$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft File: rSHpWiYaLoAl4zypVIJcFHCzt6M.mft (raw, json) Hash identifier: yrLSIkwKQAZyNyj7a/6tlyZtDd5dNQXEa70p9QeNYqg= Subject key identifier: 30:24:D2:E9:EE:D0:60:92:47:82:13:A1:69:EA:51:7B:C7:CD:88:D9 Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 0734 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft Manifest number: 072F Signing time: Sat 02 Aug 2025 22:09:41 +0000 Manifest this update: Sat 02 Aug 2025 22:09:40 +0000 Manifest next update: Sat 09 Aug 2025 22:09:40 +0000 Files and hashes: 1: rSHpWiYaLoAl4zypVIJcFHCzt6M.crl (hash: e2bSNADyyRSfADbieFkJJaCIm5+6aLs1UYGimBDpdsk=) 2: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (hash: WhAEh4S3tK527emBBM2jGEQwQFEHNqJyzLHLvoZ2c44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4, serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: Aug 2 22:09:40 2025 GMT Not After : Aug 9 22:09:40 2025 GMT Subject: CN=688e8ca4-0cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:23:88:00:ef:41:76:46:53:5b:d9:85:19: 94:9b:ee:5c:7d:0a:0b:c6:44:cd:86:40:44:fb:65: 27:51:a9:a3:6d:63:f9:be:7f:2a:bf:04:80:8b:f5: 6f:ea:99:65:04:b4:71:49:78:69:ad:ba:f4:bc:90: f2:b5:db:ee:2d:03:9f:33:06:34:b7:b5:2a:53:95: df:49:f5:25:a3:fc:a9:7a:df:a1:31:ef:d8:86:b0: a9:11:1e:58:b5:ec:79:cd:1f:b3:27:3a:e5:58:a4: f2:14:00:5c:8f:74:08:2d:2f:db:c5:40:6f:ad:ec: 45:d7:b1:fe:e9:8b:44:bb:c9:14:3d:e0:18:b2:9f: 60:9b:27:a7:fb:88:93:f6:95:8a:db:c7:76:f4:f2: 8e:59:e4:38:1d:81:fa:32:03:c7:a5:04:23:6b:05: 22:08:83:56:45:64:de:a3:69:50:92:28:45:ae:2c: 37:98:04:4a:67:88:b6:6d:1e:a2:85:40:4e:de:52: b5:4c:ad:cf:82:ca:13:bc:93:1c:80:32:94:e7:e7: 8f:f0:da:2f:36:ca:49:8d:5c:6a:e4:92:b6:d6:57: d6:bc:fe:20:03:2b:e9:da:7b:36:47:fe:3b:2c:ad: a3:f2:d5:b3:e9:a0:6c:66:b4:fd:67:5a:2a:fb:e4: f7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:24:D2:E9:EE:D0:60:92:47:82:13:A1:69:EA:51:7B:C7:CD:88:D9 X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:47:27:55:b1:b5:33:3c:0d:03:7b:f1:ea:bd:58:d6:8d:8e: 1f:aa:96:a5:1e:59:44:d0:74:5b:43:58:f8:8b:12:5b:87:19: 63:a0:89:ad:8a:2d:fa:64:34:2d:c1:10:95:53:64:47:8d:f9: 5a:cc:7f:6d:76:e9:1d:56:a9:68:83:53:54:20:5c:ab:5b:30: 18:d0:10:83:ff:f3:ea:3e:ef:14:35:80:6e:03:b3:ce:b7:4b: bd:e1:67:78:8c:8e:23:aa:9e:ed:00:b7:88:77:9f:24:65:64: 59:7f:d0:f3:47:5a:49:3a:13:e5:68:d3:06:b8:ce:1b:d6:30: 53:31:ec:bd:26:26:1e:d3:7c:50:b1:43:2a:18:99:5d:36:c2: b7:d5:8d:6f:54:fa:65:ca:94:5c:e2:52:24:0c:d5:50:5c:39: ec:a1:56:74:b9:06:60:10:15:89:aa:34:3d:4f:e9:92:11:c6: ed:c8:24:6b:8f:ee:90:23:f6:3b:17:ab:57:d3:db:81:41:06: e5:4f:4d:bb:cb:7a:58:f6:56:13:da:0c:61:2f:f3:b3:86:f6: 21:00:d3:b1:af:10:3a:82:87:f1:8c:da:ac:45:00:a8:fc:35: c3:8d:df:df:41:bd:87:ea:14:01:c4:d3:ce:dc:55:76:40:5e: a0:50:29:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjUwODAyMjIwOTQwWhcNMjUwODA5MjIwOTQwWjAYMRYwFAYD VQQDEw02ODhlOGNhNC0wY2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDsjiADvQXZGU1vZhRmUm+5cfQoLxkTNhkBE+2UnUamjbWP5vn8qvwSAi/Vv 6pllBLRxSXhprbr0vJDytdvuLQOfMwY0t7UqU5XfSfUlo/ypet+hMe/YhrCpER5Y tex5zR+zJzrlWKTyFABcj3QILS/bxUBvrexF17H+6YtEu8kUPeAYsp9gmyen+4iT 9pWK28d29PKOWeQ4HYH6MgPHpQQjawUiCINWRWTeo2lQkihFriw3mARKZ4i2bR6i hUBO3lK1TK3PgsoTvJMcgDKU5+eP8NovNspJjVxq5JK21lfWvP4gAyvp2ns2R/47 LK2j8tWz6aBsZrT9Z1oq++T3jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAk0unu 0GCSR4IToWnqUXvHzYjZMB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhDNC81MzJGRENEQzNFMTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxv QWw0enlwVklKY0ZIQ3p0Nk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9RydVsbUzPA0De/HqvVjWjY4fqpalHllE0HRbQ1j4ixJbhxljoImt ii36ZDQtwRCVU2RHjflazH9tdukdVqlog1NUIFyrWzAY0BCD//PqPu8UNYBuA7PO t0u94Wd4jI4jqp7tALeId58kZWRZf9DzR1pJOhPlaNMGuM4b1jBTMey9JiYe03xQ sUMqGJldNsK31Y1vVPplypRc4lIkDNVQXDnsoVZ0uQZgEBWJqjQ9T+mSEcbtyCRr j+6QI/Y7F6tX09uBQQblT027y3pY9lYT2gxhL/OzhvYhANOxrxA6gofxjNqsRQCo /DXDjd/fQb2H6hQBxNPO3FV2QF6gUCkD -----END CERTIFICATE-----Generated at Mon Aug 4 11:13:10 2025 by rpki-client