$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft File: 2OL6sVCi_VePZ-GbApZTmzdSyak.mft (raw, json) Hash identifier: h4nTOoa2U24bQOYNey6IxBISa4hjm77jCfYafL8LOhI= Subject key identifier: 92:7A:F4:44:E4:04:01:8E:94:96:39:4A:6F:A6:84:A2:B9:00:FB:67 Authority key identifier: D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 Certificate issuer: /CN=A91EC225/serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Certificate serial: 0ECF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft Manifest number: 0EC5 Signing time: Mon 04 Aug 2025 17:51:43 +0000 Manifest this update: Mon 04 Aug 2025 17:51:43 +0000 Manifest next update: Mon 11 Aug 2025 17:51:43 +0000 Files and hashes: 1: 2OL6sVCi_VePZ-GbApZTmzdSyak.crl (hash: jKWh9dAirjFWTMYSmNQfRjkbTsGfs8FS+R/LYvgwgXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 17:51:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3791 (0xecf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC225, serialNumber=D8E2FAB150A2FD578F67E19B0296539B3752C9A9 Validity Not Before: Aug 4 17:51:43 2025 GMT Not After : Aug 11 17:51:43 2025 GMT Subject: CN=6890f32f-d030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:77:67:4a:fd:bd:89:c0:a1:4e:bd:28:6b: f3:69:a1:c4:6a:f9:a8:71:ed:9b:41:fb:e2:c7:ea: a5:d2:c8:55:bf:8e:dd:9a:de:6d:bd:55:84:f5:0a: dd:4d:33:70:b0:b9:ca:52:39:da:4f:c4:cd:ed:76: b8:c0:6a:a0:1e:56:8a:fb:5b:9c:8e:e5:5d:80:54: c5:9a:53:11:c4:0c:1f:12:3b:ec:5d:55:38:f9:32: 9a:b6:81:58:a7:69:c3:ce:70:12:37:85:a7:19:37: 96:17:d4:16:ed:54:4c:3e:7f:22:54:79:a9:5b:05: 79:25:21:e0:6f:28:66:9c:8c:b7:28:46:f4:9e:36: 63:9f:ab:6f:df:13:7d:29:3f:b1:d8:7c:bc:6b:9e: 7b:d2:f2:9a:7d:10:f2:b7:2f:48:c9:eb:8b:a7:91: a1:62:9a:ac:a4:79:b4:ea:2f:46:32:6a:1c:16:0d: 17:38:99:c3:c1:9e:2a:0e:ca:c5:62:45:a6:46:80: 02:51:c5:b7:35:c4:e2:0a:3d:40:01:7a:31:e4:25: c3:e2:a9:85:f2:62:91:82:35:88:00:df:0c:b3:a6: b9:b9:98:b1:3b:53:64:19:d5:ff:e2:42:bb:47:3f: eb:be:aa:19:3d:ce:3d:6a:8d:f3:74:1e:67:ac:1c: f3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7A:F4:44:E4:04:01:8E:94:96:39:4A:6F:A6:84:A2:B9:00:FB:67 X509v3 Authority Key Identifier: keyid:D8:E2:FA:B1:50:A2:FD:57:8F:67:E1:9B:02:96:53:9B:37:52:C9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2OL6sVCi_VePZ-GbApZTmzdSyak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC225/499FDF908E5511E980D09A42C4F9AE02/2OL6sVCi_VePZ-GbApZTmzdSyak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:9c:f9:67:04:9c:43:a9:aa:81:f3:73:40:98:30:9b:24:2a: 28:8e:a4:29:f2:2e:5f:8f:ab:8b:86:5f:bd:55:1e:5f:e0:89: 86:b7:54:c8:93:29:27:74:05:e6:db:59:03:33:0a:0e:c1:8c: 1b:4e:87:c5:c2:3b:ab:f6:f6:66:49:fd:87:16:fe:92:92:07: e0:61:36:9f:d3:98:21:d5:0d:c6:24:c6:fc:20:d4:cc:ac:a0: 23:ea:95:a1:7d:2a:74:17:17:73:95:bb:dc:9a:1f:5e:87:a6: 47:87:53:f2:6f:b3:08:ec:c5:1f:4f:74:bc:0c:15:6d:3b:f5: 6b:25:1f:31:45:56:3a:8f:0e:e6:07:da:bd:23:44:7f:39:c6: 67:69:a9:db:13:9d:c8:39:2a:83:ba:a8:0c:f2:d2:86:7a:e3: 9f:07:7b:4c:08:5f:f2:19:ac:a7:96:94:e8:d6:3b:03:78:e0: ee:f9:7e:5f:36:b8:ef:f6:0c:65:d4:2b:cb:5d:65:12:a0:90: a0:cf:89:3e:a2:dd:f6:ff:dc:31:c8:0a:11:20:ec:bf:85:be: 2f:e0:1b:35:e6:af:82:83:f5:61:03:66:1c:ec:13:60:d4:c4: 37:04:7d:60:f2:ff:05:a5:58:54:25:c8:38:14:87:68:61:74: fb:b1:c0:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMyMjUxMTAvBgNVBAUTKEQ4RTJGQUIxNTBBMkZENTc4RjY3RTE5QjAyOTY1MzlC Mzc1MkM5QTkwHhcNMjUwODA0MTc1MTQzWhcNMjUwODExMTc1MTQzWjAYMRYwFAYD VQQDEw02ODkwZjMyZi1kMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUh3Z0r9vYnAoU69KGvzaaHEavmoce2bQfvix+ql0shVv47dmt5tvVWE9Qrd TTNwsLnKUjnaT8TN7Xa4wGqgHlaK+1ucjuVdgFTFmlMRxAwfEjvsXVU4+TKatoFY p2nDznASN4WnGTeWF9QW7VRMPn8iVHmpWwV5JSHgbyhmnIy3KEb0njZjn6tv3xN9 KT+x2Hy8a5570vKafRDyty9IyeuLp5GhYpqspHm06i9GMmocFg0XOJnDwZ4qDsrF YkWmRoACUcW3NcTiCj1AAXox5CXD4qmF8mKRgjWIAN8Ms6a5uZixO1NkGdX/4kK7 Rz/rvqoZPc49ao3zdB5nrBzztQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJ69ETk BAGOlJY5Sm+mhKK5APtnMB8GA1UdIwQYMBaAFNji+rFQov1Xj2fhmwKWU5s3Usmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzIyNS80OTlGREY5MDhF NTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9WZVBaLUdiQXBaVG16ZFN5 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJPTDZzVkNpX1ZlUFotR2JBcFpUbXpkU3lhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzIyNS80OTlGREY5MDhFNTUxMUU5ODBEMDlBNDJDNEY5QUUwMi8yT0w2c1ZDaV9W ZVBaLUdiQXBaVG16ZFN5YWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4nPlnBJxDqaqB83NAmDCbJCoojqQp8i5fj6uLhl+9VR5f4ImGt1TI kykndAXm21kDMwoOwYwbTofFwjur9vZmSf2HFv6SkgfgYTaf05gh1Q3GJMb8INTM rKAj6pWhfSp0Fxdzlbvcmh9eh6ZHh1Pyb7MI7MUfT3S8DBVtO/VrJR8xRVY6jw7m B9q9I0R/OcZnaanbE53IOSqDuqgM8tKGeuOfB3tMCF/yGaynlpTo1jsDeODu+X5f Nrjv9gxl1CvLXWUSoJCgz4k+ot32/9wxyAoRIOy/hb4v4Bs15q+Cg/VhA2Yc7BNg 1MQ3BH1g8v8FpVhUJcg4FIdoYXT7scAM -----END CERTIFICATE-----Generated at Wed Aug 6 10:16:39 2025 by rpki-client