$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: iNwWdOoovQPa/dVfNSZotiH5693l209FHf2hV+F+QQE= Subject key identifier: A3:0E:CA:86:96:C7:EE:D3:CA:F6:8F:18:22:FB:E2:9D:F4:14:C3:1A Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 029E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 0298 Signing time: Sat 09 Aug 2025 02:08:15 +0000 Manifest this update: Sat 09 Aug 2025 02:08:15 +0000 Manifest next update: Sat 16 Aug 2025 02:08:15 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: cBCjXLWJARAdHXFmmgnmSxXt/gZGAN41P7x8achlb+E=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Aug 9 02:08:15 2025 GMT Not After : Aug 16 02:08:15 2025 GMT Subject: CN=6896ad8f-5286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:70:aa:8f:2c:06:2a:b6:1c:c7:d2:d8:bf:3e: 3c:9d:06:41:b3:c5:a9:a7:54:27:7b:2d:54:67:c0: e4:10:9b:68:38:e0:43:78:1a:27:2d:3d:ce:c7:0f: dc:8f:f3:1d:16:f3:79:f6:6e:8b:6c:cb:8d:f6:97: 64:7d:99:ca:40:43:a6:58:95:8c:4a:c2:72:fe:d3: fd:0b:fd:85:d8:64:4e:f6:1c:ed:be:29:49:a3:06: 09:ff:77:57:9f:2f:db:b9:a4:b7:2a:b7:f0:27:66: 72:00:3c:95:f4:b4:0a:c4:0e:b0:bd:67:ec:f8:e2: 78:42:88:b0:ab:2d:c0:85:fd:86:26:49:64:4b:76: 57:e5:66:0a:75:cb:22:80:01:33:37:e7:dd:c0:79: 1f:b5:05:05:fa:c3:ae:07:78:ae:a8:56:62:13:cc: 01:1c:ef:8f:6d:3d:04:04:a0:49:84:f1:78:86:bc: c6:74:b9:72:18:fb:bb:76:a9:08:5e:ae:b3:86:d1: 4a:d3:de:e1:27:1f:55:bc:b8:7a:27:0c:d0:59:f4: 04:e4:d3:18:8c:25:72:88:4b:ac:2e:27:a1:b9:a1: 3e:16:79:1a:c1:46:cc:27:94:c6:da:7a:b8:62:31: 56:c9:30:d4:dd:8b:35:0f:6e:51:4d:63:05:0f:f1: 1a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:0E:CA:86:96:C7:EE:D3:CA:F6:8F:18:22:FB:E2:9D:F4:14:C3:1A X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ac:f0:1a:28:30:0a:91:0a:92:54:81:e8:22:e6:51:29:a6: e5:ac:78:8a:1d:54:91:e9:35:93:3a:2f:99:6c:b8:96:e7:c8: 9a:14:7d:e7:8f:df:d5:06:11:79:da:4c:13:4b:e3:6f:09:64: 2b:77:23:ae:83:1b:7b:a1:95:e5:53:c5:f0:37:37:37:de:db: 7c:92:3d:74:43:66:9b:39:ea:12:a9:4d:b5:81:e3:a5:ca:15: 38:0f:2f:94:48:62:62:d8:a6:5c:98:80:74:08:7b:ed:7a:b0: 6b:c0:59:ff:80:0c:b5:62:f6:78:a1:7f:7d:0a:ac:90:51:bc: 6b:56:a0:1d:f0:71:21:1e:ba:f6:5f:8f:f9:5a:b8:f0:a9:d9: 08:1a:1c:9f:6f:a3:44:6a:c7:e2:5b:bd:66:bf:09:52:6f:3f: 6c:34:c7:ff:e7:18:2e:70:39:5c:2a:9d:97:fd:1a:56:8a:6e: d5:00:01:a8:f7:79:02:23:af:c5:78:d0:21:b6:74:d3:4f:e9: 8a:ff:be:ac:a9:2b:f8:cc:3c:bc:d5:4d:13:29:eb:06:03:71: 82:7a:1e:11:39:25:cb:95:41:b6:10:7b:e2:3c:0c:d2:7d:89: 23:b5:d3:a0:07:f0:93:8f:58:8c:2e:6b:6a:db:b3:0f:fa:f8: 87:45:55:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwODA5MDIwODE1WhcNMjUwODE2MDIwODE1WjAYMRYwFAYD VQQDEw02ODk2YWQ4Zi01Mjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3CqjywGKrYcx9LYvz48nQZBs8Wpp1Qney1UZ8DkEJtoOOBDeBonLT3Oxw/c j/MdFvN59m6LbMuN9pdkfZnKQEOmWJWMSsJy/tP9C/2F2GRO9hztvilJowYJ/3dX ny/buaS3KrfwJ2ZyADyV9LQKxA6wvWfs+OJ4Qoiwqy3Ahf2GJklkS3ZX5WYKdcsi gAEzN+fdwHkftQUF+sOuB3iuqFZiE8wBHO+PbT0EBKBJhPF4hrzGdLlyGPu7dqkI Xq6zhtFK097hJx9VvLh6JwzQWfQE5NMYjCVyiEusLiehuaE+FnkawUbMJ5TG2nq4 YjFWyTDU3Ys1D25RTWMFD/EavQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMOyoaW x+7TyvaPGCL74p30FMMaMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgrPAaKDAKkQqSVIHoIuZRKablrHiKHVSR6TWTOi+ZbLiW58iaFH3n j9/VBhF52kwTS+NvCWQrdyOugxt7oZXlU8XwNzc33tt8kj10Q2abOeoSqU21geOl yhU4Dy+USGJi2KZcmIB0CHvterBrwFn/gAy1YvZ4oX99CqyQUbxrVqAd8HEhHrr2 X4/5WrjwqdkIGhyfb6NEasfiW71mvwlSbz9sNMf/5xgucDlcKp2X/RpWim7VAAGo 93kCI6/FeNAhtnTTT+mK/76sqSv4zDy81U0TKesGA3GCeh4ROSXLlUG2EHviPAzS fYkjtdOgB/CTj1iMLmtq27MP+viHRVWd -----END CERTIFICATE-----Generated at Sun Aug 10 19:02:29 2025 by rpki-client