$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: +oGhvCV9SE1tVTjQnrZBoToyY7RNUxFALPzdQfbheww= Subject key identifier: 26:83:C9:95:76:4A:71:E6:D4:8E:E0:93:C0:8A:E6:15:20:2F:54:CC Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0C2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0C17 Signing time: Wed 06 Aug 2025 18:59:32 +0000 Manifest this update: Wed 06 Aug 2025 18:59:31 +0000 Manifest next update: Wed 13 Aug 2025 18:59:31 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: /M1kC3J7uHmnfyDAfvQC3J8oxaJHR0AG6Eb0LJpHOm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 18:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3119 (0xc2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8, serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Aug 6 18:59:31 2025 GMT Not After : Aug 13 18:59:31 2025 GMT Subject: CN=6893a613-0d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:be:a6:ff:81:97:20:f7:09:25:5e:11:d4:4e: 40:52:76:5f:48:6a:f0:ef:38:f6:65:f4:5a:75:04: b2:25:05:42:67:48:05:34:61:58:0d:0d:bc:f7:ed: 08:f7:2d:d2:e7:f9:d6:ed:3a:88:8c:86:8a:1d:4e: bb:26:87:e5:99:87:12:90:66:6d:6c:ad:ad:c8:aa: 9e:36:4e:97:09:ac:bf:c1:2e:29:39:7d:a2:8d:c2: b0:db:7e:57:bc:69:49:cd:22:ca:e6:cc:9e:97:dc: 96:65:69:2b:b7:ac:77:44:13:06:e7:e8:40:59:a8: 16:2e:50:12:e6:59:b8:a8:ff:e1:e2:d9:3a:89:26: 9c:75:ad:04:e6:75:86:ab:a4:bf:68:c7:9c:64:4b: 01:8a:14:3f:c5:dd:10:5f:c7:6e:92:f6:8f:3a:cf: d0:cf:66:41:8e:13:15:68:13:8e:dd:ae:88:8b:a8: 26:88:cf:0c:6a:24:53:ac:75:7c:42:6c:05:7e:06: 0f:67:19:1c:d8:f3:5d:10:99:8a:8f:8a:78:21:f4: ca:87:20:8f:51:1d:13:5a:ff:32:3f:c1:58:36:97: fe:93:b1:97:d3:db:d0:50:b4:57:5d:f6:1b:bf:e5: 56:b0:1b:2b:bc:00:21:4d:08:3e:48:44:a6:28:e8: db:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:83:C9:95:76:4A:71:E6:D4:8E:E0:93:C0:8A:E6:15:20:2F:54:CC X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:0a:56:e4:be:b5:5e:ac:15:dd:b5:83:ea:5b:c7:0e:27:f1: 7d:ed:b0:18:df:c1:41:a9:7a:13:f9:9b:8c:db:04:56:5f:51: 76:93:fe:a0:1e:30:87:fb:e0:8c:ad:f2:f8:67:90:42:74:2b: 89:cf:d4:cc:1c:3c:ca:8a:b3:6f:ba:dc:44:5f:8a:68:4a:3b: 7f:ac:5f:20:b2:8a:c7:62:24:b4:9f:ce:54:ab:c5:89:da:42: aa:f7:cd:c5:e2:68:48:0a:49:06:3f:14:d0:28:7c:a1:2d:51: 5b:93:85:dd:a4:64:22:b0:5b:5a:ba:99:33:f3:99:71:3c:14: d4:bf:34:0b:9f:04:95:3e:20:f0:13:1d:03:0e:28:d0:7c:79: 80:f5:1d:e9:20:73:5d:61:48:d1:51:fa:b1:12:fd:9c:e9:69: be:bc:f1:02:46:1e:5f:05:e7:cb:94:54:b9:8b:54:1a:b4:bf: 7c:53:32:ac:12:ab:74:34:58:b0:08:19:32:5b:85:b9:a2:f5: a8:70:39:5a:b7:5d:81:80:20:1f:35:9c:67:67:cc:4b:c1:8e: ec:3a:d2:24:ef:e7:64:03:65:30:6c:bc:68:b9:79:6a:7a:3d: 4e:57:12:04:70:d4:ad:d9:b7:51:8d:ec:02:cf:10:a7:29:b0: 86:c6:c2:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjUwODA2MTg1OTMxWhcNMjUwODEzMTg1OTMxWjAYMRYwFAYD VQQDEw02ODkzYTYxMy0wZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArb6m/4GXIPcJJV4R1E5AUnZfSGrw7zj2ZfRadQSyJQVCZ0gFNGFYDQ289+0I 9y3S5/nW7TqIjIaKHU67JoflmYcSkGZtbK2tyKqeNk6XCay/wS4pOX2ijcKw235X vGlJzSLK5syel9yWZWkrt6x3RBMG5+hAWagWLlAS5lm4qP/h4tk6iSacda0E5nWG q6S/aMecZEsBihQ/xd0QX8dukvaPOs/Qz2ZBjhMVaBOO3a6Ii6gmiM8MaiRTrHV8 QmwFfgYPZxkc2PNdEJmKj4p4IfTKhyCPUR0TWv8yP8FYNpf+k7GX09vQULRXXfYb v+VWsBsrvAAhTQg+SESmKOjbyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaDyZV2 SnHm1I7gk8CK5hUgL1TMMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBClbkvrVerBXdtYPqW8cOJ/F97bAY38FBqXoT+ZuM2wRWX1F2k/6g HjCH++CMrfL4Z5BCdCuJz9TMHDzKirNvutxEX4poSjt/rF8gsorHYiS0n85Uq8WJ 2kKq983F4mhICkkGPxTQKHyhLVFbk4XdpGQisFtaupkz85lxPBTUvzQLnwSVPiDw Ex0DDijQfHmA9R3pIHNdYUjRUfqxEv2c6Wm+vPECRh5fBefLlFS5i1QatL98UzKs Eqt0NFiwCBkyW4W5ovWocDlat12BgCAfNZxnZ8xLwY7sOtIk7+dkA2UwbLxouXlq ej1OVxIEcNSt2bdRjewCzxCnKbCGxsKe -----END CERTIFICATE-----Generated at Thu Aug 7 05:14:20 2025 by rpki-client