$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft File: ABc0faPzW3U5Ub30sbB_dh49nr8.mft (raw, json) Hash identifier: 38I8sDOtegZiSovU8VfkE0LdQHZcNrlXqYUVdNA/9q0= Subject key identifier: 8D:E3:29:25:F0:AB:8B:06:86:0E:03:D4:3F:0F:A6:97:77:85:52:F9 Authority key identifier: 00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF Certificate issuer: /CN=A91E0AAD/serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Certificate serial: 0431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft Manifest number: 0425 Signing time: Sat 09 Aug 2025 00:52:59 +0000 Manifest this update: Sat 09 Aug 2025 00:52:58 +0000 Manifest next update: Sat 16 Aug 2025 00:52:58 +0000 Files and hashes: 1: ABc0faPzW3U5Ub30sbB_dh49nr8.crl (hash: Vi4kLBa58R+OD1XQrrNc96MywVjNZo4s/ytPJg8mbE0=) 2: 0BE6F39E79E611EC99DA1B51C4F9AE02.roa (hash: 8N17MFKiZRA58NKBpmx9ZFKXCm0hJsn02fp1o1On+1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0AAD, serialNumber=0017347DA3F35B753951BDF4B1B07F761E3D9EBF Validity Not Before: Aug 9 00:52:58 2025 GMT Not After : Aug 16 00:52:58 2025 GMT Subject: CN=68969beb-2434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:71:b8:51:ff:43:f8:7f:37:c3:46:cc:9d: f2:42:0f:05:fb:c3:b3:03:24:bf:a8:ea:c9:e2:6d: df:5c:30:fb:ec:d5:9e:c6:b7:d1:e1:f6:a6:3e:3d: 92:82:29:30:79:d5:0d:ae:42:49:0c:fc:e1:7c:63: 7f:5b:c8:5b:9e:55:f5:0b:ca:2e:fd:b0:cb:41:76: 42:fc:e6:4b:70:43:b0:ab:7d:c2:8b:3d:21:e6:04: bb:eb:6c:05:a1:c1:b2:4f:d9:b7:2c:d3:7d:67:04: 6c:5f:00:bb:3c:21:28:bd:8d:7e:b0:b2:44:89:9f: fa:01:6e:37:54:98:aa:4c:cb:d6:51:26:68:ea:39: df:51:7c:2f:c4:f8:37:17:c6:3b:ac:92:25:76:a5: 80:02:5e:07:b1:c7:57:1f:03:f7:0c:78:2a:07:ba: 17:49:16:8c:86:09:ba:4f:92:df:f4:ab:96:80:b5: 10:85:31:fb:d5:80:ee:1b:03:e7:a6:1f:71:2f:d5: a3:20:6b:e3:63:3e:e8:33:98:1a:d7:73:bf:73:4a: 76:48:c9:a1:14:83:73:de:4c:58:14:3d:b4:d9:f9: a2:fb:ec:d4:e1:39:b8:c5:e2:cf:88:de:eb:f4:61: 79:1e:ca:90:b1:ea:4d:d0:37:50:1f:74:7d:50:d7: fa:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E3:29:25:F0:AB:8B:06:86:0E:03:D4:3F:0F:A6:97:77:85:52:F9 X509v3 Authority Key Identifier: keyid:00:17:34:7D:A3:F3:5B:75:39:51:BD:F4:B1:B0:7F:76:1E:3D:9E:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABc0faPzW3U5Ub30sbB_dh49nr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0AAD/0DE5B40E79E211ECB5013148C4F9AE02/ABc0faPzW3U5Ub30sbB_dh49nr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:59:86:99:f8:e0:28:92:92:28:cf:ba:ce:1a:c7:0d:a4:04: 8f:46:ad:a8:cc:fe:6d:cc:b8:e3:9c:72:2c:2e:35:4c:a8:51: 15:2d:87:01:40:c3:af:8f:6d:24:d5:4e:af:1f:89:23:66:5d: 58:f1:30:7a:67:30:19:c6:e2:59:8c:c3:09:e1:28:fa:70:48: 53:3a:57:a2:c7:5c:22:db:88:29:b0:1b:f8:9f:f4:99:8c:17: e8:33:48:0d:9b:0d:29:ab:6e:65:be:bd:9a:97:33:a0:a1:bd: 7f:0d:11:ed:35:ca:24:9b:6a:d3:00:2c:41:7e:42:7b:eb:96: 4e:c4:20:3b:7c:79:1f:d8:47:c7:b7:e5:25:96:6e:aa:0c:b3: d7:25:e4:be:34:13:8b:65:02:59:93:7c:43:ef:33:02:11:4b: 67:44:dc:7c:82:a3:ac:eb:1e:91:17:ad:6e:af:2c:90:fa:dc: b1:67:b3:ff:1a:94:36:61:de:66:6e:45:30:3c:e5:b2:f9:45: b7:8a:88:cb:72:ef:87:e5:1a:95:fc:2b:9e:98:a1:14:85:bb: 61:3d:37:bb:84:8a:19:f0:62:2f:e5:23:00:34:90:be:9b:84: 5d:4c:dc:22:a7:cd:d7:00:4b:46:d1:a8:01:3d:93:3d:a2:1c: 8b:84:2b:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBBQUQxMTAvBgNVBAUTKDAwMTczNDdEQTNGMzVCNzUzOTUxQkRGNEIxQjA3Rjc2 MUUzRDlFQkYwHhcNMjUwODA5MDA1MjU4WhcNMjUwODE2MDA1MjU4WjAYMRYwFAYD VQQDEw02ODk2OWJlYi0yNDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy31xuFH/Q/h/N8NGzJ3yQg8F+8OzAyS/qOrJ4m3fXDD77NWexrfR4famPj2S gikwedUNrkJJDPzhfGN/W8hbnlX1C8ou/bDLQXZC/OZLcEOwq33Ciz0h5gS762wF ocGyT9m3LNN9ZwRsXwC7PCEovY1+sLJEiZ/6AW43VJiqTMvWUSZo6jnfUXwvxPg3 F8Y7rJIldqWAAl4HscdXHwP3DHgqB7oXSRaMhgm6T5Lf9KuWgLUQhTH71YDuGwPn ph9xL9WjIGvjYz7oM5ga13O/c0p2SMmhFINz3kxYFD202fmi++zU4Tm4xeLPiN7r 9GF5HsqQsepN0DdQH3R9UNf6uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3jKSXw q4sGhg4D1D8Pppd3hVL5MB8GA1UdIwQYMBaAFAAXNH2j81t1OVG99LGwf3YePZ6/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEFBRC8wREU1QjQwRTc5 RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelczVTVVYjMwc2JCX2RoNDlu cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCYzBmYVB6VzNVNVViMzBzYkJfZGg0OW5yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEFBRC8wREU1QjQwRTc5RTIxMUVDQjUwMTMxNDhDNEY5QUUwMi9BQmMwZmFQelcz VTVVYjMwc2JCX2RoNDlucjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8WYaZ+OAokpIoz7rOGscNpASPRq2ozP5tzLjjnHIsLjVMqFEVLYcB QMOvj20k1U6vH4kjZl1Y8TB6ZzAZxuJZjMMJ4Sj6cEhTOleix1wi24gpsBv4n/SZ jBfoM0gNmw0pq25lvr2alzOgob1/DRHtNcokm2rTACxBfkJ765ZOxCA7fHkf2EfH t+Ullm6qDLPXJeS+NBOLZQJZk3xD7zMCEUtnRNx8gqOs6x6RF61uryyQ+tyxZ7P/ GpQ2Yd5mbkUwPOWy+UW3iojLcu+H5RqV/CuemKEUhbthPTe7hIoZ8GIv5SMANJC+ m4RdTNwip83XAEtG0agBPZM9ohyLhCsm -----END CERTIFICATE-----Generated at Sat Aug 9 14:24:36 2025 by rpki-client