject: CN=68b71624-7df0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bb:f7:d1:e8:35:4a:e0:7d:b0:de:f6:ab:b9: a6:87:f5:87:f7:bc:a6:b1:84:99:e5:36:7c:5b:a4: 11:3d:44:a7:63:83:30:9a:1b:36:e0:c1:24:21:aa: e4:b5:43:84:11:6b:29:6e:6e:97:94:f8:63:7e:34: 1b:d9:ec:d2:e7:1a:7a:b2:e6:29:bb:9c:1d:88:66: c6:95:c1:89:63:1b:71:e5:d9:4f:15:66:61:74:7b: cd:81:ae:3e:d2:6f:8b:29:15:b7:a9:29:00:e4:8e: 04:ab:22:5a:4e:95:40:0a:d4:f4:fd:ca:ea:ff:57: f5:bb:7a:ce:77:26:58:8d:91:f6:9f:10:db:fd:f8: 12:3e:c4:6c:5c:b9:4b:90:a9:9e:ba:1e:ec:46:f5: e5:f0:48:d3:aa:c1:2c:12:68:0c:1a:23:91:41:24: a3:70:bb:a7:5c:b2:f3:74:79:7d:99:08:1b:cc:75: ed:d7:f2:65:bb:0d:9b:44:1b:96:70:e6:21:b6:f2: 18:e5:5e:e8:08:9e:4d:fd:33:8d:9f:18:b1:a0:e0: d0:f6:5d:6f:36:92:47:e1:a6:1f:77:5c:14:63:da: 1e:3a:83:42:3e:6d:fe:18:7a:3f:10:ea:79:6e:ff: 74:29:e2:3c:b3:e0:b0:54:7e:93:3d:33:15:c1:07: 37:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:CB:6E:5A:6A:E0:5F:CF:60:C0:74:86:60:AA:6C:DD:01:AA:63:A4 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:45:61:4b:05:fb:19:bf:99:29:e1:47:c8:cd:fe:30:6e:92: 73:71:3a:5a:c1:d1:3c:b0:b8:72:40:b8:63:76:b2:27:d9:e2: 24:a2:29:14:1b:e7:ea:86:76:ca:a6:2e:35:be:5d:bf:db:0b: 89:09:fd:07:69:8e:6e:c0:ef:18:d8:e3:d1:0c:f1:a0:78:bd: cc:08:66:a8:46:3b:25:a1:45:d6:86:34:e1:a6:34:4a:ea:bc: 21:c0:e8:80:87:9c:e7:07:94:6e:99:cd:b5:c8:6b:f4:3f:58: b1:25:44:d2:74:3e:61:93:d0:50:6c:8f:46:65:df:29:9d:f6: 9e:a8:7f:a7:07:98:72:f4:44:51:58:1c:77:58:84:89:f4:1f: 7f:ca:54:0f:c8:27:f6:da:44:8e:91:9b:40:f0:db:ee:05:92: e4:5f:f6:63:0f:56:22:23:3c:1b:c8:84:33:94:f0:22:d1:74: f6:74:9d:fe:2b:64:b2:1a:dc:83:98:a7:54:61:48:7f:85:17: 4d:73:e1:fa:66:a9:fb:4c:ea:aa:93:95:b0:ee:a7:7f:2c:a2: cf:e5:5a:b5:0b:79:62:9b:02:06:b9:13:ec:db:13:45:f1:1a: 75:da:6a:b2:8b:a0:02:91:27:05:0e:b3:30:64:0c:1d:13:fe: e1:e9:5b:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjUwOTAyMTYwNjU5WhcNMjUwOTA5MTYwNjU5WjAYMRYwFAYD VQQDEw02OGI3MTYyNC03ZGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bv30eg1SuB9sN72q7mmh/WH97ymsYSZ5TZ8W6QRPUSnY4Mwmhs24MEkIark tUOEEWspbm6XlPhjfjQb2ezS5xp6suYpu5wdiGbGlcGJYxtx5dlPFWZhdHvNga4+ 0m+LKRW3qSkA5I4EqyJaTpVACtT0/crq/1f1u3rOdyZYjZH2nxDb/fgSPsRsXLlL kKmeuh7sRvXl8EjTqsEsEmgMGiORQSSjcLunXLLzdHl9mQgbzHXt1/Jluw2bRBuW cOYhtvIY5V7oCJ5N/TONnxixoODQ9l1vNpJH4aYfd1wUY9oeOoNCPm3+GHo/EOp5 bv90KeI8s+CwVH6TPTMVwQc3eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATLblpq 4F/PYMB0hmCqbN0BqmOkMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuRWFLBfsZv5kp4UfIzf4wbpJzcTpawdE8sLhyQLhjdrIn2eIkoikU G+fqhnbKpi41vl2/2wuJCf0HaY5uwO8Y2OPRDPGgeL3MCGaoRjsloUXWhjThpjRK 6rwhwOiAh5znB5Rumc21yGv0P1ixJUTSdD5hk9BQbI9GZd8pnfaeqH+nB5hy9ERR WBx3WISJ9B9/ylQPyCf22kSOkZtA8NvuBZLkX/ZjD1YiIzwbyIQzlPAi0XT2dJ3+ K2SyGtyDmKdUYUh/hRdNc+H6Zqn7TOqqk5Ww7qd/LKLP5Vq1C3limwIGuRPs2xNF 8Rp12mqyi6ACkScFDrMwZAwdE/7h6VvE -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:11 2025 by rpki-client