$ rpki-client -vvf rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft File: asd5dN_kUIBzXNuQZqfiRpYEkrc.mft (raw, json) Hash identifier: SYXw819pQzihHKRy1Y4ipUhwgdaIgZK0C2FCVy58YFE= Subject key identifier: 26:73:45:02:83:BB:49:4E:B3:AE:E7:4D:56:4B:98:64:9A:CC:55:7B Authority key identifier: 6A:C7:79:74:DF:E4:50:80:73:5C:DB:90:66:A7:E2:46:96:04:92:B7 Certificate issuer: /CN=A91F31A7/serialNumber=6AC77974DFE45080735CDB9066A7E246960492B7 Certificate serial: 1079 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft Manifest number: 1071 Signing time: Tue 12 Aug 2025 17:29:28 +0000 Manifest this update: Tue 12 Aug 2025 17:29:28 +0000 Manifest next update: Tue 19 Aug 2025 17:29:28 +0000 Files and hashes: 1: asd5dN_kUIBzXNuQZqfiRpYEkrc.crl (hash: JyGFpfLq972bzyIJGv1hI4gHoGWk+bQgKfyMpy2Lpx0=) 2: DDEC8C2A39AA11E9B0166376C4F9AE02.roa (hash: P8zT0PniKGyPQKuaO/6cEK/Iz5vptBwIg6UXjylLbdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.crl rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4217 (0x1079) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F31A7, serialNumber=6AC77974DFE45080735CDB9066A7E246960492B7 Validity Not Before: Aug 12 17:29:28 2025 GMT Not After : Aug 19 17:29:28 2025 GMT Subject: CN=689b79f8-e1b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f3:fb:3c:f7:93:28:cb:4b:f3:46:e6:39:d5: 4a:12:4a:7f:a6:d4:08:a5:7a:93:2a:f2:dc:07:1f: 9e:4b:6f:96:78:f5:cc:9b:42:15:fb:cf:39:8c:58: 20:f4:b4:55:14:c7:13:27:09:d1:a9:b0:45:27:16: f1:28:8e:5f:9c:71:ba:7f:4d:5f:c0:31:13:02:f5: 43:ab:39:18:5f:be:e9:d9:c6:5a:af:81:ef:dc:c0: 7d:90:c3:ca:da:29:fe:a7:e0:13:1b:6d:1e:9a:05: 53:50:a7:b9:88:19:9a:0e:23:23:a9:20:32:f2:fd: b5:94:90:bd:91:6e:85:1a:a3:0c:3a:81:d6:61:4c: d1:6a:10:2b:a8:8b:0a:a9:35:3a:57:fc:2e:e3:46: 7a:32:7e:09:38:0c:ce:91:c4:18:87:26:ea:45:a6: 87:53:02:83:b7:7b:c7:c4:b8:d3:cb:4a:c4:78:ac: a5:cf:9e:9c:8d:b0:a1:53:5d:6c:21:b6:c1:35:5a: fc:ed:ea:33:dd:5d:96:d7:0f:2f:7d:a0:f2:8c:9a: 89:59:c7:70:c9:e4:4f:3a:22:7c:84:1e:b5:34:bd: d8:a6:b2:a4:b6:89:a6:2c:d3:a0:68:c4:70:db:b5: cf:da:78:55:28:88:da:c5:4e:7f:fa:82:cf:e8:f9: 08:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:73:45:02:83:BB:49:4E:B3:AE:E7:4D:56:4B:98:64:9A:CC:55:7B X509v3 Authority Key Identifier: keyid:6A:C7:79:74:DF:E4:50:80:73:5C:DB:90:66:A7:E2:46:96:04:92:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/asd5dN_kUIBzXNuQZqfiRpYEkrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F31A7/7B0B678439AA11E98A8E5276C4F9AE02/asd5dN_kUIBzXNuQZqfiRpYEkrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:89:b2:a9:24:1e:97:a0:18:67:94:4c:e2:d8:19:39:40:5f: 22:55:39:2a:15:57:cc:f1:d7:63:f9:d8:52:3d:fd:1a:20:58: f7:02:a1:66:e5:d6:1f:d1:63:87:5f:1a:0f:d2:43:ea:61:36: e3:5c:77:20:39:a7:73:b7:b4:7d:07:1a:b6:0a:d0:bd:9d:ce: 4c:12:a6:63:39:14:6f:87:3f:2f:14:ad:21:54:95:f9:b3:b9: d0:f1:b3:b2:95:6b:71:77:38:9b:99:25:c5:3c:60:cb:75:9a: c2:eb:2c:f7:c8:5a:8c:89:9e:81:b7:e6:8e:4c:3f:59:5f:57: 25:9a:7d:6f:46:ab:1b:af:f8:65:65:d7:4c:ec:2f:3f:a7:47: e4:75:f0:d4:9f:64:c3:a2:3c:3a:33:2c:bb:fc:a8:f4:c8:2b: bc:8f:79:c5:ac:6a:25:0f:43:bc:77:9e:7b:ed:76:9b:79:93: 04:60:83:83:e8:4a:e9:7b:52:b5:71:b5:33:48:32:71:f0:91: d5:c9:d2:e7:9b:30:96:ba:9f:c5:db:ce:f3:4f:a9:04:c9:e6: f6:88:bd:0b:58:4e:e0:ef:26:5e:cf:cf:b4:3c:36:26:d1:c4: e4:29:62:e3:e7:ea:7a:76:44:97:47:ff:f6:8c:7f:59:db:4a: 9b:c8:55:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMxQTcxMTAvBgNVBAUTKDZBQzc3OTc0REZFNDUwODA3MzVDREI5MDY2QTdFMjQ2 OTYwNDkyQjcwHhcNMjUwODEyMTcyOTI4WhcNMjUwODE5MTcyOTI4WjAYMRYwFAYD VQQDEw02ODliNzlmOC1lMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPP7PPeTKMtL80bmOdVKEkp/ptQIpXqTKvLcBx+eS2+WePXMm0IV+885jFgg 9LRVFMcTJwnRqbBFJxbxKI5fnHG6f01fwDETAvVDqzkYX77p2cZar4Hv3MB9kMPK 2in+p+ATG20emgVTUKe5iBmaDiMjqSAy8v21lJC9kW6FGqMMOoHWYUzRahArqIsK qTU6V/wu40Z6Mn4JOAzOkcQYhybqRaaHUwKDt3vHxLjTy0rEeKylz56cjbChU11s IbbBNVr87eoz3V2W1w8vfaDyjJqJWcdwyeRPOiJ8hB61NL3YprKktommLNOgaMRw 27XP2nhVKIjaxU5/+oLP6PkIZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZzRQKD u0lOs67nTVZLmGSazFV7MB8GA1UdIwQYMBaAFGrHeXTf5FCAc1zbkGan4kaWBJK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzFBNy83QjBCNjc4NDM5 QUExMUU5OEE4RTUyNzZDNEY5QUUwMi9hc2Q1ZE5fa1VJQnpYTnVRWnFmaVJwWUVr cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FzZDVkTl9rVUlCelhOdVFacWZpUnBZRWtyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzFBNy83QjBCNjc4NDM5QUExMUU5OEE4RTUyNzZDNEY5QUUwMi9hc2Q1ZE5fa1VJ QnpYTnVRWnFmaVJwWUVrcmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOibKpJB6XoBhnlEzi2Bk5QF8iVTkqFVfM8ddj+dhSPf0aIFj3AqFm 5dYf0WOHXxoP0kPqYTbjXHcgOadzt7R9Bxq2CtC9nc5MEqZjORRvhz8vFK0hVJX5 s7nQ8bOylWtxdzibmSXFPGDLdZrC6yz3yFqMiZ6Bt+aOTD9ZX1clmn1vRqsbr/hl ZddM7C8/p0fkdfDUn2TDojw6Myy7/Kj0yCu8j3nFrGolD0O8d5577XabeZMEYIOD 6Erpe1K1cbUzSDJx8JHVydLnmzCWup/F287zT6kEyeb2iL0LWE7g7yZez8+0PDYm 0cTkKWLj5+p6dkSXR//2jH9Z20qbyFVm -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:23 2025 by rpki-client