$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: wx0RwNHsVucdsOE7cu4tW4C1ckq1yh/DVD2/sQ/1d54= Subject key identifier: 5D:43:25:BE:CD:4E:8B:7C:BA:64:A6:9A:CA:9A:E4:A5:A7:A4:88:09 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0BA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0BA0 Signing time: Mon 04 Aug 2025 19:13:06 +0000 Manifest this update: Mon 04 Aug 2025 19:13:06 +0000 Manifest next update: Mon 11 Aug 2025 19:13:06 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: b4NkZwVRv+pacbO/Jqv2pqTgyjaUhymPgUNDWOoAzVg=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 19:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Aug 4 19:13:06 2025 GMT Not After : Aug 11 19:13:06 2025 GMT Subject: CN=68910642-c363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d1:bc:e1:7a:f1:98:b0:38:36:31:8f:ea:4c: ca:6c:72:80:c7:cf:cf:c3:0e:f3:06:3b:b6:d1:8f: f0:99:79:20:3e:fc:d9:27:c1:e9:64:07:37:4f:ff: ec:fb:9d:ff:72:e8:4f:0c:12:00:b1:d3:03:f0:ab: d6:d8:2f:1a:4f:32:57:aa:e1:7b:12:ae:46:32:3d: 54:c4:3d:55:27:98:84:5d:ff:dd:05:23:84:31:37: d1:7a:e7:ad:4e:bf:2e:46:a0:d5:9e:c8:a8:23:b5: f5:bc:84:cf:29:c6:df:2f:c7:1a:4d:d9:21:c9:fe: 65:0b:54:98:ef:59:c9:34:cd:15:7c:95:1a:de:70: 2c:f9:9e:37:c6:2b:6b:ce:dc:5d:c8:97:eb:f4:b3: 75:3f:f4:d6:f4:9c:54:c6:bd:83:3f:ff:d5:8e:35: 4c:15:96:ae:43:29:20:b0:36:6e:c2:76:7c:4c:ae: 5a:7a:ad:39:42:4d:25:dd:e6:8c:19:05:d5:b1:74: 0e:bb:9f:65:84:79:bd:a8:ad:18:48:38:bc:71:8a: 93:be:60:09:75:4c:81:a5:81:16:86:47:7c:81:8d: 69:80:74:2a:8a:82:9f:e9:a7:7a:0d:38:17:ae:68: a6:cb:29:e2:7e:8b:6a:2f:d3:8d:b8:5e:37:b5:6f: ed:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:43:25:BE:CD:4E:8B:7C:BA:64:A6:9A:CA:9A:E4:A5:A7:A4:88:09 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:59:72:e2:39:ca:9b:91:fb:30:fc:a7:af:57:e2:17:1f:de: fd:58:07:ef:6e:d3:79:55:64:ce:d0:16:0d:f1:1d:2d:df:a1: 8f:38:d3:e1:e4:c0:97:dd:a4:62:29:02:e0:34:46:e7:61:9d: cf:4d:de:c3:30:98:c6:26:6e:30:5e:2a:48:83:4a:91:32:41: 18:b4:e0:3e:e5:4d:68:bb:ec:35:ce:72:81:76:c4:73:16:d9: a4:a1:42:48:b7:d6:49:39:b3:97:b8:08:e6:b1:fe:9e:3f:17: 75:3c:03:8c:84:49:99:1b:e6:2a:6c:71:eb:d2:2a:01:8e:63: 09:a5:bd:e9:6e:df:f8:08:95:cb:c6:fd:07:ac:4d:ec:3a:7c: b4:ad:c8:42:a9:4e:97:7e:03:25:30:78:ee:ed:4f:10:24:52: cb:9b:23:c7:70:bd:d8:24:2a:f9:1a:b0:fd:1f:fc:aa:27:c8: 1e:1e:15:59:28:6a:51:07:57:5e:40:6d:03:bd:21:c7:cc:3c: 2a:58:20:74:8c:c9:93:c7:87:c2:e4:cf:0d:f0:22:fb:56:df: b7:fa:2f:e7:a2:2f:82:28:9d:7d:23:ea:d8:de:56:cb:95:95: 47:56:8f:58:8d:72:01:09:54:46:38:4f:60:82:51:ab:16:29: a6:3a:ba:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUwODA0MTkxMzA2WhcNMjUwODExMTkxMzA2WjAYMRYwFAYD VQQDEw02ODkxMDY0Mi1jMzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdG84XrxmLA4NjGP6kzKbHKAx8/Pww7zBju20Y/wmXkgPvzZJ8HpZAc3T//s +53/cuhPDBIAsdMD8KvW2C8aTzJXquF7Eq5GMj1UxD1VJ5iEXf/dBSOEMTfReuet Tr8uRqDVnsioI7X1vITPKcbfL8caTdkhyf5lC1SY71nJNM0VfJUa3nAs+Z43xitr ztxdyJfr9LN1P/TW9JxUxr2DP//VjjVMFZauQykgsDZuwnZ8TK5aeq05Qk0l3eaM GQXVsXQOu59lhHm9qK0YSDi8cYqTvmAJdUyBpYEWhkd8gY1pgHQqioKf6ad6DTgX rmimyynifotqL9ONuF43tW/tPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1DJb7N Tot8umSmmsqa5KWnpIgJMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZWXLiOcqbkfsw/KevV+IXH979WAfvbtN5VWTO0BYN8R0t36GPONPh 5MCX3aRiKQLgNEbnYZ3PTd7DMJjGJm4wXipIg0qRMkEYtOA+5U1ou+w1znKBdsRz FtmkoUJIt9ZJObOXuAjmsf6ePxd1PAOMhEmZG+YqbHHr0ioBjmMJpb3pbt/4CJXL xv0HrE3sOny0rchCqU6XfgMlMHju7U8QJFLLmyPHcL3YJCr5GrD9H/yqJ8geHhVZ KGpRB1deQG0DvSHHzDwqWCB0jMmTx4fC5M8N8CL7Vt+3+i/noi+CKJ19I+rY3lbL lZVHVo9YjXIBCVRGOE9gglGrFimmOrpz -----END CERTIFICATE-----Generated at Wed Aug 6 12:42:10 2025 by rpki-client