$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft File: _0Md-OE71_7FHntTUHtFOan5ZWY.mft (raw, json) Hash identifier: /AJasxsjZRt2laMGcvxTQcGdfOMKMQfgBpu/VbaHVuQ= Subject key identifier: D1:1E:01:4C:95:A0:2C:60:2C:A2:59:ED:E1:7C:4D:29:FC:49:41:B8 Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 212D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft Manifest number: 2121 Signing time: Tue 12 Aug 2025 16:00:26 +0000 Manifest this update: Tue 12 Aug 2025 16:00:26 +0000 Manifest next update: Tue 19 Aug 2025 16:00:26 +0000 Files and hashes: 1: _0Md-OE71_7FHntTUHtFOan5ZWY.crl (hash: b3aPbd4YrS+orQEJBAY4eamMz05GFRISJrqFItFW2P0=) 2: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (hash: BjqwppR+NMle1n/1OCoqadfW2SGArIC17ShPvDamqQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8493 (0x212d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E, serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Validity Not Before: Aug 12 16:00:26 2025 GMT Not After : Aug 19 16:00:26 2025 GMT Subject: CN=689b651a-732b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9b:d4:81:ba:9e:6b:6c:4b:cf:bd:54:e5:af: 2c:63:90:a2:e6:aa:98:82:e4:f0:a9:da:ad:e2:72: d2:86:a2:d4:77:1a:a7:8a:bc:90:b9:4c:a5:8e:f8: 5a:eb:90:56:08:43:18:ed:32:4e:cd:ab:97:bc:30: 93:91:5d:35:16:1c:b7:5c:51:13:30:7c:74:2c:49: ee:8b:83:1c:10:66:61:cc:0f:3e:a9:c9:d2:4a:bf: 17:d9:68:be:36:34:32:95:d5:1a:2c:ca:47:74:50: 8f:58:5b:08:f0:2d:a1:d1:71:16:ef:94:0b:50:5c: 5b:ca:9c:09:0a:ce:dc:17:64:6a:74:86:e4:40:88: 61:ec:a0:1c:7a:fc:07:61:30:25:ab:43:f5:45:34: b4:85:7f:4d:41:73:9f:7b:41:bb:3d:5e:d3:df:06: 48:07:01:b5:46:29:7c:92:7b:6b:69:7d:b4:fe:17: f4:1e:b8:f5:08:34:2b:39:85:34:ee:5b:cf:75:7b: 50:4e:59:1d:b1:eb:d9:fa:a2:bc:a4:b1:d7:10:c0: 3f:67:08:48:a0:95:aa:9a:46:0e:5f:e8:72:aa:52: 05:9c:ab:fb:14:a2:01:8c:bc:44:ec:c9:0a:6e:1e: f3:26:b0:5f:11:15:6b:35:e9:7e:c7:f4:58:29:6c: 51:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1E:01:4C:95:A0:2C:60:2C:A2:59:ED:E1:7C:4D:29:FC:49:41:B8 X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:bf:61:1b:9d:b0:22:3b:13:d9:ae:ac:93:1c:a7:58:4c:b3: e4:10:4f:6b:67:12:7e:a7:f1:bd:44:75:ce:e1:22:2d:99:8c: 06:8f:7f:31:32:fd:e2:1f:e7:5d:67:0f:1d:91:4e:2e:2c:46: 64:ab:e6:37:cd:94:79:91:ef:28:c1:74:b3:2b:66:a9:18:1f: 49:34:e4:0e:b8:eb:bb:01:55:34:dd:2c:a5:c0:1c:8a:26:da: f8:fd:35:e3:e7:1b:fa:23:f8:51:21:9d:52:bc:a0:b1:19:01: 26:e6:64:e1:83:b2:a5:57:03:90:5c:35:71:ac:b3:d2:1b:f8: 80:67:5d:75:00:aa:10:b0:a5:0d:95:c9:8b:88:05:3b:8c:69: 1b:2e:a8:46:84:93:6c:0d:e1:38:c3:7d:53:90:26:1e:48:29: eb:1c:6c:c1:d4:d3:de:e4:6c:04:7e:f0:ff:6d:5f:0b:c3:18: d9:08:0b:2f:2d:ed:8c:6c:8f:13:69:70:de:21:09:f1:28:97: 16:bb:8f:b2:18:ba:e0:fb:2f:11:fb:9b:97:72:cd:c1:d2:eb: bd:a3:1a:26:f8:76:fc:60:9b:a7:01:58:6b:9c:49:7e:df:b5: b8:32:4e:4b:ce:b5:55:64:07:7c:3b:e4:32:59:56:d8:66:da: d1:7a:95:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjUwODEyMTYwMDI2WhcNMjUwODE5MTYwMDI2WjAYMRYwFAYD VQQDEw02ODliNjUxYS03MzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJvUgbqea2xLz71U5a8sY5Ci5qqYguTwqdqt4nLShqLUdxqniryQuUyljvha 65BWCEMY7TJOzauXvDCTkV01Fhy3XFETMHx0LEnui4McEGZhzA8+qcnSSr8X2Wi+ NjQyldUaLMpHdFCPWFsI8C2h0XEW75QLUFxbypwJCs7cF2RqdIbkQIhh7KAcevwH YTAlq0P1RTS0hX9NQXOfe0G7PV7T3wZIBwG1Ril8kntraX20/hf0Hrj1CDQrOYU0 7lvPdXtQTlkdsevZ+qK8pLHXEMA/ZwhIoJWqmkYOX+hyqlIFnKv7FKIBjLxE7MkK bh7zJrBfERVrNel+x/RYKWxR6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEeAUyV oCxgLKJZ7eF8TSn8SUG4MB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkM0RS8zNDQ4NjUyQ0YzQ0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFf N0ZIbnRUVUh0Rk9hbjVaV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuv2EbnbAiOxPZrqyTHKdYTLPkEE9rZxJ+p/G9RHXO4SItmYwGj38x Mv3iH+ddZw8dkU4uLEZkq+Y3zZR5ke8owXSzK2apGB9JNOQOuOu7AVU03SylwByK Jtr4/TXj5xv6I/hRIZ1SvKCxGQEm5mThg7KlVwOQXDVxrLPSG/iAZ111AKoQsKUN lcmLiAU7jGkbLqhGhJNsDeE4w31TkCYeSCnrHGzB1NPe5GwEfvD/bV8LwxjZCAsv Le2MbI8TaXDeIQnxKJcWu4+yGLrg+y8R+5uXcs3B0uu9oxom+Hb8YJunAVhrnEl+ 37W4Mk5LzrVVZAd8O+QyWVbYZtrRepVQ -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:14 2025 by rpki-client