$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft File: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft (raw, json) Hash identifier: xu2eXg8QyipZIJTqEMfQtvQLU3IawgdSqEHWlGaLVBc= Subject key identifier: 4F:E6:7C:C2:D8:C3:65:23:9F:A2:87:26:B7:A2:69:C9:E5:DF:CF:25 Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 07AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft Manifest number: 07A7 Signing time: Wed 06 Aug 2025 21:39:22 +0000 Manifest this update: Wed 06 Aug 2025 21:39:21 +0000 Manifest next update: Wed 13 Aug 2025 21:39:21 +0000 Files and hashes: 1: tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl (hash: 48eYrPAeDPKPC8ksieSHWbvPbyUIbheBa1dluYswiDc=) 2: E51ECC8610E711EBAD066E1DC4F9AE02.roa (hash: xKjoE/L7amuNhMSwGDrHGE81K3Mhyx0/ODd0Eq8CTmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 21:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB, serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Aug 6 21:39:21 2025 GMT Not After : Aug 13 21:39:21 2025 GMT Subject: CN=6893cb89-80d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3c:15:04:35:a0:2f:b5:31:4d:20:e9:2c:84: d5:cc:58:4a:50:30:4a:dd:5f:df:0d:d0:23:66:55: 23:69:af:b5:c8:f9:eb:84:b4:8d:3d:94:1d:43:80: d9:4a:8e:c5:64:98:cf:a7:ff:0d:f9:b6:9c:66:1d: b4:1e:46:d6:dd:b4:b7:18:19:f2:17:84:36:3a:27: 9d:72:01:c8:4e:aa:fc:f8:90:26:4b:71:27:ce:c5: 0b:3d:16:02:fe:af:e2:c9:35:96:76:6b:2c:3c:d0: 83:d4:73:08:b2:3e:22:b4:a4:0b:75:3c:59:be:4a: 0f:ef:10:db:5a:73:08:d7:da:99:8c:b0:83:47:08: 97:f6:6f:22:2e:89:bb:92:05:86:ff:2e:2d:43:16: a2:20:85:b2:ad:e8:fa:52:17:24:e3:3c:63:aa:32: b2:78:c7:41:9a:8d:8d:d8:bf:cb:33:99:7c:58:5e: 65:55:88:d8:8b:36:ec:6c:41:8c:0d:63:f0:56:88: a4:d3:4d:23:97:26:83:a6:c2:45:cd:d4:0a:da:31: c8:da:7a:58:99:f7:ae:9b:89:e8:f2:0f:75:9a:c5: 8c:00:a0:68:dc:3d:2c:0d:ce:85:d9:47:35:db:d3: 41:4b:a7:ac:14:89:bd:ef:e7:14:7d:2d:35:ce:c1: 6f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E6:7C:C2:D8:C3:65:23:9F:A2:87:26:B7:A2:69:C9:E5:DF:CF:25 X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e7:bc:cd:d9:06:6e:76:74:df:8f:71:5a:97:e2:dd:d3:74: b3:06:49:07:20:c9:d0:f8:f0:58:74:90:9e:e3:4d:3e:27:f8: 01:ba:61:06:57:71:d8:9e:00:4d:0f:16:98:72:1a:5c:a1:22: 75:a5:8e:05:15:0b:0a:6e:b6:35:30:5c:ef:8f:f0:60:d1:d1: 00:bb:ce:58:8f:37:b1:25:8a:c8:92:e8:13:db:ad:97:79:ec: e0:31:00:6c:4f:f9:ec:2c:64:7d:38:4d:f9:e1:c5:5f:c3:19: 1a:cf:46:6b:ba:e4:dc:be:7a:b9:d4:28:78:91:22:07:90:be: 09:75:02:d1:ab:dc:63:48:7a:71:72:0c:6e:fa:34:6f:a2:55: d3:f1:e9:3f:6c:4f:f9:6c:04:ef:4f:a1:56:62:03:fa:a1:96: 42:10:8f:fa:82:f6:50:41:ea:db:37:d0:14:b8:6a:a5:fc:c6: 0d:12:d5:4a:7f:c5:c8:af:4e:a2:3b:b2:1a:56:54:46:a3:4a: 8a:cd:f0:db:75:78:8b:65:be:c9:8f:9e:c6:6f:12:74:70:2e: 69:aa:f6:d8:42:67:db:2b:71:05:e7:38:23:a0:c2:1b:96:c0: 6b:ef:61:20:7b:2c:d7:a3:df:ff:ca:d7:08:05:cc:30:fc:5e: 12:d9:24:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjUwODA2MjEzOTIxWhcNMjUwODEzMjEzOTIxWjAYMRYwFAYD VQQDEw02ODkzY2I4OS04MGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzwVBDWgL7UxTSDpLITVzFhKUDBK3V/fDdAjZlUjaa+1yPnrhLSNPZQdQ4DZ So7FZJjPp/8N+bacZh20HkbW3bS3GBnyF4Q2OiedcgHITqr8+JAmS3EnzsULPRYC /q/iyTWWdmssPNCD1HMIsj4itKQLdTxZvkoP7xDbWnMI19qZjLCDRwiX9m8iLom7 kgWG/y4tQxaiIIWyrej6Uhck4zxjqjKyeMdBmo2N2L/LM5l8WF5lVYjYizbsbEGM DWPwVoik000jlyaDpsJFzdQK2jHI2npYmfeum4no8g91msWMAKBo3D0sDc6F2Uc1 29NBS6esFIm97+cUfS01zsFvdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/mfMLY w2Ujn6KHJreiacnl388lMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCQi9GQzczRkEwNjEwRTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBL QzZ6S2drTjRBdnRjTUxaV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/57zN2QZudnTfj3Fal+Ld03SzBkkHIMnQ+PBYdJCe400+J/gBumEG V3HYngBNDxaYchpcoSJ1pY4FFQsKbrY1MFzvj/Bg0dEAu85YjzexJYrIkugT262X eezgMQBsT/nsLGR9OE354cVfwxkaz0ZruuTcvnq51Ch4kSIHkL4JdQLRq9xjSHpx cgxu+jRvolXT8ek/bE/5bATvT6FWYgP6oZZCEI/6gvZQQerbN9AUuGql/MYNEtVK f8XIr06iO7IaVlRGo0qKzfDbdXiLZb7Jj57GbxJ0cC5pqvbYQmfbK3EF5zgjoMIb lsBr72EgeyzXo9//ytcIBcww/F4S2SR1 -----END CERTIFICATE-----Generated at Fri Aug 8 19:37:50 2025 by rpki-client