$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: F4DB+ir/g1rpSg4ZmkAomGNBDvyw/PeW9mmRGRywmo0= Subject key identifier: EB:45:BC:A3:4A:17:39:AD:15:5F:C2:7B:94:14:70:6A:46:3A:6D:EB Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1046 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 1036 Signing time: Sun 10 Aug 2025 14:24:31 +0000 Manifest this update: Sun 10 Aug 2025 14:24:31 +0000 Manifest next update: Sun 17 Aug 2025 14:24:31 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: uj+rsU/IkDf2WHNUhxCAy+UfDLr08cdlDhWY0n0WUUo=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4166 (0x1046) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Aug 10 14:24:31 2025 GMT Not After : Aug 17 14:24:31 2025 GMT Subject: CN=6898ab9f-deeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a1:b2:82:06:fc:eb:dc:35:b6:a9:41:a2:7d: de:05:4d:6d:34:3d:d0:f7:77:d3:86:79:79:51:02: 87:cb:b2:a7:8c:2c:3a:16:00:25:61:4a:23:36:5b: 79:30:75:9b:94:74:7f:58:47:37:39:f2:9b:0c:f6: 8a:aa:cd:4a:78:d7:b0:54:ac:dd:96:02:07:b8:67: 8d:18:0f:8b:20:b8:20:00:75:e2:af:8e:b5:19:6e: 08:11:a0:39:29:36:1b:c9:0c:93:57:15:ec:ca:56: 45:3a:58:ba:c4:df:b7:1f:d1:20:78:df:95:c4:e7: af:c9:d2:39:3b:1e:bc:29:2b:7e:12:10:98:60:99: 6e:1b:88:e8:31:34:e6:3d:8b:02:2a:fd:d3:38:f1: 9b:ce:0b:d1:88:f6:e9:13:b7:16:46:21:46:53:61: 57:72:7c:20:24:be:35:24:a5:ae:53:6d:fd:25:04: e1:7d:ad:91:3a:b8:39:0a:95:cb:16:22:9b:c9:fe: 2d:2d:a0:c6:4c:d0:e0:89:9a:4a:f6:76:e6:44:af: ed:cb:a7:c1:7e:53:50:9b:d9:27:3e:3c:ac:95:19: b2:2b:13:8a:b6:f9:42:59:23:b7:99:f2:0b:7e:b0: 82:e5:98:15:56:c6:5f:1d:dc:4a:e5:2a:28:af:1d: 6e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:45:BC:A3:4A:17:39:AD:15:5F:C2:7B:94:14:70:6A:46:3A:6D:EB X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:bb:90:c1:3a:ed:00:f4:d9:19:e6:0c:dd:25:48:d5:a6:4c: 08:15:b9:fb:e8:c3:1f:39:32:6d:3f:8c:90:ee:14:ff:97:d4: f2:f1:99:97:49:64:a7:95:9b:74:f2:46:54:c7:be:27:0e:fd: ab:fd:60:ea:31:11:fe:4e:50:f4:4f:65:c9:46:b2:9a:cd:a8: 4c:e5:d6:c9:03:81:17:e2:51:29:30:54:5c:6b:8c:63:b2:d8: cf:f9:c6:b8:f5:d8:e3:99:03:2b:aa:d7:b6:14:42:61:b1:ef: 51:e1:81:5b:ef:65:c9:13:a7:51:1a:83:cd:2c:31:53:8c:19: 7b:e1:e7:0f:1b:a1:52:05:d0:e0:50:b5:ec:67:81:ae:66:ed: 2a:ec:39:b0:b4:c5:3c:3a:10:e8:ef:1b:d6:9c:d8:c7:36:c4: 29:9b:86:e1:9e:3c:3a:e3:81:a4:79:14:df:de:56:99:8f:07: 7c:2b:dd:04:3d:ba:d2:13:13:54:59:85:f0:56:bd:fe:08:18: a4:c6:80:81:9b:9c:ee:ff:e1:f0:44:43:30:ae:ae:b3:34:b7: b9:c2:22:0b:33:84:c2:4b:b5:1e:2c:e9:08:a0:f3:2f:85:a2: cc:a3:d7:cb:66:05:f3:63:76:04:b5:85:1a:05:bc:97:fd:74: de:34:f7:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwODEwMTQyNDMxWhcNMjUwODE3MTQyNDMxWjAYMRYwFAYD VQQDEw02ODk4YWI5Zi1kZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qGyggb869w1tqlBon3eBU1tND3Q93fThnl5UQKHy7KnjCw6FgAlYUojNlt5 MHWblHR/WEc3OfKbDPaKqs1KeNewVKzdlgIHuGeNGA+LILggAHXir461GW4IEaA5 KTYbyQyTVxXsylZFOli6xN+3H9EgeN+VxOevydI5Ox68KSt+EhCYYJluG4joMTTm PYsCKv3TOPGbzgvRiPbpE7cWRiFGU2FXcnwgJL41JKWuU239JQThfa2ROrg5CpXL FiKbyf4tLaDGTNDgiZpK9nbmRK/ty6fBflNQm9knPjyslRmyKxOKtvlCWSO3mfIL frCC5ZgVVsZfHdxK5Soorx1u9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtFvKNK FzmtFV/Ce5QUcGpGOm3rMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXu5DBOu0A9NkZ5gzdJUjVpkwIFbn76MMfOTJtP4yQ7hT/l9Ty8ZmX SWSnlZt08kZUx74nDv2r/WDqMRH+TlD0T2XJRrKazahM5dbJA4EX4lEpMFRca4xj stjP+ca49djjmQMrqte2FEJhse9R4YFb72XJE6dRGoPNLDFTjBl74ecPG6FSBdDg ULXsZ4GuZu0q7DmwtMU8OhDo7xvWnNjHNsQpm4bhnjw644GkeRTf3laZjwd8K90E PbrSExNUWYXwVr3+CBikxoCBm5zu/+HwREMwrq6zNLe5wiILM4TCS7UeLOkIoPMv haLMo9fLZgXzY3YEtYUaBbyX/XTeNPdd -----END CERTIFICATE-----Generated at Mon Aug 11 02:04:53 2025 by rpki-client