$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft File: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft (raw, json) Hash identifier: DL0bz5w+nqm5eSSC7sDhyrDsRtZj6aAhfNf+MRALZf8= Subject key identifier: 31:38:08:68:2D:30:76:24:30:EC:12:E3:6E:48:4B:F9:84:1C:4D:40 Authority key identifier: B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 Certificate issuer: /CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft Manifest number: FB Signing time: Sat 09 Aug 2025 05:32:36 +0000 Manifest this update: Sat 09 Aug 2025 05:32:35 +0000 Manifest next update: Sat 16 Aug 2025 05:32:35 +0000 Files and hashes: 1: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl (hash: lgISe1/3s4KWRYnKZHebkr6nzWYNjwhthex0BWIX95c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Validity Not Before: Aug 9 05:32:35 2025 GMT Not After : Aug 16 05:32:35 2025 GMT Subject: CN=6896dd73-1489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0a:e4:18:97:d8:30:15:61:fd:54:4f:e1:5f: 89:b1:13:0c:32:c3:ac:9b:c0:af:6e:45:3d:e9:7e: 23:bb:1e:44:93:32:b1:00:a9:30:05:f9:8b:46:c0: d4:e3:c7:82:61:48:4d:63:c6:cb:82:90:88:74:e9: e4:f1:ed:2e:b2:fd:4b:53:13:c3:3e:9d:00:05:e6: 90:b1:94:78:5e:84:a7:bf:b1:82:ce:b6:ac:ec:8f: 8c:b2:03:e5:37:93:ee:02:36:d1:92:b1:4b:c1:85: 02:11:30:4c:df:61:7d:ff:28:eb:72:22:9a:64:74: a1:78:ea:96:06:8d:6a:bc:23:58:18:b8:ab:cf:f4: d0:c5:cd:3f:e4:35:74:21:5b:60:00:0f:67:f3:04: 6f:3d:7c:92:d0:a7:b9:5f:ef:8d:96:98:34:a6:09: 9f:10:db:c1:51:65:4b:49:07:8b:e2:d4:e9:79:3c: ed:9a:f6:92:02:e5:6f:6e:1f:9f:6d:3d:57:cc:cf: 8d:bb:14:e4:5d:e4:25:c3:54:3b:c3:d7:d8:76:92: 5e:a5:18:49:5a:d0:a2:5f:2a:e3:90:93:43:cd:2c: c7:f4:47:18:e4:31:97:d6:5a:97:3c:0a:42:84:0b: 5b:df:be:8a:4e:0a:fb:d3:2f:eb:e6:0d:3c:86:b7: 12:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:38:08:68:2D:30:76:24:30:EC:12:E3:6E:48:4B:F9:84:1C:4D:40 X509v3 Authority Key Identifier: keyid:B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:b8:42:ab:dd:5e:a4:48:d4:fd:04:3b:e9:b7:2e:12:cd:75: 5c:9e:41:bb:75:ab:66:b5:07:20:b6:38:e1:a1:e1:bd:8d:8e: 6a:89:a1:e5:a3:6b:f7:81:db:29:a9:b6:32:b0:27:27:a4:10: 3f:4f:58:3c:6c:0e:09:98:3a:43:3b:21:fc:06:31:64:79:4b: ca:b0:a4:69:a6:d2:77:51:24:eb:13:c8:b9:a4:fc:c2:82:37: ef:ca:f3:c1:17:19:df:9c:d2:07:4c:d4:c0:1d:ec:9b:ad:ea: 03:0b:95:97:0c:ba:d5:bc:c2:19:68:a2:90:58:b3:5e:de:07: 4a:f6:d0:53:9a:41:8c:49:87:29:bd:ee:b0:a7:ac:e6:92:28: a4:40:83:01:ea:14:b2:7c:cd:c8:1b:9e:bf:05:e0:5a:b8:fe: 89:44:7d:5a:73:77:34:a7:13:05:94:eb:34:12:1f:6e:09:4d: 41:b3:49:3d:0b:c2:d0:64:01:5b:7f:6e:c9:43:5b:7a:d2:af: b7:e9:c7:23:36:00:b5:45:6e:ac:cf:2f:07:e2:77:5a:2c:62: 23:05:cf:0d:a5:3f:30:19:bb:fd:7d:c2:ce:df:20:50:1d:b2: 05:f4:52:16:f2:01:b5:f6:59:ad:28:f5:7f:ae:81:1e:81:20: df:e2:bd:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKEI1M0JDRTE2MUFDRjYzMDVFQzA1NUM1OUE4OTFFODIy QTExRUY4MDQwHhcNMjUwODA5MDUzMjM1WhcNMjUwODE2MDUzMjM1WjAYMRYwFAYD VQQDEw02ODk2ZGQ3My0xNDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwrkGJfYMBVh/VRP4V+JsRMMMsOsm8CvbkU96X4jux5EkzKxAKkwBfmLRsDU 48eCYUhNY8bLgpCIdOnk8e0usv1LUxPDPp0ABeaQsZR4XoSnv7GCzras7I+MsgPl N5PuAjbRkrFLwYUCETBM32F9/yjrciKaZHSheOqWBo1qvCNYGLirz/TQxc0/5DV0 IVtgAA9n8wRvPXyS0Ke5X++Nlpg0pgmfENvBUWVLSQeL4tTpeTztmvaSAuVvbh+f bT1XzM+NuxTkXeQlw1Q7w9fYdpJepRhJWtCiXyrjkJNDzSzH9EcY5DGX1lqXPApC hAtb376KTgr70y/r5g08hrcSwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE4CGgt MHYkMOwS425IS/mEHE1AMB8GA1UdIwQYMBaAFLU7zhYaz2MF7AVcWaiR6CKhHvgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS82NTlFOTAxMEVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi90VHZPRmhyUFl3WHNCVnhacUpIb0lxRWUt QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RUdk9GaHJQWXdYc0JWeFpxSkhvSXFFZS1BUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS82NTlFOTAxMEVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi90VHZPRmhyUFl3 WHNCVnhacUpIb0lxRWUtQVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSuEKr3V6kSNT9BDvpty4SzXVcnkG7datmtQcgtjjhoeG9jY5qiaHl o2v3gdspqbYysCcnpBA/T1g8bA4JmDpDOyH8BjFkeUvKsKRpptJ3USTrE8i5pPzC gjfvyvPBFxnfnNIHTNTAHeybreoDC5WXDLrVvMIZaKKQWLNe3gdK9tBTmkGMSYcp ve6wp6zmkiikQIMB6hSyfM3IG56/BeBauP6JRH1ac3c0pxMFlOs0Eh9uCU1Bs0k9 C8LQZAFbf27JQ1t60q+36ccjNgC1RW6szy8H4ndaLGIjBc8NpT8wGbv9fcLO3yBQ HbIF9FIW8gG19lmtKPV/roEegSDf4r0b -----END CERTIFICATE-----Generated at Sun Aug 10 18:24:32 2025 by rpki-client