$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: woiP+Ku44UKS610tHqfK6r0PHwtTh41YcUyON0Q5Ut0= Subject key identifier: 9A:64:56:52:16:72:A3:29:47:8F:73:9B:83:DC:AA:CB:01:9F:35:73 Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 0206 Signing time: Mon 11 Aug 2025 02:21:18 +0000 Manifest this update: Mon 11 Aug 2025 02:21:18 +0000 Manifest next update: Mon 18 Aug 2025 02:21:18 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: LmrXi8vCgC8Up/UBJ7IYycyeAsHRZbnzYAGLX1JZURQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Aug 11 02:21:18 2025 GMT Not After : Aug 18 02:21:18 2025 GMT Subject: CN=6899539e-ddd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c6:aa:84:98:3a:53:9a:02:0f:a3:39:e1:48: 14:cd:2b:62:c3:90:62:0b:e5:06:64:37:18:63:d0: be:2f:a4:b1:c0:f1:cd:5e:02:06:4a:54:e8:03:9e: ac:e0:0a:6b:53:f6:5d:4e:ff:fa:8c:69:3c:35:dd: a1:9b:41:69:5f:91:98:d3:f3:ca:c2:c9:03:b6:e9: 6c:55:10:1b:65:9f:e8:34:56:37:2b:9a:fe:42:55: f1:a5:b6:d6:72:14:dd:cd:e7:94:1e:80:cc:5f:c6: 71:62:81:3a:5c:36:56:9a:22:e8:41:9a:bd:80:f0: e1:f9:27:98:df:d2:9b:60:72:97:19:44:0a:d6:0b: 8f:9c:a3:f7:72:8c:b7:c7:ba:48:16:c3:04:20:11: 68:44:3d:15:be:c3:ce:86:12:f2:fd:e6:59:69:07: e1:bf:72:9c:a1:11:66:4f:cb:54:10:fc:f2:12:ae: cf:4c:7f:16:7f:8d:44:60:af:ff:2e:07:62:2c:a4: a3:18:88:3f:a5:14:88:00:e3:2b:f4:1d:94:c0:5b: c8:a9:a0:46:0a:da:ff:d1:72:38:6e:e3:23:4f:18: 50:21:a2:5f:59:ab:50:af:cd:35:c5:64:cc:ae:d3: bd:7a:82:0b:fd:b3:aa:9c:00:78:2a:7b:d5:a3:41: d5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:64:56:52:16:72:A3:29:47:8F:73:9B:83:DC:AA:CB:01:9F:35:73 X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:26:6d:75:a4:5f:72:55:89:d9:e7:1e:9d:7a:e2:30:ef:75: a7:a4:d1:14:10:0f:c8:1d:84:e5:4e:6e:21:fd:4b:fb:cc:28: ec:3d:3b:16:ed:88:3b:25:ad:05:27:4d:53:49:3f:82:40:fe: 3d:12:aa:83:0f:48:78:2e:a1:ae:05:97:1a:cf:e9:09:bf:d5: bd:13:7a:a0:16:8a:ec:8a:c1:16:03:69:02:d5:73:a6:5f:e1: a5:e9:28:0c:47:ab:43:b9:10:5e:cb:08:69:c0:78:5b:d4:1b: 71:5a:e0:18:d2:19:c0:2d:21:07:e5:95:fa:1d:4c:a8:83:eb: e6:c8:ea:f0:07:17:b1:86:5f:9a:e0:1b:ee:29:24:ef:a8:a2: ba:b5:b4:06:1b:e5:fe:bb:44:71:47:1e:8b:95:1e:cc:04:f0: 00:a6:b8:79:a7:98:77:7e:08:ed:5a:fc:09:04:8c:32:6e:bb: 22:ba:39:b9:e3:c2:9a:07:fa:4f:1d:d6:89:61:a9:f2:42:a0: c1:cb:83:a1:04:22:3c:db:51:1f:e3:91:b2:4b:eb:9f:e9:b7: c3:fd:a1:77:6d:1b:c3:51:01:46:70:39:c7:bf:fa:7b:d8:32: 0a:13:1f:11:34:5e:64:dd:ea:75:82:6f:a6:31:58:0b:26:aa: b6:d5:be:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUwODExMDIyMTE4WhcNMjUwODE4MDIyMTE4WjAYMRYwFAYD VQQDEw02ODk5NTM5ZS1kZGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0caqhJg6U5oCD6M54UgUzStiw5BiC+UGZDcYY9C+L6SxwPHNXgIGSlToA56s 4AprU/ZdTv/6jGk8Nd2hm0FpX5GY0/PKwskDtulsVRAbZZ/oNFY3K5r+QlXxpbbW chTdzeeUHoDMX8ZxYoE6XDZWmiLoQZq9gPDh+SeY39KbYHKXGUQK1guPnKP3coy3 x7pIFsMEIBFoRD0VvsPOhhLy/eZZaQfhv3KcoRFmT8tUEPzyEq7PTH8Wf41EYK// LgdiLKSjGIg/pRSIAOMr9B2UwFvIqaBGCtr/0XI4buMjTxhQIaJfWatQr801xWTM rtO9eoIL/bOqnAB4KnvVo0HVIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpkVlIW cqMpR49zm4PcqssBnzVzMB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDsJm11pF9yVYnZ5x6deuIw73WnpNEUEA/IHYTlTm4h/Uv7zCjsPTsW 7Yg7Ja0FJ01TST+CQP49EqqDD0h4LqGuBZcaz+kJv9W9E3qgForsisEWA2kC1XOm X+Gl6SgMR6tDuRBeywhpwHhb1BtxWuAY0hnALSEH5ZX6HUyog+vmyOrwBxexhl+a 4BvuKSTvqKK6tbQGG+X+u0RxRx6LlR7MBPAAprh5p5h3fgjtWvwJBIwybrsiujm5 48KaB/pPHdaJYanyQqDBy4OhBCI821Ef45GyS+uf6bfD/aF3bRvDUQFGcDnHv/p7 2DIKEx8RNF5k3ep1gm+mMVgLJqq21b59 -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:17 2025 by rpki-client