$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: qHdHbS2NWLpX4klPxiQpgQd8ZkdROzrvJUh/Of7LCMs= Subject key identifier: D0:70:8D:28:85:3C:8F:AC:CB:49:AD:2B:E5:EF:A4:1C:A7:E9:1D:18 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 01FF Signing time: Sat 09 Aug 2025 02:49:06 +0000 Manifest this update: Sat 09 Aug 2025 02:49:06 +0000 Manifest next update: Sat 16 Aug 2025 02:49:06 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: WjLuHWuX0vRyQGswTJycMNiEkB3ZswoL4IxKOaJVV5k=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Aug 9 02:49:06 2025 GMT Not After : Aug 16 02:49:06 2025 GMT Subject: CN=6896b722-a7f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bb:73:c1:6c:cb:90:97:cd:92:73:15:81:cc: 8c:69:6c:26:cd:fe:5a:20:2b:d6:0d:4c:29:0e:84: 16:53:a5:02:9e:82:97:52:78:fd:00:c2:a6:47:1d: cf:38:8e:bb:07:c2:4d:6e:32:6a:1c:3c:22:1c:11: d9:57:6c:57:42:fa:13:58:82:7e:f7:9c:c4:9b:08: 67:fd:e0:53:ca:a2:87:ab:c2:b4:bf:5e:98:16:b8: 54:55:a4:97:96:1e:55:e5:ab:f8:3d:ca:4e:bf:ee: 79:53:f9:e1:5b:ac:fe:cc:d3:67:ec:c8:f8:6f:b5: 5b:f6:0b:a3:82:4f:eb:9a:0a:24:a6:21:f9:64:aa: 42:6a:58:8e:20:ef:3e:11:0a:aa:d8:f8:a5:02:48: 27:0d:a4:39:2c:2f:a8:21:21:d4:28:95:d4:af:96: 78:e0:50:cf:af:a0:3e:b8:7e:34:dd:14:c1:91:be: e5:35:4d:2b:57:1e:57:ce:17:c0:6d:67:23:33:05: ed:6c:fe:8e:9d:90:81:da:37:8a:60:ed:64:4c:e4: e5:f2:4e:03:43:b8:86:fe:67:59:55:88:bb:1a:30: 74:a3:fe:2e:88:41:14:7c:1e:bf:de:ad:65:04:88: 09:34:94:98:be:f2:92:fb:ca:8b:63:6b:90:1d:39: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:70:8D:28:85:3C:8F:AC:CB:49:AD:2B:E5:EF:A4:1C:A7:E9:1D:18 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:62:e5:77:d1:ea:e1:ce:a3:dd:bd:33:07:a2:d7:b8:26:c7: f9:f9:3a:ce:59:95:c5:08:ba:6c:2b:be:b9:1a:e5:52:cc:da: 68:79:f0:35:08:75:73:6e:2b:91:8e:66:ac:24:1e:d3:3a:c3: 18:4d:d5:72:d4:3e:82:92:a4:85:17:cd:7c:28:c1:17:2d:61: 16:8b:7a:53:34:63:8c:08:ef:7e:48:2e:91:65:ca:aa:04:37: 77:1c:8b:6b:44:3b:0c:50:52:81:21:e3:f6:be:a4:d0:fa:07: 2a:0b:65:9e:d6:c2:f4:20:76:fb:40:a5:b3:09:08:36:7e:30: 0f:3d:d1:ec:0c:ba:2e:9f:6b:38:8f:cc:c7:67:3a:2e:f1:91: 58:fe:2b:9c:c5:70:c4:4e:15:92:a2:22:d7:56:6f:17:49:f9: a1:32:8d:18:24:4e:2a:62:1d:9b:4a:10:7d:94:31:a3:71:d9: 2b:dd:70:8f:82:ce:13:8c:7d:71:e3:ae:c7:7d:1e:41:e3:72: 4d:d0:8e:b6:60:03:ce:c5:40:9f:81:8d:ae:51:c7:53:4c:ff: 47:90:80:1e:f5:43:df:b9:26:d1:e6:57:a8:86:cc:d6:63:be: 91:2b:04:27:ca:02:78:63:ed:73:bf:80:e3:3d:b5:e1:3b:a9: f4:6c:a0:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUwODA5MDI0OTA2WhcNMjUwODE2MDI0OTA2WjAYMRYwFAYD VQQDEw02ODk2YjcyMi1hN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7tzwWzLkJfNknMVgcyMaWwmzf5aICvWDUwpDoQWU6UCnoKXUnj9AMKmRx3P OI67B8JNbjJqHDwiHBHZV2xXQvoTWIJ+95zEmwhn/eBTyqKHq8K0v16YFrhUVaSX lh5V5av4PcpOv+55U/nhW6z+zNNn7Mj4b7Vb9gujgk/rmgokpiH5ZKpCaliOIO8+ EQqq2PilAkgnDaQ5LC+oISHUKJXUr5Z44FDPr6A+uH403RTBkb7lNU0rVx5XzhfA bWcjMwXtbP6OnZCB2jeKYO1kTOTl8k4DQ7iG/mdZVYi7GjB0o/4uiEEUfB6/3q1l BIgJNJSYvvKS+8qLY2uQHTntfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBwjSiF PI+sy0mtK+XvpByn6R0YMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMYuV30erhzqPdvTMHote4Jsf5+TrOWZXFCLpsK765GuVSzNpoefA1 CHVzbiuRjmasJB7TOsMYTdVy1D6CkqSFF818KMEXLWEWi3pTNGOMCO9+SC6RZcqq BDd3HItrRDsMUFKBIeP2vqTQ+gcqC2We1sL0IHb7QKWzCQg2fjAPPdHsDLoun2s4 j8zHZzou8ZFY/iucxXDEThWSoiLXVm8XSfmhMo0YJE4qYh2bShB9lDGjcdkr3XCP gs4TjH1x467HfR5B43JN0I62YAPOxUCfgY2uUcdTTP9HkIAe9UPfuSbR5leohszW Y76RKwQnygJ4Y+1zv4DjPbXhO6n0bKAI -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:54 2025 by rpki-client