$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: kQhRRjwXjykEKvw6peUtwKZCyWGodNhy3vv+2SwlpSs= Subject key identifier: BA:39:C3:D3:F8:1B:60:3D:BD:7A:77:FB:69:86:8B:A8:3A:0C:3D:6C Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: B8 Signing time: Tue 05 Aug 2025 06:27:39 +0000 Manifest this update: Tue 05 Aug 2025 06:27:39 +0000 Manifest next update: Tue 12 Aug 2025 06:27:39 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: FncDMcY7zjLJMpvIxKxmOFPbvTx4NFa3gaGJ9SzPXmM=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: YxY/TXb7ZV7RLnxJEIm3XTlQ67ELpalTGoTZTqConuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Aug 5 06:27:39 2025 GMT Not After : Aug 12 06:27:39 2025 GMT Subject: CN=6891a45b-24e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:65:d8:f8:7c:cb:6c:9d:de:5d:8a:0c:07:8e: de:c9:5a:70:dc:27:0d:51:38:cd:f9:66:76:dc:7c: b8:9e:a4:5b:7f:6c:e8:f4:d3:86:4b:12:57:40:fe: 84:f6:b6:d5:94:88:11:fe:49:2b:64:03:21:a9:f7: c6:4b:97:a3:c6:7e:7d:5d:73:d0:63:9c:c7:cd:2f: ed:aa:95:de:35:ec:a4:47:ff:14:35:bc:73:57:06: a6:39:45:f8:aa:3e:d3:03:ea:af:59:4f:85:44:59: da:3b:8f:f9:76:f0:fe:67:ef:fd:75:a9:8f:c3:3e: a7:99:b0:2a:0d:d9:1d:86:18:c0:08:d1:2a:ee:21: 66:c6:7c:32:12:e4:b5:90:55:dd:0d:18:e8:a4:67: 3f:81:95:b8:48:65:ac:89:2d:54:25:06:be:5e:2e: f7:74:88:20:a5:f4:6f:20:a8:f6:38:82:da:a7:a9: ec:59:d5:76:3b:74:b3:ba:ef:62:7f:8d:15:ac:82: ca:0c:6f:70:4d:fc:a2:8c:f4:f4:98:f6:73:da:1e: 56:d2:32:ab:b9:97:8a:a1:2f:85:2e:6c:68:7a:a0: 8e:4f:eb:ef:af:35:e7:80:b9:79:15:17:01:04:bb: 0e:a2:28:e7:09:e2:ae:42:be:9e:66:4c:2d:d0:6c: 23:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:39:C3:D3:F8:1B:60:3D:BD:7A:77:FB:69:86:8B:A8:3A:0C:3D:6C X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a6:cf:c1:db:aa:5e:7d:76:21:7d:6e:2d:27:fa:c0:62:51: a2:08:bf:e3:6c:99:98:19:63:41:3b:c4:10:97:ac:52:f8:30: 53:f1:71:44:4a:49:65:d5:f2:4d:15:2a:fa:c7:9c:a3:70:cc: 66:e4:70:ed:cb:90:d8:6e:37:67:70:3e:e6:a7:f7:f3:3c:ca: c4:ea:f9:5c:b3:44:bd:3b:3b:b9:91:f0:4e:11:2e:79:8e:df: 58:16:2c:4f:00:41:8a:48:46:7a:f6:5f:98:e2:e9:13:48:0e: 86:a8:2d:b1:5c:b9:3e:ab:2c:66:de:5a:8e:e4:87:be:25:99: b4:cb:83:ee:08:64:21:20:ce:a3:95:47:6f:7c:17:83:da:a3: b5:f5:e4:7e:2c:ac:60:2f:37:c7:04:e1:c6:f2:2a:01:d7:48: 43:7e:93:ae:d8:03:5c:58:76:7c:fa:1f:73:51:3f:6d:c1:c4: 02:64:2d:d2:40:99:dc:ce:b2:9d:c2:67:5f:5b:32:c3:34:69: f2:c6:1c:5e:3d:ba:ec:b2:e1:e6:bc:da:bf:fd:55:cb:47:e6: 0a:ae:d0:de:af:05:c7:f8:90:48:94:50:65:70:cd:d9:cd:8d: ec:66:66:b1:bc:df:5e:87:74:ba:30:c4:f0:fd:58:de:e1:bd: 46:54:2c:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKDcyMjYwODBFN0M2NTI1MjM0Mzk2Mjg2NkIzMTM5RjAy Mzg3MkM0MDIwHhcNMjUwODA1MDYyNzM5WhcNMjUwODEyMDYyNzM5WjAYMRYwFAYD VQQDEw02ODkxYTQ1Yi0yNGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6GXY+HzLbJ3eXYoMB47eyVpw3CcNUTjN+WZ23Hy4nqRbf2zo9NOGSxJXQP6E 9rbVlIgR/kkrZAMhqffGS5ejxn59XXPQY5zHzS/tqpXeNeykR/8UNbxzVwamOUX4 qj7TA+qvWU+FRFnaO4/5dvD+Z+/9damPwz6nmbAqDdkdhhjACNEq7iFmxnwyEuS1 kFXdDRjopGc/gZW4SGWsiS1UJQa+Xi73dIggpfRvIKj2OILap6nsWdV2O3Szuu9i f40VrILKDG9wTfyijPT0mPZz2h5W0jKruZeKoS+FLmxoeqCOT+vvrzXngLl5FRcB BLsOoijnCeKuQr6eZkwt0Gwj9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLo5w9P4 G2A9vXp3+2mGi6g6DD1sMB8GA1UdIwQYMBaAFHImCA58ZSUjQ5YoZrMTnwI4csQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wREUyM0UxNjVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpTTkRsaWhtc3hPZkFqaHl4 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wREUyM0UxNjVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi9jaVlJRG54bEpT TkRsaWhtc3hPZkFqaHl4QUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnps/B26pefXYhfW4tJ/rAYlGiCL/jbJmYGWNBO8QQl6xS+DBT8XFE Skll1fJNFSr6x5yjcMxm5HDty5DYbjdncD7mp/fzPMrE6vlcs0S9Ozu5kfBOES55 jt9YFixPAEGKSEZ69l+Y4ukTSA6GqC2xXLk+qyxm3lqO5Ie+JZm0y4PuCGQhIM6j lUdvfBeD2qO19eR+LKxgLzfHBOHG8ioB10hDfpOu2ANcWHZ8+h9zUT9twcQCZC3S QJnczrKdwmdfWzLDNGnyxhxePbrssuHmvNq//VXLR+YKrtDerwXH+JBIlFBlcM3Z zY3sZmaxvN9eh3S6MMTw/Vje4b1GVCx1 -----END CERTIFICATE-----Generated at Thu Aug 7 05:08:45 2025 by rpki-client