$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: 7v9ECJbTkQCX56TRtBihrBnjHwrEvgpMDF/vePuq+84= Subject key identifier: 98:7E:E5:0D:A1:E7:06:1B:16:E7:AC:89:25:49:23:F1:29:CA:AE:6A Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 2092 Signing time: Fri 08 Aug 2025 16:46:58 +0000 Manifest this update: Fri 08 Aug 2025 16:46:57 +0000 Manifest next update: Fri 15 Aug 2025 16:46:57 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: WyoEAlvwGj5CyvOzCM0XX3lngaw659w/Cf9VT7zzcTs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5940 (0x1734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Aug 8 16:46:57 2025 GMT Not After : Aug 15 16:46:57 2025 GMT Subject: CN=68962a02-6531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ab:f0:ca:56:1f:8b:11:db:cf:99:1d:98:bb: fe:65:77:24:82:57:05:f8:92:35:4a:b7:12:39:3a: 56:10:80:a0:75:a8:7f:b9:08:aa:b6:c3:58:bf:08: aa:24:9e:63:ef:40:2e:ea:9c:fc:49:0b:3c:eb:25: 40:a9:45:f4:b1:20:76:e1:4b:e7:3a:c3:1f:9c:c4: a1:50:77:cf:04:44:17:41:9b:45:0b:21:26:c4:b2: 43:68:11:31:a2:e4:34:4a:ea:eb:21:20:f8:82:af: 46:a6:e1:d0:e0:53:60:6b:a3:46:eb:3b:b1:03:62: b8:8a:bf:9e:7d:17:18:b5:05:74:e5:b1:bd:1e:db: b2:d9:ac:b6:d1:1a:ef:93:45:f6:47:c3:34:79:d6: 9b:ff:36:43:48:76:08:74:60:0f:30:a4:b3:d5:a8: 2c:07:24:8a:e8:b4:13:e4:43:06:ce:cd:16:df:c0: 44:44:4d:19:89:e4:a1:90:66:9c:06:3a:6a:70:37: 44:b9:44:1d:bd:b9:61:bd:2f:34:f3:28:2c:81:08: a4:b9:61:91:dc:8a:1c:b8:b6:06:6f:27:fe:25:7f: ec:68:4e:de:69:fa:94:c9:27:62:90:80:0a:e9:a8: aa:28:db:12:d0:2a:9b:d8:23:0e:79:f3:a5:89:e2: ea:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:7E:E5:0D:A1:E7:06:1B:16:E7:AC:89:25:49:23:F1:29:CA:AE:6A X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:bc:5a:e9:49:57:79:00:18:55:98:ab:98:1c:86:db:d5:03: c6:32:86:f6:d1:1a:a3:06:90:f2:63:08:18:a7:b4:3f:e4:d5: f2:82:d6:07:7d:13:8c:94:4c:51:9b:d3:09:96:fa:b7:a5:11: e8:22:f8:95:a4:ef:2e:44:e9:af:fa:64:53:ec:23:c3:66:c7: 97:d4:22:81:0c:8f:69:7a:55:15:22:a8:fb:23:30:aa:0b:c7: 2b:4c:61:d1:52:8a:52:93:d7:3f:4b:ae:4e:d5:8a:93:b7:16: 36:f2:3c:88:42:0e:1b:8c:02:8a:2a:32:b9:1f:d6:d6:60:8c: 18:9f:99:3b:26:a0:fb:ad:03:2b:19:1b:11:7b:d2:0c:8b:08: ef:6a:b4:94:fc:3e:f2:70:16:ad:e7:d5:fe:45:68:b3:86:05: f3:a4:67:84:bf:31:96:1f:03:d2:8d:a3:96:64:1b:67:3d:1d: 0f:44:5f:e2:75:f7:5b:a3:a0:f2:cc:a9:31:7f:42:51:1d:f3: 9e:bc:bc:d8:59:23:e5:cd:aa:36:13:3a:29:63:d5:41:49:c0: b1:ab:bc:85:48:10:ea:de:c2:07:1b:17:75:75:ad:38:e8:3b: 11:5e:eb:ff:63:c4:e4:7f:4e:39:7c:8b:56:a8:df:ee:e5:26: 98:c2:b9:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwODA4MTY0NjU3WhcNMjUwODE1MTY0NjU3WjAYMRYwFAYD VQQDEw02ODk2MmEwMi02NTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6vwylYfixHbz5kdmLv+ZXckglcF+JI1SrcSOTpWEICgdah/uQiqtsNYvwiq JJ5j70Au6pz8SQs86yVAqUX0sSB24UvnOsMfnMShUHfPBEQXQZtFCyEmxLJDaBEx ouQ0SurrISD4gq9GpuHQ4FNga6NG6zuxA2K4ir+efRcYtQV05bG9Htuy2ay20Rrv k0X2R8M0edab/zZDSHYIdGAPMKSz1agsBySK6LQT5EMGzs0W38BERE0ZieShkGac BjpqcDdEuUQdvblhvS808ygsgQikuWGR3IocuLYGbyf+JX/saE7eafqUySdikIAK 6aiqKNsS0Cqb2CMOefOlieLqNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJh+5Q2h 5wYbFuesiSVJI/Epyq5qMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfvFrpSVd5ABhVmKuYHIbb1QPGMob20RqjBpDyYwgYp7Q/5NXygtYH fROMlExRm9MJlvq3pRHoIviVpO8uROmv+mRT7CPDZseX1CKBDI9pelUVIqj7IzCq C8crTGHRUopSk9c/S65O1YqTtxY28jyIQg4bjAKKKjK5H9bWYIwYn5k7JqD7rQMr GRsRe9IMiwjvarSU/D7ycBat59X+RWizhgXzpGeEvzGWHwPSjaOWZBtnPR0PRF/i dfdbo6DyzKkxf0JRHfOevLzYWSPlzao2EzopY9VBScCxq7yFSBDq3sIHGxd1da04 6DsRXuv/Y8Tkf045fItWqN/u5SaYwrlN -----END CERTIFICATE-----Generated at Sun Aug 10 05:42:13 2025 by rpki-client