$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft File: cL0eSV4lCyLieYKWlpeFotd9c38.mft (raw, json) Hash identifier: NqXvu27Sl/BXjgFLidm9OrxGBx4suSyueIUxZ7dGKQo= Subject key identifier: 89:D1:D6:98:D1:1F:F4:EF:C6:C3:5A:18:84:EC:50:87:E2:81:C1:F2 Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 076A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft Manifest number: 0758 Signing time: Sat 02 Aug 2025 22:02:23 +0000 Manifest this update: Sat 02 Aug 2025 22:02:23 +0000 Manifest next update: Sat 09 Aug 2025 22:02:23 +0000 Files and hashes: 1: cL0eSV4lCyLieYKWlpeFotd9c38.crl (hash: Ma2fBAMDVCpzLJLooIzw96P7ipOxSlYpvqPDS2ptGOU=) 2: AEFB1B262FB111EB89A04D37C4F9AE02.roa (hash: C9YBNy3SJzx+k9ZBQHZtbIXi++eZ8FDncm2ByZsrMrw=) 3: D992CDCE2FBC11EB8E017F5CC4F9AE02.roa (hash: ms/taZmD2/o24c1Khq9ZB9VElH0aqAVMPoZoMLJ7l7o=) 4: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (hash: QcINMhPugXakfHhYWsf4t0lmoNzm+ZXfVIXhNA2VxIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 22:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: Aug 2 22:02:23 2025 GMT Not After : Aug 9 22:02:23 2025 GMT Subject: CN=688e8aef-26ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f9:71:c4:f5:b8:0b:4b:cf:09:a9:8d:5b:7e: 48:53:ff:e9:98:b4:43:c3:35:4f:b7:43:88:3e:f1: f4:7b:76:27:a1:44:ad:d0:62:a4:88:1b:2c:9d:ee: d5:66:8f:a6:9e:90:07:4a:a5:05:92:5d:0f:fd:f3: 34:38:7d:6d:7e:f5:c2:2e:0c:d2:b5:be:d6:8e:99: e5:eb:a8:37:39:c3:04:37:4f:9d:b6:88:83:c7:1f: 75:d7:7d:e4:8f:9a:2a:a3:50:b3:29:ff:c7:94:7b: 39:75:0c:1a:ba:44:46:f1:0b:27:80:0d:b0:88:26: 18:63:50:49:48:f1:08:a8:04:f5:26:1e:d2:5c:0f: 2a:2c:38:e3:de:3c:70:4b:45:4c:30:de:4c:a3:a2: c5:22:ae:0a:66:52:88:9f:01:a3:c4:57:90:c2:33: 07:a2:87:73:4b:a5:5f:30:1e:44:ac:10:b2:42:a4: 96:bf:b3:0b:ba:9f:75:44:f9:dc:db:8c:a3:72:9f: d5:d3:52:3b:92:2b:11:11:f8:4c:22:3a:89:c7:05: eb:9d:ad:1d:ae:80:5b:9a:56:5f:72:9c:77:44:7b: ee:51:5f:1a:80:ae:45:21:3a:16:21:8e:7e:63:71: 80:96:c4:de:b2:92:99:3d:f4:af:67:e4:5c:23:4a: ce:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D1:D6:98:D1:1F:F4:EF:C6:C3:5A:18:84:EC:50:87:E2:81:C1:F2 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b1:34:27:13:8e:00:b5:01:24:63:2e:7c:11:1d:a4:c1:6f: 35:c6:ab:8c:c6:ed:40:f9:3e:43:de:51:6f:7a:93:28:d9:27: d3:79:d8:9f:5e:aa:af:0d:db:ac:c6:a8:40:6a:ab:02:82:1e: b3:7d:c1:7b:07:0e:0c:a7:4a:6e:2b:81:35:0e:85:4e:3e:94: 1f:dc:03:53:aa:39:8d:8c:76:2f:fb:a8:8c:9c:80:54:19:96: b2:a1:f5:b3:1f:8b:21:93:9c:1d:a4:c9:3d:5c:1e:46:73:82: 79:79:b4:ff:6d:b7:d7:f6:73:f5:e4:53:4e:8e:eb:9f:5d:83: 81:be:9d:1e:81:19:7d:51:0d:51:92:44:56:d7:0e:bc:cf:57: 50:bc:7c:bb:cb:80:12:67:20:47:b0:b3:ef:a1:52:e9:12:0b: 04:5c:30:73:0a:18:90:57:40:b8:55:53:cb:a5:74:cb:9c:e1: 19:38:d2:e2:b1:76:b4:be:e3:a9:98:18:6f:f0:30:2c:49:7d: 11:e0:37:8b:c4:17:a2:03:9e:00:b3:c9:c0:50:81:94:86:f9: e9:9d:00:0d:45:33:16:1d:60:0c:a2:61:15:81:a8:1c:aa:0a: 33:42:78:fe:8b:3c:47:50:8d:5c:43:d3:f2:74:fa:f8:e0:75: f8:a7:1c:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUwODAyMjIwMjIzWhcNMjUwODA5MjIwMjIzWjAYMRYwFAYD VQQDEw02ODhlOGFlZi0yNmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPlxxPW4C0vPCamNW35IU//pmLRDwzVPt0OIPvH0e3YnoUSt0GKkiBssne7V Zo+mnpAHSqUFkl0P/fM0OH1tfvXCLgzStb7Wjpnl66g3OcMEN0+dtoiDxx91133k j5oqo1CzKf/HlHs5dQwaukRG8QsngA2wiCYYY1BJSPEIqAT1Jh7SXA8qLDjj3jxw S0VMMN5Mo6LFIq4KZlKInwGjxFeQwjMHoodzS6VfMB5ErBCyQqSWv7MLup91RPnc 24yjcp/V01I7kisREfhMIjqJxwXrna0droBbmlZfcpx3RHvuUV8agK5FIToWIY5+ Y3GAlsTespKZPfSvZ+RcI0rOCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInR1pjR H/TvxsNaGITsUIfigcHyMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFDNC9GQzY3MkI3MjJGQUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5 TGllWUtXbHBlRm90ZDljMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9sTQnE44AtQEkYy58ER2kwW81xquMxu1A+T5D3lFvepMo2SfTedif XqqvDdusxqhAaqsCgh6zfcF7Bw4Mp0puK4E1DoVOPpQf3ANTqjmNjHYv+6iMnIBU GZayofWzH4shk5wdpMk9XB5Gc4J5ebT/bbfX9nP15FNOjuufXYOBvp0egRl9UQ1R kkRW1w68z1dQvHy7y4ASZyBHsLPvoVLpEgsEXDBzChiQV0C4VVPLpXTLnOEZONLi sXa0vuOpmBhv8DAsSX0R4DeLxBeiA54As8nAUIGUhvnpnQANRTMWHWAMomEVgagc qgozQnj+izxHUI1cQ9PydPr44HX4pxyx -----END CERTIFICATE-----Generated at Mon Aug 4 16:02:05 2025 by rpki-client