$ rpki-client -vvf rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft File: 64sK0sB2YghSy8N4kOZK1Aa0ieg.mft (raw, json) Hash identifier: sSXVYd2WOa8vQCRqq5o3H3xXthhuV5rLLh2y8+aGfVI= Subject key identifier: E3:23:0B:F8:FC:7B:52:42:52:F8:11:FB:9F:8E:21:D5:CF:89:32:8B Authority key identifier: EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8 Certificate issuer: /CN=A91C72B1/serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8 Certificate serial: 0D38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft Manifest number: 0D2E Signing time: Wed 06 Aug 2025 18:12:37 +0000 Manifest this update: Wed 06 Aug 2025 18:12:36 +0000 Manifest next update: Wed 13 Aug 2025 18:12:36 +0000 Files and hashes: 1: 64sK0sB2YghSy8N4kOZK1Aa0ieg.crl (hash: y4/Bm/x87iWBdLC0awBQvEby2hkCiqQPW5YRzDoEn+Q=) 2: 6714424C3C9111EA9416CA78C4F9AE02.roa (hash: YQKzakVZRwkEoSkOxzmifYwaHBBE1uM/hdsf+7QDJq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.crl rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 18:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C72B1, serialNumber=EB8B0AD2C076620852CBC37890E64AD406B489E8 Validity Not Before: Aug 6 18:12:36 2025 GMT Not After : Aug 13 18:12:36 2025 GMT Subject: CN=68939b14-da31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dc:8d:b7:bf:09:f4:09:38:94:01:bf:6a:37: e9:aa:be:a4:0f:53:31:ae:5c:fb:3a:51:eb:0a:ec: 50:10:a1:40:4c:31:e3:e9:a5:87:7f:af:2f:ab:d1: 7b:64:03:bd:19:4f:db:3a:cf:6a:77:47:6b:bc:de: 63:d4:d5:89:c7:e4:d0:4a:8d:fa:0a:f3:39:c0:87: d9:96:c0:4a:1d:db:bf:36:4a:93:1c:41:4e:c9:10: a9:a3:fc:b2:36:60:e0:2a:cf:1b:9f:ce:db:8b:91: 79:a8:94:b9:8b:3b:71:29:bc:7e:87:9a:bb:19:e1: bd:da:fb:de:d9:33:ca:99:94:33:38:c4:6f:12:87: a5:6f:97:da:0f:b7:58:47:d8:41:64:9a:ed:66:71: 4f:b7:4f:fb:84:77:61:5a:7a:94:18:42:ff:df:f9: 06:09:23:8f:88:cf:90:40:a3:14:57:88:20:59:38: 27:0f:78:9a:24:50:e9:8f:1a:78:e6:56:92:48:da: bf:70:c0:30:80:56:e0:9b:01:bd:95:23:7e:cb:51: 8f:b1:b7:2e:db:9f:a4:ce:4f:39:e3:8f:5d:e7:f1: 93:91:39:eb:f7:a7:f4:fd:4c:4c:74:0e:ac:2d:9a: d7:90:ff:8b:97:f3:3e:d4:82:ef:19:b7:8f:f8:a9: 10:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:23:0B:F8:FC:7B:52:42:52:F8:11:FB:9F:8E:21:D5:CF:89:32:8B X509v3 Authority Key Identifier: keyid:EB:8B:0A:D2:C0:76:62:08:52:CB:C3:78:90:E6:4A:D4:06:B4:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64sK0sB2YghSy8N4kOZK1Aa0ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C72B1/2A45F980DEC911E9AAA7EC33C4F9AE02/64sK0sB2YghSy8N4kOZK1Aa0ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:cf:3e:de:c8:eb:f5:ca:32:f8:56:47:0b:08:4f:f9:39:83: 74:d1:47:63:d6:99:62:31:01:16:d3:d5:76:b4:32:ef:da:0f: 78:0a:54:f6:68:74:27:c0:45:57:86:53:09:e7:e9:5a:c0:1e: ae:e2:ba:bc:6b:99:0e:7e:fd:39:6e:9b:79:60:47:6a:c6:61: 3e:5c:9a:7e:00:5e:29:50:9f:57:30:c8:81:f4:73:ec:6a:72: 7d:ab:62:43:cd:59:15:60:9b:6f:7c:8b:13:54:a8:21:e2:7e: f2:b5:35:8d:a1:e1:bf:41:20:b4:42:89:1b:0a:46:23:9b:6b: 69:ff:98:d4:c6:be:8f:44:d9:dc:92:f9:c4:11:72:f1:6e:81: 67:ee:35:70:18:e5:f9:19:68:b7:00:15:10:d2:3f:61:c2:0a: cc:bf:3e:03:87:4e:3b:b8:3e:a8:1f:92:8d:09:7a:35:9f:dc: 3d:0d:39:01:dc:9c:cf:2d:c5:1a:52:7b:91:84:ba:14:fc:4b: 8e:81:63:0a:39:7d:e9:74:8c:fd:ed:4b:dd:91:2a:58:a5:a4: b7:f7:e2:95:1d:eb:08:8c:d6:7e:07:7d:68:77:53:de:98:88: b7:78:73:46:34:61:b3:67:b8:2d:91:88:47:08:22:27:1f:06: de:19:da:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcyQjExMTAvBgNVBAUTKEVCOEIwQUQyQzA3NjYyMDg1MkNCQzM3ODkwRTY0QUQ0 MDZCNDg5RTgwHhcNMjUwODA2MTgxMjM2WhcNMjUwODEzMTgxMjM2WjAYMRYwFAYD VQQDEw02ODkzOWIxNC1kYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdyNt78J9Ak4lAG/ajfpqr6kD1Mxrlz7OlHrCuxQEKFATDHj6aWHf68vq9F7 ZAO9GU/bOs9qd0drvN5j1NWJx+TQSo36CvM5wIfZlsBKHdu/NkqTHEFOyRCpo/yy NmDgKs8bn87bi5F5qJS5iztxKbx+h5q7GeG92vve2TPKmZQzOMRvEoelb5faD7dY R9hBZJrtZnFPt0/7hHdhWnqUGEL/3/kGCSOPiM+QQKMUV4ggWTgnD3iaJFDpjxp4 5laSSNq/cMAwgFbgmwG9lSN+y1GPsbcu25+kzk85449d5/GTkTnr96f0/UxMdA6s LZrXkP+Ll/M+1ILvGbeP+KkQ2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMjC/j8 e1JCUvgR+5+OIdXPiTKLMB8GA1UdIwQYMBaAFOuLCtLAdmIIUsvDeJDmStQGtIno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzJCMS8yQTQ1Rjk4MERF QzkxMUU5QUFBN0VDMzNDNEY5QUUwMi82NHNLMHNCMllnaFN5OE40a09aSzFBYTBp ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0c0swc0IyWWdoU3k4TjRrT1pLMUFhMGllZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzJCMS8yQTQ1Rjk4MERFQzkxMUU5QUFBN0VDMzNDNEY5QUUwMi82NHNLMHNCMlln aFN5OE40a09aSzFBYTBpZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOzz7eyOv1yjL4VkcLCE/5OYN00Udj1pliMQEW09V2tDLv2g94ClT2 aHQnwEVXhlMJ5+lawB6u4rq8a5kOfv05bpt5YEdqxmE+XJp+AF4pUJ9XMMiB9HPs anJ9q2JDzVkVYJtvfIsTVKgh4n7ytTWNoeG/QSC0QokbCkYjm2tp/5jUxr6PRNnc kvnEEXLxboFn7jVwGOX5GWi3ABUQ0j9hwgrMvz4Dh047uD6oH5KNCXo1n9w9DTkB 3JzPLcUaUnuRhLoU/EuOgWMKOX3pdIz97UvdkSpYpaS39+KVHesIjNZ+B31od1Pe mIi3eHNGNGGzZ7gtkYhHCCInHwbeGdpd -----END CERTIFICATE-----Generated at Thu Aug 7 03:27:57 2025 by rpki-client