$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft File: r-73ovgxqXVbE7N-tum5HYHoqeg.mft (raw, json) Hash identifier: ekbeI0i7ieOHcn/uMG5YdVSDOQFCy6YEHydhBh2tbs8= Subject key identifier: 88:9E:D4:52:F2:C5:91:98:E1:F7:94:AE:45:51:56:4A:19:49:60:A7 Authority key identifier: AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 Certificate issuer: /CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Certificate serial: 05FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft Manifest number: 05F6 Signing time: Fri 08 Aug 2025 23:21:16 +0000 Manifest this update: Fri 08 Aug 2025 23:21:16 +0000 Manifest next update: Fri 15 Aug 2025 23:21:16 +0000 Files and hashes: 1: r-73ovgxqXVbE7N-tum5HYHoqeg.crl (hash: FwRCEJV4hV2C6OzC0PBXvTR8ISBesN5SbEmUDiZv574=) 2: C17E1DDCBC7111EBB1423E5FC4F9AE02.roa (hash: LpIzyfQvDqArXC9hZJ5ZqGifDCSL9ldak3ZwH8S2NRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1531 (0x5fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D, serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Validity Not Before: Aug 8 23:21:16 2025 GMT Not After : Aug 15 23:21:16 2025 GMT Subject: CN=6896866c-8be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:81:fe:11:64:b1:1d:a4:f3:23:4d:8f:ad:51: 3f:44:f2:81:c4:fb:7b:cb:9c:74:d1:19:6e:28:35: ec:4e:c9:9c:f5:16:ff:32:56:55:68:ae:fe:30:d7: 82:73:d5:33:cd:a4:ed:53:5d:aa:a4:75:62:1d:70: 04:2f:db:41:7b:80:e1:75:c6:37:d7:1e:fd:bb:a6: 55:3d:4c:48:58:cb:83:0a:90:ac:cb:e6:b8:50:ff: ad:26:dc:0c:01:9c:d6:fb:28:1f:7d:70:07:d7:25: f3:00:cd:31:fe:63:1f:30:2d:ab:2b:d4:57:00:73: fe:01:97:2f:5c:e2:92:5e:f8:14:35:58:d0:f2:8d: f5:27:11:c0:d1:e5:bb:70:2c:cf:13:67:75:52:cd: aa:1d:78:13:4e:32:5d:6d:ba:2e:71:9c:f5:ad:6f: c0:c2:c5:9d:09:21:1b:cb:30:1d:52:9e:b1:7a:7a: 33:27:26:b1:87:dc:96:37:fd:65:a1:b0:1d:12:b0: 0b:44:33:5b:ae:76:bd:0a:8b:0e:bf:d8:48:a4:fd: 78:39:eb:db:93:b6:4c:67:a3:91:78:9f:2b:ba:d9: 7c:eb:68:8c:9c:9a:bc:27:5c:67:b0:96:7e:03:3e: 54:f9:08:70:ae:fd:8b:f0:69:f1:52:9c:93:90:b0: b6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9E:D4:52:F2:C5:91:98:E1:F7:94:AE:45:51:56:4A:19:49:60:A7 X509v3 Authority Key Identifier: keyid:AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:70:eb:d9:16:25:cc:29:8e:85:f5:13:22:c7:09:f8:fe:a9: 9c:e7:7b:f2:11:08:ad:58:7e:62:da:26:18:26:51:0e:51:f8: 14:4d:c2:f8:10:69:c6:da:92:30:6e:3a:51:a7:74:bf:8f:3d: b9:b4:4d:30:d8:90:59:2c:94:11:1a:e7:28:c5:51:f6:87:7f: 9b:4b:b3:70:9d:17:5e:5f:6b:42:cc:1d:57:fd:60:a1:aa:b3: 96:b0:80:5a:2b:4e:07:1c:2a:96:ac:f9:5f:f7:7e:e3:ca:0c: 92:af:20:28:3a:a5:68:f9:bc:86:78:58:69:8b:cf:fa:58:49: ce:0a:01:7d:3f:96:27:ee:85:69:9a:ce:d9:96:2f:b8:a2:63: 76:78:e3:08:f7:15:5f:af:6a:80:b8:14:d9:f8:32:c8:8d:55: f3:5f:e8:a4:3c:c7:76:82:52:82:ef:82:42:5d:dd:67:59:af: 70:e8:0c:7f:03:c3:3c:05:34:40:5b:77:cb:ff:64:99:fa:76: f5:b8:38:1a:2b:1a:60:d7:60:eb:db:78:3e:d8:b4:7a:c1:17: b8:16:9b:cc:c2:ec:d6:67:ca:61:88:bf:1a:85:12:86:90:d4: 62:ff:8e:8a:66:58:07:33:b4:9e:40:bf:80:99:a0:b4:fc:cd: 3f:e3:d5:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGRUVGN0EyRjgzMUE5NzU1QjEzQjM3RUI2RTlCOTFE ODFFOEE5RTgwHhcNMjUwODA4MjMyMTE2WhcNMjUwODE1MjMyMTE2WjAYMRYwFAYD VQQDEw02ODk2ODY2Yy04YmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9YH+EWSxHaTzI02PrVE/RPKBxPt7y5x00RluKDXsTsmc9Rb/MlZVaK7+MNeC c9UzzaTtU12qpHViHXAEL9tBe4DhdcY31x79u6ZVPUxIWMuDCpCsy+a4UP+tJtwM AZzW+ygffXAH1yXzAM0x/mMfMC2rK9RXAHP+AZcvXOKSXvgUNVjQ8o31JxHA0eW7 cCzPE2d1Us2qHXgTTjJdbboucZz1rW/AwsWdCSEbyzAdUp6xenozJyaxh9yWN/1l obAdErALRDNbrna9CosOv9hIpP14Oevbk7ZMZ6OReJ8rutl862iMnJq8J1xnsJZ+ Az5U+Qhwrv2L8GnxUpyTkLC2tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIie1FLy xZGY4feUrkVRVkoZSWCnMB8GA1UdIwQYMBaAFK/u96L4Mal1WxOzfrbpuR2B6Kno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC9GRDg2MEY2OEJD NkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFYVmJFN04tdHVtNUhZSG9x ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItNzNvdmd4cVhWYkU3Ti10dW01SFlIb3FlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC9GRDg2MEY2OEJDNkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFY VmJFN04tdHVtNUhZSG9xZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4cOvZFiXMKY6F9RMixwn4/qmc53vyEQitWH5i2iYYJlEOUfgUTcL4 EGnG2pIwbjpRp3S/jz25tE0w2JBZLJQRGucoxVH2h3+bS7NwnRdeX2tCzB1X/WCh qrOWsIBaK04HHCqWrPlf937jygySryAoOqVo+byGeFhpi8/6WEnOCgF9P5Yn7oVp ms7Zli+4omN2eOMI9xVfr2qAuBTZ+DLIjVXzX+ikPMd2glKC74JCXd1nWa9w6Ax/ A8M8BTRAW3fL/2SZ+nb1uDgaKxpg12Dr23g+2LR6wRe4FpvMwuzWZ8phiL8ahRKG kNRi/46KZlgHM7SeQL+AmaC0/M0/49W9 -----END CERTIFICATE-----Generated at Sat Aug 9 10:53:11 2025 by rpki-client