$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft File: 64mHxSCv7Nwk9ByG_Gut08Fvpio.mft (raw, json) Hash identifier: zHAI1GzJmrE3JG9IZEioxqIQ2GK9LoWx1y6G2+6BqVg= Subject key identifier: FF:03:DB:AD:F2:7E:7D:0B:17:C4:F9:0E:9F:AF:73:E7:09:4F:6B:BD Authority key identifier: EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A Certificate issuer: /CN=A91B1C73/serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft Manifest number: 84 Signing time: Sat 09 Aug 2025 07:06:36 +0000 Manifest this update: Sat 09 Aug 2025 07:06:35 +0000 Manifest next update: Sat 16 Aug 2025 07:06:35 +0000 Files and hashes: 1: 64mHxSCv7Nwk9ByG_Gut08Fvpio.crl (hash: przaFoj7dlTLg3uEFBOVJ2+RgfHDwrP7rx70qjKlmbA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C73, serialNumber=EB8987C520AFECDC24F41C86FC6BADD3C16FA62A Validity Not Before: Aug 9 07:06:35 2025 GMT Not After : Aug 16 07:06:35 2025 GMT Subject: CN=6896f37b-ce5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ca:1b:98:a4:39:0b:ff:75:a0:cb:a2:fd:58: 38:ec:46:3e:b0:fd:b1:31:d3:9a:f5:16:eb:9d:a2: 45:a9:5b:6f:f8:54:67:02:3d:bb:96:f1:60:da:e8: 25:e0:5a:41:fa:8e:f6:b5:bd:52:65:c4:64:dd:23: 73:ec:db:16:d8:b6:c7:e7:59:27:bd:58:2f:20:65: 75:13:80:b2:b8:93:92:ca:bd:6a:18:cd:f6:04:86: 4b:e6:d3:96:37:8a:48:b6:18:35:16:e7:a8:a0:fc: ed:cb:f1:88:bc:25:df:56:2e:7b:fb:6e:07:6d:c7: 73:2a:96:d6:dd:b3:64:e4:20:6a:e9:bc:71:0c:f7: c8:79:5f:46:c2:24:ab:63:92:6d:32:3c:d3:78:5c: cf:da:15:ad:a4:eb:2f:07:15:a5:8a:17:1e:da:ee: f2:f8:64:ce:e0:95:94:87:dd:28:84:c4:dd:bb:e4: 86:19:b7:ec:20:8f:6f:5b:9f:e6:4b:a6:44:f5:c1: f7:23:28:8e:60:16:1e:92:25:be:40:3b:c8:ca:bc: d2:91:9c:11:43:01:e2:ed:14:f9:dc:4f:3d:93:ca: 56:d3:2d:33:e4:f7:17:6f:75:d5:0d:1c:6f:74:74: d5:05:8e:4f:04:55:42:eb:21:e2:e4:8d:74:bd:fb: 1f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:03:DB:AD:F2:7E:7D:0B:17:C4:F9:0E:9F:AF:73:E7:09:4F:6B:BD X509v3 Authority Key Identifier: keyid:EB:89:87:C5:20:AF:EC:DC:24:F4:1C:86:FC:6B:AD:D3:C1:6F:A6:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64mHxSCv7Nwk9ByG_Gut08Fvpio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C73/C491BA4EAC0D11EF9879926EC4F9AE02/64mHxSCv7Nwk9ByG_Gut08Fvpio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:2f:c2:fd:f9:34:50:5a:6d:c0:16:22:b0:1e:9b:a2:16:78: c9:07:ee:c0:79:7f:75:f4:19:39:81:bf:1f:e7:d1:4d:14:3a: 74:08:a5:89:81:40:21:f1:e3:f4:bf:00:ac:67:49:cc:02:ed: 45:2f:e8:5b:4e:fa:83:e4:05:9e:f6:ca:a0:50:7a:9a:e5:ff: c4:47:3c:a7:55:1d:3c:d6:0d:48:bc:94:b5:47:86:e0:8a:7c: ed:de:40:b7:7e:19:99:3d:ac:ee:4e:29:bb:9f:ff:fa:dd:e3: 4b:4d:0e:0a:af:07:5f:4b:f7:22:50:11:7a:e3:70:5b:54:00: 82:19:b4:07:91:c5:aa:8c:bc:21:0e:e8:1c:2d:24:16:67:36: bc:fa:b7:98:e0:be:e3:ce:4a:66:60:50:cd:da:be:83:44:52: 2a:b1:e6:a4:10:3a:8b:c2:61:33:b6:60:db:5c:5a:2a:92:31: 80:b1:9e:7b:e0:ff:01:ed:96:7c:4e:07:00:77:9c:67:41:ec: dd:b3:0c:ec:f2:7d:e5:87:79:6d:81:3e:80:67:4a:1a:25:6e: 79:00:0e:d3:3e:e3:3e:b6:8a:59:48:84:ef:de:4c:c9:88:15: c4:3f:cb:6e:bc:9f:fd:23:b0:a7:7e:84:02:91:ea:5f:27:9f: 0e:ae:2e:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDNzMxMTAvBgNVBAUTKEVCODk4N0M1MjBBRkVDREMyNEY0MUM4NkZDNkJBREQz QzE2RkE2MkEwHhcNMjUwODA5MDcwNjM1WhcNMjUwODE2MDcwNjM1WjAYMRYwFAYD VQQDEw02ODk2ZjM3Yi1jZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68obmKQ5C/91oMui/Vg47EY+sP2xMdOa9RbrnaJFqVtv+FRnAj27lvFg2ugl 4FpB+o72tb1SZcRk3SNz7NsW2LbH51knvVgvIGV1E4CyuJOSyr1qGM32BIZL5tOW N4pIthg1FueooPzty/GIvCXfVi57+24HbcdzKpbW3bNk5CBq6bxxDPfIeV9GwiSr Y5JtMjzTeFzP2hWtpOsvBxWlihce2u7y+GTO4JWUh90ohMTdu+SGGbfsII9vW5/m S6ZE9cH3IyiOYBYekiW+QDvIyrzSkZwRQwHi7RT53E89k8pW0y0z5PcXb3XVDRxv dHTVBY5PBFVC6yHi5I10vfsfiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8D263y fn0LF8T5Dp+vc+cJT2u9MB8GA1UdIwQYMBaAFOuJh8Ugr+zcJPQchvxrrdPBb6Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM3My9DNDkxQkE0RUFD MEQxMUVGOTg3OTkyNkVDNEY5QUUwMi82NG1IeFNDdjdOd2s5QnlHX0d1dDA4RnZw aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0bUh4U0N2N053azlCeUdfR3V0MDhGdnBpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM3My9DNDkxQkE0RUFDMEQxMUVGOTg3OTkyNkVDNEY5QUUwMi82NG1IeFNDdjdO d2s5QnlHX0d1dDA4RnZwaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFL8L9+TRQWm3AFiKwHpuiFnjJB+7AeX919Bk5gb8f59FNFDp0CKWJ gUAh8eP0vwCsZ0nMAu1FL+hbTvqD5AWe9sqgUHqa5f/ERzynVR081g1IvJS1R4bg inzt3kC3fhmZPazuTim7n//63eNLTQ4KrwdfS/ciUBF643BbVACCGbQHkcWqjLwh DugcLSQWZza8+reY4L7jzkpmYFDN2r6DRFIqseakEDqLwmEztmDbXFoqkjGAsZ57 4P8B7ZZ8TgcAd5xnQezdswzs8n3lh3ltgT6AZ0oaJW55AA7TPuM+topZSITv3kzJ iBXEP8tuvJ/9I7CnfoQCkepfJ58Ori6F -----END CERTIFICATE-----Generated at Sun Aug 10 18:24:43 2025 by rpki-client