$ rpki-client -vvf rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft File: DxfzfbyUhNluGgq8eKT5ys1e2oo.mft (raw, json) Hash identifier: wPHLbijwUXK5qj052uWgjXDTkqT37QJQT/ALvFs2w2A= Subject key identifier: 64:A9:EA:FE:66:34:9E:C7:00:B2:7E:10:EF:E8:C3:67:A7:DD:46:F6 Authority key identifier: 0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A Certificate issuer: /CN=A91B036A/serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft Manifest number: 013A Signing time: Sat 09 Aug 2025 05:20:02 +0000 Manifest this update: Sat 09 Aug 2025 05:20:01 +0000 Manifest next update: Sat 16 Aug 2025 05:20:01 +0000 Files and hashes: 1: DxfzfbyUhNluGgq8eKT5ys1e2oo.crl (hash: vbYxLuy+ZI7J7k2bY8aHqRgFr5npzhNDHBY7/CypmAs=) 2: 860FE244E7F211EEA82C4340C4F9AE02.roa (hash: MOt4/rtczZ2XuWNA4OgwbPaAH6x2sV9WPLPyaiDEfR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B036A, serialNumber=0F17F37DBC9484D96E1A0ABC78A4F9CACD5EDA8A Validity Not Before: Aug 9 05:20:01 2025 GMT Not After : Aug 16 05:20:01 2025 GMT Subject: CN=6896da81-a381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b0:e2:44:1a:c8:6a:35:31:4c:ef:e6:b2:d5: b7:b0:16:be:9b:d4:0e:65:db:7c:83:85:e3:8b:62: a6:76:f7:50:d7:5a:87:33:49:61:82:b4:bf:8f:ef: 6a:18:70:9f:be:16:74:f1:6a:8e:e2:8a:2c:f1:1c: 6d:63:ad:2e:a5:b9:c2:85:ee:57:a8:86:22:f3:ea: 38:8a:16:0c:07:b8:f5:b9:ee:0f:1a:4a:db:d2:48: 0c:d4:e8:36:60:f1:32:30:9e:41:ad:ec:2b:3e:cd: 72:ad:5a:cf:73:32:3f:c7:20:1e:67:57:9e:c0:11: c7:37:35:30:50:d1:3b:42:ba:a5:6d:4e:ad:23:c8: 66:6f:1a:7a:a2:45:46:f4:79:29:b2:7c:43:45:3d: a8:04:63:64:af:bf:af:e5:fd:e3:3c:9b:c2:ef:e1: a0:52:ec:a2:7d:2b:af:9d:8c:7b:bd:bc:cf:89:4d: 89:39:e3:70:bd:48:f4:f8:9a:10:2b:6f:ae:af:0b: 9d:57:18:2d:7d:21:51:52:20:7f:6c:30:70:52:b4: c0:f5:c5:59:22:a8:ad:bb:42:8d:d8:8b:73:06:10: a6:2a:7d:01:14:1c:fe:1e:d2:0e:d1:13:00:8a:e0: 74:5e:56:c5:b5:a3:3c:fa:db:03:7f:32:0d:c2:30: 14:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A9:EA:FE:66:34:9E:C7:00:B2:7E:10:EF:E8:C3:67:A7:DD:46:F6 X509v3 Authority Key Identifier: keyid:0F:17:F3:7D:BC:94:84:D9:6E:1A:0A:BC:78:A4:F9:CA:CD:5E:DA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DxfzfbyUhNluGgq8eKT5ys1e2oo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B036A/BBC2F776D1F111EE86051A61C4F9AE02/DxfzfbyUhNluGgq8eKT5ys1e2oo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:0e:c6:b8:3e:63:b9:a7:ca:1b:99:9a:a2:5c:78:26:ec:ab: 60:7e:97:99:2e:68:1a:a2:24:dc:62:d6:d4:c2:32:c3:c9:80: 6d:43:54:37:6e:20:d8:6c:ce:a4:06:df:93:c9:fc:bb:3c:d6: 41:a3:e6:55:10:d9:e1:7a:a4:70:e0:61:63:e4:bf:ec:2b:04: 86:c4:e9:18:85:2f:21:3b:33:e0:30:19:0a:50:76:e0:96:2b: f3:75:56:1f:ab:27:fd:27:f1:0f:ed:fe:ae:41:42:51:97:cb: 62:4d:ef:a9:19:48:97:21:ac:0b:c4:48:fa:78:f1:b3:4a:1d: 08:a6:9d:80:d1:38:a8:e1:23:de:88:8f:30:5b:a1:c8:d6:b6: 46:b5:fa:f7:56:b2:7e:8f:f6:ed:24:85:3b:03:0a:f2:83:67: d2:71:82:d4:48:e9:c2:9d:7d:1d:53:5e:aa:e5:a4:b0:ec:71: 79:26:7e:49:b9:5a:a4:a2:8e:01:4b:66:b0:9f:1a:77:dc:49: 18:ec:33:ac:46:9d:0e:29:cd:2a:b1:2a:25:8e:bf:3c:fa:0f: 74:96:3e:d4:3c:e8:a1:e8:60:b8:f6:b2:cc:f3:a9:69:78:7e: b0:bc:9f:ec:7f:7d:e1:5b:8a:bb:1d:98:09:d1:f5:84:bd:02: 38:24:5e:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNkExMTAvBgNVBAUTKDBGMTdGMzdEQkM5NDg0RDk2RTFBMEFCQzc4QTRGOUNB Q0Q1RURBOEEwHhcNMjUwODA5MDUyMDAxWhcNMjUwODE2MDUyMDAxWjAYMRYwFAYD VQQDEw02ODk2ZGE4MS1hMzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprDiRBrIajUxTO/mstW3sBa+m9QOZdt8g4Xji2KmdvdQ11qHM0lhgrS/j+9q GHCfvhZ08WqO4oos8RxtY60upbnChe5XqIYi8+o4ihYMB7j1ue4PGkrb0kgM1Og2 YPEyMJ5BrewrPs1yrVrPczI/xyAeZ1eewBHHNzUwUNE7QrqlbU6tI8hmbxp6okVG 9HkpsnxDRT2oBGNkr7+v5f3jPJvC7+GgUuyifSuvnYx7vbzPiU2JOeNwvUj0+JoQ K2+urwudVxgtfSFRUiB/bDBwUrTA9cVZIqitu0KN2ItzBhCmKn0BFBz+HtIO0RMA iuB0XlbFtaM8+tsDfzINwjAU4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSp6v5m NJ7HALJ+EO/ow2en3Ub2MB8GA1UdIwQYMBaAFA8X8328lITZbhoKvHik+crNXtqK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2QS9CQkMyRjc3NkQx RjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhObHVHZ3E4ZUtUNXlzMWUy b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R4ZnpmYnlVaE5sdUdncThlS1Q1eXMxZTJvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM2QS9CQkMyRjc3NkQxRjExMUVFODYwNTFBNjFDNEY5QUUwMi9EeGZ6ZmJ5VWhO bHVHZ3E4ZUtUNXlzMWUyb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtDsa4PmO5p8obmZqiXHgm7KtgfpeZLmgaoiTcYtbUwjLDyYBtQ1Q3 biDYbM6kBt+Tyfy7PNZBo+ZVENnheqRw4GFj5L/sKwSGxOkYhS8hOzPgMBkKUHbg livzdVYfqyf9J/EP7f6uQUJRl8tiTe+pGUiXIawLxEj6ePGzSh0Ipp2A0Tio4SPe iI8wW6HI1rZGtfr3VrJ+j/btJIU7Awryg2fScYLUSOnCnX0dU16q5aSw7HF5Jn5J uVqkoo4BS2awnxp33EkY7DOsRp0OKc0qsSoljr88+g90lj7UPOih6GC49rLM86lp eH6wvJ/sf33hW4q7HZgJ0fWEvQI4JF4b -----END CERTIFICATE-----Generated at Sun Aug 10 10:46:47 2025 by rpki-client