$ rpki-client -vvf rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft File: DB8k6eYChXae9hTPqBPuUayemP4.mft (raw, json) Hash identifier: 5GqK0I5hdHZUaWeAUPybDZWufmcXc1n+9L5Rxd+sp+I= Subject key identifier: B7:4B:A9:5E:C4:9A:85:0C:02:E0:E7:9C:5A:96:D8:F6:CE:F1:57:6E Authority key identifier: 0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE Certificate issuer: /CN=A91E754F/serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft Manifest number: 067E Signing time: Wed 06 Aug 2025 22:44:47 +0000 Manifest this update: Wed 06 Aug 2025 22:44:47 +0000 Manifest next update: Wed 13 Aug 2025 22:44:47 +0000 Files and hashes: 1: DB8k6eYChXae9hTPqBPuUayemP4.crl (hash: tDMJjDqZrjQTfifgx6B6sTiDks7OByXOlliyx4NGUDQ=) 2: 26F67E0A842011EB8A4C635AC4F9AE02.roa (hash: /0E6jZ4+7bqUYrWrcsn+EsmkQL/Ndn9BT+YgQs7TIDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E754F, serialNumber=0C1F24E9E60285769EF614CFA813EE51AC9E98FE Validity Not Before: Aug 6 22:44:47 2025 GMT Not After : Aug 13 22:44:47 2025 GMT Subject: CN=6893dadf-a070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:59:65:20:bc:e5:1a:53:ad:7e:2c:b5:36: a4:6c:95:e5:2d:0b:c1:31:86:8a:3c:16:45:db:bc: 96:c0:be:aa:29:84:5f:e5:ba:f1:71:bc:d5:46:35: 81:45:30:da:86:67:d7:a1:f4:ca:e4:0c:00:38:85: fc:23:33:d3:e3:80:d8:f6:cb:60:b2:f8:af:61:f1: 30:2f:9c:bf:ce:b1:f4:82:d9:68:76:fd:fe:16:08: 3a:8c:8c:1a:cc:7d:f9:f0:b1:04:ee:d5:a3:9f:36: 33:f4:53:8c:fa:10:55:41:29:6b:2c:dc:7e:c0:d7: 56:ab:b5:8b:08:1c:17:d6:62:7e:25:63:af:36:ee: f5:c1:2b:7d:df:a5:66:66:8e:38:ab:c8:b8:cf:8c: fb:e8:05:4d:d2:7c:a8:c3:31:46:52:80:85:e7:48: d3:87:ad:ca:4c:22:d0:45:7f:de:0d:7a:9e:3c:85: 98:81:9a:c3:b9:21:be:f5:40:60:38:e1:15:4b:a4: da:ee:07:5c:7d:b5:6f:d4:71:94:a3:cf:a4:08:ae: 90:33:86:97:92:ff:8e:ec:0b:ad:4b:10:d2:4e:e2: 81:2f:f7:3e:d7:c5:a1:3f:49:fe:5a:9d:f2:d8:9b: 7b:0e:82:22:c5:b7:09:00:4b:d2:f3:2f:38:4f:51: 85:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:4B:A9:5E:C4:9A:85:0C:02:E0:E7:9C:5A:96:D8:F6:CE:F1:57:6E X509v3 Authority Key Identifier: keyid:0C:1F:24:E9:E6:02:85:76:9E:F6:14:CF:A8:13:EE:51:AC:9E:98:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DB8k6eYChXae9hTPqBPuUayemP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E754F/B452BF8C841D11EBA087BF31C4F9AE02/DB8k6eYChXae9hTPqBPuUayemP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:b5:02:77:58:9e:eb:64:13:de:9d:f5:1f:0e:45:73:2b:a3: b6:eb:67:42:97:e5:ff:33:6a:af:db:bb:43:39:fb:0d:a9:c7: 68:46:c7:76:31:70:0a:e6:4d:dd:02:e0:d1:c0:13:34:44:b8: b0:10:97:bf:eb:63:2f:5d:a9:de:9c:c1:06:e8:d6:1f:ba:52: 46:11:75:01:bc:26:86:3b:ff:29:b8:44:fb:c1:dc:10:69:11: de:37:b3:cf:2b:fd:60:fb:60:d5:cf:b8:d9:3d:bd:40:ac:f7: 34:15:f1:8c:da:2f:31:d0:c7:34:86:54:3e:69:b8:0a:fb:18: 2f:a7:5c:3a:d7:35:23:7a:ba:5a:2f:84:a3:a9:be:84:ce:ab: 16:f7:45:21:4d:78:6c:be:87:e5:30:9c:a2:20:ec:8e:8a:14: 88:57:9b:e6:5b:7d:33:43:b4:89:ce:a4:94:07:e3:d3:2f:ac: 2e:6a:30:e3:22:0d:df:08:a8:ee:95:a7:ad:28:6c:62:db:6a: 4a:d8:76:f5:28:db:2e:23:f8:fc:08:f0:2a:71:00:17:8a:fd: dc:e8:0f:64:cd:a7:59:3e:a4:54:bc:13:54:ab:7e:a2:1e:00: 17:58:39:74:7e:0b:f4:55:de:a2:c5:8f:11:f1:33:90:2f:42: ee:76:64:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NEYxMTAvBgNVBAUTKDBDMUYyNEU5RTYwMjg1NzY5RUY2MTRDRkE4MTNFRTUx QUM5RTk4RkUwHhcNMjUwODA2MjI0NDQ3WhcNMjUwODEzMjI0NDQ3WjAYMRYwFAYD VQQDEw02ODkzZGFkZi1hMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv1ZZSC85RpTrX4stTakbJXlLQvBMYaKPBZF27yWwL6qKYRf5brxcbzVRjWB RTDahmfXofTK5AwAOIX8IzPT44DY9stgsvivYfEwL5y/zrH0gtlodv3+Fgg6jIwa zH358LEE7tWjnzYz9FOM+hBVQSlrLNx+wNdWq7WLCBwX1mJ+JWOvNu71wSt936Vm Zo44q8i4z4z76AVN0nyowzFGUoCF50jTh63KTCLQRX/eDXqePIWYgZrDuSG+9UBg OOEVS6Ta7gdcfbVv1HGUo8+kCK6QM4aXkv+O7AutSxDSTuKBL/c+18WhP0n+Wp3y 2Jt7DoIixbcJAEvS8y84T1GFmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdLqV7E moUMAuDnnFqW2PbO8VduMB8GA1UdIwQYMBaAFAwfJOnmAoV2nvYUz6gT7lGsnpj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU0Ri9CNDUyQkY4Qzg0 MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hYYWU5aFRQcUJQdVVheWVt UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RCOGs2ZVlDaFhhZTloVFBxQlB1VWF5ZW1QNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzU0Ri9CNDUyQkY4Qzg0MUQxMUVCQTA4N0JGMzFDNEY5QUUwMi9EQjhrNmVZQ2hY YWU5aFRQcUJQdVVheWVtUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCftQJ3WJ7rZBPenfUfDkVzK6O262dCl+X/M2qv27tDOfsNqcdoRsd2 MXAK5k3dAuDRwBM0RLiwEJe/62MvXanenMEG6NYfulJGEXUBvCaGO/8puET7wdwQ aRHeN7PPK/1g+2DVz7jZPb1ArPc0FfGM2i8x0Mc0hlQ+abgK+xgvp1w61zUjerpa L4Sjqb6EzqsW90UhTXhsvoflMJyiIOyOihSIV5vmW30zQ7SJzqSUB+PTL6wuajDj Ig3fCKjulaetKGxi22pK2Hb1KNsuI/j8CPAqcQAXiv3c6A9kzadZPqRUvBNUq36i HgAXWDl0fgv0Vd6ixY8R8TOQL0LudmQH -----END CERTIFICATE-----Generated at Thu Aug 7 01:17:25 2025 by rpki-client