$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft File: -L4s6ssxJNZg8w-KJzgGZIr0PIc.mft (raw, json) Hash identifier: smVA9bhgE3Gl3+zo9prrgn+5/hPOFK1sEvb5C1nRVPI= Subject key identifier: 75:CD:AB:71:B3:23:FE:B3:83:F7:DF:FD:A3:F1:FE:3D:60:2E:C7:AF Authority key identifier: F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 Certificate issuer: /CN=A91AFAAC/serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft Manifest number: 2B Signing time: Mon 11 Aug 2025 08:00:30 +0000 Manifest this update: Mon 11 Aug 2025 08:00:29 +0000 Manifest next update: Mon 18 Aug 2025 08:00:29 +0000 Files and hashes: 1: -L4s6ssxJNZg8w-KJzgGZIr0PIc.crl (hash: kvt8GaggbGzyP7GVDO5ygT97cfb1ypaTsaT58zr3fOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=F8BE2CEACB3124D660F30F8A273806648AF43C87 Validity Not Before: Aug 11 08:00:29 2025 GMT Not After : Aug 18 08:00:29 2025 GMT Subject: CN=6899a31d-ac10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:91:7a:6f:5b:24:0c:b1:b1:cc:ef:88:03:4a: d7:e9:25:32:97:c7:51:2d:fb:3b:0e:84:cd:0b:d6: fa:16:37:e5:af:81:4b:ec:8c:af:99:f2:88:46:c1: 2f:e2:62:85:c1:ce:ac:4f:e9:9e:a4:8b:db:e3:e3: e9:f6:be:a2:07:5f:54:53:c7:da:a9:3c:de:42:33: d1:db:cb:eb:4e:22:8a:1c:9d:02:fa:14:3f:e2:46: ca:4f:fb:11:ec:76:bd:60:a6:55:97:b3:6a:86:aa: cc:63:6e:ba:13:e0:ac:00:63:50:15:c8:d6:61:2a: e9:70:1f:81:97:e6:45:db:f7:0f:6e:ae:ee:56:41: e5:fb:11:ae:c9:87:2f:21:88:cb:3c:fe:f9:97:54: a7:73:a6:9d:86:67:57:ba:b9:bb:f0:5a:57:ba:45: ca:bf:1b:35:88:63:27:ca:57:85:71:7b:42:1a:6d: c3:72:92:ef:95:13:dd:54:8b:09:e5:68:5e:23:dd: 8c:df:83:a1:a3:46:28:9a:8d:98:fb:a4:0f:ed:72: 2d:b5:91:43:99:bd:03:47:e0:e6:8b:0c:9e:2b:1c: f5:7f:fb:34:9c:bb:38:c3:06:74:9f:33:ee:31:2b: 1f:5a:3d:d9:a7:47:fd:f0:08:87:a2:4f:b6:21:cb: e5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CD:AB:71:B3:23:FE:B3:83:F7:DF:FD:A3:F1:FE:3D:60:2E:C7:AF X509v3 Authority Key Identifier: keyid:F8:BE:2C:EA:CB:31:24:D6:60:F3:0F:8A:27:38:06:64:8A:F4:3C:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L4s6ssxJNZg8w-KJzgGZIr0PIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/53D55CD6354A11F0BA766E4CC4F9AE02/-L4s6ssxJNZg8w-KJzgGZIr0PIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:14:f3:79:20:8b:07:da:ce:98:07:ee:86:7b:00:8c:e2:56: 03:44:81:7d:b0:65:84:23:1d:5b:d6:6c:1c:a6:f2:aa:95:db: ea:0c:f6:5a:e1:7b:06:15:d6:d8:cc:6d:c6:68:a6:26:ac:0c: 0b:aa:8f:99:13:0c:cb:1b:3d:57:67:e5:56:fe:c5:52:0b:96: d3:9f:8b:62:e8:dc:99:51:69:ef:ac:8f:88:44:0f:69:86:26: 9e:88:ec:9b:2d:e9:d9:d2:35:40:85:a2:0f:85:7a:23:0e:82: 35:45:30:89:28:72:f2:6e:ef:dc:09:7a:ab:c3:75:9c:90:10: 5c:8d:55:65:16:86:84:b3:0a:6a:22:3d:86:11:ad:d2:45:dd: e0:ad:85:77:5c:65:78:1f:96:69:5c:22:67:6d:3e:2f:f4:d1: 92:d7:bf:a7:ed:45:06:54:0f:71:3f:65:94:a4:e8:88:94:40: d4:c4:85:e2:64:9a:9f:22:f5:f7:85:cf:01:e0:32:89:7b:14: ca:29:02:34:37:e3:a3:ed:b9:57:1a:18:44:43:e5:2c:db:46: 36:22:f7:a8:73:94:20:d0:c0:be:be:35:b3:d7:89:e8:a1:e0: 25:24:ee:63:06:01:4f:ee:90:7c:ff:23:6d:e0:6e:77:a2:e6: 75:e3:0b:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoRjhCRTJDRUFDQjMxMjRENjYwRjMwRjhBMjczODA2NjQ4 QUY0M0M4NzAeFw0yNTA4MTEwODAwMjlaFw0yNTA4MTgwODAwMjlaMBgxFjAUBgNV BAMTDTY4OTlhMzFkLWFjMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqkXpvWyQMsbHM74gDStfpJTKXx1Et+zsOhM0L1voWN+WvgUvsjK+Z8ohGwS/i YoXBzqxP6Z6ki9vj4+n2vqIHX1RTx9qpPN5CM9Hby+tOIoocnQL6FD/iRspP+xHs dr1gplWXs2qGqsxjbroT4KwAY1AVyNZhKulwH4GX5kXb9w9uru5WQeX7Ea7Jhy8h iMs8/vmXVKdzpp2GZ1e6ubvwWle6Rcq/GzWIYyfKV4Vxe0IabcNyku+VE91Uiwnl aF4j3Yzfg6GjRiiajZj7pA/tci21kUOZvQNH4OaLDJ4rHPV/+zScuzjDBnSfM+4x Kx9aPdmnR/3wCIeiT7Yhy+W3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdc2rcbMj /rOD99/9o/H+PWAux68wHwYDVR0jBBgwFoAU+L4s6ssxJNZg8w+KJzgGZIr0PIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzUzRDU1Q0Q2MzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5aZzh3LUtKemdHWklyMFBJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLUw0czZzc3hKTlpnOHctS0p6Z0daSXIwUEljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG QUFDLzUzRDU1Q0Q2MzU0QTExRjBCQTc2NkU0Q0M0RjlBRTAyLy1MNHM2c3N4Sk5a Zzh3LUtKemdHWklyMFBJYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGgU83kgiwfazpgH7oZ7AIziVgNEgX2wZYQjHVvWbBym8qqV2+oM9lrh ewYV1tjMbcZopiasDAuqj5kTDMsbPVdn5Vb+xVILltOfi2Lo3JlRae+sj4hED2mG Jp6I7Jst6dnSNUCFog+FeiMOgjVFMIkocvJu79wJeqvDdZyQEFyNVWUWhoSzCmoi PYYRrdJF3eCthXdcZXgflmlcImdtPi/00ZLXv6ftRQZUD3E/ZZSk6IiUQNTEheJk mp8i9feFzwHgMol7FMopAjQ346PtuVcaGERD5SzbRjYi96hzlCDQwL6+NbPXieih 4CUk7mMGAU/ukHz/I23gbnei5nXjCww= -----END CERTIFICATE-----Generated at Tue Aug 12 19:06:38 2025 by rpki-client