$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: 38vZ4fKnDis80RMj1vfJGfV3WGqlk6enNjTQaox7Fbc= Subject key identifier: A1:00:BD:18:02:52:5A:33:2D:5C:7A:85:B5:F3:1E:DB:C0:86:61:05 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BEB Signing time: Fri 08 Aug 2025 19:11:30 +0000 Manifest this update: Fri 08 Aug 2025 19:11:29 +0000 Manifest next update: Fri 15 Aug 2025 19:11:29 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: 12mlS2qdL97DxLZWBORIvY+w5Wre7aaQQTj0sSc6QMo=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 4: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: edBs+LqPeq6VId1edbW8z5stcuCPjdTspdZcbHXD4ms=) 5: C5639A105E3B11F09FAC9B6DC4F9AE02.roa (hash: +jkx8ForKRaNqf1DBVMg/S9cIOq8CLcZaNyeQAklIwQ=) 6: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: bYDuNI3W6+4EZSV4cW7DNvBB9NpXjXY4h4lfRb3nwhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Aug 8 19:11:29 2025 GMT Not After : Aug 15 19:11:29 2025 GMT Subject: CN=68964be1-fc63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:38:39:1b:14:ee:f4:49:15:7d:1f:7b:ac:cb: 2f:0f:8d:80:6c:6d:38:b7:61:7c:04:69:6b:a5:cb: 31:35:c0:69:f4:43:0f:6f:56:37:15:53:71:7c:5a: 22:cd:7c:84:1f:ef:79:65:f7:9e:b4:ea:af:0e:d3: 35:6e:1f:b9:0c:bf:1e:a3:25:c2:4a:37:fe:4b:46: 8c:22:8e:c8:3f:6d:1c:79:d3:02:92:e5:94:e5:8d: 2d:25:1e:ef:4b:eb:48:a8:98:29:4a:1c:83:3e:66: 19:29:90:87:66:47:93:cc:52:18:11:c8:6e:66:6f: 02:51:4f:df:08:19:f5:53:20:51:ca:15:30:99:9e: cc:ac:bc:b7:4d:68:60:5c:7f:2e:f5:f3:30:9b:95: 47:db:5a:98:b6:aa:75:7c:13:39:93:93:7b:b2:d3: b0:77:3d:ea:8a:75:d9:97:c2:10:5c:09:f3:65:dd: 04:8c:1a:96:9e:ce:ea:61:c1:bc:c2:37:93:53:96: 5b:71:d6:e3:dc:f2:e1:6e:68:1c:91:a9:ce:cd:f0: f5:f0:64:10:83:fb:2d:c6:67:1f:47:da:06:29:4d: 3a:0c:0d:e1:0e:bc:a3:8b:cc:50:85:01:c6:1b:3f: 31:70:39:5c:7d:b9:f7:3d:e3:7c:77:41:65:3e:8f: fb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:00:BD:18:02:52:5A:33:2D:5C:7A:85:B5:F3:1E:DB:C0:86:61:05 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:70:c5:74:49:c2:4d:36:a1:28:39:0b:c2:76:a7:aa:a5:86: 96:82:bd:63:4f:ca:bd:db:e2:c7:af:20:2f:0a:db:18:8c:e7: 58:5d:55:19:2b:f6:86:10:f3:5d:5b:1d:77:4b:24:2f:12:e9: c0:d4:7f:a6:d2:c2:56:a3:ac:1d:98:01:5c:f8:75:72:ac:80: 4e:bb:9d:68:bc:39:e9:0f:fd:ab:8a:c0:64:8d:f9:84:62:90: 27:36:44:a6:70:de:e1:34:ec:25:a1:aa:ce:a4:0c:ea:fa:38: 36:b6:6b:38:b0:a5:0e:00:65:37:5c:37:30:0d:51:24:8c:69: 42:96:fe:a4:95:03:c0:70:e6:75:d0:7a:2f:93:b9:4b:f5:b9: 7b:1e:d2:8c:be:6d:a6:62:1f:ce:d0:4d:e2:cf:01:13:73:5e: f4:0a:52:b0:cc:d8:ac:9b:4a:a2:2c:25:7d:37:c5:7c:90:84: dd:8b:b3:1e:13:ba:0c:a0:97:39:57:15:51:60:5e:4f:c1:5e: c3:fb:20:1c:21:b0:bf:f2:04:e2:7d:0a:f2:d7:05:cf:d1:d0: 72:6b:7f:a7:ee:5f:77:35:a5:ed:b5:47:52:77:39:ac:d9:47: e6:9a:28:1e:58:c8:d5:36:96:69:59:4e:ae:4d:b5:e9:e5:cd: 1b:c3:bd:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwODA4MTkxMTI5WhcNMjUwODE1MTkxMTI5WjAYMRYwFAYD VQQDEw02ODk2NGJlMS1mYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dg5GxTu9EkVfR97rMsvD42AbG04t2F8BGlrpcsxNcBp9EMPb1Y3FVNxfFoi zXyEH+95ZfeetOqvDtM1bh+5DL8eoyXCSjf+S0aMIo7IP20cedMCkuWU5Y0tJR7v S+tIqJgpShyDPmYZKZCHZkeTzFIYEchuZm8CUU/fCBn1UyBRyhUwmZ7MrLy3TWhg XH8u9fMwm5VH21qYtqp1fBM5k5N7stOwdz3qinXZl8IQXAnzZd0EjBqWns7qYcG8 wjeTU5Zbcdbj3PLhbmgckanOzfD18GQQg/stxmcfR9oGKU06DA3hDryji8xQhQHG Gz8xcDlcfbn3PeN8d0FlPo/7kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEAvRgC UlozLVx6hbXzHtvAhmEFMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKcMV0ScJNNqEoOQvCdqeqpYaWgr1jT8q92+LHryAvCtsYjOdYXVUZ K/aGEPNdWx13SyQvEunA1H+m0sJWo6wdmAFc+HVyrIBOu51ovDnpD/2risBkjfmE YpAnNkSmcN7hNOwloarOpAzq+jg2tms4sKUOAGU3XDcwDVEkjGlClv6klQPAcOZ1 0Hovk7lL9bl7HtKMvm2mYh/O0E3izwETc170ClKwzNism0qiLCV9N8V8kITdi7Me E7oMoJc5VxVRYF5PwV7D+yAcIbC/8gTifQry1wXP0dBya3+n7l93NaXttUdSdzms 2UfmmigeWMjVNpZpWU6uTbXp5c0bw72b -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:56 2025 by rpki-client