$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: iVcqCfZL1ztjwuvS52XjISOQXitOn6kftTIJ3fYb5ik= Subject key identifier: 8B:6A:9C:D6:42:C6:43:F2:60:78:C0:A7:C3:D0:46:22:E4:FA:EB:70 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0E80 Signing time: Sun 10 Aug 2025 17:51:12 +0000 Manifest this update: Sun 10 Aug 2025 17:51:12 +0000 Manifest next update: Sun 17 Aug 2025 17:51:12 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: Uz2tgYxO0AKtcwRpit2iZdCaU+QMT2jnxR+2YSWzXIA=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: vEfRiQNE3h/B834WLq9GOeXPVajCjfh3DLWpODG+4Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Aug 10 17:51:12 2025 GMT Not After : Aug 17 17:51:12 2025 GMT Subject: CN=6898dc10-1f74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:73:f5:ea:5e:53:46:b5:a8:3b:06:47:5f: f5:03:4d:ce:f9:14:65:ed:fa:a9:5f:98:d5:39:89: d5:e6:1d:b8:ef:3e:fa:59:40:24:3b:cc:21:d4:eb: 38:1d:98:0e:fc:19:a9:b7:dc:f7:f8:28:08:fe:bc: 20:1f:d0:65:05:73:8b:05:70:9b:72:89:67:8c:3d: 23:76:c9:bc:69:cc:59:85:fe:ca:6e:a1:b1:9d:05: 40:6a:6a:2c:e3:f2:a6:28:58:d8:1c:e3:56:9d:1a: 66:1a:ed:d3:0f:4b:16:58:cc:66:95:d1:51:27:89: fe:56:05:bd:36:06:f1:bd:b4:84:8e:d2:2f:98:5d: da:91:5e:66:16:dd:7c:e4:34:95:0a:72:59:3e:34: 68:7d:e2:55:4f:d8:b4:6a:19:d0:8f:34:c9:2a:4b: 1d:ba:fb:b2:fb:18:ef:95:f9:e6:24:6d:9d:e2:99: 38:c4:cf:33:75:db:76:2b:99:69:b7:39:5d:7a:02: 5d:4c:4a:d8:69:a7:b8:3c:53:2c:aa:e0:5d:6b:41: 7b:5e:fe:e3:6f:a0:2a:f2:a3:5d:b9:44:72:21:e2: 78:70:58:88:c6:57:ed:0b:1f:39:09:65:db:d4:b1: 9c:be:c7:d3:4d:35:7c:f1:a8:2d:95:6b:50:34:6a: 23:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6A:9C:D6:42:C6:43:F2:60:78:C0:A7:C3:D0:46:22:E4:FA:EB:70 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:5f:70:bf:db:ec:d5:13:e1:95:33:52:2c:b3:13:c3:b5:19: 3d:37:a6:ec:e4:cf:b7:ba:1e:b4:37:85:31:5a:ba:4e:11:8b: fe:92:a4:c1:a1:02:71:a1:8b:f4:72:4a:15:cc:5e:b5:42:5d: bf:3c:da:6b:6d:4d:7a:18:22:f8:0e:02:7f:8d:48:57:e3:79: b2:fd:fd:ba:b2:a4:2c:93:6f:33:89:bf:8b:a9:6b:bd:b9:a7: 44:70:6f:93:b8:b8:13:0f:91:93:b9:d2:e1:8c:c5:d4:06:e7: 7f:11:0a:6c:51:34:58:bb:e1:2d:23:c6:2b:64:5c:29:62:7a: a3:92:30:da:a5:03:37:c2:50:be:c4:12:9e:07:3e:20:ae:39: f9:53:fb:9d:65:ae:b2:9d:3c:c6:0c:42:bd:99:af:f4:37:7c: c9:09:b4:2f:43:b0:83:69:8f:c6:4f:57:42:d3:cf:b6:76:58: 20:e7:58:5c:c7:05:9b:66:88:20:4e:bc:63:3a:c8:53:04:2b: 01:eb:d3:3f:47:50:48:55:4b:54:54:65:99:97:a1:94:ba:4e: 7e:6c:51:97:66:5a:67:62:53:b4:c2:6a:7c:94:03:2a:f3:61: 74:2e:35:98:f4:48:3a:01:d3:24:13:99:42:c0:32:5e:3e:36: 8b:d4:af:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzJDQzExMC8GA1UEBRMoREI3OEQ5RjkzNThFNTY3RDMwNkVFM0JEMUVBQzc0OEU5 NjA2QkY4RjAeFw0yNTA4MTAxNzUxMTJaFw0yNTA4MTcxNzUxMTJaMBgxFjAUBgNV BAMTDTY4OThkYzEwLTFmNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeGHP16l5TRrWoOwZHX/UDTc75FGXt+qlfmNU5idXmHbjvPvpZQCQ7zCHU6zgd mA78Gam33Pf4KAj+vCAf0GUFc4sFcJtyiWeMPSN2ybxpzFmF/spuobGdBUBqaizj 8qYoWNgc41adGmYa7dMPSxZYzGaV0VEnif5WBb02BvG9tISO0i+YXdqRXmYW3Xzk NJUKclk+NGh94lVP2LRqGdCPNMkqSx26+7L7GO+V+eYkbZ3imTjEzzN123YrmWm3 OV16Al1MSthpp7g8Uyyq4F1rQXte/uNvoCryo125RHIh4nhwWIjGV+0LHzkJZdvU sZy+x9NNNXzxqC2Va1A0aiONAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi2qc1kLG Q/JgeMCnw9BGIuT663AwHwYDVR0jBBgwFoAU23jZ+TWOVn0wbuO9Hqx0jpYGv48w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3MkNDLzQzMzBBQzlDQjM2 RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjNqWi1UV09WbjB3YnVPOUhxeDBqcFlHdjQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3 MkNDLzQzMzBBQzlDQjM2RDExRTk4MjQ2RUQwQUM0RjlBRTAyLzIzalotVFdPVm4w d2J1TzlIcXgwanBZR3Y0OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKFfcL/b7NUT4ZUzUiyzE8O1GT03puzkz7e6HrQ3hTFauk4Ri/6SpMGh AnGhi/RyShXMXrVCXb882mttTXoYIvgOAn+NSFfjebL9/bqypCyTbzOJv4upa725 p0Rwb5O4uBMPkZO50uGMxdQG538RCmxRNFi74S0jxitkXClieqOSMNqlAzfCUL7E Ep4HPiCuOflT+51lrrKdPMYMQr2Zr/Q3fMkJtC9DsINpj8ZPV0LTz7Z2WCDnWFzH BZtmiCBOvGM6yFMEKwHr0z9HUEhVS1RUZZmXoZS6Tn5sUZdmWmdiU7TCanyUAyrz YXQuNZj0SDoB0yQTmULAMl4+NovUrxg= -----END CERTIFICATE-----Generated at Mon Aug 11 05:58:23 2025 by rpki-client