$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft File: SyWxRyDwREuz1mj5Y1hDVPf6whM.mft (raw, json) Hash identifier: iT9WhC+k0EBksI6brxaQCKMOBGeTfrGIINZ+R9i2ykQ= Subject key identifier: 64:AC:BE:6F:D7:34:73:D3:91:CB:6B:38:92:AF:FE:AB:B6:3B:0B:D1 Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft Manifest number: 010B Signing time: Thu 07 Aug 2025 05:28:09 +0000 Manifest this update: Thu 07 Aug 2025 05:28:09 +0000 Manifest next update: Thu 14 Aug 2025 05:28:08 +0000 Files and hashes: 1: SyWxRyDwREuz1mj5Y1hDVPf6whM.crl (hash: bjC3SYDJxFrdQeymQ/InXcWs7TpkxRpSJwQz3hloeNk=) 2: D0F245E0D76711EE99C72C29C4F9AE02.roa (hash: 9VKla165NEuwDujrYh1FdBvK2ZH/U/K5NZJL+RjIV7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA, serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: Aug 7 05:28:09 2025 GMT Not After : Aug 14 05:28:08 2025 GMT Subject: CN=68943969-c814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:52:01:91:42:73:ee:4b:5b:d9:6d:58:45:0b: 0b:07:b0:ab:e2:fe:ef:77:53:ea:f6:be:12:7c:fb: 54:41:fc:ee:00:d4:08:ac:79:2c:f1:44:b1:cc:df: 50:f9:d3:3e:11:f9:37:01:fb:e2:de:a7:a9:cf:32: d9:46:3e:38:98:7b:a3:e4:7a:56:fa:e2:13:f0:a0: dd:80:fe:41:89:81:6e:cf:2e:25:db:17:11:50:5d: 8a:a1:d7:8e:6f:42:87:6c:4d:c9:cd:9c:1a:f3:a1: 01:12:63:2b:e8:ed:38:69:72:b4:b4:b2:4b:44:9d: 7a:a8:9a:72:6b:33:7a:aa:98:5c:44:c9:99:1e:b2: de:e7:42:a5:25:f4:15:9e:12:b9:e8:95:1a:ab:c6: 97:5c:c6:97:91:25:c5:ce:18:7c:78:20:10:e3:20: c0:67:d7:0c:ce:ca:0c:34:58:d1:00:a3:be:6a:3f: f3:d9:02:a3:28:e6:e5:a6:dd:99:67:a0:ca:7d:2d: 86:b2:23:b2:23:e0:c4:26:4c:b3:cc:53:73:bf:88: 0e:a3:de:4c:10:52:bf:47:51:d2:bf:62:f4:71:4d: 07:14:9d:ff:09:e5:29:69:03:3a:1e:39:17:16:f1: 24:c8:65:28:ba:61:8f:ad:13:99:6d:a5:1d:d0:9f: d2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:AC:BE:6F:D7:34:73:D3:91:CB:6B:38:92:AF:FE:AB:B6:3B:0B:D1 X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:86:1c:a2:89:98:ba:44:bd:7a:e8:e2:cf:0b:9e:fc:32:8f: 59:b6:21:ea:da:16:aa:2e:d7:41:4b:cb:87:9b:fd:87:dd:90: d5:70:0c:46:ef:74:2b:60:83:00:c4:6c:6e:f0:a5:a3:8d:89: ae:7b:f0:6e:0e:fe:22:84:23:8f:7b:4f:52:ca:2c:47:3a:4e: 2e:94:71:79:a2:ac:fc:fd:01:df:6e:b1:ec:4b:ed:b6:49:79: f7:ba:57:20:07:0c:72:67:0a:c1:c5:2a:80:9b:d8:18:ef:79: 73:55:e5:cf:ac:d5:22:ad:0e:3b:72:67:40:8c:78:e4:c7:4d: 56:d9:76:9d:b8:79:84:be:2e:23:49:06:80:91:7c:4a:ec:e2: d3:7f:8b:6e:df:c9:f1:11:1e:33:49:06:55:eb:72:8b:14:ef: 13:31:f0:c2:a6:05:f9:5c:4f:b5:32:e0:c9:2a:39:82:af:0d: 1c:04:67:95:eb:2a:a4:12:d2:82:06:0a:63:9d:95:94:89:ff: a4:14:03:54:b7:38:7e:91:df:43:cb:89:6b:95:1a:81:06:4c: 21:47:e3:ff:b9:8b:53:15:7a:66:c6:12:af:88:5b:6e:08:93: 6e:38:a6:ee:d8:3f:ea:bc:3c:4e:9f:6c:50:ad:74:34:38:e1: 22:5f:bb:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwRUExMTAvBgNVBAUTKDRCMjVCMTQ3MjBGMDQ0NEJCM0Q2NjhGOTYzNTg0MzU0 RjdGQUMyMTMwHhcNMjUwODA3MDUyODA5WhcNMjUwODE0MDUyODA4WjAYMRYwFAYD VQQDEw02ODk0Mzk2OS1jODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31IBkUJz7ktb2W1YRQsLB7Cr4v7vd1Pq9r4SfPtUQfzuANQIrHks8USxzN9Q +dM+Efk3Afvi3qepzzLZRj44mHuj5HpW+uIT8KDdgP5BiYFuzy4l2xcRUF2KodeO b0KHbE3JzZwa86EBEmMr6O04aXK0tLJLRJ16qJpyazN6qphcRMmZHrLe50KlJfQV nhK56JUaq8aXXMaXkSXFzhh8eCAQ4yDAZ9cMzsoMNFjRAKO+aj/z2QKjKOblpt2Z Z6DKfS2GsiOyI+DEJkyzzFNzv4gOo95MEFK/R1HSv2L0cU0HFJ3/CeUpaQM6HjkX FvEkyGUoumGPrROZbaUd0J/S4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSsvm/X NHPTkctrOJKv/qu2OwvRMB8GA1UdIwQYMBaAFEslsUcg8ERLs9Zo+WNYQ1T3+sIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBFQS81MjFEMUFEOEQ3 NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JFdXoxbWo1WTFoRFZQZjZ3 aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBFQS81MjFEMUFEOEQ3NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JF dXoxbWo1WTFoRFZQZjZ3aE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0hhyiiZi6RL166OLPC578Mo9ZtiHq2haqLtdBS8uHm/2H3ZDVcAxG 73QrYIMAxGxu8KWjjYmue/BuDv4ihCOPe09SyixHOk4ulHF5oqz8/QHfbrHsS+22 SXn3ulcgBwxyZwrBxSqAm9gY73lzVeXPrNUirQ47cmdAjHjkx01W2XaduHmEvi4j SQaAkXxK7OLTf4tu38nxER4zSQZV63KLFO8TMfDCpgX5XE+1MuDJKjmCrw0cBGeV 6yqkEtKCBgpjnZWUif+kFANUtzh+kd9Dy4lrlRqBBkwhR+P/uYtTFXpmxhKviFtu CJNuOKbu2D/qvDxOn2xQrXQ0OOEiX7vS -----END CERTIFICATE-----Generated at Fri Aug 8 10:22:18 2025 by rpki-client