$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft File: A6PIek8tglWUdvcc-u5ST_URNXk.mft (raw, json) Hash identifier: voeSEq8jT3ZzCUEn+Ft02IF/VP+NfH6eSBbcLb3XVQE= Subject key identifier: 44:68:42:95:30:AD:E3:91:D4:D8:74:35:6D:CF:22:3B:11:CF:E6:3C Authority key identifier: 03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 Certificate issuer: /CN=A91A4CAD/serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Certificate serial: 0B20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft Manifest number: 0B18 Signing time: Wed 06 Aug 2025 19:33:57 +0000 Manifest this update: Wed 06 Aug 2025 19:33:56 +0000 Manifest next update: Wed 13 Aug 2025 19:33:56 +0000 Files and hashes: 1: A6PIek8tglWUdvcc-u5ST_URNXk.crl (hash: DryfCiHlvh6Vkb4eza1W0XAEZk7x9zvUfvh3qbShNFQ=) 2: 6553D6106C2B11EA87ED1160C4F9AE02.roa (hash: BZiEWDD0IL9/iTmQj4cpibFzXusaM/aZuvYBDfGJDK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2848 (0xb20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CAD, serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Validity Not Before: Aug 6 19:33:56 2025 GMT Not After : Aug 13 19:33:56 2025 GMT Subject: CN=6893ae25-21d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:56:c6:3a:53:fc:08:80:64:6a:90:4f:2c: 46:91:e3:d9:7b:c2:92:b0:8d:e0:c1:c1:d2:f6:31: 3f:41:de:b9:0c:ec:8f:c7:70:fb:1e:e2:11:bb:03: ff:92:e9:d2:be:4a:80:ca:34:22:57:f6:9f:e5:fb: a9:e2:fd:d0:55:42:c3:79:af:c6:ce:68:4b:04:bf: d1:8c:3a:83:6b:0d:38:66:fa:3c:4c:09:3d:e8:7d: a9:7d:d5:1c:38:dc:a6:79:56:41:29:7e:7f:68:67: 93:40:63:49:72:02:ee:60:52:01:7f:c9:ba:07:88: 25:d8:e6:eb:84:a8:68:c6:71:38:39:c5:f4:61:d2: f2:c2:b8:5e:31:b4:88:71:28:e8:57:4f:fb:b0:04: 6a:2b:77:1a:f7:0f:43:32:f1:b1:d6:e8:ee:fa:3d: 21:eb:97:11:e5:c3:ce:e1:20:20:99:0f:52:87:5c: 62:e9:f6:fa:44:70:85:3e:ff:8d:6c:fb:cb:5b:9a: c5:c7:10:90:84:fb:a6:12:c1:61:1b:39:6b:e8:f3: db:f7:8f:15:28:e7:d0:6b:3d:2a:c5:fc:02:24:94: 9e:13:f1:ed:64:d7:2c:7c:a0:18:de:c3:54:c0:e9: 36:85:44:fc:68:e7:e7:5f:13:d1:d7:22:78:60:24: 7e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:68:42:95:30:AD:E3:91:D4:D8:74:35:6D:CF:22:3B:11:CF:E6:3C X509v3 Authority Key Identifier: keyid:03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:7d:27:80:52:3a:a2:b6:ac:29:66:9e:1a:9d:2d:28:e0:49: 1c:2a:fb:90:1c:62:b5:37:5a:05:52:57:35:87:32:0c:e4:48: d1:ef:df:59:89:29:fb:44:2c:16:91:14:2b:5a:5a:31:b8:64: f0:90:23:73:82:13:cc:31:19:81:8a:ce:69:63:5a:f7:3f:0b: 5a:46:c2:52:63:e0:28:f6:3f:2a:dc:eb:2d:da:6c:7b:f4:33: ee:cd:b6:47:2c:5f:dd:43:22:b4:35:15:74:91:14:38:0d:49: 2b:0a:2d:71:1e:4b:77:a7:1e:65:ae:a3:05:42:94:db:d8:a7: 46:3e:2a:65:eb:81:3e:59:fe:b5:5d:ed:54:f1:49:6a:98:96: 08:1d:ce:19:33:76:ec:c8:9e:ea:74:f6:06:fb:6e:9e:95:2a: 99:2c:11:62:e7:2a:a1:6e:24:df:d6:a7:c0:ec:30:84:11:2b: 1e:9d:18:b2:9d:eb:51:0f:de:5e:64:e7:f9:0c:06:18:bf:f7: 0e:54:c3:4c:87:ed:93:35:18:7a:3e:b3:b1:10:16:9b:4d:49: 1a:90:f8:64:ab:5b:7b:99:39:33:e2:2b:12:47:db:92:c7:57: e2:7d:0e:86:56:ea:78:60:d3:11:cd:d6:ac:44:6e:e7:51:a4: 4e:d9:5d:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDQUQxMTAvBgNVBAUTKDAzQTNDODdBNEYyRDgyNTU5NDc2RjcxQ0ZBRUU1MjRG RjUxMTM1NzkwHhcNMjUwODA2MTkzMzU2WhcNMjUwODEzMTkzMzU2WjAYMRYwFAYD VQQDEw02ODkzYWUyNS0yMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbtWxjpT/AiAZGqQTyxGkePZe8KSsI3gwcHS9jE/Qd65DOyPx3D7HuIRuwP/ kunSvkqAyjQiV/af5fup4v3QVULDea/GzmhLBL/RjDqDaw04Zvo8TAk96H2pfdUc ONymeVZBKX5/aGeTQGNJcgLuYFIBf8m6B4gl2ObrhKhoxnE4OcX0YdLywrheMbSI cSjoV0/7sARqK3ca9w9DMvGx1uju+j0h65cR5cPO4SAgmQ9Sh1xi6fb6RHCFPv+N bPvLW5rFxxCQhPumEsFhGzlr6PPb948VKOfQaz0qxfwCJJSeE/HtZNcsfKAY3sNU wOk2hUT8aOfnXxPR1yJ4YCR+qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERoQpUw reOR1Nh0NW3PIjsRz+Y8MB8GA1UdIwQYMBaAFAOjyHpPLYJVlHb3HPruUk/1ETV5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNENBRC85RkQ5N0EwODQ1 QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGdsV1VkdmNjLXU1U1RfVVJO WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2UEllazh0Z2xXVWR2Y2MtdTVTVF9VUk5Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NENBRC85RkQ5N0EwODQ1QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGds V1VkdmNjLXU1U1RfVVJOWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbfSeAUjqitqwpZp4anS0o4EkcKvuQHGK1N1oFUlc1hzIM5EjR799Z iSn7RCwWkRQrWloxuGTwkCNzghPMMRmBis5pY1r3PwtaRsJSY+Ao9j8q3Ost2mx7 9DPuzbZHLF/dQyK0NRV0kRQ4DUkrCi1xHkt3px5lrqMFQpTb2KdGPipl64E+Wf61 Xe1U8UlqmJYIHc4ZM3bsyJ7qdPYG+26elSqZLBFi5yqhbiTf1qfA7DCEESsenRiy netRD95eZOf5DAYYv/cOVMNMh+2TNRh6PrOxEBabTUkakPhkq1t7mTkz4isSR9uS x1fifQ6GVup4YNMRzdasRG7nUaRO2V0G -----END CERTIFICATE-----Generated at Fri Aug 8 10:18:14 2025 by rpki-client