$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft File: i6wN0-SRhYlP2uKChO3IBHILRhQ.mft (raw, json) Hash identifier: R5ro0OXq/iP77cudLCbDy5T2JJvEBzmrDvqHFkjx6Qw= Subject key identifier: B6:B1:7D:91:A4:6C:A2:30:9E:A7:23:1E:EE:D4:58:08:36:08:C3:05 Authority key identifier: 8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 Certificate issuer: /CN=A91EBFAE/serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Certificate serial: 34AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft Manifest number: 34AC Signing time: Fri 08 Aug 2025 14:33:41 +0000 Manifest this update: Fri 08 Aug 2025 14:33:40 +0000 Manifest next update: Fri 15 Aug 2025 14:33:40 +0000 Files and hashes: 1: i6wN0-SRhYlP2uKChO3IBHILRhQ.crl (hash: f/bVUaS68eCsvN/cuPzYvsrqu+osds6BPeXh5aLjF5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13484 (0x34ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=8BAC0DD3E49185894FDAE28284EDC804720B4614 Validity Not Before: Aug 8 14:33:40 2025 GMT Not After : Aug 15 14:33:40 2025 GMT Subject: CN=68960ac4-265e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c5:12:31:13:fd:da:54:6a:86:ae:4c:52:01: a2:9a:60:aa:cd:f8:2f:ad:32:4d:48:38:bf:fe:d2: 71:85:8c:6d:be:5f:14:2a:5b:43:c9:a9:80:f3:88: 9b:69:7b:bc:ae:e2:eb:0d:89:e1:57:e3:80:99:14: 68:63:a9:2f:bf:87:f7:06:e5:52:eb:e8:45:f0:ab: e4:12:6c:1b:e0:86:d7:c4:5e:77:f4:d0:45:be:60: 81:56:e3:d6:75:cd:ca:80:ef:55:dd:a6:d1:d7:83: 1f:ed:95:93:f5:00:d8:ef:10:41:4a:3e:d0:e2:68: 7c:f5:6e:13:f9:e6:3d:e1:b1:04:a8:1d:66:2a:5d: 81:c0:6a:d1:7a:53:31:27:47:dd:5f:a9:67:8c:7f: ad:22:06:fc:4c:e1:39:53:fd:1e:78:f6:3e:c0:b6: 1f:0c:75:51:fc:cd:e4:15:3e:a7:7b:91:6b:23:4e: 5e:4b:0d:74:3e:74:87:71:13:e7:4b:74:63:fe:e3: 44:92:46:f3:78:d2:30:be:b3:98:22:2d:e0:22:8b: 3a:cb:3e:e6:4b:e2:75:e4:dd:d7:f2:8e:a4:f1:b2: 8f:c6:f8:f9:b4:20:99:a4:a6:a3:1d:02:fc:5a:71: 7b:7c:7c:e1:03:a8:0c:fa:c4:db:48:d3:34:cf:28: 98:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B1:7D:91:A4:6C:A2:30:9E:A7:23:1E:EE:D4:58:08:36:08:C3:05 X509v3 Authority Key Identifier: keyid:8B:AC:0D:D3:E4:91:85:89:4F:DA:E2:82:84:ED:C8:04:72:0B:46:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6wN0-SRhYlP2uKChO3IBHILRhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/168FFD6C1D8A11E290D0DEE308B02CD2/i6wN0-SRhYlP2uKChO3IBHILRhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:7f:57:9c:8c:45:9b:55:b1:e9:60:61:b0:c7:0f:4d:a3:03: f8:82:e6:bd:14:a3:37:0e:bd:3b:0a:e0:7d:24:31:c0:6f:52: 4e:7d:42:33:d1:dd:3b:c8:59:77:70:a3:96:80:3e:4d:75:fc: eb:97:e9:91:94:8e:ed:88:6e:0d:0d:8e:1e:8f:d0:36:af:c2: c0:26:e8:30:0b:49:28:5d:c4:f8:53:6d:2a:23:50:ad:90:c4: f0:09:a8:ec:22:1b:30:37:d3:a2:f8:4e:3b:1f:b7:3d:77:ed: ba:0d:0d:42:1e:d5:d2:67:b3:3a:8e:a0:2c:e6:a9:7a:35:bf: 44:cb:ed:9c:e8:e5:33:4e:80:02:2f:4a:32:70:35:ec:bf:bd: 94:4e:77:b4:f4:64:3f:34:b4:92:ae:52:2f:d6:a9:b7:65:a6: 8f:e2:72:25:8b:52:4e:72:b5:45:50:56:ed:c1:42:34:af:57: fa:eb:63:a0:90:82:44:9c:d7:ef:93:7a:45:57:29:15:0a:29: 21:41:77:7b:74:b3:6e:1b:e7:0b:52:9a:72:6c:05:fb:d5:08: e4:4f:69:cc:fc:ab:70:3c:b8:6c:a7:32:cd:c1:79:d9:1b:ad: 4d:48:44:8e:af:45:9b:b0:d5:4c:42:88:8e:f3:62:05:39:a4: 75:0d:4b:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKDhCQUMwREQzRTQ5MTg1ODk0RkRBRTI4Mjg0RURDODA0 NzIwQjQ2MTQwHhcNMjUwODA4MTQzMzQwWhcNMjUwODE1MTQzMzQwWjAYMRYwFAYD VQQDEw02ODk2MGFjNC0yNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssUSMRP92lRqhq5MUgGimmCqzfgvrTJNSDi//tJxhYxtvl8UKltDyamA84ib aXu8ruLrDYnhV+OAmRRoY6kvv4f3BuVS6+hF8KvkEmwb4IbXxF539NBFvmCBVuPW dc3KgO9V3abR14Mf7ZWT9QDY7xBBSj7Q4mh89W4T+eY94bEEqB1mKl2BwGrRelMx J0fdX6lnjH+tIgb8TOE5U/0eePY+wLYfDHVR/M3kFT6ne5FrI05eSw10PnSHcRPn S3Rj/uNEkkbzeNIwvrOYIi3gIos6yz7mS+J15N3X8o6k8bKPxvj5tCCZpKajHQL8 WnF7fHzhA6gM+sTbSNM0zyiY5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaxfZGk bKIwnqcjHu7UWAg2CMMFMB8GA1UdIwQYMBaAFIusDdPkkYWJT9rigoTtyARyC0YU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS8xNjhGRkQ2QzFE OEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZbFAydUtDaE8zSUJISUxS aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2d04wLVNSaFlsUDJ1S0NoTzNJQkhJTFJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS8xNjhGRkQ2QzFEOEExMUUyOTBEMERFRTMwOEIwMkNEMi9pNndOMC1TUmhZ bFAydUtDaE8zSUJISUxSaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnf1ecjEWbVbHpYGGwxw9NowP4gua9FKM3Dr07CuB9JDHAb1JOfUIz 0d07yFl3cKOWgD5Ndfzrl+mRlI7tiG4NDY4ej9A2r8LAJugwC0koXcT4U20qI1Ct kMTwCajsIhswN9Oi+E47H7c9d+26DQ1CHtXSZ7M6jqAs5ql6Nb9Ey+2c6OUzToAC L0oycDXsv72UTne09GQ/NLSSrlIv1qm3ZaaP4nIli1JOcrVFUFbtwUI0r1f662Og kIJEnNfvk3pFVykVCikhQXd7dLNuG+cLUppybAX71QjkT2nM/KtwPLhspzLNwXnZ G61NSESOr0WbsNVMQoiO82IFOaR1DUvx -----END CERTIFICATE-----Generated at Fri Aug 8 19:35:07 2025 by rpki-client