$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: bfWwhU2PGDSqUVTSEXfR/CM0p1cFUAzpaRGsZq2bWcQ= Subject key identifier: E0:B2:71:9E:78:1A:4C:FC:00:7D:87:56:40:32:D5:FD:02:8B:01:7D Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 34B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 34B2 Signing time: Wed 06 Aug 2025 15:07:54 +0000 Manifest this update: Wed 06 Aug 2025 15:07:54 +0000 Manifest next update: Wed 13 Aug 2025 15:07:54 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: EgPbHAAINBAvfhK99zW4ii8es6wks5K477pvoMfvMac=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: 08icoQFu/lUzJ7/49iluwBG/IFFfyhiQgRTkubc2rPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13495 (0x34b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Aug 6 15:07:54 2025 GMT Not After : Aug 13 15:07:54 2025 GMT Subject: CN=68936fca-d1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7b:30:b5:5f:90:b3:07:08:a8:52:16:0b:5d: b6:a3:03:a5:5e:b6:9c:6e:40:98:e6:55:b9:c7:b8: b2:09:94:20:2c:9b:05:aa:c4:5e:a5:1c:c3:26:14: 16:80:f4:ba:d0:28:2f:9c:c4:de:27:4e:75:10:ba: dd:ae:38:20:87:ba:63:f9:e9:f9:9e:d7:fc:a4:fa: b3:00:27:4f:40:80:7e:d2:23:75:34:cc:1a:85:03: 8b:af:bc:c8:d8:14:ea:45:66:16:09:55:2e:73:ab: 7e:42:b3:f4:89:40:00:75:af:ca:c3:8d:00:e9:17: 48:ec:a1:5f:92:cf:aa:a0:34:01:80:0e:16:b7:0f: c8:71:cd:0f:f7:92:93:58:fb:72:99:03:d7:79:40: fd:97:d7:20:1e:a3:f1:7f:53:0f:81:19:a2:b5:c2: 57:41:db:90:b4:9c:52:f2:af:d3:0e:96:39:04:2e: 27:2c:73:c8:f5:f4:a8:59:1e:b6:59:79:fd:7a:49: be:30:8c:ea:07:30:22:b4:cc:e2:d4:05:1c:65:2c: 97:d3:2e:4c:ac:87:87:3c:16:70:1e:38:06:39:3b: 0d:41:81:91:a5:14:2d:e5:4d:f5:5b:be:eb:a9:b6: dd:8e:b0:de:6a:cc:b6:3a:72:5a:01:8b:3d:f3:13: 5d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B2:71:9E:78:1A:4C:FC:00:7D:87:56:40:32:D5:FD:02:8B:01:7D X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:db:48:7c:b5:92:a7:b4:67:35:84:64:f5:b8:7f:87:8c:49: 1e:16:27:9d:3c:cf:ae:cb:b0:6b:a4:aa:e1:b8:4f:a7:d1:ca: 15:4c:5f:af:06:67:e5:0c:1a:56:bc:76:10:4b:58:df:d8:22: 64:29:06:bd:00:32:85:a2:76:05:d5:be:2c:2c:1d:ad:f2:e2: 2f:26:76:26:24:8d:7a:56:fd:e4:46:f3:0a:63:11:90:76:cb: 7a:43:c2:e6:65:60:3f:b2:77:6f:eb:b1:8e:45:0b:1d:2b:0e: 76:5a:52:3b:d9:a0:d6:69:7b:1a:16:50:20:87:13:fb:bd:99: 1d:7e:d9:89:2c:73:5f:f7:50:96:b7:e9:d9:e3:bd:f8:cf:0d: 99:d2:e4:71:2f:72:5e:d7:a7:96:6b:62:83:cb:08:0c:0a:31: f8:a4:12:c8:5f:fa:f5:39:74:7f:d9:5f:26:b2:7c:56:76:46: 21:9f:b1:fe:94:60:1c:db:6d:58:c4:06:03:b4:ae:36:b0:14: d7:29:1f:db:fc:30:93:f8:28:9e:08:8f:4c:b3:4e:09:7a:69: 4a:7b:5e:ce:a5:5c:38:66:81:41:e9:c0:28:93:10:ca:59:7b: 2b:8c:7e:fa:7b:3f:5a:95:99:25:18:c9:6b:46:eb:61:fa:4d: 2c:49:6e:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUwODA2MTUwNzU0WhcNMjUwODEzMTUwNzU0WjAYMRYwFAYD VQQDEw02ODkzNmZjYS1kMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3swtV+QswcIqFIWC122owOlXracbkCY5lW5x7iyCZQgLJsFqsRepRzDJhQW gPS60CgvnMTeJ051ELrdrjggh7pj+en5ntf8pPqzACdPQIB+0iN1NMwahQOLr7zI 2BTqRWYWCVUuc6t+QrP0iUAAda/Kw40A6RdI7KFfks+qoDQBgA4Wtw/Icc0P95KT WPtymQPXeUD9l9cgHqPxf1MPgRmitcJXQduQtJxS8q/TDpY5BC4nLHPI9fSoWR62 WXn9ekm+MIzqBzAitMzi1AUcZSyX0y5MrIeHPBZwHjgGOTsNQYGRpRQt5U31W77r qbbdjrDeasy2OnJaAYs98xNdOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOCycZ54 Gkz8AH2HVkAy1f0CiwF9MB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm20h8tZKntGc1hGT1uH+HjEkeFiedPM+uy7BrpKrhuE+n0coVTF+v BmflDBpWvHYQS1jf2CJkKQa9ADKFonYF1b4sLB2t8uIvJnYmJI16Vv3kRvMKYxGQ dst6Q8LmZWA/sndv67GORQsdKw52WlI72aDWaXsaFlAghxP7vZkdftmJLHNf91CW t+nZ4734zw2Z0uRxL3Je16eWa2KDywgMCjH4pBLIX/r1OXR/2V8msnxWdkYhn7H+ lGAc221YxAYDtK42sBTXKR/b/DCT+CieCI9Ms04JemlKe17OpVw4ZoFB6cAokxDK WXsrjH76ez9alZklGMlrRuth+k0sSW53 -----END CERTIFICATE-----Generated at Thu Aug 7 03:28:47 2025 by rpki-client