$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft File: C99de_bArcNvIwEoNtjC3CQnkzw.mft (raw, json) Hash identifier: 4oFexZv3ru9id8Tr33HnP19ATbMiT4bUo6K5sB96t30= Subject key identifier: 08:F9:C0:BB:5A:C6:60:26:26:CF:47:9E:CC:9B:29:B9:4C:A5:43:2F Authority key identifier: 0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C Certificate issuer: /CN=A91D6499/serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Certificate serial: 06B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft Manifest number: 06AC Signing time: Tue 12 Aug 2025 22:32:50 +0000 Manifest this update: Tue 12 Aug 2025 22:32:50 +0000 Manifest next update: Tue 19 Aug 2025 22:32:50 +0000 Files and hashes: 1: C99de_bArcNvIwEoNtjC3CQnkzw.crl (hash: Ozb/9ZEHVK60ty3RFZhjx9gY6b56aa3LFgyUXeBhSN4=) 2: A96F9914F1D811EFA3152963C4F9AE02.roa (hash: GbZWi9q6UX7D+oMHHFTd4plXypkHkfSoO+ds1DieM3U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6499, serialNumber=0BDF5D7BF6C0ADC36F23012836D8C2DC2427933C Validity Not Before: Aug 12 22:32:50 2025 GMT Not After : Aug 19 22:32:50 2025 GMT Subject: CN=689bc112-16de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:4f:04:10:8b:96:3d:7e:e8:42:54:76:5b: 27:fd:90:b7:29:8c:55:c5:1d:60:d8:d1:7f:d3:fc: d9:5d:5c:85:86:98:5d:f7:b4:3f:d5:c7:f9:a2:e1: 68:ee:cc:dc:d9:86:da:03:74:85:23:8b:90:da:f4: 7f:65:7c:e5:01:b7:a2:d3:48:af:4c:6b:7b:a1:22: a7:99:a2:30:19:73:52:e3:73:ae:e4:22:7c:5a:df: 1d:cd:80:bf:81:4a:b4:e1:6c:78:1d:8a:92:37:7d: ff:15:31:87:9c:d0:f8:30:b5:ee:b4:df:51:ee:b9: ce:4b:8e:34:b4:3b:69:69:ab:7a:53:86:1a:0d:76: b1:8d:0e:cd:0f:3e:22:f9:26:e0:b9:e3:39:49:34: d8:b2:43:60:8e:ec:d0:ff:d7:e4:82:31:aa:fa:6c: 0b:e9:60:25:25:d4:0a:5c:83:47:32:84:d6:b8:3c: 56:17:7e:18:a8:a4:56:80:31:29:68:e3:82:fc:87: 67:22:f9:ba:12:ed:2c:3c:04:65:dc:5d:7d:40:30: 08:e0:9d:8d:86:2e:9e:9d:e5:62:39:32:05:57:87: 66:9e:bc:c1:88:a8:9f:d0:90:66:18:9a:06:05:df: d4:5e:9b:15:39:48:1b:53:66:1b:d1:54:1c:bc:a0: de:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F9:C0:BB:5A:C6:60:26:26:CF:47:9E:CC:9B:29:B9:4C:A5:43:2F X509v3 Authority Key Identifier: keyid:0B:DF:5D:7B:F6:C0:AD:C3:6F:23:01:28:36:D8:C2:DC:24:27:93:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C99de_bArcNvIwEoNtjC3CQnkzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6499/9F836C52780911EBA16AE156C4F9AE02/C99de_bArcNvIwEoNtjC3CQnkzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:7f:76:dc:5c:bf:00:4d:42:52:e4:6e:9b:a8:b2:ba:ab:66: 4a:bd:c9:51:8d:2b:08:1c:cd:28:dd:77:c8:9b:1d:2d:4d:27: 08:4f:92:08:ac:97:62:92:7f:de:dd:7e:e3:a5:75:bd:a4:c1: 32:d0:e1:8d:37:b4:4e:7a:60:00:55:5e:09:2a:a4:c8:c2:df: 0e:e7:ce:58:f0:8c:a3:87:26:2a:ce:0b:54:7f:48:34:0e:c5: bf:07:25:5e:12:9e:22:83:b5:cc:98:a5:3e:fb:32:2a:32:d9: ec:c1:b9:4a:a3:41:bf:fb:e0:5e:3e:08:a7:20:66:39:77:d3: ea:e8:0b:30:80:78:be:f3:4b:d4:c4:3f:71:2d:1b:a7:50:26: 21:4b:e5:3d:18:65:f2:90:0d:43:66:15:15:37:aa:c0:8b:be: 37:55:32:67:4d:5e:ff:71:35:ab:b0:c4:c2:b0:e7:0f:7d:55: 53:7e:e7:e5:e0:b0:eb:b8:6f:bd:f6:99:c2:f4:70:30:e7:b4: 04:b6:b7:4c:5b:88:67:bf:a5:33:87:bc:84:8c:f4:eb:1d:5f: bf:84:70:d6:ee:56:27:34:f5:a5:ee:82:9f:97:70:05:8e:29: d1:ed:57:c6:69:5d:1d:8f:d1:64:c1:d2:18:a7:30:f8:97:65: cf:13:b3:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY0OTkxMTAvBgNVBAUTKDBCREY1RDdCRjZDMEFEQzM2RjIzMDEyODM2RDhDMkRD MjQyNzkzM0MwHhcNMjUwODEyMjIzMjUwWhcNMjUwODE5MjIzMjUwWjAYMRYwFAYD VQQDEw02ODliYzExMi0xNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT9PBBCLlj1+6EJUdlsn/ZC3KYxVxR1g2NF/0/zZXVyFhphd97Q/1cf5ouFo 7szc2YbaA3SFI4uQ2vR/ZXzlAbei00ivTGt7oSKnmaIwGXNS43Ou5CJ8Wt8dzYC/ gUq04Wx4HYqSN33/FTGHnND4MLXutN9R7rnOS440tDtpaat6U4YaDXaxjQ7NDz4i +SbgueM5STTYskNgjuzQ/9fkgjGq+mwL6WAlJdQKXINHMoTWuDxWF34YqKRWgDEp aOOC/IdnIvm6Eu0sPARl3F19QDAI4J2Nhi6eneViOTIFV4dmnrzBiKif0JBmGJoG Bd/UXpsVOUgbU2Yb0VQcvKDecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAj5wLta xmAmJs9HnsybKblMpUMvMB8GA1UdIwQYMBaAFAvfXXv2wK3DbyMBKDbYwtwkJ5M8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjQ5OS85RjgzNkM1Mjc4 MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJjTnZJd0VvTnRqQzNDUW5r encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M5OWRlX2JBcmNOdkl3RW9OdGpDM0NRbmt6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjQ5OS85RjgzNkM1Mjc4MDkxMUVCQTE2QUUxNTZDNEY5QUUwMi9DOTlkZV9iQXJj TnZJd0VvTnRqQzNDUW5rencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBif3bcXL8ATUJS5G6bqLK6q2ZKvclRjSsIHM0o3XfImx0tTScIT5II rJdikn/e3X7jpXW9pMEy0OGNN7ROemAAVV4JKqTIwt8O585Y8IyjhyYqzgtUf0g0 DsW/ByVeEp4ig7XMmKU++zIqMtnswblKo0G/++BePginIGY5d9Pq6AswgHi+80vU xD9xLRunUCYhS+U9GGXykA1DZhUVN6rAi743VTJnTV7/cTWrsMTCsOcPfVVTfufl 4LDruG+99pnC9HAw57QEtrdMW4hnv6Uzh7yEjPTrHV+/hHDW7lYnNPWl7oKfl3AF jinR7VfGaV0dj9FkwdIYpzD4l2XPE7OD -----END CERTIFICATE-----Generated at Wed Aug 13 05:34:01 2025 by rpki-client