$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: l/UDwRA8HFQgBP0vN8axX77dc95nliTk+AKXnse7mFM= Subject key identifier: 3C:13:2B:83:29:1C:D8:B8:2E:66:99:C3:82:DB:49:45:52:8C:5A:13 Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: 78 Signing time: Sat 09 Aug 2025 07:15:59 +0000 Manifest this update: Sat 09 Aug 2025 07:15:58 +0000 Manifest next update: Sat 16 Aug 2025 07:15:58 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: Y9KVhZfxoANIjJvULTCIqUI9Z1JIqZ2Va61XzzyYrRU=) 2: DE72D5AEBED411EF835BB47AC4F9AE02.roa (hash: 5j81/BZOYpTkz0ooChEWGP+uFOoiaPO0/qxC0SgYzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Aug 9 07:15:58 2025 GMT Not After : Aug 16 07:15:58 2025 GMT Subject: CN=6896f5ae-cebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:77:6e:c5:52:ac:da:ae:16:d8:84:dc:0a:f0: 19:5e:04:45:b4:bb:90:95:ba:dd:b2:7a:6a:c2:de: 26:65:80:6e:07:87:65:88:9c:1d:bd:c8:e4:60:ab: e2:33:5f:39:46:50:f1:00:2c:29:36:2a:4b:c0:10: 85:62:2f:7f:c2:52:08:95:db:7d:8c:85:9c:95:09: 3a:8e:d0:33:2e:2e:02:41:d5:59:6a:5b:6b:79:0d: 80:42:2a:2e:f6:c9:4b:1d:bc:dc:50:f8:c6:40:25: 6b:f3:ac:d9:c4:ef:da:5b:f0:c8:ac:97:17:90:9e: f8:6b:93:f6:e6:1d:a5:60:1e:95:2d:9e:7a:5c:9d: 1a:0a:28:39:4c:39:24:40:d4:11:bb:f4:be:67:fd: 41:42:47:99:42:fe:84:e8:b1:44:a2:58:dd:d6:57: 25:8b:7d:99:69:40:80:ae:80:0b:87:73:8a:67:21: f1:90:9a:1f:a6:f5:81:99:f3:51:7a:7f:d5:ef:f1: 33:44:56:5e:c4:85:ca:64:44:68:b4:0f:8b:c8:90: 1b:a2:bf:98:c6:7a:9f:e0:db:a6:9d:15:60:2b:b3: 83:51:08:be:c9:55:e2:8f:b3:40:72:6d:19:1c:ca: cf:75:24:c1:62:ef:4b:1e:b7:d7:6e:ac:bc:08:76: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:13:2B:83:29:1C:D8:B8:2E:66:99:C3:82:DB:49:45:52:8C:5A:13 X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:07:35:36:d8:62:20:3d:2a:cc:bf:60:fb:5b:e9:d8:58:04: d4:5b:8e:35:92:b5:2b:8b:f6:77:c3:90:2e:36:b6:1e:1d:71: f2:b3:37:34:51:48:22:68:a9:f3:96:1e:a6:cd:f5:3b:d6:02: d9:f1:f4:b0:4f:f5:78:79:bb:fb:73:a3:f8:6c:53:98:b4:f4: d9:29:a0:5e:ab:6b:8d:47:60:ad:aa:bb:fd:51:52:6a:1f:c7: 73:f9:10:59:05:93:d0:49:92:b0:99:a0:17:49:70:64:fc:34: 9c:55:28:58:ff:ba:b5:08:e1:a5:6a:1b:5d:f7:3e:3c:c2:63: 4c:94:f9:39:f8:52:42:c4:a7:3b:3f:5f:fe:19:e5:ea:75:4b: 97:0f:0c:af:ee:99:5f:29:6d:a1:43:a9:09:b4:93:1c:1f:c0: 14:11:de:68:92:7d:78:45:93:fe:37:49:d7:d8:23:80:28:62: 78:3f:34:97:53:ea:80:70:b9:87:f1:6a:c8:f4:7c:b3:46:5d: e8:d3:21:f7:e6:ae:4a:2e:93:1b:1f:b9:21:07:1b:12:f0:55: 7d:50:04:22:28:5c:55:e9:43:7f:78:f5:e6:4b:43:d2:d6:49: 4a:17:b9:63:eb:b2:4b:13:24:a2:26:3e:f3:d9:b4:b7:b9:0f: 67:4e:05:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoNEIwOTJERjEwNDI4MEY0NUJDM0YyNzk2RjQwMUNDMkI0 QzYxNDRFOTAeFw0yNTA4MDkwNzE1NThaFw0yNTA4MTYwNzE1NThaMBgxFjAUBgNV BAMTDTY4OTZmNWFlLWNlYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQd27FUqzarhbYhNwK8BleBEW0u5CVut2yemrC3iZlgG4Hh2WInB29yORgq+Iz XzlGUPEALCk2KkvAEIViL3/CUgiV232MhZyVCTqO0DMuLgJB1VlqW2t5DYBCKi72 yUsdvNxQ+MZAJWvzrNnE79pb8MislxeQnvhrk/bmHaVgHpUtnnpcnRoKKDlMOSRA 1BG79L5n/UFCR5lC/oTosUSiWN3WVyWLfZlpQICugAuHc4pnIfGQmh+m9YGZ81F6 f9Xv8TNEVl7EhcpkRGi0D4vIkBuiv5jGep/g26adFWArs4NRCL7JVeKPs0BybRkc ys91JMFi70set9durLwIdiFhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPBMrgykc 2LguZpnDgttJRVKMWhMwHwYDVR0jBBgwFoAUSwkt8QQoD0W8PyeW9AHMK0xhROkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzJCQzkyNDUwQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3drdDhRUW9EMFc4UHllVzlBSE1LMHhoUk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzJCQzkyNDUwQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBX OFB5ZVc5QUhNSzB4aFJPay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACkHNTbYYiA9Ksy/YPtb6dhYBNRbjjWStSuL9nfDkC42th4dcfKzNzRR SCJoqfOWHqbN9TvWAtnx9LBP9Xh5u/tzo/hsU5i09NkpoF6ra41HYK2qu/1RUmof x3P5EFkFk9BJkrCZoBdJcGT8NJxVKFj/urUI4aVqG133PjzCY0yU+Tn4UkLEpzs/ X/4Z5ep1S5cPDK/umV8pbaFDqQm0kxwfwBQR3miSfXhFk/43SdfYI4AoYng/NJdT 6oBwuYfxasj0fLNGXejTIffmrkoukxsfuSEHGxLwVX1QBCIoXFXpQ3949eZLQ9LW SUoXuWPrsksTJKImPvPZtLe5D2dOBXE= -----END CERTIFICATE-----Generated at Sat Aug 9 15:18:05 2025 by rpki-client