$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft File: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft (raw, json) Hash identifier: oq4vVU/yQ/6IBEcxNbidTYxJUU2thDNEPouO/oP50k0= Subject key identifier: 5E:E2:CD:82:F8:4E:5B:B8:49:D2:AC:33:E5:AB:F1:21:6C:72:10:D6 Authority key identifier: 08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F Certificate issuer: /CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft Manifest number: 04E0 Signing time: Sun 10 Aug 2025 23:52:00 +0000 Manifest this update: Sun 10 Aug 2025 23:51:59 +0000 Manifest next update: Sun 17 Aug 2025 23:51:59 +0000 Files and hashes: 1: CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl (hash: cvfV3GLHZKgcZlizsDOdQSynSo5n9XbJ+Rp7XLvR3rQ=) 2: 5CA72CF82A6911EC94518740C4F9AE02.roa (hash: DNv6RERe4SqIzEBmNx3Q6xCWL7cpJvtrVCrMm/mBf0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF7FC, serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Validity Not Before: Aug 10 23:51:59 2025 GMT Not After : Aug 17 23:51:59 2025 GMT Subject: CN=689930a0-590e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:d3:5e:8a:23:5e:c0:2b:20:ef:e3:ce:cd: d6:c0:df:9b:61:df:7e:9b:c7:7e:61:53:87:bc:02: ed:e0:9d:f8:bb:50:6f:3e:2b:1f:25:bb:48:a3:5f: 47:c1:5b:d7:3d:2e:d6:e0:2b:dc:05:26:8e:c2:f2: 86:96:49:e2:c5:41:cd:c1:94:a8:51:b5:41:9c:a5: e0:88:57:03:88:89:9d:d7:d4:52:2b:dd:c5:b4:41: 91:75:c0:cf:bd:30:b1:e6:c7:e8:91:2e:a1:1b:9d: 2d:68:3d:cb:98:55:a0:2c:e4:f2:dd:17:39:70:36: 75:21:16:32:1a:f8:08:a8:c7:cf:23:04:ae:2c:04: 18:55:8d:6f:c9:3f:7d:53:b3:1e:51:3b:82:0c:fd: 2c:d0:30:89:4d:b3:b6:23:b9:20:a9:3a:60:71:d0: 6f:1a:22:16:6a:da:c3:89:80:c5:51:27:be:95:8e: 9b:23:97:aa:91:00:29:69:88:81:bb:cf:fa:c8:e6: 26:a8:8d:12:82:e7:15:0a:25:b1:8f:f8:45:a3:61: ef:a1:e7:05:15:4e:cc:b7:a5:62:34:bc:87:d0:fe: 08:2b:7f:f1:55:8f:89:06:0e:f6:d1:59:20:d6:b5: 75:4d:01:02:9b:61:51:a7:e3:35:c1:71:2d:cb:a0: 20:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E2:CD:82:F8:4E:5B:B8:49:D2:AC:33:E5:AB:F1:21:6C:72:10:D6 X509v3 Authority Key Identifier: keyid:08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:5e:25:18:43:eb:7f:9e:c9:14:e9:24:62:00:66:1b:15:1d: 51:92:e3:47:bf:5c:e5:fe:98:27:a0:0c:6f:93:83:e7:96:94: e4:d6:a2:aa:05:28:7c:f1:15:90:82:47:c3:b9:04:20:f2:ad: 01:d5:52:82:e4:14:91:b7:aa:06:5e:09:63:2c:58:00:a4:bd: 6d:95:01:23:f0:6e:e1:6a:5c:97:41:8b:04:9f:b5:8c:3d:13: 35:1e:9d:89:ab:15:3d:7d:3e:34:c5:09:2b:4e:f9:78:93:0f: 70:ff:9d:65:f7:19:c5:69:9a:10:4d:24:31:ac:58:5b:06:e2: c7:b4:35:82:64:5d:af:78:e8:7c:69:18:43:a9:3b:f2:91:fe: 1b:32:4a:be:f6:1c:71:e4:da:cb:a5:78:51:98:19:8f:d6:f7: 84:7f:4b:0d:75:81:df:45:71:de:f2:4a:d7:58:85:88:3c:8c: 9c:3f:c5:8a:74:e7:c5:3c:7d:9a:01:88:8b:77:5f:bd:a0:ab: d8:58:67:95:44:11:b3:78:b5:37:0d:72:ca:20:ed:fd:2b:70: cc:9c:13:50:3f:c3:86:67:4e:43:b3:68:a6:48:f2:3c:9e:7f: d5:3d:e8:1c:6d:06:b3:a0:1e:c2:52:1c:c5:ea:5a:71:d5:24: 12:c4:3c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3RkMxMTAvBgNVBAUTKDA4RDlGNDgzRTQ1NDIxNThGNjJDQkU3MDU4NjlFQkVE NzdGQjkyN0YwHhcNMjUwODEwMjM1MTU5WhcNMjUwODE3MjM1MTU5WjAYMRYwFAYD VQQDEw02ODk5MzBhMC01OTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZLTXoojXsArIO/jzs3WwN+bYd9+m8d+YVOHvALt4J34u1BvPisfJbtIo19H wVvXPS7W4CvcBSaOwvKGlknixUHNwZSoUbVBnKXgiFcDiImd19RSK93FtEGRdcDP vTCx5sfokS6hG50taD3LmFWgLOTy3Rc5cDZ1IRYyGvgIqMfPIwSuLAQYVY1vyT99 U7MeUTuCDP0s0DCJTbO2I7kgqTpgcdBvGiIWatrDiYDFUSe+lY6bI5eqkQApaYiB u8/6yOYmqI0SgucVCiWxj/hFo2HvoecFFU7Mt6ViNLyH0P4IK3/xVY+JBg720Vkg 1rV1TQECm2FRp+M1wXEty6AgdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7izYL4 Tlu4SdKsM+Wr8SFschDWMB8GA1UdIwQYMBaAFAjZ9IPkVCFY9iy+cFhp6+13+5J/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjdGQy80RTIzQjM5QzJB NjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlWajJMTDV3V0ducjdYZjdr bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NObjBnLVJVSVZqMkxMNXdXR25yN1hmN2tuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjdGQy80RTIzQjM5QzJBNjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlW ajJMTDV3V0ducjdYZjdrbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlXiUYQ+t/nskU6SRiAGYbFR1RkuNHv1zl/pgnoAxvk4PnlpTk1qKq BSh88RWQgkfDuQQg8q0B1VKC5BSRt6oGXgljLFgApL1tlQEj8G7halyXQYsEn7WM PRM1Hp2JqxU9fT40xQkrTvl4kw9w/51l9xnFaZoQTSQxrFhbBuLHtDWCZF2veOh8 aRhDqTvykf4bMkq+9hxx5NrLpXhRmBmP1veEf0sNdYHfRXHe8krXWIWIPIycP8WK dOfFPH2aAYiLd1+9oKvYWGeVRBGzeLU3DXLKIO39K3DMnBNQP8OGZ05Ds2imSPI8 nn/VPegcbQazoB7CUhzF6lpx1SQSxDze -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:28 2025 by rpki-client