$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft File: MAKFsSjLjblfHkH_vS68Io1FPvw.mft (raw, json) Hash identifier: JOcsmiOU2gp9aDuwMmINce1UsTUor5CZ6cgr1VgJiAc= Subject key identifier: 26:19:BF:97:C8:1D:CB:5E:A1:E6:02:49:78:AA:E4:07:09:D0:3A:DE Authority key identifier: 30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC Certificate issuer: /CN=A91CD39D/serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Certificate serial: 0484 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft Manifest number: 0484 Signing time: Tue 05 Aug 2025 00:32:17 +0000 Manifest this update: Tue 05 Aug 2025 00:32:16 +0000 Manifest next update: Tue 12 Aug 2025 00:32:16 +0000 Files and hashes: 1: MAKFsSjLjblfHkH_vS68Io1FPvw.crl (hash: cvmkO7+I//LDZgPhxoDg7m5M+Q7ZYrY/rWtyAmbJzbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:32:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1156 (0x484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D, serialNumber=300285B128CB8DB95F1E41FFBD2EBC228D453EFC Validity Not Before: Aug 5 00:32:16 2025 GMT Not After : Aug 12 00:32:16 2025 GMT Subject: CN=68915111-b2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:f4:d9:09:5b:36:ed:51:18:c2:74:e6:b3: f3:a0:95:97:cd:b9:14:c0:8a:f6:be:7d:c6:ad:c9: 08:dc:e3:39:1d:8d:31:3f:f8:c1:36:e2:74:fd:60: 0b:cc:21:ae:25:21:f0:56:51:cc:7a:a4:fe:d1:bc: 80:48:ec:e7:17:07:56:0f:24:30:6f:36:07:de:dc: c1:98:f3:57:5b:db:7b:5e:12:f5:d7:83:9d:5c:2a: 3d:c4:06:e4:3e:98:98:66:a4:71:e2:62:c7:93:6b: da:2b:06:c1:79:e1:b8:20:ed:a2:ac:ea:ce:52:8b: 88:e5:e2:c2:ef:0c:33:1f:e6:35:76:14:f4:b6:60: 39:69:a8:32:88:de:1c:e6:cb:4f:85:ba:dc:37:9f: 63:db:da:34:81:b7:b4:76:b6:6d:74:e3:6a:aa:bd: 0e:22:9a:a4:ed:ae:cb:10:31:fa:37:5f:69:50:3e: 35:d8:ad:33:01:1e:5c:60:8d:ff:4d:ad:e9:24:17: 8f:01:10:9e:38:b9:3f:f1:0e:85:f7:d9:d3:1f:0e: 69:be:9a:36:2b:7a:0c:2b:01:89:8d:99:ac:09:68: cd:fb:9a:b3:ac:f1:b0:91:67:4e:d6:40:74:f5:6d: 30:ec:63:c3:df:77:b5:97:0e:14:06:66:9e:43:f9: 95:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:19:BF:97:C8:1D:CB:5E:A1:E6:02:49:78:AA:E4:07:09:D0:3A:DE X509v3 Authority Key Identifier: keyid:30:02:85:B1:28:CB:8D:B9:5F:1E:41:FF:BD:2E:BC:22:8D:45:3E:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAKFsSjLjblfHkH_vS68Io1FPvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/D44E36D04E7611ECA5720B79C4F9AE02/MAKFsSjLjblfHkH_vS68Io1FPvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d1:1c:80:1f:6a:63:7c:36:0e:51:0d:01:03:50:46:49:b8: ba:73:1c:ca:eb:64:bf:7a:e3:e8:e6:fb:d2:ed:10:46:75:21: bf:b1:2a:d2:2d:ec:b8:44:9b:d5:52:df:f6:39:b9:16:3f:55: a6:8c:84:7f:ad:39:63:79:47:9a:be:2a:99:12:ae:c4:c1:b5: 1b:ab:c6:9d:d7:12:dd:cf:ee:d7:0b:d0:33:69:60:4f:dc:88: 4d:b4:bc:b9:00:5a:db:10:f8:da:85:fd:b3:98:30:48:84:f7: 92:74:cc:19:db:8d:4c:6e:21:2f:79:00:49:7b:60:aa:11:8e: 39:ad:0a:93:55:c9:a8:78:cc:f9:7d:8b:b5:29:8e:7f:23:e2: 90:a2:bd:16:7f:13:c0:a5:97:61:60:08:42:42:f4:a5:94:a3: 5f:ab:50:e0:f6:a3:f6:e0:c9:bb:e8:ae:0a:07:6a:2a:6e:8e: c9:70:4a:55:91:a1:c1:a3:15:70:37:fd:81:a7:01:d6:e8:a5: 4b:03:eb:3b:8c:ee:c6:54:7b:75:7d:af:0e:60:c8:0e:cc:7f: 1c:61:fd:5c:9a:ca:c3:ee:c8:0d:f1:05:76:77:3d:2f:93:5b: b6:2b:21:26:b8:1e:c9:0c:3a:19:13:be:69:3c:f2:c1:fa:56: 84:a6:63:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDMwMDI4NUIxMjhDQjhEQjk1RjFFNDFGRkJEMkVCQzIy OEQ0NTNFRkMwHhcNMjUwODA1MDAzMjE2WhcNMjUwODEyMDAzMjE2WjAYMRYwFAYD VQQDEw02ODkxNTExMS1iMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumv02QlbNu1RGMJ05rPzoJWXzbkUwIr2vn3GrckI3OM5HY0xP/jBNuJ0/WAL zCGuJSHwVlHMeqT+0byASOznFwdWDyQwbzYH3tzBmPNXW9t7XhL114OdXCo9xAbk PpiYZqRx4mLHk2vaKwbBeeG4IO2irOrOUouI5eLC7wwzH+Y1dhT0tmA5aagyiN4c 5stPhbrcN59j29o0gbe0drZtdONqqr0OIpqk7a7LEDH6N19pUD412K0zAR5cYI3/ Ta3pJBePARCeOLk/8Q6F99nTHw5pvpo2K3oMKwGJjZmsCWjN+5qzrPGwkWdO1kB0 9W0w7GPD33e1lw4UBmaeQ/mVZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYZv5fI HcteoeYCSXiq5AcJ0DreMB8GA1UdIwQYMBaAFDAChbEoy425Xx5B/70uvCKNRT78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ENDRFMzZEMDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpibGZIa0hfdlM2OElvMUZQ dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BS0ZzU2pMamJsZkhrSF92UzY4SW8xRlB2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDM5RC9ENDRFMzZEMDRFNzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9NQUtGc1NqTGpi bGZIa0hfdlM2OElvMUZQdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe0RyAH2pjfDYOUQ0BA1BGSbi6cxzK62S/euPo5vvS7RBGdSG/sSrS Ley4RJvVUt/2ObkWP1WmjIR/rTljeUeaviqZEq7EwbUbq8ad1xLdz+7XC9AzaWBP 3IhNtLy5AFrbEPjahf2zmDBIhPeSdMwZ241MbiEveQBJe2CqEY45rQqTVcmoeMz5 fYu1KY5/I+KQor0WfxPApZdhYAhCQvSllKNfq1Dg9qP24Mm76K4KB2oqbo7JcEpV kaHBoxVwN/2BpwHW6KVLA+s7jO7GVHt1fa8OYMgOzH8cYf1cmsrD7sgN8QV2dz0v k1u2KyEmuB7JDDoZE75pPPLB+laEpmMT -----END CERTIFICATE-----Generated at Wed Aug 6 05:58:02 2025 by rpki-client