$ rpki-client -vvf rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft File: mFJq8YqDozT1eZgqMXm23R6X3i4.mft (raw, json) Hash identifier: jlrD4sPHlaIVdAgzWagPeJy7EG2ZcA9zHSNTEj2Jgqs= Subject key identifier: AC:BA:68:D1:7E:7E:7F:07:FA:1B:5C:64:7F:4E:D9:FD:1D:D4:A7:78 Authority key identifier: 98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E Certificate issuer: /CN=A91308CE/serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E Certificate serial: 34AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft Manifest number: 34AA Signing time: Tue 12 Aug 2025 14:55:41 +0000 Manifest this update: Tue 12 Aug 2025 14:55:41 +0000 Manifest next update: Tue 19 Aug 2025 14:55:41 +0000 Files and hashes: 1: mFJq8YqDozT1eZgqMXm23R6X3i4.crl (hash: HTQBfpslIClBw33gMTlrJAKeW8yXlgff4eGdx3zJGvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.crl rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13482 (0x34aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91308CE, serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E Validity Not Before: Aug 12 14:55:41 2025 GMT Not After : Aug 19 14:55:41 2025 GMT Subject: CN=689b55ed-4836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:55:02:d8:bd:e7:03:b8:a2:af:5f:e2:1a:d1: b4:19:53:9e:00:54:4e:89:8b:3b:5b:df:19:a9:ef: 05:e8:3e:2c:6c:c3:ab:5a:2d:65:af:bb:19:4e:a0: e9:1c:35:32:1d:05:39:05:6f:20:3a:f7:61:99:71: f6:d4:06:2a:89:21:71:1d:39:6e:3c:7e:8e:e7:6e: a0:7f:d6:d1:09:f4:98:7d:f0:c8:b3:e2:44:db:15: b7:61:1f:e4:32:4a:9a:67:a3:6a:74:6d:dd:07:c8: 2e:95:50:e5:98:70:d7:ed:a3:8f:c9:b1:2e:3c:6b: 38:a0:0f:07:a6:18:fe:11:d0:40:a5:0c:e5:d7:0e: 13:fa:9d:ec:63:92:ba:ee:a4:b9:38:3c:9a:44:f3: f8:73:0f:3f:15:22:91:e4:16:4e:cf:e4:d9:b5:25: d1:9f:16:48:82:f2:db:6a:1a:04:05:a4:c2:a0:d7: 9a:86:1f:36:fe:ab:ce:ed:4a:84:a9:59:63:4e:a9: 9b:22:f8:a4:8a:90:bd:3a:80:c7:ff:47:00:eb:bf: 29:bf:57:6b:8b:63:d4:cc:a0:d3:8f:a6:75:90:a9: e5:41:24:ba:50:79:eb:32:9a:b6:12:4f:65:75:6d: 24:23:4c:79:81:86:6b:ad:b8:1d:07:cb:e9:81:b9: 06:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BA:68:D1:7E:7E:7F:07:FA:1B:5C:64:7F:4E:D9:FD:1D:D4:A7:78 X509v3 Authority Key Identifier: keyid:98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:87:6c:ab:73:bd:0e:1c:64:eb:62:96:b2:71:7f:53:42:96: 24:85:14:b3:2e:bf:7d:16:7d:d5:52:32:3c:d6:e0:00:c2:12: 4f:b1:80:d5:bc:c9:d7:3e:05:e4:45:08:09:21:c8:70:1c:ed: ac:0b:3d:d8:28:4e:32:21:82:3f:10:6c:97:58:a5:88:29:7c: 09:fc:b4:55:6d:b5:49:0d:1b:4d:39:e7:d9:a6:f1:b3:c3:a5: 0d:6a:30:92:39:1e:14:d1:44:b4:63:b1:c3:b5:e8:e4:82:2d: c8:69:d2:39:a9:61:b6:0d:3e:14:3a:46:ef:14:d7:7c:b1:e2: 4f:24:27:42:8e:c0:10:cd:db:94:10:e8:60:58:1b:86:1c:aa: 85:52:8c:bf:ec:bb:9f:77:5e:2f:6e:de:b2:f7:49:ef:13:25: 51:a0:be:6a:c5:1d:08:6f:49:ee:19:cf:9b:60:1c:ec:f6:20: 19:26:fd:a0:79:7e:23:f1:4b:fb:48:6b:6a:c8:be:e2:2d:47: 20:f1:c8:4b:e7:1b:bc:0c:8c:fb:5a:21:d5:1f:b5:ab:a2:eb: af:54:26:57:0f:4b:db:99:64:89:8a:13:78:1e:cb:0b:63:bb: 3e:3c:2e:fc:ea:39:37:84:0f:e5:72:bf:09:c2:1f:db:54:49: 94:aa:55:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4Q0UxMTAvBgNVBAUTKDk4NTI2QUYxOEE4M0EzMzRGNTc5OTgyQTMxNzlCNkRE MUU5N0RFMkUwHhcNMjUwODEyMTQ1NTQxWhcNMjUwODE5MTQ1NTQxWjAYMRYwFAYD VQQDEw02ODliNTVlZC00ODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVUC2L3nA7iir1/iGtG0GVOeAFROiYs7W98Zqe8F6D4sbMOrWi1lr7sZTqDp HDUyHQU5BW8gOvdhmXH21AYqiSFxHTluPH6O526gf9bRCfSYffDIs+JE2xW3YR/k MkqaZ6NqdG3dB8gulVDlmHDX7aOPybEuPGs4oA8Hphj+EdBApQzl1w4T+p3sY5K6 7qS5ODyaRPP4cw8/FSKR5BZOz+TZtSXRnxZIgvLbahoEBaTCoNeahh82/qvO7UqE qVljTqmbIvikipC9OoDH/0cA678pv1dri2PUzKDTj6Z1kKnlQSS6UHnrMpq2Ek9l dW0kI0x5gYZrrbgdB8vpgbkGHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy6aNF+ fn8H+htcZH9O2f0d1Kd4MB8GA1UdIwQYMBaAFJhSavGKg6M09XmYKjF5tt0el94u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDhDRS8yNTdDRjcyNjFE OTkxMUUyOTY3QjlEODMwOEIwMkNEMi9tRkpxOFlxRG96VDFlWmdxTVhtMjNSNlgz aTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21GSnE4WXFEb3pUMWVaZ3FNWG0yM1I2WDNpNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDhDRS8yNTdDRjcyNjFEOTkxMUUyOTY3QjlEODMwOEIwMkNEMi9tRkpxOFlxRG96 VDFlWmdxTVhtMjNSNlgzaTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhh2yrc70OHGTrYpaycX9TQpYkhRSzLr99Fn3VUjI81uAAwhJPsYDV vMnXPgXkRQgJIchwHO2sCz3YKE4yIYI/EGyXWKWIKXwJ/LRVbbVJDRtNOefZpvGz w6UNajCSOR4U0US0Y7HDtejkgi3IadI5qWG2DT4UOkbvFNd8seJPJCdCjsAQzduU EOhgWBuGHKqFUoy/7Lufd14vbt6y90nvEyVRoL5qxR0Ib0nuGc+bYBzs9iAZJv2g eX4j8Uv7SGtqyL7iLUcg8chL5xu8DIz7WiHVH7WrouuvVCZXD0vbmWSJihN4HssL Y7s+PC786jk3hA/lcr8Jwh/bVEmUqlVP -----END CERTIFICATE-----Generated at Wed Aug 13 07:40:42 2025 by rpki-client