$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: YEpH46+8hacrvWp802iwSfyhdxUDWASuRBs7oOogRw0= Subject key identifier: 56:07:3A:E2:B3:71:A2:46:56:FE:D2:0A:4D:67:8A:52:62:98:99:C1 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 02A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 02A0 Signing time: Mon 11 Aug 2025 01:47:36 +0000 Manifest this update: Mon 11 Aug 2025 01:47:35 +0000 Manifest next update: Mon 18 Aug 2025 01:47:35 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: jd/ljKfeEzCl5HISHAGmgwPY1nvYu4FyoROH96o4drU=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: M5cm8ltbxVdRcxdqwX20eH12vgkHWhKoQMG7Vy7tBQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Aug 11 01:47:35 2025 GMT Not After : Aug 18 01:47:35 2025 GMT Subject: CN=68994bb7-6e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d1:a7:2f:1e:9c:71:cc:e4:eb:e1:e5:5e:05: 46:f8:3c:74:a4:1d:b7:d9:68:31:6e:77:b4:a7:cc: 9d:f2:3f:84:3a:a0:fc:36:33:5a:4d:9b:5e:5a:70: 1c:0f:ce:2d:a2:59:4a:5c:a7:01:4c:40:d4:20:00: 54:b3:62:6e:b9:05:77:1b:5c:33:d6:73:0f:5c:77: 7f:b0:92:e5:96:4e:cb:2d:6e:fc:a4:a0:ce:0d:e6: 47:23:c9:a5:33:22:db:54:68:82:da:98:e8:f8:3b: 51:90:33:c0:85:43:b0:dd:8e:18:b4:fd:aa:ab:c2: 80:5f:55:51:e9:cf:12:d3:67:90:e3:5c:98:12:30: 3e:3a:ab:f3:0e:31:ed:65:47:64:62:af:4f:e0:05: fd:43:c2:57:dc:53:7a:a6:7c:e2:b9:d6:8b:16:15: 23:8e:5f:d8:b7:02:86:07:97:d0:5f:a5:d8:97:49: 91:1d:3e:54:b5:a9:d5:55:54:4f:08:56:39:c6:a0: fa:25:f7:96:41:c1:7a:02:ea:0b:04:37:cb:9d:6b: 15:f4:8c:a8:1d:77:1e:c6:4a:40:ff:59:96:5c:34: 56:61:5a:7c:5c:32:d3:e5:05:fe:39:f7:f4:e5:e9: 93:84:cd:2c:67:bc:3c:49:77:86:9a:ad:7d:f6:fe: 36:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:07:3A:E2:B3:71:A2:46:56:FE:D2:0A:4D:67:8A:52:62:98:99:C1 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:16:94:8a:bb:6c:51:96:b8:85:eb:c7:4b:f0:3f:56:71:07: 74:32:d0:d8:05:44:bf:19:e4:4a:cb:07:23:15:3f:1b:0d:a0: 43:7c:20:96:97:9a:1f:02:59:ee:9a:c1:72:e9:c9:e9:1b:f8: 09:1e:71:79:ed:48:5f:87:b5:ab:1d:cc:ae:ed:04:b8:05:bc: 45:bc:83:b4:68:e9:2b:a2:e5:c9:76:56:b5:0c:d8:fa:31:c2: b5:e2:09:cf:6e:cc:1c:89:63:38:34:bd:d7:a9:6e:c7:71:11: 6c:32:7d:d8:c3:7c:14:be:8f:6a:f0:e8:96:86:97:f2:87:f5: 10:5f:54:e4:33:aa:51:c2:52:b0:dd:23:6d:0c:67:c0:8e:15: 17:f6:72:9d:ce:3f:be:4b:e1:41:84:2d:a2:45:5c:3b:67:4b: 3e:29:68:09:ac:f8:7a:6a:0f:de:5d:db:ee:a9:90:f4:fa:03: 41:70:f3:d9:45:ff:97:b4:31:37:c7:13:2b:36:16:dd:a8:fe: a2:36:04:2a:5e:ff:cc:55:c3:d1:87:e1:df:6f:96:50:00:cf: 9e:c5:8d:a9:32:be:d8:d2:e4:e7:86:c9:fb:a9:b6:fd:aa:18: b7:74:ca:85:36:c4:e8:fc:d6:d0:f0:32:5f:2c:2d:30:29:7b: a9:e7:63:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwODExMDE0NzM1WhcNMjUwODE4MDE0NzM1WjAYMRYwFAYD VQQDEw02ODk5NGJiNy02ZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59GnLx6ccczk6+HlXgVG+Dx0pB232Wgxbne0p8yd8j+EOqD8NjNaTZteWnAc D84tollKXKcBTEDUIABUs2JuuQV3G1wz1nMPXHd/sJLllk7LLW78pKDODeZHI8ml MyLbVGiC2pjo+DtRkDPAhUOw3Y4YtP2qq8KAX1VR6c8S02eQ41yYEjA+OqvzDjHt ZUdkYq9P4AX9Q8JX3FN6pnziudaLFhUjjl/YtwKGB5fQX6XYl0mRHT5UtanVVVRP CFY5xqD6JfeWQcF6AuoLBDfLnWsV9IyoHXcexkpA/1mWXDRWYVp8XDLT5QX+Off0 5emThM0sZ7w8SXeGmq199v42OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYHOuKz caJGVv7SCk1nilJimJnBMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAFpSKu2xRlriF68dL8D9WcQd0MtDYBUS/GeRKywcjFT8bDaBDfCCW l5ofAlnumsFy6cnpG/gJHnF57Uhfh7WrHcyu7QS4BbxFvIO0aOkrouXJdla1DNj6 McK14gnPbswciWM4NL3XqW7HcRFsMn3Yw3wUvo9q8OiWhpfyh/UQX1TkM6pRwlKw 3SNtDGfAjhUX9nKdzj++S+FBhC2iRVw7Z0s+KWgJrPh6ag/eXdvuqZD0+gNBcPPZ Rf+XtDE3xxMrNhbdqP6iNgQqXv/MVcPRh+Hfb5ZQAM+exY2pMr7Y0uTnhsn7qbb9 qhi3dMqFNsTo/NbQ8DJfLC0wKXup52Mp -----END CERTIFICATE-----Generated at Mon Aug 11 06:00:34 2025 by rpki-client