$ rpki-client -vvf rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft File: _un91LDoMTGIoIn3qH-30BUyU4g.mft (raw, json) Hash identifier: dIm/RPkKinoAYTG6p6o6zELUh2TU3Q6jRxb43W9P35U= Subject key identifier: EA:F7:32:71:F7:EB:6F:E8:A4:FE:30:3A:A6:3A:52:91:5C:DF:19:1D Authority key identifier: FE:E9:FD:D4:B0:E8:31:31:88:A0:89:F7:A8:7F:B7:D0:15:32:53:88 Certificate issuer: /CN=A918C673/serialNumber=FEE9FDD4B0E8313188A089F7A87FB7D015325388 Certificate serial: 068C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_un91LDoMTGIoIn3qH-30BUyU4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft Manifest number: 0686 Signing time: Fri 08 Aug 2025 22:43:47 +0000 Manifest this update: Fri 08 Aug 2025 22:43:46 +0000 Manifest next update: Fri 15 Aug 2025 22:43:46 +0000 Files and hashes: 1: _un91LDoMTGIoIn3qH-30BUyU4g.crl (hash: 5SK+p59vPuPxr4O2ZCUI8eT1C8MX05XAInGUiUa16jg=) 2: 5803FE3880CD11EB83E8035FC4F9AE02.roa (hash: NgLitwn58Hzqdz8jFqI6KtHUu7WwdEhFCnvHC3Qm5IU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.crl rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_un91LDoMTGIoIn3qH-30BUyU4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1676 (0x68c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C673, serialNumber=FEE9FDD4B0E8313188A089F7A87FB7D015325388 Validity Not Before: Aug 8 22:43:46 2025 GMT Not After : Aug 15 22:43:46 2025 GMT Subject: CN=68967da2-34cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f1:a3:69:a3:81:9c:3f:32:eb:22:f5:1a:ee: de:0c:ff:81:09:61:90:f6:44:5e:cf:4d:8f:c2:cf: 0e:35:e6:3b:0e:a7:81:a6:07:18:5c:cf:c4:f2:ea: 6e:d7:aa:16:45:93:b5:54:7c:18:84:0f:b1:0e:bc: 3f:8e:30:16:48:b1:31:d1:ae:4f:02:49:7c:0f:89: 32:28:2a:5e:c4:12:a4:6d:48:c1:c8:cc:99:47:6e: 32:ab:74:25:7b:0a:a9:4f:b9:54:30:db:21:5d:2f: c8:ad:e5:89:e4:05:48:fa:fe:24:d5:4c:9b:8e:41: a4:44:38:01:db:12:66:b8:f7:76:06:88:b9:4f:a1: 4f:c8:95:c1:7d:d6:a2:78:44:fb:b2:b0:dc:f3:cd: 47:dd:85:b8:db:4b:db:63:b4:30:d8:96:a0:16:dc: e1:bd:51:c6:09:0a:e4:de:d5:98:3e:c8:29:b7:12: 46:76:3a:00:8d:32:fb:31:6f:5f:1d:c0:7a:22:a8: d9:b8:f7:2e:21:5c:f8:02:9a:e4:13:a7:c4:09:42: 0c:29:c3:63:de:fb:91:42:dd:9f:c6:9b:72:58:96: f4:63:88:bc:39:8a:5b:b9:dd:42:78:5b:7a:1c:4c: 6b:de:bd:36:67:3f:d8:a3:ab:10:0b:28:12:f9:35: 81:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F7:32:71:F7:EB:6F:E8:A4:FE:30:3A:A6:3A:52:91:5C:DF:19:1D X509v3 Authority Key Identifier: keyid:FE:E9:FD:D4:B0:E8:31:31:88:A0:89:F7:A8:7F:B7:D0:15:32:53:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_un91LDoMTGIoIn3qH-30BUyU4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:eb:da:13:a7:d8:44:bf:32:12:4e:49:e9:58:ea:80:d0:81: c1:9e:73:ec:89:72:aa:57:16:a5:50:03:70:c8:8d:a6:bc:2b: 23:32:86:01:15:c7:24:6d:98:96:9f:9a:e8:43:40:30:ca:73: 93:64:3f:32:a1:0f:cc:0a:24:5b:f8:63:50:d8:68:07:a4:a2: a5:cb:0a:e0:c5:71:fe:88:fd:f1:ce:d4:37:cf:22:dc:ce:80: ad:c2:5e:b0:2e:db:be:06:8f:a3:3d:18:b3:1c:37:81:1b:97: 0a:7e:cd:f3:89:30:b6:0e:88:c0:df:d5:ae:8f:4a:63:a3:46: e3:57:1f:85:44:ba:cd:7b:28:d8:b5:ae:be:7e:6e:81:f6:37: 3b:7a:af:02:02:94:3c:13:c4:90:fe:1c:45:f4:a5:59:d4:88: 5a:66:52:1f:f6:a6:d2:50:d1:21:31:0e:d9:3d:eb:cb:65:b2: a5:93:34:47:65:b8:8a:20:61:4d:61:b0:e9:77:a9:a7:81:e8: 77:3f:b2:42:a4:54:40:dd:81:0b:c1:97:04:0a:a0:a8:c6:91: 5a:8e:c2:44:d7:f8:07:b6:01:d4:2c:67:12:6b:90:03:6f:5d: 42:fe:e4:af:30:17:8f:8f:11:94:0f:85:42:2d:a7:ed:7a:ef: a1:5e:4a:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NzMxMTAvBgNVBAUTKEZFRTlGREQ0QjBFODMxMzE4OEEwODlGN0E4N0ZCN0Qw MTUzMjUzODgwHhcNMjUwODA4MjI0MzQ2WhcNMjUwODE1MjI0MzQ2WjAYMRYwFAYD VQQDEw02ODk2N2RhMi0zNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/GjaaOBnD8y6yL1Gu7eDP+BCWGQ9kRez02Pws8ONeY7DqeBpgcYXM/E8upu 16oWRZO1VHwYhA+xDrw/jjAWSLEx0a5PAkl8D4kyKCpexBKkbUjByMyZR24yq3Ql ewqpT7lUMNshXS/IreWJ5AVI+v4k1UybjkGkRDgB2xJmuPd2Boi5T6FPyJXBfdai eET7srDc881H3YW420vbY7Qw2JagFtzhvVHGCQrk3tWYPsgptxJGdjoAjTL7MW9f HcB6IqjZuPcuIVz4AprkE6fECUIMKcNj3vuRQt2fxptyWJb0Y4i8OYpbud1CeFt6 HExr3r02Zz/Yo6sQCygS+TWBAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr3MnH3 62/opP4wOqY6UpFc3xkdMB8GA1UdIwQYMBaAFP7p/dSw6DExiKCJ96h/t9AVMlOI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY3My9BRTVGQjEwMjgw Q0IxMUVCQjc3QUI4NURDNEY5QUUwMi9fdW45MUxEb01UR0lvSW4zcUgtMzBCVXlV NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL191bjkxTERvTVRHSW9JbjNxSC0zMEJVeVU0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY3My9BRTVGQjEwMjgwQ0IxMUVCQjc3QUI4NURDNEY5QUUwMi9fdW45MUxEb01U R0lvSW4zcUgtMzBCVXlVNGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC169oTp9hEvzISTknpWOqA0IHBnnPsiXKqVxalUANwyI2mvCsjMoYB FcckbZiWn5roQ0AwynOTZD8yoQ/MCiRb+GNQ2GgHpKKlywrgxXH+iP3xztQ3zyLc zoCtwl6wLtu+Bo+jPRizHDeBG5cKfs3ziTC2DojA39Wuj0pjo0bjVx+FRLrNeyjY ta6+fm6B9jc7eq8CApQ8E8SQ/hxF9KVZ1IhaZlIf9qbSUNEhMQ7ZPevLZbKlkzRH ZbiKIGFNYbDpd6mngeh3P7JCpFRA3YELwZcECqCoxpFajsJE1/gHtgHULGcSa5AD b11C/uSvMBePjxGUD4VCLafteu+hXkrY -----END CERTIFICATE-----Generated at Sun Aug 10 04:55:35 2025 by rpki-client