$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: 2EhFIK35O3t04YNC4Nh26vV81vo0fnLKd54BCwso7dc= Subject key identifier: EB:40:94:9B:9F:39:43:0F:6D:30:9E:FC:92:78:2E:06:F6:12:83:C6 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1097 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 108D Signing time: Fri 08 Aug 2025 17:32:52 +0000 Manifest this update: Fri 08 Aug 2025 17:32:52 +0000 Manifest next update: Fri 15 Aug 2025 17:32:52 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: dvrLJ/6EJWhVbr6cTyRLHfYdD01eVleo00q2cViedSw=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4247 (0x1097) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Aug 8 17:32:52 2025 GMT Not After : Aug 15 17:32:52 2025 GMT Subject: CN=689634c4-1201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:90:f8:45:d3:57:04:f6:df:66:1a:cd:a7:06: ee:8e:6b:d0:ce:3e:ed:93:04:c9:bf:48:f5:e7:bd: 7d:6a:6f:af:49:43:de:0a:86:a2:c2:c6:e1:6e:66: 99:bb:6f:93:49:45:a2:53:1d:af:11:50:a3:29:88: 76:00:f0:fd:22:8e:17:9b:e0:ac:a6:c7:04:22:6b: cf:f1:6d:0e:d6:4d:cf:3e:33:38:10:ee:b8:09:17: 7a:f6:07:ba:87:ea:0d:26:e8:62:2f:20:48:9c:15: 89:6d:90:24:07:d9:5f:97:6a:a5:3c:79:3f:38:48: 65:88:73:f6:75:8e:89:eb:58:a6:ee:9d:b6:4b:8d: c5:32:c1:bf:5b:37:0f:31:1d:c2:64:a1:b9:ab:de: 3e:ea:77:f0:c2:ba:6f:e4:d9:af:9c:4b:9b:93:d0: af:5c:10:7d:cb:6e:82:71:11:a1:d1:2e:1d:f1:47: 8d:64:61:bf:91:4d:bf:a1:af:62:0c:4e:c7:f4:5f: 0a:d7:e6:6e:4c:94:ac:1f:e9:ad:c7:14:b4:fa:16: 01:f0:55:1d:e2:dd:58:6b:5c:17:7b:33:a0:12:25: 8b:50:a7:6c:95:80:a6:7c:66:fe:60:31:35:08:75: cb:b1:6a:11:d2:62:aa:d0:71:79:df:09:cb:d3:41: 58:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:40:94:9B:9F:39:43:0F:6D:30:9E:FC:92:78:2E:06:F6:12:83:C6 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:55:0c:16:f3:e9:5d:07:c3:a4:4b:6b:49:0d:d3:49:96:b2: bd:1a:20:9c:74:c8:d5:46:2a:48:7e:aa:92:c3:c6:57:b1:23: be:5d:14:b3:04:a3:83:ca:8e:2c:2d:c9:ba:d9:d7:eb:1a:b5: b6:88:9e:42:35:92:11:19:69:78:11:40:fb:14:c8:bc:7f:cd: 82:48:68:94:b6:2b:4a:22:7e:a5:8b:f9:78:f7:8b:b5:69:d5: 38:cd:fd:2a:da:07:b4:a5:06:13:0c:e9:00:48:a9:4c:34:53: 6b:bb:bf:a7:fb:35:ac:93:b1:fa:06:13:7a:09:f8:79:3c:f0: c9:39:97:bf:d5:0a:65:90:1d:a1:f6:64:e5:80:1f:d6:01:c5: c2:80:b6:ab:c8:64:4b:e4:45:5d:b8:60:66:0d:ee:8a:e0:80: e9:7a:c0:7d:e1:90:4e:76:98:30:6b:4e:b5:b2:0f:3b:32:64: 56:b4:db:bb:8d:08:f6:61:d3:de:31:b4:3b:f4:4c:a9:cd:83: 8b:4e:6b:3e:9f:b3:8d:35:fc:8a:e9:ee:2e:f5:0f:4d:b1:f5: d1:0c:50:c2:f1:15:0e:38:76:15:42:11:7d:3a:04:cb:27:90: cb:82:bb:c5:98:6f:fe:77:ea:aa:83:b7:75:6f:e1:79:84:3b: e6:41:cc:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwODA4MTczMjUyWhcNMjUwODE1MTczMjUyWjAYMRYwFAYD VQQDEw02ODk2MzRjNC0xMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5D4RdNXBPbfZhrNpwbujmvQzj7tkwTJv0j15719am+vSUPeCoaiwsbhbmaZ u2+TSUWiUx2vEVCjKYh2APD9Io4Xm+CspscEImvP8W0O1k3PPjM4EO64CRd69ge6 h+oNJuhiLyBInBWJbZAkB9lfl2qlPHk/OEhliHP2dY6J61im7p22S43FMsG/WzcP MR3CZKG5q94+6nfwwrpv5NmvnEubk9CvXBB9y26CcRGh0S4d8UeNZGG/kU2/oa9i DE7H9F8K1+ZuTJSsH+mtxxS0+hYB8FUd4t1Ya1wXezOgEiWLUKdslYCmfGb+YDE1 CHXLsWoR0mKq0HF53wnL00FYDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtAlJuf OUMPbTCe/JJ4Lgb2EoPGMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8VQwW8+ldB8OkS2tJDdNJlrK9GiCcdMjVRipIfqqSw8ZXsSO+XRSz BKODyo4sLcm62dfrGrW2iJ5CNZIRGWl4EUD7FMi8f82CSGiUtitKIn6li/l494u1 adU4zf0q2ge0pQYTDOkASKlMNFNru7+n+zWsk7H6BhN6Cfh5PPDJOZe/1QplkB2h 9mTlgB/WAcXCgLaryGRL5EVduGBmDe6K4IDpesB94ZBOdpgwa061sg87MmRWtNu7 jQj2YdPeMbQ79EypzYOLTms+n7ONNfyK6e4u9Q9NsfXRDFDC8RUOOHYVQhF9OgTL J5DLgrvFmG/+d+qqg7d1b+F5hDvmQczF -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:44 2025 by rpki-client