$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft File: 7AffwfGIh38OvP3gtIHMAiw0NrI.mft (raw, json) Hash identifier: yELPz9KGJf/qj1EzJhtZmRtk710n0UWdlWaLOMHiuNg= Subject key identifier: 1D:07:E9:61:DE:CC:45:DA:D2:4B:BC:F7:78:39:33:35:70:8D:4B:C0 Authority key identifier: EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 Certificate issuer: /CN=A91BEE1D/serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft Manifest number: 72 Signing time: Sat 09 Aug 2025 07:18:48 +0000 Manifest this update: Sat 09 Aug 2025 07:18:48 +0000 Manifest next update: Sat 16 Aug 2025 07:18:48 +0000 Files and hashes: 1: 7AffwfGIh38OvP3gtIHMAiw0NrI.crl (hash: EazAqV5GvcUut3x9ZUzbbJN1sW33y7z1f5wGSVOiHFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=EC07DFC1F188877F0EBCFDE0B481CC022C3436B2 Validity Not Before: Aug 9 07:18:48 2025 GMT Not After : Aug 16 07:18:48 2025 GMT Subject: CN=6896f658-97e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a2:b4:5c:49:8c:4e:43:21:ab:bf:f7:0d:69: dc:38:6c:50:89:fc:e2:aa:8c:23:bd:61:f3:34:ed: 72:a7:ed:01:ee:f0:b2:9b:c2:06:0a:f6:4b:46:34: 90:14:e4:15:fc:82:40:a6:e9:0d:d3:57:50:df:dd: ca:c3:26:9d:ca:5f:3b:23:61:e4:e3:31:66:94:95: 25:b8:2e:9a:77:32:74:8e:e3:ee:e0:ee:e6:75:55: ca:04:b9:fd:ae:c7:ac:7f:71:e3:9d:d4:9d:8e:3c: 7a:89:92:33:2c:fd:cb:f1:ae:b3:73:12:47:be:d2: 8e:39:2b:9b:55:15:e3:b4:07:3b:a5:71:fd:b8:a7: 99:bb:39:26:ba:b1:5d:44:35:5f:95:c6:56:e0:fe: 1c:a7:5a:a5:ff:4a:b9:da:2f:cb:d2:72:79:b2:81: 63:2e:f4:b5:90:6d:65:52:7a:8c:c4:df:46:7d:36: 8f:c1:dc:a5:cd:04:d5:4c:45:5f:23:28:87:06:b6: 5f:82:ea:c0:f5:bb:c9:29:67:1e:74:7e:89:08:ff: 53:08:a0:21:9f:40:8a:e5:a4:3d:59:aa:d5:05:3b: f1:d7:89:6c:e0:56:47:a4:a2:fa:b2:07:f8:ac:0f: 4b:5a:a9:1e:6a:4f:47:14:f1:0a:7c:2a:55:29:ea: a5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:07:E9:61:DE:CC:45:DA:D2:4B:BC:F7:78:39:33:35:70:8D:4B:C0 X509v3 Authority Key Identifier: keyid:EC:07:DF:C1:F1:88:87:7F:0E:BC:FD:E0:B4:81:CC:02:2C:34:36:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7AffwfGIh38OvP3gtIHMAiw0NrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/92782234C70E11EF8067C466C4F9AE02/7AffwfGIh38OvP3gtIHMAiw0NrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:71:5b:af:8b:7a:85:c3:60:da:9b:82:39:7f:a8:c3:30:b6: 3a:fc:ea:53:9b:75:90:87:13:e4:d7:e2:81:31:cd:d3:f3:41: 97:04:09:28:dc:3c:61:70:c0:d0:8d:96:fa:f7:82:06:72:a5: b4:7d:7e:e3:96:96:3d:93:29:7a:2d:2d:03:5d:dc:53:48:91: c6:39:ae:a7:82:5c:6a:a7:18:07:43:63:22:8e:07:af:fd:bc: b6:ef:9e:3d:58:87:48:5c:a0:23:8e:e4:be:4e:0c:c9:d0:0e: 81:77:3d:d6:88:88:e0:03:d0:cc:05:62:2c:9c:84:c3:aa:e2: 9d:06:39:dd:34:aa:88:ab:0d:bb:e2:0a:59:a4:ba:f0:49:59: ee:25:da:8e:23:42:94:90:4a:38:6c:aa:86:d1:7e:da:c1:a7: 64:fa:8e:53:3e:53:64:51:f4:a5:c4:8c:04:7d:41:e1:80:c4: 3a:f1:d9:85:b9:22:4b:c3:12:3d:c4:53:12:70:fc:8e:10:c2: 4c:6a:2d:4f:31:14:f7:eb:5d:37:a0:69:af:ce:43:de:55:7a: 26:8e:46:37:c1:cd:7a:d1:4e:0c:27:94:f1:16:d9:05:a4:72: 19:92:44:5c:a9:ae:4f:e0:26:ea:6f:5f:2f:bf:7f:23:b9:91: 10:57:4c:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUUxRDExMC8GA1UEBRMoRUMwN0RGQzFGMTg4ODc3RjBFQkNGREUwQjQ4MUNDMDIy QzM0MzZCMjAeFw0yNTA4MDkwNzE4NDhaFw0yNTA4MTYwNzE4NDhaMBgxFjAUBgNV BAMTDTY4OTZmNjU4LTk3ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxorRcSYxOQyGrv/cNadw4bFCJ/OKqjCO9YfM07XKn7QHu8LKbwgYK9ktGNJAU 5BX8gkCm6Q3TV1Df3crDJp3KXzsjYeTjMWaUlSW4Lpp3MnSO4+7g7uZ1VcoEuf2u x6x/ceOd1J2OPHqJkjMs/cvxrrNzEke+0o45K5tVFeO0Bzulcf24p5m7OSa6sV1E NV+Vxlbg/hynWqX/SrnaL8vScnmygWMu9LWQbWVSeozE30Z9No/B3KXNBNVMRV8j KIcGtl+C6sD1u8kpZx50fokI/1MIoCGfQIrlpD1ZqtUFO/HXiWzgVkekovqyB/is D0taqR5qT0cU8Qp8KlUp6qX/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHQfpYd7M RdrSS7z3eDkzNXCNS8AwHwYDVR0jBBgwFoAU7AffwfGIh38OvP3gtIHMAiw0NrIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFRTFELzkyNzgyMjM0Qzcw RTExRUY4MDY3QzQ2NkM0RjlBRTAyLzdBZmZ3ZkdJaDM4T3ZQM2d0SUhNQWl3ME5y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvN0FmZndmR0loMzhPdlAzZ3RJSE1BaXcwTnJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF RTFELzkyNzgyMjM0QzcwRTExRUY4MDY3QzQ2NkM0RjlBRTAyLzdBZmZ3ZkdJaDM4 T3ZQM2d0SUhNQWl3ME5ySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKNxW6+LeoXDYNqbgjl/qMMwtjr86lObdZCHE+TX4oExzdPzQZcECSjc PGFwwNCNlvr3ggZypbR9fuOWlj2TKXotLQNd3FNIkcY5rqeCXGqnGAdDYyKOB6/9 vLbvnj1Yh0hcoCOO5L5ODMnQDoF3PdaIiOAD0MwFYiychMOq4p0GOd00qoirDbvi ClmkuvBJWe4l2o4jQpSQSjhsqobRftrBp2T6jlM+U2RR9KXEjAR9QeGAxDrx2YW5 IkvDEj3EUxJw/I4QwkxqLU8xFPfrXTegaa/OQ95VeiaORjfBzXrRTgwnlPEW2QWk chmSRFyprk/gJupvXy+/fyO5kRBXTFA= -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:57 2025 by rpki-client