$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: clRK0s1PeRyMMLRwpxozJAfEEHJ8F5CC0FnvQ9brjuw= Subject key identifier: 06:DA:0D:9D:20:DC:60:24:61:80:50:FD:8E:D0:EC:EF:5C:C5:BB:60 Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 05FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 05F9 Signing time: Wed 06 Aug 2025 23:18:30 +0000 Manifest this update: Wed 06 Aug 2025 23:18:29 +0000 Manifest next update: Wed 13 Aug 2025 23:18:29 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: 8lJ4575T44LdvGChtDCwvlJZBVod+mUAjX4T+S0uRl8=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: mRSjwQDsA2Ity8Ke/pKlCSea6N3rjwOrxrJxPkM3a1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1534 (0x5fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1, serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Aug 6 23:18:29 2025 GMT Not After : Aug 13 23:18:29 2025 GMT Subject: CN=6893e2c6-ca07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d8:d6:99:5c:21:2b:1e:51:68:bd:0e:d5:47: 86:2c:13:03:b3:58:33:2b:83:e6:e6:9c:f2:c0:c1: fa:86:0b:1e:61:1e:bb:d4:e1:79:dc:88:da:60:d2: b5:18:87:86:5a:76:0b:49:f5:2e:49:2d:d6:eb:c5: fe:9a:55:cd:f8:fc:d7:44:45:cb:ab:37:ef:bc:af: a0:af:75:56:4e:75:71:ac:4f:84:e8:b7:8f:33:82: 9b:c4:f1:aa:77:3d:fd:00:8a:8f:b4:2f:aa:b9:96: 36:ad:91:06:9b:fa:e4:f3:1c:48:d2:86:a8:89:bc: 54:41:79:6e:c8:5e:d5:da:49:31:94:2b:bc:f5:69: 9c:d2:99:64:c6:cf:3c:d8:43:17:0b:fc:a0:5f:8a: ba:92:2c:73:dc:34:42:43:73:e3:49:0a:c3:8d:8a: 7a:60:8d:ec:43:c8:fb:16:be:41:60:07:39:ca:82: 42:9d:e8:2f:f3:8d:b6:40:08:54:93:f5:e3:4d:ba: a4:e9:56:bc:38:cb:f5:da:ab:aa:7c:b3:5d:48:b1: 83:30:e1:46:87:7a:cc:2a:ea:1e:49:66:f8:30:ec: 4b:e4:2c:a6:6c:7f:c0:ce:4b:34:be:21:45:75:e8: eb:cd:40:7d:eb:fc:34:d9:ba:d3:7e:1b:40:ad:95: 7d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:DA:0D:9D:20:DC:60:24:61:80:50:FD:8E:D0:EC:EF:5C:C5:BB:60 X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:58:b2:6f:23:f4:70:2c:b7:f2:1f:35:c1:59:88:c7:17:a4: c3:37:c2:68:6b:91:18:4d:a0:28:0a:0e:d9:e5:6e:09:86:c2: 57:54:6a:e7:24:03:f2:ca:76:98:ea:be:25:83:b6:eb:cf:be: 05:e1:c9:2c:c2:19:81:38:f5:94:2f:19:8f:03:56:2f:e3:2e: 32:6e:d9:37:3a:02:99:dc:10:fb:d5:39:74:bf:c8:79:d0:10: 52:3a:df:86:0f:0c:7c:5a:51:6c:78:a7:d4:93:37:bc:90:45: f6:ff:99:e7:b9:a9:8b:f7:c2:28:56:d8:6e:27:33:05:ac:1f: 09:a5:ec:c1:c2:a3:a7:80:67:88:94:9e:6b:41:5d:38:20:d2: 39:26:9b:f0:de:7f:7b:ce:44:22:51:70:b8:f6:2f:63:dd:9b: 36:f3:61:32:de:eb:40:ff:56:e0:5f:51:77:16:c5:37:be:2d: 94:ec:bd:fc:79:21:81:43:32:3b:df:9f:e6:36:79:d3:49:a2: 5b:be:cd:d9:2c:71:bd:49:e3:36:6d:23:41:80:ef:36:06:85: 60:f6:27:cb:7c:62:1c:bb:f7:58:fa:cc:19:52:da:02:e4:b8: 28:c1:63:a2:e4:64:cd:3a:82:07:1d:49:cc:af:1b:44:36:03: 05:59:8c:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjUwODA2MjMxODI5WhcNMjUwODEzMjMxODI5WjAYMRYwFAYD VQQDEw02ODkzZTJjNi1jYTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNjWmVwhKx5RaL0O1UeGLBMDs1gzK4Pm5pzywMH6hgseYR671OF53IjaYNK1 GIeGWnYLSfUuSS3W68X+mlXN+PzXREXLqzfvvK+gr3VWTnVxrE+E6LePM4KbxPGq dz39AIqPtC+quZY2rZEGm/rk8xxI0oaoibxUQXluyF7V2kkxlCu89Wmc0plkxs88 2EMXC/ygX4q6kixz3DRCQ3PjSQrDjYp6YI3sQ8j7Fr5BYAc5yoJCnegv8422QAhU k/XjTbqk6Va8OMv12quqfLNdSLGDMOFGh3rMKuoeSWb4MOxL5CymbH/Azks0viFF dejrzUB96/w02brTfhtArZV92QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbaDZ0g 3GAkYYBQ/Y7Q7O9cxbtgMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuWLJvI/RwLLfyHzXBWYjHF6TDN8Joa5EYTaAoCg7Z5W4JhsJXVGrn JAPyynaY6r4lg7brz74F4ckswhmBOPWULxmPA1Yv4y4ybtk3OgKZ3BD71Tl0v8h5 0BBSOt+GDwx8WlFseKfUkze8kEX2/5nnuamL98IoVthuJzMFrB8JpezBwqOngGeI lJ5rQV04INI5Jpvw3n97zkQiUXC49i9j3Zs282Ey3utA/1bgX1F3FsU3vi2U7L38 eSGBQzI735/mNnnTSaJbvs3ZLHG9SeM2bSNBgO82BoVg9ifLfGIcu/dY+swZUtoC 5LgowWOi5GTNOoIHHUnMrxtENgMFWYyQ -----END CERTIFICATE-----Generated at Thu Aug 7 04:43:41 2025 by rpki-client