$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 0n2qClbVw7xK8aPGNm5Mhsa4+KeuKgyw1F2EUDoWw+Y= Subject key identifier: 39:4E:F8:09:EA:61:58:13:06:27:E1:6B:70:91:34:26:C6:BC:FA:2B Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 369E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 369D Signing time: Sun 10 Aug 2025 14:33:11 +0000 Manifest this update: Sun 10 Aug 2025 14:33:11 +0000 Manifest next update: Sun 17 Aug 2025 14:33:11 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: mhgfpExAIisBIMznF5IFSdVDf3AZ03tHV3w4ZtRhjUg=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13982 (0x369e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Aug 10 14:33:11 2025 GMT Not After : Aug 17 14:33:11 2025 GMT Subject: CN=6898ada7-6fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:cd:31:d8:32:1b:90:83:8b:31:2b:d6:3a:4d: ba:3f:d5:6e:0d:20:21:e4:15:9a:7d:f8:0b:94:60: d0:9e:50:89:aa:4b:a4:65:41:d3:2e:bc:3d:6b:b7: 0b:8d:1e:3d:13:02:49:f0:f6:76:f3:75:21:a3:81: 6b:e2:55:a9:91:f3:87:40:d6:44:39:3f:14:2b:18: 3b:b6:e4:fe:4b:b4:f4:2b:a6:30:6c:8e:6b:27:61: b2:eb:aa:11:41:e9:5b:02:79:55:5b:34:25:35:aa: b5:f0:4f:4a:28:ed:d8:cc:62:47:8c:8d:c9:fa:bb: e4:34:8f:87:8c:30:ca:6e:d0:cc:8c:e1:0e:1f:91: 39:4a:33:ad:bf:79:86:18:ad:40:87:1d:61:11:96: 59:1c:8a:43:64:1f:f7:f4:66:42:db:25:c8:b0:7e: 45:3d:32:92:ab:a4:23:db:21:ff:3c:5b:16:33:8e: e4:46:e2:67:43:4a:ec:3d:e8:3a:c8:42:fc:61:7e: b5:4a:07:5b:1f:7e:77:c9:4e:74:df:15:69:60:fe: 1b:4a:6f:12:1c:ed:62:fb:c4:02:dd:85:7b:e7:d5: 92:83:73:53:56:d1:8f:c2:31:58:2d:61:52:7b:a1: cd:89:dc:de:8f:90:74:45:ca:d4:78:1e:da:d0:71: d6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:4E:F8:09:EA:61:58:13:06:27:E1:6B:70:91:34:26:C6:BC:FA:2B X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:16:3e:84:db:31:b7:b7:35:e4:93:2e:3a:90:8c:3a:50:30: 3f:0a:16:2b:85:ad:a7:5d:01:ac:cc:a2:98:bb:c3:82:96:bc: be:50:c6:22:ae:8f:d3:e4:46:7c:23:34:8b:68:31:3a:f2:e8: b6:f2:6d:2d:c3:44:36:1f:1d:cd:d9:93:0a:8c:79:b2:7a:13: 68:bd:d5:aa:1a:e6:70:06:fc:6a:73:51:78:26:cc:59:a3:52: 1a:60:79:52:a5:9a:58:71:45:2c:33:7c:4f:96:78:4b:af:26: 18:d6:1e:72:36:a3:aa:97:39:39:99:c7:97:e2:a5:ba:4f:9f: 27:7e:f1:38:40:61:4e:d1:f7:d9:0b:e2:b3:0b:f3:ed:bc:33: a2:4b:19:56:94:34:01:bf:1a:8b:a5:78:66:e5:a8:04:87:74: 7d:ac:8e:a0:ae:db:0b:4d:7e:15:65:52:00:a5:46:5f:aa:cc: 54:f8:ef:c1:b9:26:b6:ae:5c:43:c2:e1:98:4d:ee:8e:b7:87: ec:c2:9f:63:5d:ce:1b:68:ad:1e:44:a5:04:84:f4:fd:0f:4b: 80:5a:65:40:69:d6:c0:97:af:e3:48:d4:71:51:0d:8f:03:54: 0e:02:9a:9b:6f:72:9f:b6:7a:41:b0:de:2c:cb:29:6d:ff:50: 19:3e:e4:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwODEwMTQzMzExWhcNMjUwODE3MTQzMzExWjAYMRYwFAYD VQQDEw02ODk4YWRhNy02ZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnc0x2DIbkIOLMSvWOk26P9VuDSAh5BWaffgLlGDQnlCJqkukZUHTLrw9a7cL jR49EwJJ8PZ283Uho4Fr4lWpkfOHQNZEOT8UKxg7tuT+S7T0K6YwbI5rJ2Gy66oR QelbAnlVWzQlNaq18E9KKO3YzGJHjI3J+rvkNI+HjDDKbtDMjOEOH5E5SjOtv3mG GK1Ahx1hEZZZHIpDZB/39GZC2yXIsH5FPTKSq6Qj2yH/PFsWM47kRuJnQ0rsPeg6 yEL8YX61SgdbH353yU503xVpYP4bSm8SHO1i+8QC3YV759WSg3NTVtGPwjFYLWFS e6HNidzej5B0RcrUeB7a0HHWcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlO+Anq YVgTBifha3CRNCbGvPorMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFFj6E2zG3tzXkky46kIw6UDA/ChYrha2nXQGszKKYu8OClry+UMYi ro/T5EZ8IzSLaDE68ui28m0tw0Q2Hx3N2ZMKjHmyehNovdWqGuZwBvxqc1F4JsxZ o1IaYHlSpZpYcUUsM3xPlnhLryYY1h5yNqOqlzk5mceX4qW6T58nfvE4QGFO0ffZ C+KzC/PtvDOiSxlWlDQBvxqLpXhm5agEh3R9rI6grtsLTX4VZVIApUZfqsxU+O/B uSa2rlxDwuGYTe6Ot4fswp9jXc4baK0eRKUEhPT9D0uAWmVAadbAl6/jSNRxUQ2P A1QOApqbb3KftnpBsN4syylt/1AZPuRy -----END CERTIFICATE-----Generated at Mon Aug 11 06:15:12 2025 by rpki-client