$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: eqwNYla4Fw19LwbNwToAvtm3YmO8P/6X51dlRcCyZWA= Subject key identifier: C6:7A:1C:76:E4:9A:CE:F8:7B:F4:45:1B:8B:D0:3F:04:80:CB:AC:AD Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0FE4 Signing time: Sun 10 Aug 2025 17:49:53 +0000 Manifest this update: Sun 10 Aug 2025 17:49:52 +0000 Manifest next update: Sun 17 Aug 2025 17:49:52 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: PqMpGN6zq1hv59yAYB83DOzEEit3mrwZj4joZ+CYDzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3644 (0xe3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Aug 10 17:49:52 2025 GMT Not After : Aug 17 17:49:52 2025 GMT Subject: CN=6898dbc1-78e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a7:57:84:31:35:71:de:23:7a:b2:48:63:2d: 25:da:7f:a0:fa:0e:64:14:0c:67:c1:16:93:5c:b6: 57:17:17:2c:13:77:4c:ba:62:3b:f1:b2:66:25:30: bb:3a:be:de:78:14:0a:1e:f4:63:85:9e:4f:61:c5: 42:c4:86:18:e0:16:3e:4e:33:3d:22:b5:fb:de:37: bb:98:e7:88:f6:7c:e5:86:b4:bf:21:04:bb:95:f3: 3b:f1:e2:32:89:df:9b:b7:c9:77:8d:52:0b:75:ce: 03:54:4b:38:4d:5b:5b:99:ea:e5:6e:bb:9e:d6:fa: 59:40:19:24:d1:51:5e:4c:d5:84:27:7a:9c:03:58: 0a:ac:bd:cc:66:0f:f7:7e:28:94:e2:37:bc:9b:4e: 77:a1:df:fd:78:76:9c:34:3e:ca:d3:d2:3f:a6:08: 5d:9f:24:7a:1d:c3:8b:46:bd:dd:7e:d5:ee:3a:56: b4:d6:3d:4d:86:a7:72:0e:39:06:57:e0:74:a7:cb: ab:21:dc:6b:fe:f5:8a:3e:e6:4f:1f:1d:0a:15:c8: b2:85:16:34:eb:61:bf:db:cf:e8:49:e3:c4:d0:91: 0a:45:7d:3b:07:9d:4a:32:ce:55:52:5b:19:ca:2f: 1f:88:44:4f:a3:2a:36:9d:39:03:bd:8c:8d:66:71: c7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7A:1C:76:E4:9A:CE:F8:7B:F4:45:1B:8B:D0:3F:04:80:CB:AC:AD X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:47:df:8d:21:6b:53:93:99:c5:4a:ad:51:6d:29:1a:67:14: 9f:a4:7a:35:b0:8c:e7:83:14:da:52:64:64:fe:e3:b3:1c:5d: 2f:54:0f:3e:ce:93:2e:f5:8a:11:31:e8:2d:b2:0e:bb:86:f7: 26:65:2a:19:dd:e1:dc:a9:eb:0e:e4:ad:62:51:0d:cf:16:98: 2d:79:61:67:75:b2:c4:7e:b2:ec:72:b6:27:d9:67:1c:cc:6b: 80:4a:48:5c:ce:9a:f1:d0:ea:3f:63:15:79:51:b0:8b:be:ce: 0e:8d:2c:8c:55:3d:26:61:5b:e3:25:f9:78:87:f5:21:92:50: 69:ce:1a:63:37:52:6b:16:9b:18:9a:b2:df:20:69:dd:07:4e: 16:10:43:89:a7:8e:1c:de:c6:2a:8b:d0:3f:2f:5c:e7:22:42: ef:ac:bd:1d:75:84:0e:c4:ea:95:7b:c9:4b:85:4b:de:14:6e: 5f:87:f7:34:89:c0:5f:05:32:f8:ea:d2:21:55:c2:d3:29:ac: 73:04:59:c3:35:af:7a:62:64:d7:1a:3c:24:33:c6:25:df:70: b3:c9:72:3a:6b:49:ce:c5:cb:2a:e4:08:5f:3b:ba:df:fd:1c: 6c:e8:69:52:36:f7:d3:11:a7:02:35:3b:3b:6c:b0:cc:01:52: a8:3b:42:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwODEwMTc0OTUyWhcNMjUwODE3MTc0OTUyWjAYMRYwFAYD VQQDEw02ODk4ZGJjMS03OGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKdXhDE1cd4jerJIYy0l2n+g+g5kFAxnwRaTXLZXFxcsE3dMumI78bJmJTC7 Or7eeBQKHvRjhZ5PYcVCxIYY4BY+TjM9IrX73je7mOeI9nzlhrS/IQS7lfM78eIy id+bt8l3jVILdc4DVEs4TVtbmerlbrue1vpZQBkk0VFeTNWEJ3qcA1gKrL3MZg/3 fiiU4je8m053od/9eHacND7K09I/pghdnyR6HcOLRr3dftXuOla01j1NhqdyDjkG V+B0p8urIdxr/vWKPuZPHx0KFciyhRY062G/28/oSePE0JEKRX07B51KMs5VUlsZ yi8fiERPoyo2nTkDvYyNZnHH9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZ6HHbk ms74e/RFG4vQPwSAy6ytMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAR9+NIWtTk5nFSq1RbSkaZxSfpHo1sIzngxTaUmRk/uOzHF0vVA8+ zpMu9YoRMegtsg67hvcmZSoZ3eHcqesO5K1iUQ3PFpgteWFndbLEfrLscrYn2Wcc zGuASkhczprx0Oo/YxV5UbCLvs4OjSyMVT0mYVvjJfl4h/UhklBpzhpjN1JrFpsY mrLfIGndB04WEEOJp44c3sYqi9A/L1znIkLvrL0ddYQOxOqVe8lLhUveFG5fh/c0 icBfBTL46tIhVcLTKaxzBFnDNa96YmTXGjwkM8Yl33CzyXI6a0nOxcsq5AhfO7rf /Rxs6GlSNvfTEacCNTs7bLDMAVKoO0Kf -----END CERTIFICATE-----Generated at Mon Aug 11 02:05:03 2025 by rpki-client