$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: NrfSEZmSSHuCWIpidqxwpd/Qd+VJzm5T+KFE3im/+Mw= Subject key identifier: E6:55:47:22:43:24:A1:DF:6B:38:66:ED:0F:29:A8:38:ED:2A:FE:3F Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 34AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 52ED Signing time: Fri 08 Aug 2025 15:07:32 +0000 Manifest this update: Fri 08 Aug 2025 15:07:32 +0000 Manifest next update: Fri 15 Aug 2025 15:07:32 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: vRNDQMKQFyeu4WkkaOYS6hSbqSh1QcNS/9a5dmyZPiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13482 (0x34aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Aug 8 15:07:32 2025 GMT Not After : Aug 15 15:07:32 2025 GMT Subject: CN=689612b4-171e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e8:75:75:bb:c0:f8:22:e2:f7:b2:07:e4:24: b4:2a:c6:48:4b:d4:ec:7f:e4:71:32:43:c2:84:72: de:c5:fd:f6:a3:a8:b7:31:46:c9:ef:36:38:65:3e: 27:96:bc:9a:d2:3c:4b:57:84:7f:c2:35:ee:f5:28: 23:26:db:b7:72:13:26:ef:ea:88:d1:55:55:ba:94: c6:1a:92:72:36:de:fd:1d:bb:8a:57:b4:3d:5b:67: fc:ca:86:e4:69:8e:15:ea:4d:06:5d:f6:c1:a8:05: eb:53:53:08:76:f0:1a:1f:e1:b0:db:8c:5a:9a:83: d3:5c:7e:e9:2e:23:73:63:80:8f:67:4d:a1:86:88: 44:6b:34:24:cc:ef:b8:87:d9:41:a0:ca:be:ff:ca: eb:16:59:93:a1:39:16:9e:4c:4f:b5:8b:67:b7:e6: 0c:eb:20:bb:0a:d9:82:e4:6b:bd:e0:c8:e2:2e:20: fc:a7:b4:60:0a:2f:da:7b:31:71:9b:d0:4b:ab:86: 94:2b:d5:44:2a:d3:b2:14:48:98:c6:2b:17:42:3a: f4:ff:f7:a5:46:f6:73:a1:dc:66:78:40:0c:0d:b7: d8:40:f8:08:57:f1:38:7f:ff:a3:53:a6:4a:97:8a: 17:fa:2b:52:39:d1:01:25:82:23:9b:16:24:d4:1d: dd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:55:47:22:43:24:A1:DF:6B:38:66:ED:0F:29:A8:38:ED:2A:FE:3F X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:59:4f:f6:3e:b6:b0:90:6c:70:c6:13:7b:da:87:bc:d8:b0: 71:0a:4d:07:79:f5:83:06:3a:2f:8e:07:31:b4:2d:18:cf:e7: f9:48:64:83:dd:ce:be:4a:41:94:56:98:a5:56:ea:43:88:ff: 99:b1:10:e2:a4:07:36:79:be:bc:e7:28:ec:fb:e7:e4:e5:19: 36:b3:5e:a0:64:4a:0f:b5:7b:b6:b4:3c:5b:9c:0e:8c:17:ca: d0:23:e7:cb:81:cc:3f:99:5b:f5:fb:43:ed:16:e0:b6:f5:47: 7c:fb:6c:79:2b:08:7f:bb:1c:d2:da:36:fe:b0:99:5e:5e:6e: b9:7d:8a:27:73:b7:3d:01:89:60:e3:b7:6f:3f:2e:de:17:8d: 01:b6:bf:0f:37:a0:57:c8:5d:7e:f5:6e:a3:83:82:02:fd:fa: 3c:cb:e9:08:8b:48:61:05:e8:f8:ec:97:48:52:ed:de:eb:72: ee:ff:15:7e:b1:d8:78:9b:cc:5a:57:a2:f3:26:9b:c4:00:41: 8a:38:a5:71:ae:2f:15:cb:42:46:fa:36:7e:20:db:54:ec:8e: 85:a6:59:52:19:fe:cc:a7:55:64:ce:c5:a4:56:c4:15:4d:e9: 98:d2:73:c3:57:14:f9:b7:04:bc:40:df:4d:40:e8:8b:cd:2f: c4:00:14:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUwODA4MTUwNzMyWhcNMjUwODE1MTUwNzMyWjAYMRYwFAYD VQQDEw02ODk2MTJiNC0xNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+h1dbvA+CLi97IH5CS0KsZIS9Tsf+RxMkPChHLexf32o6i3MUbJ7zY4ZT4n lrya0jxLV4R/wjXu9SgjJtu3chMm7+qI0VVVupTGGpJyNt79HbuKV7Q9W2f8yobk aY4V6k0GXfbBqAXrU1MIdvAaH+Gw24xamoPTXH7pLiNzY4CPZ02hhohEazQkzO+4 h9lBoMq+/8rrFlmToTkWnkxPtYtnt+YM6yC7CtmC5Gu94MjiLiD8p7RgCi/aezFx m9BLq4aUK9VEKtOyFEiYxisXQjr0//elRvZzodxmeEAMDbfYQPgIV/E4f/+jU6ZK l4oX+itSOdEBJYIjmxYk1B3dTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZVRyJD JKHfazhm7Q8pqDjtKv4/MB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsWU/2PrawkGxwxhN72oe82LBxCk0HefWDBjovjgcxtC0Yz+f5SGSD 3c6+SkGUVpilVupDiP+ZsRDipAc2eb685yjs++fk5Rk2s16gZEoPtXu2tDxbnA6M F8rQI+fLgcw/mVv1+0PtFuC29Ud8+2x5Kwh/uxzS2jb+sJleXm65fYonc7c9AYlg 47dvPy7eF40Btr8PN6BXyF1+9W6jg4IC/fo8y+kIi0hhBej47JdIUu3e63Lu/xV+ sdh4m8xaV6LzJpvEAEGKOKVxri8Vy0JG+jZ+INtU7I6FpllSGf7Mp1VkzsWkVsQV TemY0nPDVxT5twS8QN9NQOiLzS/EABSk -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:26 2025 by rpki-client