$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft File: iS3iAjP9DGSOLnuflZUPOpaBfL8.mft (raw, json) Hash identifier: 1hBeJxIuV6oS2+NjDPEpVFspQZFSTZxwzNYlcTEJoaY= Subject key identifier: 8A:38:C5:61:79:C6:54:BE:16:64:45:76:F9:F0:25:2A:71:15:8F:EB Authority key identifier: 89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF Certificate issuer: /CN=A91C7175/serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft Manifest number: B1 Signing time: Thu 07 Aug 2025 06:39:13 +0000 Manifest this update: Thu 07 Aug 2025 06:39:12 +0000 Manifest next update: Thu 14 Aug 2025 06:39:12 +0000 Files and hashes: 1: iS3iAjP9DGSOLnuflZUPOpaBfL8.crl (hash: drAkPJ2Mmdui71qFYXXS2NkWzPbh5VjcdWZhiYWo/No=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7175, serialNumber=892DE20233FD0C648E2E7B9F95950F3A96817CBF Validity Not Before: Aug 7 06:39:12 2025 GMT Not After : Aug 14 06:39:12 2025 GMT Subject: CN=68944a10-3c3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:6c:06:87:76:d7:02:34:40:ea:60:9e:49:8c: cb:6c:c0:f0:28:77:17:19:af:0a:d2:80:74:d2:0c: e5:ba:01:0f:0d:94:6a:8c:2f:64:fb:2d:19:16:6a: d2:7d:c4:be:77:02:56:5c:c5:7b:b8:90:8f:4f:5b: c1:b9:8f:c0:72:c6:93:e6:90:d9:ee:83:a9:90:2c: db:80:3b:a3:e2:15:38:1f:d9:d9:02:b9:77:fc:de: c3:85:23:20:d6:da:4a:94:e7:bf:4a:27:78:a1:28: e8:24:be:d3:ac:22:96:c9:0f:63:c8:51:69:a3:dc: 94:4e:43:41:c9:65:a7:f3:ef:19:af:ce:71:1e:db: 9a:b7:41:25:9a:b6:bc:e2:47:31:28:01:17:f9:cb: 7a:e5:95:9d:2f:27:d4:c5:fa:f1:d6:77:47:c6:f5: 4a:75:c2:c8:b7:4e:67:cb:43:14:4e:c9:9e:26:93: eb:28:1d:ab:f5:22:b5:7e:93:3e:5f:f1:c2:ee:40: 4f:8a:52:2d:ae:77:0a:62:3a:2e:3b:2e:46:db:0c: a2:e4:1b:6d:be:61:d4:15:ee:3c:68:28:5e:66:a6: 45:7d:5f:a0:e6:b3:9d:7a:fb:4d:e5:96:ea:1a:a7: 36:08:d9:87:e7:fe:42:f3:3a:ef:70:bb:99:83:9d: ff:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:38:C5:61:79:C6:54:BE:16:64:45:76:F9:F0:25:2A:71:15:8F:EB X509v3 Authority Key Identifier: keyid:89:2D:E2:02:33:FD:0C:64:8E:2E:7B:9F:95:95:0F:3A:96:81:7C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iS3iAjP9DGSOLnuflZUPOpaBfL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7175/F22B9CCA68FD11EFA9500187C4F9AE02/iS3iAjP9DGSOLnuflZUPOpaBfL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:83:ca:6a:1e:50:57:ec:7f:e9:86:7a:e3:b8:1c:6a:bf:5a: 35:f3:fa:54:e0:1d:9d:5b:4a:35:16:ea:9c:a2:c6:85:b4:a3: aa:69:3a:56:1c:22:26:66:12:ab:f8:66:f2:59:9c:7b:18:16: 8c:32:c6:97:5a:2a:b0:c9:a5:9b:91:b1:a4:7b:33:7c:9e:b3: 4e:9e:cc:5e:eb:4a:8d:39:59:c5:11:54:cb:ec:84:5a:6a:fe: ed:3e:da:f6:ae:ca:c2:13:2d:f4:20:04:f1:52:e7:f1:42:08: 74:2f:2f:e8:76:87:37:55:69:4d:0f:7d:54:07:ff:30:e8:dd: e5:9d:bc:7b:12:4b:9a:50:97:c4:f7:55:d7:5f:18:3b:c3:34: 9e:5a:60:98:e5:d0:4e:24:2a:33:2a:9d:3c:80:52:84:f2:58: 82:62:5f:7a:c0:92:81:d3:0d:8d:55:de:6c:6c:14:6d:1c:60: ac:58:86:57:54:7b:44:e4:f4:96:e0:63:74:74:6c:d9:fb:d4: 47:b3:30:bb:59:f5:64:c5:c9:a6:3d:48:6d:e5:90:99:40:4d: 5f:d4:f1:0d:0d:0c:ea:0a:e0:b8:42:b4:f4:d1:02:23:e8:f5: 90:4e:9b:cc:e0:98:4d:4a:6f:8b:f5:5a:19:27:60:55:82:e7: 73:89:04:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxNzUxMTAvBgNVBAUTKDg5MkRFMjAyMzNGRDBDNjQ4RTJFN0I5Rjk1OTUwRjNB OTY4MTdDQkYwHhcNMjUwODA3MDYzOTEyWhcNMjUwODE0MDYzOTEyWjAYMRYwFAYD VQQDEw02ODk0NGExMC0zYzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GwGh3bXAjRA6mCeSYzLbMDwKHcXGa8K0oB00gzlugEPDZRqjC9k+y0ZFmrS fcS+dwJWXMV7uJCPT1vBuY/AcsaT5pDZ7oOpkCzbgDuj4hU4H9nZArl3/N7DhSMg 1tpKlOe/Sid4oSjoJL7TrCKWyQ9jyFFpo9yUTkNByWWn8+8Zr85xHtuat0Elmra8 4kcxKAEX+ct65ZWdLyfUxfrx1ndHxvVKdcLIt05ny0MUTsmeJpPrKB2r9SK1fpM+ X/HC7kBPilItrncKYjouOy5G2wyi5BttvmHUFe48aCheZqZFfV+g5rOdevtN5Zbq Gqc2CNmH5/5C8zrvcLuZg53/TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIo4xWF5 xlS+FmRFdvnwJSpxFY/rMB8GA1UdIwQYMBaAFIkt4gIz/Qxkji57n5WVDzqWgXy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzE3NS9GMjJCOUNDQTY4 RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9pUzNpQWpQOURHU09MbnVmbFpVUE9wYUJm TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lTM2lBalA5REdTT0xudWZsWlVQT3BhQmZMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzE3NS9GMjJCOUNDQTY4RkQxMUVGQTk1MDAxODdDNEY5QUUwMi9pUzNpQWpQOURH U09MbnVmbFpVUE9wYUJmTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsg8pqHlBX7H/phnrjuBxqv1o18/pU4B2dW0o1FuqcosaFtKOqaTpW HCImZhKr+GbyWZx7GBaMMsaXWiqwyaWbkbGkezN8nrNOnsxe60qNOVnFEVTL7IRa av7tPtr2rsrCEy30IATxUufxQgh0Ly/odoc3VWlND31UB/8w6N3lnbx7EkuaUJfE 91XXXxg7wzSeWmCY5dBOJCozKp08gFKE8liCYl96wJKB0w2NVd5sbBRtHGCsWIZX VHtE5PSW4GN0dGzZ+9RHszC7WfVkxcmmPUht5ZCZQE1f1PENDQzqCuC4QrT00QIj 6PWQTpvM4JhNSm+L9VoZJ2BVgudziQTi -----END CERTIFICATE-----Generated at Fri Aug 8 19:34:38 2025 by rpki-client