$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft File: cPEzmWaoGrwgfjvuM3CR2fLzydc.mft (raw, json) Hash identifier: oKr/GMJKpfQGTeNnTKWu7xqj4YDIhnXe517WQj+8NDk= Subject key identifier: 89:7F:8F:8D:85:38:85:D8:E0:C2:1E:5E:5F:0C:5F:5A:7B:1B:F4:2B Authority key identifier: 70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 Certificate issuer: /CN=A91C9324/serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft Manifest number: 01AF Signing time: Sat 09 Aug 2025 01:36:29 +0000 Manifest this update: Sat 09 Aug 2025 01:36:29 +0000 Manifest next update: Sat 16 Aug 2025 01:36:29 +0000 Files and hashes: 1: cPEzmWaoGrwgfjvuM3CR2fLzydc.crl (hash: e9GFWB40NgJOkIZep1bTEMUEMjlf0EqltgCvebTjHpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324, serialNumber=70F1339966A81ABC207E3BEE337091D9F2F3C9D7 Validity Not Before: Aug 9 01:36:29 2025 GMT Not After : Aug 16 01:36:29 2025 GMT Subject: CN=6896a61d-83d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:93:61:8d:ba:fd:f3:6a:c2:ac:06:c5:9e:eb: 53:ed:50:68:ac:a8:3f:a2:e3:b6:9a:62:3b:34:92: 92:bf:7a:22:13:e3:3a:b7:6b:69:6c:b5:38:64:9f: 73:50:c8:70:c3:bc:d3:b4:84:2f:f8:8d:1c:85:e4: e3:d9:e4:28:a3:7d:96:bf:b2:20:8a:f1:ca:5b:11: 46:ee:51:92:38:09:ac:9b:47:25:33:13:49:07:a2: 63:f2:2f:39:a3:64:eb:cb:d0:3b:85:94:a8:7b:7e: 29:c6:84:03:83:de:10:33:31:58:47:02:c1:09:6c: 12:d5:50:52:f4:ab:70:53:fb:ae:6a:01:3c:d4:b4: 0b:ba:a7:11:dc:ed:28:a8:ae:4d:78:c0:d4:a5:d4: 32:6f:86:82:71:87:26:c4:55:f7:b4:96:18:3b:73: b6:e2:34:49:33:e3:e7:d9:24:55:b3:47:14:45:e9: 1d:8d:e9:e5:8e:d4:7e:5e:11:97:72:13:7c:db:97: 98:40:63:a4:3b:91:f6:ef:5d:b2:41:e6:89:6c:cf: 98:45:54:8d:76:f6:63:06:49:60:93:8a:bb:98:fc: f5:d1:95:8e:e8:0d:f1:91:a6:ea:39:0b:dc:34:b1: 54:92:99:42:e8:26:79:d4:8b:f3:08:c8:76:c5:de: 0a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:7F:8F:8D:85:38:85:D8:E0:C2:1E:5E:5F:0C:5F:5A:7B:1B:F4:2B X509v3 Authority Key Identifier: keyid:70:F1:33:99:66:A8:1A:BC:20:7E:3B:EE:33:70:91:D9:F2:F3:C9:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cPEzmWaoGrwgfjvuM3CR2fLzydc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/22BF8D32E02F11ED95153D31C4F9AE02/cPEzmWaoGrwgfjvuM3CR2fLzydc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:63:50:89:ae:e7:5d:fa:fa:0d:d9:af:bf:ce:d6:75:5d:96: 7a:e0:f5:c1:a3:29:df:72:c0:5a:98:f3:4b:82:e4:11:af:c5: b9:17:37:5e:c0:c7:b0:64:9d:eb:3b:fa:92:a6:0d:3a:fd:ce: 62:30:d2:b0:ae:4a:6c:73:08:e9:0a:3d:25:3a:59:d5:49:ef: c0:68:29:2b:9c:05:eb:83:83:6c:17:80:96:3f:61:37:65:29: e8:eb:4c:45:3a:a6:f6:58:57:63:29:4d:30:a6:aa:ab:e4:6a: 39:99:0f:2e:bb:a6:f6:96:c2:74:bb:b9:ad:d2:b4:5f:a1:df: 21:c9:8b:6f:34:37:bf:64:ad:a3:42:01:aa:fc:ed:d9:6a:7e: cb:29:13:5b:75:16:a0:ad:2a:20:b3:07:34:62:3e:cf:0d:be: 4e:76:d7:a9:42:55:9a:3d:63:ee:fa:c9:fe:65:1b:3c:f5:03: 82:b4:53:3a:b2:62:a9:9d:df:d3:11:4a:b8:c5:ea:42:8f:cf: 41:74:42:a2:d2:d3:05:22:7c:e1:42:ab:02:eb:10:57:06:28: 69:80:79:3a:e9:ec:23:c1:85:d3:9f:0d:a1:bb:c1:49:d0:cc: a9:21:c4:cb:d2:e3:03:c6:8f:a4:fa:db:bb:a0:12:89:9b:dc: 3a:e4:c5:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDcwRjEzMzk5NjZBODFBQkMyMDdFM0JFRTMzNzA5MUQ5 RjJGM0M5RDcwHhcNMjUwODA5MDEzNjI5WhcNMjUwODE2MDEzNjI5WjAYMRYwFAYD VQQDEw02ODk2YTYxZC04M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZNhjbr982rCrAbFnutT7VBorKg/ouO2mmI7NJKSv3oiE+M6t2tpbLU4ZJ9z UMhww7zTtIQv+I0cheTj2eQoo32Wv7IgivHKWxFG7lGSOAmsm0clMxNJB6Jj8i85 o2Try9A7hZSoe34pxoQDg94QMzFYRwLBCWwS1VBS9KtwU/uuagE81LQLuqcR3O0o qK5NeMDUpdQyb4aCcYcmxFX3tJYYO3O24jRJM+Pn2SRVs0cURekdjenljtR+XhGX chN825eYQGOkO5H2712yQeaJbM+YRVSNdvZjBklgk4q7mPz10ZWO6A3xkabqOQvc NLFUkplC6CZ51IvzCMh2xd4KWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIl/j42F OIXY4MIeXl8MX1p7G/QrMB8GA1UdIwQYMBaAFHDxM5lmqBq8IH477jNwkdny88nX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC8yMkJGOEQzMkUw MkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dyd2dmanZ1TTNDUjJmTHp5 ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NQRXptV2FvR3J3Z2ZqdnVNM0NSMmZMenlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNC8yMkJGOEQzMkUwMkYxMUVEOTUxNTNEMzFDNEY5QUUwMi9jUEV6bVdhb0dy d2dmanZ1TTNDUjJmTHp5ZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVY1CJrudd+voN2a+/ztZ1XZZ64PXBoynfcsBamPNLguQRr8W5Fzde wMewZJ3rO/qSpg06/c5iMNKwrkpscwjpCj0lOlnVSe/AaCkrnAXrg4NsF4CWP2E3 ZSno60xFOqb2WFdjKU0wpqqr5Go5mQ8uu6b2lsJ0u7mt0rRfod8hyYtvNDe/ZK2j QgGq/O3Zan7LKRNbdRagrSogswc0Yj7PDb5OdtepQlWaPWPu+sn+ZRs89QOCtFM6 smKpnd/TEUq4xepCj89BdEKi0tMFInzhQqsC6xBXBihpgHk66ewjwYXTnw2hu8FJ 0MypIcTL0uMDxo+k+tu7oBKJm9w65MVh -----END CERTIFICATE-----Generated at Sat Aug 9 23:13:43 2025 by rpki-client