$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: ErTZR5H5H61QPrbU2Vh/+aFKWvMWQ50ip1B6GhvGIPE= Subject key identifier: 4B:01:65:08:82:5E:32:CB:76:9C:FD:D3:47:D8:9B:E6:D6:F3:0D:BE Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 0716 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 06FD Signing time: Sat 02 Aug 2025 22:24:14 +0000 Manifest this update: Sat 02 Aug 2025 22:24:14 +0000 Manifest next update: Sat 09 Aug 2025 22:24:14 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: 9LD06HiN5VGsLuErpYlxwcaLxtb/mIhrEPHWOq1C4Gk=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: +fRxqOXyB3e8V6DJsPZloFZurNNVr8ZfU/q63aOPSF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1814 (0x716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF, serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Validity Not Before: Aug 2 22:24:14 2025 GMT Not After : Aug 9 22:24:14 2025 GMT Subject: CN=688e900e-aced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:58:62:03:fe:22:29:ae:fa:92:d4:3c:79: fa:2c:3f:83:c3:2d:73:c6:62:85:aa:ff:b9:3b:cb: 71:f8:fa:78:b1:36:9d:1c:8b:60:f2:83:05:1c:ab: 87:c2:6b:33:c3:83:12:6a:b6:42:92:ba:41:ee:f3: 58:39:49:a2:42:6c:fa:2a:aa:dc:7c:4d:93:ba:f1: b1:b0:10:8d:3d:f8:66:21:f4:3d:5b:33:f4:a8:a1: fe:97:88:03:c6:d8:4d:23:8e:d4:3c:4f:19:9a:c0: ef:ec:21:3a:f1:29:0c:e7:a8:0d:6a:08:c3:e8:e7: d6:29:48:40:00:b5:b0:0a:67:be:95:6e:b2:04:74: 66:61:cb:a7:27:f9:f5:46:61:62:c7:f6:75:e4:c5: d6:e1:70:43:42:d5:de:96:e3:b7:eb:b9:8c:36:3c: 71:a7:86:c7:18:6e:6b:f6:8c:f7:3b:e0:3a:a0:df: 1b:89:4f:f3:da:e2:00:94:3c:3d:8a:5c:79:6c:b7: b1:47:bd:bd:4f:b0:93:38:aa:82:cb:43:5e:ba:65: 32:ec:2c:76:12:39:0e:ea:d6:44:1d:d5:76:d3:ed: ae:d8:42:1b:f6:bf:b5:90:1e:31:c9:c4:d1:88:94: 74:49:b3:ef:7b:73:8e:31:cf:5d:7c:38:9d:41:0b: 48:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:01:65:08:82:5E:32:CB:76:9C:FD:D3:47:D8:9B:E6:D6:F3:0D:BE X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:23:45:6b:b3:8c:3c:bd:78:70:ed:50:6c:fa:1c:eb:59:84: 36:e3:9f:05:02:57:18:82:ed:31:4d:dc:4b:3d:7b:86:00:47: 60:41:49:9a:dd:01:40:22:5d:60:27:73:b2:65:c7:42:29:49: 2e:b1:82:3a:d8:79:c4:0b:cc:02:95:63:ac:a5:14:b7:60:4b: 8d:af:a8:8c:a7:44:9d:b9:65:6e:84:ad:bc:43:aa:bf:90:5c: 5b:92:d1:3f:f5:8a:6d:ac:75:18:45:db:74:20:cc:47:cf:27: f8:ee:a1:bd:4b:36:87:a8:c7:36:0d:76:e0:06:24:5d:62:6a: 55:ba:23:c5:5c:03:07:21:32:93:42:82:fc:75:de:d1:90:e8: 94:c9:74:61:d5:c6:71:1c:73:dc:6d:53:29:77:24:e4:b9:6f: 56:e7:e5:41:7d:9e:02:5f:28:65:85:11:17:a9:a6:dc:ac:bb: 37:a1:6b:ab:70:5e:07:fb:bd:e4:45:2a:40:1f:19:1e:e4:fc: 92:0b:44:61:27:cf:ca:f4:c6:d5:3a:44:4b:7b:72:a2:34:7a: 89:ec:be:e5:76:73:c2:e7:42:85:97:1a:03:cd:60:59:66:e0: 06:10:a5:37:7a:f8:01:e2:2b:93:7a:92:61:16:5e:c1:48:5a: c3:f2:a3:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjUwODAyMjIyNDE0WhcNMjUwODA5MjIyNDE0WjAYMRYwFAYD VQQDEw02ODhlOTAwZS1hY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4JYYgP+Iimu+pLUPHn6LD+Dwy1zxmKFqv+5O8tx+Pp4sTadHItg8oMFHKuH wmszw4MSarZCkrpB7vNYOUmiQmz6KqrcfE2TuvGxsBCNPfhmIfQ9WzP0qKH+l4gD xthNI47UPE8ZmsDv7CE68SkM56gNagjD6OfWKUhAALWwCme+lW6yBHRmYcunJ/n1 RmFix/Z15MXW4XBDQtXeluO367mMNjxxp4bHGG5r9oz3O+A6oN8biU/z2uIAlDw9 ilx5bLexR729T7CTOKqCy0NeumUy7Cx2EjkO6tZEHdV20+2u2EIb9r+1kB4xycTR iJR0SbPve3OOMc9dfDidQQtIAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEsBZQiC XjLLdpz900fYm+bW8w2+MB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvI0Vrs4w8vXhw7VBs+hzrWYQ2458FAlcYgu0xTdxLPXuGAEdgQUma 3QFAIl1gJ3OyZcdCKUkusYI62HnEC8wClWOspRS3YEuNr6iMp0SduWVuhK28Q6q/ kFxbktE/9YptrHUYRdt0IMxHzyf47qG9SzaHqMc2DXbgBiRdYmpVuiPFXAMHITKT QoL8dd7RkOiUyXRh1cZxHHPcbVMpdyTkuW9W5+VBfZ4CXyhlhREXqabcrLs3oWur cF4H+73kRSpAHxke5PySC0RhJ8/K9MbVOkRLe3KiNHqJ7L7ldnPC50KFlxoDzWBZ ZuAGEKU3evgB4iuTepJhFl7BSFrD8qPg -----END CERTIFICATE-----Generated at Mon Aug 4 11:10:07 2025 by rpki-client