$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: TmNBS15aQkcKjzly0+/oTn+h4veKGeZFKgjrDMmEAcE= Subject key identifier: EE:22:65:DB:E9:E1:7D:1A:1E:30:B8:75:F5:F2:4B:A6:98:E5:2E:8D Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 0258 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 0257 Signing time: Sat 09 Aug 2025 02:20:27 +0000 Manifest this update: Sat 09 Aug 2025 02:20:26 +0000 Manifest next update: Sat 16 Aug 2025 02:20:26 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: ESRfo2FEoz394DYDyRhNWBZnaaiRXo8+ucjbEXdQ85Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE, serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Aug 9 02:20:26 2025 GMT Not After : Aug 16 02:20:26 2025 GMT Subject: CN=6896b06a-f156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:98:21:14:04:db:44:f6:79:ea:90:0e:c0:79: d7:17:d5:7d:33:27:aa:37:2c:33:35:e1:b3:6e:7e: 94:db:24:d7:2b:cc:66:e4:9e:0d:ba:58:90:6e:2c: 99:12:9c:e8:d5:f2:b3:0f:3c:cc:0e:eb:39:c4:77: 5c:fe:a5:1f:2e:0a:11:bc:30:60:f1:19:26:25:56: 53:b3:5b:b9:a5:56:c6:39:0c:6a:30:c0:0b:86:91: 1f:84:80:d9:b4:9e:c7:7e:99:74:76:72:a9:18:34: b1:e5:62:65:b3:1e:7d:dd:41:3b:84:fb:d6:bd:f8: ba:83:bc:38:10:0b:9a:41:56:dd:b6:c3:ba:bb:96: 56:51:0e:10:5a:b1:d9:da:f9:e7:b9:f2:8c:6c:3a: 67:27:70:50:b4:a5:7b:93:d4:83:09:e7:b2:7b:32: bf:54:07:64:75:37:0f:ce:7d:e8:e5:c4:92:b6:72: c3:20:ad:c4:aa:91:c1:1b:59:62:04:30:bb:7c:80: 8f:32:ae:5b:4f:d1:3f:57:77:28:b4:af:e4:ee:51: ea:f4:e5:1c:56:5c:57:64:85:9d:be:55:bd:d3:2b: 10:03:d8:bc:99:ca:92:c5:98:03:1a:f9:99:e7:47: 81:d7:fd:2b:4c:d0:24:14:b1:9a:ba:6c:4c:e7:30: 42:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:22:65:DB:E9:E1:7D:1A:1E:30:B8:75:F5:F2:4B:A6:98:E5:2E:8D X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:a4:18:ca:63:c4:a2:da:4b:7d:12:4b:20:fb:0d:0d:79:d8: b1:a6:ac:b1:b6:b4:78:bd:71:74:87:52:b1:69:c1:88:4f:0e: 24:4d:e4:1d:1f:04:43:cf:8b:72:c7:22:a0:63:49:eb:af:7c: c6:3d:d2:ec:b6:ec:35:1c:a4:e5:11:c0:8e:07:a8:82:a4:0c: 77:02:c4:6a:9b:7c:5e:9f:69:71:e6:6d:11:20:e9:a6:ac:cf: 61:99:0a:ac:92:81:44:cd:14:6a:66:0f:b1:44:2b:d3:ed:d0: 49:ad:36:60:dd:d4:21:fa:71:c7:22:38:f5:a3:b5:e1:f8:04: d2:57:ef:94:a0:ee:8a:8e:fc:cd:3b:e6:b3:dd:93:81:0b:ff: 9b:47:95:0e:08:e0:5f:dd:47:41:5f:08:22:1c:b9:91:47:17: 83:09:df:56:73:bb:25:74:40:8f:81:50:c1:d8:e5:a8:ad:ea: 73:e3:e6:93:54:e6:ab:f8:84:98:db:95:0e:5e:5a:2b:27:fa: d9:45:67:f6:0a:33:ae:ef:b1:ef:07:a6:4b:f4:a8:54:cb:9e: 99:71:3f:d9:aa:52:a7:9c:e3:90:2a:59:c2:48:58:fe:d1:a3: 44:ff:16:ef:14:7b:03:b9:db:8d:eb:60:78:0f:88:7e:b3:ab: 9d:37:d9:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjUwODA5MDIyMDI2WhcNMjUwODE2MDIyMDI2WjAYMRYwFAYD VQQDEw02ODk2YjA2YS1mMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppghFATbRPZ56pAOwHnXF9V9MyeqNywzNeGzbn6U2yTXK8xm5J4NuliQbiyZ Epzo1fKzDzzMDus5xHdc/qUfLgoRvDBg8RkmJVZTs1u5pVbGOQxqMMALhpEfhIDZ tJ7Hfpl0dnKpGDSx5WJlsx593UE7hPvWvfi6g7w4EAuaQVbdtsO6u5ZWUQ4QWrHZ 2vnnufKMbDpnJ3BQtKV7k9SDCeeyezK/VAdkdTcPzn3o5cSStnLDIK3EqpHBG1li BDC7fICPMq5bT9E/V3cotK/k7lHq9OUcVlxXZIWdvlW90ysQA9i8mcqSxZgDGvmZ 50eB1/0rTNAkFLGaumxM5zBCpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4iZdvp 4X0aHjC4dfXyS6aY5S6NMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYpBjKY8Si2kt9Eksg+w0NedixpqyxtrR4vXF0h1KxacGITw4kTeQd HwRDz4tyxyKgY0nrr3zGPdLstuw1HKTlEcCOB6iCpAx3AsRqm3xen2lx5m0RIOmm rM9hmQqskoFEzRRqZg+xRCvT7dBJrTZg3dQh+nHHIjj1o7Xh+ATSV++UoO6KjvzN O+az3ZOBC/+bR5UOCOBf3UdBXwgiHLmRRxeDCd9Wc7sldECPgVDB2OWorepz4+aT VOar+ISY25UOXlorJ/rZRWf2CjOu77HvB6ZL9KhUy56ZcT/ZqlKnnOOQKlnCSFj+ 0aNE/xbvFHsDuduN62B4D4h+s6udN9lZ -----END CERTIFICATE-----Generated at Sun Aug 10 05:44:02 2025 by rpki-client