$ rpki-client -vvf rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft File: 0dZcikMk4of26pFbOfXTYC0eN6Y.mft (raw, json) Hash identifier: enw85BPIIq4MTsLls4Du382p43sDcrPOD0/5jQiywoU= Subject key identifier: 54:4F:9B:CA:3E:BA:26:38:AD:5F:0D:AF:2E:10:39:9D:9C:E5:E1:6C Authority key identifier: D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 Certificate issuer: /CN=A91743EF/serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Certificate serial: 1833 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft Manifest number: 1821 Signing time: Sat 02 Aug 2025 16:41:10 +0000 Manifest this update: Sat 02 Aug 2025 16:41:09 +0000 Manifest next update: Sat 09 Aug 2025 16:41:09 +0000 Files and hashes: 1: 0dZcikMk4of26pFbOfXTYC0eN6Y.crl (hash: vCYgfrHNzlNRVhq1Lej1YGp+eAYA6zphuIGJg+w093M=) 2: 8B2EE9667A0911EE934F1262C4F9AE02.roa (hash: c58kYquiR7PhXwHG1m2k+88ex1+jC31dtd+q7AHBr2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 16:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6195 (0x1833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91743EF, serialNumber=D1D65C8A4324E287F6EA915B39F5D3602D1E37A6 Validity Not Before: Aug 2 16:41:09 2025 GMT Not After : Aug 9 16:41:09 2025 GMT Subject: CN=688e3fa5-b164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3b:4c:1a:90:80:6d:2c:e6:08:a2:e8:49:d6: f5:6a:32:4d:d1:bc:9c:41:39:83:ee:8b:92:23:2c: 3b:d1:17:43:ad:26:9a:ac:c2:22:24:80:4b:48:7c: ab:41:88:77:cf:73:76:d7:b1:f6:e3:82:e3:1b:4d: 02:14:01:21:a8:61:a1:d4:d8:2a:1c:81:0d:b7:ca: 2f:0f:7c:3c:82:c7:d9:9a:cb:5c:0e:a2:b4:0e:1f: 2f:70:20:8e:5b:d1:17:bc:bf:4f:35:bf:e3:a5:db: c8:b5:e8:23:73:92:00:61:ab:00:d3:5c:af:e3:5d: 00:14:8e:48:6a:12:17:4f:e0:56:de:fa:20:d8:75: b5:5d:13:d2:ad:97:cc:4d:73:a6:f1:9c:05:df:85: 20:2b:ef:e1:9c:5a:7e:49:0b:c6:25:a9:62:56:dd: 8c:31:0a:08:8b:c9:df:76:75:20:79:40:fe:aa:b0: 19:46:ff:0b:82:bd:1c:18:0f:7b:8a:c4:20:02:5f: ae:29:79:d6:87:2a:dc:71:3b:cd:b9:9e:29:d0:ef: 60:3e:83:ac:74:c7:51:ff:87:dc:03:2c:af:59:17: a1:d4:fa:95:9e:f0:d0:f5:91:a1:65:68:ff:27:6f: 59:d8:cc:28:43:2d:a2:7c:eb:87:a5:8f:7d:b8:80: 2a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4F:9B:CA:3E:BA:26:38:AD:5F:0D:AF:2E:10:39:9D:9C:E5:E1:6C X509v3 Authority Key Identifier: keyid:D1:D6:5C:8A:43:24:E2:87:F6:EA:91:5B:39:F5:D3:60:2D:1E:37:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0dZcikMk4of26pFbOfXTYC0eN6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91743EF/E6ABB010BA4011E7A08D266FC4F9AE02/0dZcikMk4of26pFbOfXTYC0eN6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:72:08:66:f5:33:d5:23:65:95:07:66:13:e7:db:84:6e:5d: 72:4e:f2:ff:61:26:87:dc:db:ef:da:3e:30:bc:58:41:68:f7: 19:4a:6a:d1:31:cb:5a:d9:de:58:da:59:3f:7c:c4:be:df:07: 4d:16:cc:e6:12:c8:07:8a:43:a9:10:51:55:f3:c5:76:38:91: c7:e0:3e:71:0b:f3:29:bd:01:52:79:0b:6c:c0:0b:dc:ca:dd: 24:f9:85:80:88:ef:8e:68:5d:dc:c0:88:b7:f8:2b:38:40:17: 5d:34:02:08:9e:2f:fb:46:41:dd:63:65:ee:cd:66:51:58:c3: e0:dd:b4:4c:fb:d7:14:c6:40:35:b6:ca:0f:98:66:ff:bd:f2: 01:36:cf:5e:21:78:8e:84:c1:a6:7c:59:42:b0:b9:73:f5:72: 1a:70:60:66:00:ff:a0:7c:14:7a:71:a8:f4:8f:ac:84:37:f2: e9:73:c2:7b:9b:21:50:00:aa:2f:64:70:a5:e1:e7:67:72:9e: 78:08:bb:13:27:a1:b3:fb:a2:0c:bf:4d:ba:9f:e4:e6:fb:15: 8c:d8:2a:4c:06:48:eb:f9:3d:66:6f:1c:f2:fa:a8:40:2a:92: 2b:8b:c0:e1:f7:12:8c:93:69:aa:d1:bf:05:8e:41:bb:ed:e1: b6:90:9d:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzRUYxMTAvBgNVBAUTKEQxRDY1QzhBNDMyNEUyODdGNkVBOTE1QjM5RjVEMzYw MkQxRTM3QTYwHhcNMjUwODAyMTY0MTA5WhcNMjUwODA5MTY0MTA5WjAYMRYwFAYD VQQDEw02ODhlM2ZhNS1iMTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ztMGpCAbSzmCKLoSdb1ajJN0bycQTmD7ouSIyw70RdDrSaarMIiJIBLSHyr QYh3z3N217H244LjG00CFAEhqGGh1NgqHIENt8ovD3w8gsfZmstcDqK0Dh8vcCCO W9EXvL9PNb/jpdvItegjc5IAYasA01yv410AFI5IahIXT+BW3vog2HW1XRPSrZfM TXOm8ZwF34UgK+/hnFp+SQvGJaliVt2MMQoIi8nfdnUgeUD+qrAZRv8Lgr0cGA97 isQgAl+uKXnWhyrccTvNuZ4p0O9gPoOsdMdR/4fcAyyvWReh1PqVnvDQ9ZGhZWj/ J29Z2MwoQy2ifOuHpY99uIAqfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRPm8o+ uiY4rV8Nry4QOZ2c5eFsMB8GA1UdIwQYMBaAFNHWXIpDJOKH9uqRWzn102AtHjem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDNFRi9FNkFCQjAxMEJB NDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRvZjI2cEZiT2ZYVFlDMGVO NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBkWmNpa01rNG9mMjZwRmJPZlhUWUMwZU42WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDNFRi9FNkFCQjAxMEJBNDAxMUU3QTA4RDI2NkZDNEY5QUUwMi8wZFpjaWtNazRv ZjI2cEZiT2ZYVFlDMGVONlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEcghm9TPVI2WVB2YT59uEbl1yTvL/YSaH3Nvv2j4wvFhBaPcZSmrR Mcta2d5Y2lk/fMS+3wdNFszmEsgHikOpEFFV88V2OJHH4D5xC/MpvQFSeQtswAvc yt0k+YWAiO+OaF3cwIi3+Cs4QBddNAIIni/7RkHdY2XuzWZRWMPg3bRM+9cUxkA1 tsoPmGb/vfIBNs9eIXiOhMGmfFlCsLlz9XIacGBmAP+gfBR6caj0j6yEN/Lpc8J7 myFQAKovZHCl4edncp54CLsTJ6Gz+6IMv026n+Tm+xWM2CpMBkjr+T1mbxzy+qhA KpIri8Dh9xKMk2mq0b8FjkG77eG2kJ3p -----END CERTIFICATE-----Generated at Mon Aug 4 11:24:47 2025 by rpki-client