$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft File: rRapGbMt65RQ0upjx51QMV2RgVU.mft (raw, json) Hash identifier: oXAsP5c4iszGNFiINEt22GSVb8/x4M493mrLduFa2Nw= Subject key identifier: 6D:EE:83:60:29:25:B5:75:24:EF:6E:D9:24:C5:12:D6:E7:14:49:9E Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft Manifest number: 0AFF Signing time: Tue 12 Aug 2025 19:36:30 +0000 Manifest this update: Tue 12 Aug 2025 19:36:30 +0000 Manifest next update: Tue 19 Aug 2025 19:36:30 +0000 Files and hashes: 1: rRapGbMt65RQ0upjx51QMV2RgVU.crl (hash: GG5k8JtZDtHzSS45rywJ0nqHzrDyP7kDf3xXFWfe09Y=) 2: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (hash: TavcsNbKSaSDXkcGP72u+jTcP48G3Su8SEY/uwppPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F, serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Aug 12 19:36:30 2025 GMT Not After : Aug 19 19:36:30 2025 GMT Subject: CN=689b97be-f935 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ef:e3:33:ba:3f:97:14:45:d2:13:6b:1b:56: 6b:c9:02:99:79:fe:9e:93:43:dc:e9:03:26:19:66: e7:e3:d0:0d:8f:5b:12:e7:04:dc:1a:01:42:d2:67: 89:cd:54:b9:d3:b1:8e:4e:7d:3e:ec:40:77:95:82: d1:e0:e8:2f:ad:62:8d:6b:84:29:34:77:dc:9a:64: 3c:8c:f3:69:8f:06:e3:b0:25:3e:a2:17:b8:d6:33: 86:de:ae:42:a7:f5:e5:7d:ea:00:2d:e8:a5:bc:b2: 75:81:42:92:fd:8b:70:8f:6e:84:f5:87:ce:12:98: a6:13:16:20:b4:00:0f:dc:c5:cb:6a:92:7e:74:2b: 52:68:ba:99:24:5f:67:66:71:a4:06:4f:3b:3c:54: 3e:4b:f2:85:4f:67:eb:19:b1:01:60:9f:2a:d5:b6: 6b:3f:5c:67:90:f2:36:70:fb:a5:0c:6b:62:ea:76: d8:03:96:41:a0:cb:a7:30:33:f4:da:bd:4f:ed:2c: 67:38:2d:94:ab:65:07:97:9e:d6:a8:98:f7:33:18: 9f:84:19:53:69:21:b3:7d:a8:7d:cb:74:04:26:8d: 11:3c:75:78:7f:05:81:40:04:76:c0:c2:c2:9b:03: 4b:b6:a9:7e:41:32:e8:1c:38:37:71:36:c9:3f:40: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EE:83:60:29:25:B5:75:24:EF:6E:D9:24:C5:12:D6:E7:14:49:9E X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:be:5c:2f:2e:2a:19:bb:9b:c8:95:84:ea:cd:9f:f1:ac:c1: c4:5a:18:44:c0:20:79:20:42:23:4d:5e:f1:97:f8:6c:03:31: 53:90:5c:fa:46:74:ab:11:54:c1:ef:25:23:f2:63:a1:b9:64: a8:a5:c2:2c:50:7b:de:06:47:25:c2:f4:dd:bb:df:44:7c:15: 42:8d:16:b2:1e:b8:b1:f6:04:47:80:61:ca:79:93:d8:90:76: 57:16:b9:12:40:ef:32:34:29:0d:38:6d:4b:2c:3b:c7:01:c6: 22:e1:49:1a:9a:61:df:a6:f9:2e:f2:8a:db:48:33:24:8e:11: be:bd:dc:ba:0c:ee:92:a8:6c:d9:9c:43:ef:1a:04:88:6c:06: f5:3a:6c:8c:b4:01:d1:ea:c6:f3:7c:87:32:03:ac:2e:a5:56: c3:a2:49:f6:05:bd:f3:44:da:90:18:11:3d:f3:8e:e7:89:25: 1b:4d:c0:7f:3d:4f:79:8c:bf:db:ec:fc:3d:e6:79:28:0c:76: d2:a3:b5:9d:c0:16:50:b7:38:bd:b8:c8:86:27:cb:60:cf:b7: 3e:b3:a6:62:96:74:56:84:19:fe:32:a2:b1:b8:aa:d0:3c:0e: 41:78:99:90:5f:8f:82:2f:70:a2:c6:41:09:d7:11:49:3e:e6: ea:97:10:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjUwODEyMTkzNjMwWhcNMjUwODE5MTkzNjMwWjAYMRYwFAYD VQQDEw02ODliOTdiZS1mOTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwu/jM7o/lxRF0hNrG1ZryQKZef6ek0Pc6QMmGWbn49ANj1sS5wTcGgFC0meJ zVS507GOTn0+7EB3lYLR4OgvrWKNa4QpNHfcmmQ8jPNpjwbjsCU+ohe41jOG3q5C p/XlfeoALeilvLJ1gUKS/Ytwj26E9YfOEpimExYgtAAP3MXLapJ+dCtSaLqZJF9n ZnGkBk87PFQ+S/KFT2frGbEBYJ8q1bZrP1xnkPI2cPulDGti6nbYA5ZBoMunMDP0 2r1P7SxnOC2Uq2UHl57WqJj3MxifhBlTaSGzfah9y3QEJo0RPHV4fwWBQAR2wMLC mwNLtql+QTLoHDg3cTbJP0Aq6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3ug2Ap JbV1JO9u2STFEtbnFEmeMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkEwRi9EOTAwNjdGRTRDRDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1 UlEwdXBqeDUxUU1WMlJnVlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1vlwvLioZu5vIlYTqzZ/xrMHEWhhEwCB5IEIjTV7xl/hsAzFTkFz6 RnSrEVTB7yUj8mOhuWSopcIsUHveBkclwvTdu99EfBVCjRayHrix9gRHgGHKeZPY kHZXFrkSQO8yNCkNOG1LLDvHAcYi4UkammHfpvku8orbSDMkjhG+vdy6DO6SqGzZ nEPvGgSIbAb1OmyMtAHR6sbzfIcyA6wupVbDokn2Bb3zRNqQGBE9847niSUbTcB/ PU95jL/b7Pw95nkoDHbSo7WdwBZQtzi9uMiGJ8tgz7c+s6ZilnRWhBn+MqKxuKrQ PA5BeJmQX4+CL3CixkEJ1xFJPubqlxAP -----END CERTIFICATE-----Generated at Wed Aug 13 00:30:11 2025 by rpki-client