$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: GZThkJhSUSqw4LMGpxL3v9V6gOwqSvuUX1lBHFOuWjo= Subject key identifier: 0B:6D:60:8E:F8:36:A3:E3:27:C0:7A:B9:46:EC:ED:F5:A1:35:AB:E6 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 01C8 Signing time: Sat 09 Aug 2025 03:21:36 +0000 Manifest this update: Sat 09 Aug 2025 03:21:36 +0000 Manifest next update: Sat 16 Aug 2025 03:21:36 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: Egj5zxrgR3px6rF/lZK0oVNgsS5zXkRs7ZnpB+vLj2Q=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Aug 9 03:21:36 2025 GMT Not After : Aug 16 03:21:36 2025 GMT Subject: CN=6896bec0-29ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5e:5b:19:1b:99:be:70:33:a6:ee:cc:8f:68: c4:7e:bf:5c:82:b4:e3:18:e0:3a:7c:c9:49:f7:66: 06:cf:0d:79:7a:1e:e2:19:92:39:12:c1:6c:59:7e: 1a:6d:3f:51:60:62:27:55:56:69:83:19:39:57:2f: 5d:14:9f:b3:8c:7b:ae:b2:7d:20:53:1d:b9:75:d7: 69:5a:33:c9:14:75:2c:7d:59:d9:b5:22:d6:ec:ef: 83:b1:af:4d:71:9a:28:0a:89:a9:47:20:96:d7:8b: 55:84:ee:18:7b:72:9f:2d:68:aa:c9:01:de:d0:1a: ec:26:39:02:f3:03:f4:0f:d8:0d:d8:d4:92:29:fb: 3a:b2:98:82:f4:4a:f3:ae:ae:6f:55:b1:03:bd:ce: 3f:3b:30:7d:e9:2a:c8:b4:45:dc:f7:6b:74:e6:b4: 59:66:e1:ac:c2:6e:f1:f4:52:6e:df:f5:6c:d2:bd: 7f:bf:b8:8c:b8:e2:48:f9:54:cd:bd:51:76:b1:01: 4c:9f:98:ce:c8:68:ca:42:48:80:3f:48:f2:4a:f3: e5:de:55:0b:b2:e0:55:a0:ff:5e:a1:0f:77:6a:d4: bd:cf:70:a8:15:b7:0f:3c:41:bd:25:b6:e2:d0:bc: 20:17:e3:06:71:0d:8b:73:2f:3a:1b:87:59:b1:11: 16:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6D:60:8E:F8:36:A3:E3:27:C0:7A:B9:46:EC:ED:F5:A1:35:AB:E6 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:2d:ea:67:9d:d2:b7:5d:a5:ac:c3:ca:4c:74:61:2b:b4:e3: 07:77:e8:c8:a1:20:c6:b4:32:62:d4:eb:9a:10:35:dd:9e:ad: 98:78:72:83:19:f9:67:14:6c:8e:69:09:7b:d4:47:96:30:32: b0:66:bf:c0:ca:7d:61:26:ad:f1:ea:8e:6e:a5:bd:1b:d5:a3: de:dc:f9:91:32:0f:fe:c0:15:63:04:58:12:89:a9:25:d7:71: 2b:b6:39:c5:d6:00:09:94:8a:d2:1c:5c:40:de:80:7f:06:b1: 13:6e:81:f8:49:b6:af:fe:da:2b:ed:4f:15:39:11:0a:89:e2: 40:99:8d:94:e8:a9:23:cb:66:70:ea:f9:17:cd:43:06:af:d7: 7d:3c:66:fc:cf:8f:73:c9:76:0e:00:91:51:c0:7c:e6:0f:1b: 49:0a:76:8c:3c:30:89:50:41:36:9d:7b:82:4c:03:52:32:29: 4c:b8:9a:bd:f1:e0:23:6b:a7:bf:93:c3:9e:ec:fb:83:a0:a1: 29:7b:81:4b:c9:48:14:64:0a:b8:7d:9a:f0:42:13:71:37:6b: 1b:b6:61:7f:1f:21:be:ea:9c:8c:a0:89:0b:a9:35:38:94:e4: 57:dd:7c:32:b8:36:cd:07:a4:ad:f0:cc:12:46:c9:bd:8d:c8: b4:e5:1b:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUwODA5MDMyMTM2WhcNMjUwODE2MDMyMTM2WjAYMRYwFAYD VQQDEw02ODk2YmVjMC0yOWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF5bGRuZvnAzpu7Mj2jEfr9cgrTjGOA6fMlJ92YGzw15eh7iGZI5EsFsWX4a bT9RYGInVVZpgxk5Vy9dFJ+zjHuusn0gUx25dddpWjPJFHUsfVnZtSLW7O+Dsa9N cZooCompRyCW14tVhO4Ye3KfLWiqyQHe0BrsJjkC8wP0D9gN2NSSKfs6spiC9Erz rq5vVbEDvc4/OzB96SrItEXc92t05rRZZuGswm7x9FJu3/Vs0r1/v7iMuOJI+VTN vVF2sQFMn5jOyGjKQkiAP0jySvPl3lULsuBVoP9eoQ93atS9z3CoFbcPPEG9Jbbi 0LwgF+MGcQ2Lcy86G4dZsREWywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAttYI74 NqPjJ8B6uUbs7fWhNavmMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7LepnndK3XaWsw8pMdGErtOMHd+jIoSDGtDJi1OuaEDXdnq2YeHKD GflnFGyOaQl71EeWMDKwZr/Ayn1hJq3x6o5upb0b1aPe3PmRMg/+wBVjBFgSiakl 13ErtjnF1gAJlIrSHFxA3oB/BrETboH4Sbav/tor7U8VOREKieJAmY2U6Kkjy2Zw 6vkXzUMGr9d9PGb8z49zyXYOAJFRwHzmDxtJCnaMPDCJUEE2nXuCTANSMilMuJq9 8eAja6e/k8Oe7PuDoKEpe4FLyUgUZAq4fZrwQhNxN2sbtmF/HyG+6pyMoIkLqTU4 lORX3XwyuDbNB6St8MwSRsm9jci05Rvy -----END CERTIFICATE-----Generated at Sun Aug 10 10:33:16 2025 by rpki-client