$ rpki-client -vvf rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft File: 0KCTtlEHkzVIStC6HXZhX1w2aIo.mft (raw, json) Hash identifier: EsZyD72ocHA+K7EFkN8xH5hQ3tkeUgB3yji5ARLFavs= Subject key identifier: E2:CE:12:FC:22:94:49:F3:80:46:40:D1:2F:FC:B4:18:8A:FC:E4:1C Authority key identifier: D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A Certificate issuer: /CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Certificate serial: 333B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft Manifest number: 9A87 Signing time: Mon 04 Aug 2025 15:19:59 +0000 Manifest this update: Mon 04 Aug 2025 15:19:59 +0000 Manifest next update: Mon 11 Aug 2025 15:19:59 +0000 Files and hashes: 1: 0KCTtlEHkzVIStC6HXZhX1w2aIo.crl (hash: ihqhgD2OoOtxHfNN9QnTP3/o9C4vHyKLZ/044yL8dr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 15:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13115 (0x333b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E275B, serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Validity Not Before: Aug 4 15:19:59 2025 GMT Not After : Aug 11 15:19:59 2025 GMT Subject: CN=6890cf9f-81c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:df:06:5d:80:92:ba:55:1a:a5:51:f1:94:54: 2e:a8:0a:98:35:43:3f:0c:b5:87:9d:81:97:5f:d2: a8:21:9b:ce:8c:38:07:b1:f3:68:13:92:8c:4b:d4: 68:c7:ec:8f:85:e3:e3:8f:98:00:f2:b2:15:44:c6: f2:85:9e:65:cc:ad:ed:e1:c6:25:98:53:cc:d6:4a: 74:04:ff:b2:c1:d1:6f:e7:65:f1:e7:7f:6b:60:39: bd:3a:55:f1:d3:3d:e4:c6:be:57:e9:23:3c:8d:dd: 19:c4:3f:3b:76:f0:ab:e5:88:ec:ee:b1:a5:6b:18: a0:27:30:fd:cb:24:bc:8a:b3:b3:9a:a8:4d:df:20: 6c:bf:dd:f3:1f:fd:7c:ab:9a:5b:a7:41:70:42:e9: 98:1b:20:06:2a:ae:7e:74:7d:b7:56:ba:ce:fa:fc: 3e:35:4d:8d:7a:bb:b2:f1:d5:4f:97:df:a7:68:cc: 65:09:20:a9:2b:e0:61:ff:d9:9c:14:ff:c6:cc:70: 01:e2:0f:f0:a0:a4:e8:d3:0e:5d:0c:e2:14:b2:f0: 4e:b3:db:60:d7:a5:f9:19:5d:1f:02:cd:6d:40:e5: 60:a7:9c:2a:cb:fd:bc:5d:2d:51:65:b6:e2:9a:0f: 98:30:8b:c8:ae:01:66:90:ad:82:5d:cc:89:30:03: ba:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CE:12:FC:22:94:49:F3:80:46:40:D1:2F:FC:B4:18:8A:FC:E4:1C X509v3 Authority Key Identifier: keyid:D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:94:0a:c6:e8:78:e1:17:f0:e9:e8:4b:9b:22:af:54:31:44: 01:d7:a7:16:f6:fa:0d:69:9b:f7:c6:39:33:a5:ef:92:4b:c5: 41:b0:a3:16:ce:5f:c5:88:6e:22:ad:aa:93:e3:6d:d5:36:fb: 16:b9:8a:38:63:b3:fa:67:55:fc:fa:02:bd:03:25:57:6e:c7: 72:8b:76:9d:f7:67:05:8a:d6:a7:cd:4b:7d:8c:18:a0:bd:d8: c5:b2:f1:82:4b:a4:9b:c6:7b:dd:d2:32:a2:5a:74:fe:9f:01: 1a:25:1c:f4:9b:87:87:1d:c2:c9:44:d2:ca:de:c2:47:65:d9: 56:34:5b:ca:e7:c6:95:7d:dc:02:65:8e:c4:62:2e:a5:3e:cf: 2a:4b:13:a6:e1:d1:04:f5:9d:e3:e9:f7:82:57:8d:d0:75:3e: b5:0c:02:1d:dd:59:76:0b:76:0d:50:9a:ac:1f:d7:f2:d6:a1: 19:36:05:74:9a:ae:93:57:75:13:05:a1:bf:6f:09:1f:36:c6: 39:07:b8:23:e6:72:aa:b3:c4:22:9c:92:df:cf:60:52:11:6c: 94:ea:7c:79:79:b1:b9:67:77:d4:b6:e4:83:0a:47:a2:22:7a: a4:fd:41:a2:bc:f0:b2:58:43:23:a9:0b:7c:eb:48:2d:ee:9a: c8:27:25:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3NUIxMTAvBgNVBAUTKEQwQTA5M0I2NTEwNzkzMzU0ODRBRDBCQTFENzY2MTVG NUMzNjY4OEEwHhcNMjUwODA0MTUxOTU5WhcNMjUwODExMTUxOTU5WjAYMRYwFAYD VQQDEw02ODkwY2Y5Zi04MWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N8GXYCSulUapVHxlFQuqAqYNUM/DLWHnYGXX9KoIZvOjDgHsfNoE5KMS9Ro x+yPhePjj5gA8rIVRMbyhZ5lzK3t4cYlmFPM1kp0BP+ywdFv52Xx539rYDm9OlXx 0z3kxr5X6SM8jd0ZxD87dvCr5Yjs7rGlaxigJzD9yyS8irOzmqhN3yBsv93zH/18 q5pbp0FwQumYGyAGKq5+dH23VrrO+vw+NU2Neruy8dVPl9+naMxlCSCpK+Bh/9mc FP/GzHAB4g/woKTo0w5dDOIUsvBOs9tg16X5GV0fAs1tQOVgp5wqy/28XS1RZbbi mg+YMIvIrgFmkK2CXcyJMAO6jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLOEvwi lEnzgEZA0S/8tBiK/OQcMB8GA1UdIwQYMBaAFNCgk7ZRB5M1SErQuh12YV9cNmiK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjc1Qi9BQjIwMjIzMDFE QTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6VklTdEM2SFhaaFgxdzJh SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBLQ1R0bEVIa3pWSVN0QzZIWFpoWDF3MmFJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mjc1Qi9BQjIwMjIzMDFEQTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6 VklTdEM2SFhaaFgxdzJhSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPlArG6HjhF/Dp6EubIq9UMUQB16cW9voNaZv3xjkzpe+SS8VBsKMW zl/FiG4iraqT423VNvsWuYo4Y7P6Z1X8+gK9AyVXbsdyi3ad92cFitanzUt9jBig vdjFsvGCS6Sbxnvd0jKiWnT+nwEaJRz0m4eHHcLJRNLK3sJHZdlWNFvK58aVfdwC ZY7EYi6lPs8qSxOm4dEE9Z3j6feCV43QdT61DAId3Vl2C3YNUJqsH9fy1qEZNgV0 mq6TV3UTBaG/bwkfNsY5B7gj5nKqs8QinJLfz2BSEWyU6nx5ebG5Z3fUtuSDCkei Inqk/UGivPCyWEMjqQt860gt7prIJyUI -----END CERTIFICATE-----Generated at Wed Aug 6 09:31:59 2025 by rpki-client