$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: VNXf4nG15fU3a8gNv0dINqMRA9dcL2Zav/8g2xsi0Jw= Subject key identifier: D9:15:B9:FF:50:21:2A:0D:2B:A0:A2:40:EE:7A:61:9A:85:EF:C1:6D Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07CF Signing time: Fri 08 Aug 2025 21:27:58 +0000 Manifest this update: Fri 08 Aug 2025 21:27:58 +0000 Manifest next update: Fri 15 Aug 2025 21:27:58 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: UkK7V6+epDA86OgWXzFML3JlCWwCVnPXL7fW0WPi3hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Aug 8 21:27:58 2025 GMT Not After : Aug 15 21:27:58 2025 GMT Subject: CN=68966bde-ce67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:d1:72:c0:16:ed:4b:0f:5a:14:5b:1c:4f: 74:40:21:2c:05:48:99:2a:e7:89:e5:60:2a:ff:18: 3d:96:bd:c3:46:ad:00:bc:24:10:17:e8:bf:d7:c2: 06:7a:6c:a4:81:cf:67:d5:26:7e:9a:c2:2c:bf:35: 28:9e:1e:b4:5a:46:25:cc:bf:c4:5c:0f:37:71:48: a2:9b:3e:20:a1:41:67:ab:71:b0:fd:97:30:59:a5: ca:e9:67:ae:b9:ec:9d:53:a0:43:ca:40:10:81:85: 2b:da:61:c1:5b:1d:29:de:e1:e7:ef:59:f6:2f:23: a4:05:fc:57:4b:5a:15:e8:f5:bc:43:9b:fd:ea:e8: a1:d5:1d:0b:90:23:15:ec:f1:08:58:60:da:e4:63: b8:63:83:ff:35:97:29:e6:d3:b5:cf:de:db:06:d0: fe:63:58:63:60:0e:52:2f:28:fb:b9:6c:40:97:35: 89:71:48:af:d7:8b:e5:44:9d:d4:c8:32:72:e7:57: af:4f:f9:0a:e4:07:91:22:41:30:ca:66:38:26:93: 86:1b:05:69:89:78:59:e3:fe:dd:f7:f1:28:6f:ea: 5d:1f:14:3e:a6:f8:de:95:11:18:5e:25:c1:4d:2d: db:d3:ee:46:3a:80:08:11:b1:70:78:ba:34:fc:6f: ed:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:15:B9:FF:50:21:2A:0D:2B:A0:A2:40:EE:7A:61:9A:85:EF:C1:6D X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:00:e0:48:34:f2:83:f6:0e:2f:02:ce:05:cf:eb:c8:dd:11: 4f:d0:92:df:62:e8:18:ee:5c:c3:6b:fd:22:da:80:45:0c:1b: 3c:98:71:8d:a2:2c:d2:9c:7d:c9:8c:67:00:42:b2:9c:ca:12: 45:27:89:97:34:af:50:92:06:e6:d8:ac:6c:d2:89:5b:c5:fd: ea:87:cf:24:02:99:ac:2f:ee:ca:40:d8:f4:7a:20:bc:06:41: c9:66:23:43:e7:48:4d:b7:59:fe:e2:3c:7f:23:30:fe:bb:64: 60:d5:6f:8f:8d:2e:9c:55:ad:b1:02:bc:ff:6b:64:73:7d:04: 5e:3e:9a:bb:68:ea:bc:b0:27:25:f5:71:d8:08:65:fc:85:9f: 73:0f:85:50:c6:0d:26:df:06:62:96:9a:69:15:d1:a8:04:8d: 1a:db:13:24:30:1a:8d:ee:f0:de:64:b4:bc:93:ed:e4:f5:41: 57:1a:26:2b:8b:13:f3:86:9d:ff:e5:2c:71:85:0c:dd:30:a8: 66:da:5e:d1:16:54:cc:9c:a4:3a:a0:0d:6a:1b:f8:f0:5b:ab: 0c:1b:01:b6:f9:99:3e:3f:ea:24:ef:22:d8:65:dd:f1:a6:ab: be:10:f1:df:54:87:d4:0e:7d:9b:a4:89:c1:9e:79:a3:c4:c3: 35:35:03:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUwODA4MjEyNzU4WhcNMjUwODE1MjEyNzU4WjAYMRYwFAYD VQQDEw02ODk2NmJkZS1jZTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1THRcsAW7UsPWhRbHE90QCEsBUiZKueJ5WAq/xg9lr3DRq0AvCQQF+i/18IG emykgc9n1SZ+msIsvzUonh60WkYlzL/EXA83cUiimz4goUFnq3Gw/ZcwWaXK6Weu ueydU6BDykAQgYUr2mHBWx0p3uHn71n2LyOkBfxXS1oV6PW8Q5v96uih1R0LkCMV 7PEIWGDa5GO4Y4P/NZcp5tO1z97bBtD+Y1hjYA5SLyj7uWxAlzWJcUiv14vlRJ3U yDJy51evT/kK5AeRIkEwymY4JpOGGwVpiXhZ4/7d9/Eob+pdHxQ+pvjelREYXiXB TS3b0+5GOoAIEbFweLo0/G/tMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkVuf9Q ISoNK6CiQO56YZqF78FtMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUAOBINPKD9g4vAs4Fz+vI3RFP0JLfYugY7lzDa/0i2oBFDBs8mHGN oizSnH3JjGcAQrKcyhJFJ4mXNK9Qkgbm2Kxs0olbxf3qh88kApmsL+7KQNj0eiC8 BkHJZiND50hNt1n+4jx/IzD+u2Rg1W+PjS6cVa2xArz/a2RzfQRePpq7aOq8sCcl 9XHYCGX8hZ9zD4VQxg0m3wZilpppFdGoBI0a2xMkMBqN7vDeZLS8k+3k9UFXGiYr ixPzhp3/5SxxhQzdMKhm2l7RFlTMnKQ6oA1qG/jwW6sMGwG2+Zk+P+ok7yLYZd3x pqu+EPHfVIfUDn2bpInBnnmjxMM1NQPZ -----END CERTIFICATE-----Generated at Sun Aug 10 04:49:48 2025 by rpki-client