$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: jP18AmQzQsMFve/UdZJc/YAxxraZMR+AXKEi4oE+xHE= Subject key identifier: E4:A7:AE:ED:55:A1:45:5A:76:2A:EA:F1:3C:E5:4B:9F:5C:7A:C3:88 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0C6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0C67 Signing time: Fri 08 Aug 2025 18:36:28 +0000 Manifest this update: Fri 08 Aug 2025 18:36:28 +0000 Manifest next update: Fri 15 Aug 2025 18:36:28 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: /cxI2MCZzGDUIOhVM0/xYctPp7MMKo3BskBYqGriOLM=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3182 (0xc6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Aug 8 18:36:28 2025 GMT Not After : Aug 15 18:36:28 2025 GMT Subject: CN=689643ac-d469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3f:fc:28:ba:70:b3:c4:c1:78:5e:09:5e:29: 61:c4:94:f6:2a:67:4e:04:0b:82:5d:60:12:da:0a: 09:3b:43:d6:d7:99:bf:58:83:91:1d:a3:73:81:b5: 2d:96:b8:30:5f:2e:4e:fc:18:4f:8a:36:f0:57:ef: 2b:58:ee:6f:bf:cf:70:9e:15:9f:c3:60:ec:98:e4: 37:49:be:dc:78:14:fa:b5:aa:fa:19:41:f5:64:4e: 39:e0:60:30:d1:6c:92:80:09:05:7a:11:d6:a5:12: 1b:d8:b2:d9:1c:4b:91:ee:3d:75:2a:1d:a4:b7:e7: c9:62:7d:31:ad:7b:3d:39:70:c7:d9:52:47:1e:89: 5e:4c:bf:e6:a5:20:0d:a6:8c:d6:29:44:3b:ad:c5: 41:8b:b7:47:63:44:dc:af:17:24:28:31:79:ac:e7: 3e:53:99:12:bd:f7:87:7a:8c:33:bb:8e:be:71:d1: 32:2c:c0:c6:c7:91:5e:e9:de:12:f2:85:11:b3:5c: ba:02:68:f1:2b:a3:92:c8:46:f4:ce:db:1e:62:11: 42:2f:72:b7:fe:e8:4c:bb:be:36:ae:59:74:83:a5: 49:ae:1a:95:88:a3:b1:4c:5c:73:dd:19:92:76:50: 17:ab:6b:8d:c4:25:6a:8d:61:6c:bf:9c:b9:f4:20: 1b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A7:AE:ED:55:A1:45:5A:76:2A:EA:F1:3C:E5:4B:9F:5C:7A:C3:88 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:a5:1a:c7:c3:86:b1:cc:d2:23:e1:f0:bb:16:25:74:13:c0: f9:3d:ef:f8:14:43:c8:f3:5f:e8:15:19:27:ee:de:9b:23:0b: f9:41:c6:d3:8b:0d:34:68:21:31:b2:a9:dd:49:d0:1a:04:41: 79:3c:f5:c2:18:d9:b3:47:02:c6:6c:3b:30:a4:36:98:09:22: 84:73:66:a1:0b:f0:d6:7a:e2:a0:c9:51:60:b0:eb:a5:70:2f: 8d:87:0b:7b:45:9a:9f:b5:4d:32:b7:1e:49:d8:5c:c4:66:61: fb:bf:ef:7e:b7:18:70:3e:e6:47:be:69:22:e5:bd:df:e7:57: 13:81:9c:19:df:6a:1d:06:34:e5:2a:ee:c2:cf:26:85:82:78: 32:db:28:06:00:ed:82:f6:3d:c0:80:46:f4:33:84:c1:20:fc: 5b:0b:36:f6:9c:b6:59:3a:73:cf:8d:d0:64:bc:53:49:c2:f6: 74:04:83:bb:c8:2b:46:89:ac:b2:12:d3:4c:a4:c2:32:f3:96: ca:42:dc:88:09:88:4a:00:37:45:e5:ab:b7:4b:a4:b3:ec:4a: 90:10:98:0c:37:40:e4:86:bd:c1:27:b6:00:31:1d:9e:ea:0c: a7:2c:c0:ff:2d:4b:f8:66:95:21:9d:ec:5d:a9:dc:c5:87:13: e1:1a:a7:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUwODA4MTgzNjI4WhcNMjUwODE1MTgzNjI4WjAYMRYwFAYD VQQDEw02ODk2NDNhYy1kNDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0z/8KLpws8TBeF4JXilhxJT2KmdOBAuCXWAS2goJO0PW15m/WIORHaNzgbUt lrgwXy5O/BhPijbwV+8rWO5vv89wnhWfw2DsmOQ3Sb7ceBT6tar6GUH1ZE454GAw 0WySgAkFehHWpRIb2LLZHEuR7j11Kh2kt+fJYn0xrXs9OXDH2VJHHoleTL/mpSAN pozWKUQ7rcVBi7dHY0TcrxckKDF5rOc+U5kSvfeHeowzu46+cdEyLMDGx5Fe6d4S 8oURs1y6AmjxK6OSyEb0ztseYhFCL3K3/uhMu742rll0g6VJrhqViKOxTFxz3RmS dlAXq2uNxCVqjWFsv5y59CAb5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSnru1V oUVadirq8TzlS59cesOIMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPpRrHw4axzNIj4fC7FiV0E8D5Pe/4FEPI81/oFRkn7t6bIwv5QcbT iw00aCExsqndSdAaBEF5PPXCGNmzRwLGbDswpDaYCSKEc2ahC/DWeuKgyVFgsOul cC+Nhwt7RZqftU0ytx5J2FzEZmH7v+9+txhwPuZHvmki5b3f51cTgZwZ32odBjTl Ku7CzyaFgngy2ygGAO2C9j3AgEb0M4TBIPxbCzb2nLZZOnPPjdBkvFNJwvZ0BIO7 yCtGiayyEtNMpMIy85bKQtyICYhKADdF5au3S6Sz7EqQEJgMN0Dkhr3BJ7YAMR2e 6gynLMD/LUv4ZpUhnexdqdzFhxPhGqfx -----END CERTIFICATE-----Generated at Sat Aug 9 14:29:36 2025 by rpki-client