$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: I7TMtrNAWHvpM+164yUk2Z8vQ/DL2+p81mjDAQpCynU= Subject key identifier: 41:F0:73:22:CA:E5:D4:30:48:A7:7D:B1:91:24:DD:54:52:70:92:26 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 01C4 Signing time: Thu 07 Aug 2025 03:25:42 +0000 Manifest this update: Thu 07 Aug 2025 03:25:42 +0000 Manifest next update: Thu 14 Aug 2025 03:25:42 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: BepmDOmw+L+6sCy8lHlZp5s9u6o3QQz/p5U19Sakrz4=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Aug 7 03:25:42 2025 GMT Not After : Aug 14 03:25:42 2025 GMT Subject: CN=68941cb6-8dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:99:5f:16:9c:d3:f4:24:9b:6f:e1:e7:59:d0: 4c:45:66:e2:2c:b6:10:14:a7:b5:5a:be:6e:60:92: d4:b2:87:2c:65:bc:90:c3:2a:58:17:dc:30:15:0d: 15:05:3f:02:cb:99:3c:f1:ce:5b:fc:a9:6e:9d:b9: 60:04:ea:15:9d:69:fd:c0:5f:4d:0d:2d:92:18:4f: 05:16:5a:e1:b5:5a:bf:a3:c6:f8:59:28:f0:6c:dd: d3:dd:75:55:3d:08:27:bd:3b:71:27:78:e8:ba:3e: e9:ef:1c:2e:20:0e:31:8b:a8:97:34:8d:eb:29:32: 90:d0:7a:e8:69:e0:80:86:ff:57:44:1e:8a:61:32: b6:19:3f:48:cd:53:a6:af:92:81:42:4a:96:3c:94: da:3f:37:bc:b6:97:7f:69:01:52:63:b6:33:fb:df: c4:1b:f4:eb:6e:fa:b1:c4:a2:ea:5a:d0:ea:8e:c0: e9:21:5a:40:7a:41:5d:18:94:7e:f9:1a:e3:ac:39: 7f:3d:72:64:0c:63:6c:4a:77:af:0b:49:e4:de:d7: 78:66:77:d6:f5:fe:5e:da:10:bd:6e:7c:7d:1f:40: 11:da:1d:6d:cb:cf:b6:e7:70:18:75:06:14:c5:e2: 5d:df:f1:33:18:fc:e9:56:c3:6e:ee:14:1f:45:38: 0d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F0:73:22:CA:E5:D4:30:48:A7:7D:B1:91:24:DD:54:52:70:92:26 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:70:75:3d:cc:2e:82:c7:0e:97:3a:c8:0e:98:95:28:33:c9: f7:e2:16:93:5d:4f:cc:be:8e:06:e2:98:8c:73:85:f2:95:62: 6b:03:86:27:97:1d:f9:2d:90:25:a3:a1:4d:70:fc:c5:b3:39: c6:2c:23:03:85:41:59:ba:8f:ed:8b:09:6e:71:63:9a:ee:4a: 89:fc:ec:9e:42:4d:b1:38:e0:0c:c5:6c:77:22:b8:07:96:11: 13:49:a6:6c:94:fc:f9:13:39:a4:89:8a:ab:84:ca:eb:3a:54: bf:62:c8:07:a4:16:67:0d:e8:77:80:48:22:0f:d2:8a:f9:12: e3:85:7b:13:77:e4:9c:31:89:8d:17:40:7f:0f:b0:72:68:14: b0:8c:89:52:2d:f8:21:96:6d:29:5a:b0:d3:e4:47:51:c6:ce: 38:1d:bb:5c:fa:95:7b:11:2e:26:a3:ba:6b:f9:86:1d:67:7a: f6:67:dd:fb:5c:24:8e:88:cc:96:d8:b1:e7:c4:d3:b8:15:7f: 5b:19:aa:75:df:c1:0b:7f:3e:4d:a9:08:ff:4d:41:83:c0:fc: 25:1f:04:c7:f5:38:bf:71:b5:6b:44:02:37:a3:f3:6a:6f:03: 90:07:15:a0:83:31:bc:33:55:80:94:4d:10:50:a9:5b:4c:f6: a7:2b:0e:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUwODA3MDMyNTQyWhcNMjUwODE0MDMyNTQyWjAYMRYwFAYD VQQDEw02ODk0MWNiNi04ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxplfFpzT9CSbb+HnWdBMRWbiLLYQFKe1Wr5uYJLUsocsZbyQwypYF9wwFQ0V BT8Cy5k88c5b/KlunblgBOoVnWn9wF9NDS2SGE8FFlrhtVq/o8b4WSjwbN3T3XVV PQgnvTtxJ3jouj7p7xwuIA4xi6iXNI3rKTKQ0HroaeCAhv9XRB6KYTK2GT9IzVOm r5KBQkqWPJTaPze8tpd/aQFSY7Yz+9/EG/TrbvqxxKLqWtDqjsDpIVpAekFdGJR+ +RrjrDl/PXJkDGNsSnevC0nk3td4ZnfW9f5e2hC9bnx9H0AR2h1ty8+253AYdQYU xeJd3/EzGPzpVsNu7hQfRTgNLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHwcyLK 5dQwSKd9sZEk3VRScJImMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLcHU9zC6Cxw6XOsgOmJUoM8n34haTXU/Mvo4G4piMc4XylWJrA4Yn lx35LZAlo6FNcPzFsznGLCMDhUFZuo/tiwlucWOa7kqJ/OyeQk2xOOAMxWx3IrgH lhETSaZslPz5EzmkiYqrhMrrOlS/YsgHpBZnDeh3gEgiD9KK+RLjhXsTd+ScMYmN F0B/D7ByaBSwjIlSLfghlm0pWrDT5EdRxs44Hbtc+pV7ES4mo7pr+YYdZ3r2Z937 XCSOiMyW2LHnxNO4FX9bGap138ELfz5NqQj/TUGDwPwlHwTH9Ti/cbVrRAI3o/Nq bwOQBxWggzG8M1WAlE0QUKlbTPanKw6A -----END CERTIFICATE-----Generated at Fri Aug 8 19:25:09 2025 by rpki-client