$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: alyE0/111RYx3UijqsWD3PIN200UTSpwKvHJnLC6lSU= Subject key identifier: 05:A0:65:FB:72:F9:82:70:B0:54:A4:16:A2:24:07:EA:E2:E6:DD:88 Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: 71 Signing time: Thu 07 Aug 2025 07:26:55 +0000 Manifest this update: Thu 07 Aug 2025 07:26:55 +0000 Manifest next update: Thu 14 Aug 2025 07:26:55 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: s2p4FdpivA5lu0zLGvNlG7IzVa3mKbYOlAF4GSo+zGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Aug 7 07:26:55 2025 GMT Not After : Aug 14 07:26:55 2025 GMT Subject: CN=6894553f-5ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:b1:ff:37:e5:d5:b4:98:85:e3:f7:e1:f4: f5:2f:c6:74:66:88:a3:48:93:72:ab:40:ac:f7:48: 7a:cd:4d:ce:a4:b5:fa:a3:55:bb:fd:bf:e9:59:69: 42:48:08:e7:98:a5:18:20:68:ca:83:0a:f1:c2:01: 89:23:36:f7:1a:19:f3:7c:0a:dc:9e:8f:6a:c6:c7: d5:8e:08:bb:fa:25:eb:52:e8:ad:ed:a9:79:6c:23: 38:b8:48:33:3a:88:8f:2a:7a:6d:78:7c:e3:ed:4f: d1:8b:6b:1c:a9:47:9a:4a:df:d7:34:ad:7f:74:c8: de:b7:ed:37:38:70:f4:85:27:3d:99:19:08:32:ff: 41:eb:d2:f6:fb:67:3e:51:30:1f:41:99:9a:0b:95: d1:30:ab:7c:cc:6e:41:66:db:93:e3:39:eb:c1:62: 5c:d6:ca:53:54:a9:e9:97:65:a1:1a:3d:76:6b:86: 1c:ef:c4:92:64:71:9c:ff:93:bd:76:62:10:9d:a5: 7f:16:28:3e:53:c6:14:23:b6:99:3c:b5:57:1a:68: 0a:c3:2a:74:47:8f:05:5a:d7:91:f4:b5:f8:cd:29: d6:24:a6:d5:d7:04:dd:fa:17:71:52:a7:d4:c6:2b: 27:0e:ff:df:30:8d:f1:4f:e0:35:67:b2:8f:a7:ef: b9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A0:65:FB:72:F9:82:70:B0:54:A4:16:A2:24:07:EA:E2:E6:DD:88 X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:59:3e:d9:10:15:5b:b7:3d:1f:9f:8b:b1:b3:12:27:ed:90: 4f:50:4f:f5:21:3b:82:68:51:85:eb:95:be:88:ce:83:6e:05: 02:f9:65:3e:64:03:f0:26:b6:36:ba:fc:dc:0c:d1:24:c8:cc: f5:8e:b7:94:ef:59:0f:ad:d5:bd:29:26:33:d0:50:d4:55:66: 64:74:31:0f:f0:af:9d:70:fb:94:43:72:9e:7c:7d:74:d5:a6: ab:81:f1:92:87:32:93:49:a8:2f:f4:9f:b3:5e:fc:cd:68:ce: 08:9a:c7:68:b8:77:93:9b:e4:ea:5a:d8:bd:d5:79:6b:3d:04: f5:ab:96:16:06:43:7f:58:77:89:de:ec:0d:8e:ff:cd:cd:0f: 2f:2b:25:91:14:67:8f:4f:c5:92:51:57:82:6d:6b:df:d0:41: a7:a0:64:76:8b:8f:cb:8b:8b:42:1b:43:95:41:2d:59:8a:46: 3a:32:15:f3:d7:6e:d0:b3:a1:d4:6d:b3:22:d7:90:44:6d:a3: 31:3d:a3:a1:89:a8:a8:53:15:a2:6f:d2:dd:46:d3:4b:19:aa: 35:93:cb:48:3b:29:45:ff:25:9a:c1:72:ae:d7:3e:d3:44:59: 7b:ac:bf:2b:0a:b2:73:de:63:e7:64:0f:24:98:0b:61:8c:ae: 47:e5:38:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUUxRDExMC8GA1UEBRMoOEFENjEwQUM4QjYyRjJBNkZDQTgyNTg5NTVENUYxMjQ5 MjdCM0EwMDAeFw0yNTA4MDcwNzI2NTVaFw0yNTA4MTQwNzI2NTVaMBgxFjAUBgNV BAMTDTY4OTQ1NTNmLTVhZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH+bH/N+XVtJiF4/fh9PUvxnRmiKNIk3KrQKz3SHrNTc6ktfqjVbv9v+lZaUJI COeYpRggaMqDCvHCAYkjNvcaGfN8Ctyej2rGx9WOCLv6JetS6K3tqXlsIzi4SDM6 iI8qem14fOPtT9GLaxypR5pK39c0rX90yN637Tc4cPSFJz2ZGQgy/0Hr0vb7Zz5R MB9BmZoLldEwq3zMbkFm25PjOevBYlzWylNUqemXZaEaPXZrhhzvxJJkcZz/k712 YhCdpX8WKD5TxhQjtpk8tVcaaArDKnRHjwVa15H0tfjNKdYkptXXBN36F3FSp9TG KycO/98wjfFP4DVnso+n77kvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBaBl+3L5 gnCwVKQWoiQH6uLm3YgwHwYDVR0jBBgwFoAUitYQrIti8qb8qCWJVdXxJJJ7OgAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFRTFELzlBREFEQURFQzcw RTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09n QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXRZUXJJdGk4cWI4cUNXSlZkWHhKSko3T2dBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF RTFELzlBREFEQURFQzcwRTExRUY4MDY3QzQ2NkM0RjlBRTAyL2l0WVFySXRpOHFi OHFDV0pWZFh4SkpKN09nQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADBZPtkQFVu3PR+fi7GzEiftkE9QT/UhO4JoUYXrlb6IzoNuBQL5ZT5k A/Amtja6/NwM0STIzPWOt5TvWQ+t1b0pJjPQUNRVZmR0MQ/wr51w+5RDcp58fXTV pquB8ZKHMpNJqC/0n7Ne/M1ozgiax2i4d5Ob5Opa2L3VeWs9BPWrlhYGQ39Yd4ne 7A2O/83NDy8rJZEUZ49PxZJRV4Jta9/QQaegZHaLj8uLi0IbQ5VBLVmKRjoyFfPX btCzodRtsyLXkERtozE9o6GJqKhTFaJv0t1G00sZqjWTy0g7KUX/JZrBcq7XPtNE WXusvysKsnPeY+dkDySYC2GMrkflOIs= -----END CERTIFICATE-----Generated at Sat Aug 9 01:13:15 2025 by rpki-client