$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: 9pluiLS2btzVbrloTyl8pq1AANLmOz/YppdQZC2b1HE= Subject key identifier: E1:FA:7C:99:D4:44:80:E9:E8:F8:4F:7B:15:3E:D6:1C:25:67:0E:DF Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 020D Signing time: Sat 09 Aug 2025 02:35:48 +0000 Manifest this update: Sat 09 Aug 2025 02:35:47 +0000 Manifest next update: Sat 16 Aug 2025 02:35:47 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: 6RC6gcCf4PeG5pYfE0GGngAxDbSdJpQ5KmngNUDaGhU=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ezVuFYLFE5nPFWmkFpb3o3Zc1r5CWJVIlBRAQm/fLig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0, serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Aug 9 02:35:47 2025 GMT Not After : Aug 16 02:35:47 2025 GMT Subject: CN=6896b403-7d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:12:20:b1:ae:fc:b6:87:8b:46:80:0d:ad:7d: cf:1f:2e:95:b2:9c:3d:7e:bc:3b:93:8d:27:9f:51: 05:6e:fc:07:90:fe:34:43:41:c2:1f:94:9e:9c:bf: df:e2:5e:df:1f:0b:f4:bf:86:1c:3b:c0:f5:be:16: 19:36:b4:e8:cb:66:fe:35:55:d7:24:f5:8a:9d:b2: 13:70:55:90:95:86:4e:15:b6:56:d3:82:09:fc:51: 41:42:20:89:6c:96:40:92:cf:67:81:80:f1:04:97: 2c:10:50:af:54:ac:a6:3b:6f:34:68:67:e4:85:90: 89:4e:36:27:a3:91:47:6a:46:f6:b6:e4:d5:27:22: fd:dc:f2:7d:b1:56:6b:93:3f:95:be:49:e1:db:7e: f3:15:36:8a:aa:53:f2:5d:6b:3a:bb:9e:67:36:e7: 17:d7:4b:52:f5:54:77:9c:d2:3e:e9:de:bf:f5:79: 7e:bb:22:be:76:34:0c:a2:ae:53:c5:6b:7a:ed:98: 97:ad:4f:09:1e:8b:2c:2d:b1:b5:62:de:d3:ec:f1: 8b:1b:7a:74:63:02:ef:7b:37:bf:ae:90:4f:6b:74: 3a:2e:5a:cb:55:a1:99:34:27:c2:c1:02:58:09:a3: a0:c1:7b:2d:38:9a:72:b0:e4:6f:31:04:f6:af:de: c7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FA:7C:99:D4:44:80:E9:E8:F8:4F:7B:15:3E:D6:1C:25:67:0E:DF X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:83:74:61:13:f9:d6:c4:c3:9c:c0:a3:29:7f:1d:49:86:d5: 13:07:d5:0f:94:d8:0b:31:e1:e8:8c:b1:49:70:d6:7f:f7:f4: c2:84:ab:b1:ad:e9:df:25:83:81:ca:3a:d2:ca:83:7d:da:97: 87:ed:9f:25:01:28:5f:3f:e4:f1:38:0f:c7:b2:ab:9c:c2:fa: 25:a2:67:6c:3d:b7:02:5f:48:3a:68:27:40:6a:e1:c1:bf:19: 95:ce:e1:8e:dc:3f:47:7d:04:30:b9:8e:77:42:76:60:1f:ea: 8b:aa:54:01:6c:ee:1d:f9:45:8b:49:95:a7:e6:95:1d:a1:7a: 06:85:dc:e0:2a:84:5c:89:d5:fe:eb:0f:8f:76:16:cb:93:95: 0a:8a:ab:b4:03:28:af:8c:9f:fe:ec:be:96:46:aa:f2:68:7b: 87:6e:7b:51:01:08:28:3b:61:de:42:d5:ee:7c:e2:93:f6:9e: b5:fc:c5:5b:3f:33:62:25:c9:7b:75:41:fa:3e:69:3b:82:02: e9:b3:fa:1e:4c:80:22:09:a9:f4:6f:47:bb:ae:c5:ac:5c:7f: 3d:c3:09:d4:c8:24:ac:b6:99:3a:c2:be:65:50:22:fc:8c:75: 04:16:a3:62:e3:12:a5:a3:8c:2a:ae:4b:b3:81:d1:5d:6c:d0: 12:2d:f0:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjUwODA5MDIzNTQ3WhcNMjUwODE2MDIzNTQ3WjAYMRYwFAYD VQQDEw02ODk2YjQwMy03ZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hIgsa78toeLRoANrX3PHy6Vspw9frw7k40nn1EFbvwHkP40Q0HCH5SenL/f 4l7fHwv0v4YcO8D1vhYZNrToy2b+NVXXJPWKnbITcFWQlYZOFbZW04IJ/FFBQiCJ bJZAks9ngYDxBJcsEFCvVKymO280aGfkhZCJTjYno5FHakb2tuTVJyL93PJ9sVZr kz+Vvknh237zFTaKqlPyXWs6u55nNucX10tS9VR3nNI+6d6/9Xl+uyK+djQMoq5T xWt67ZiXrU8JHossLbG1Yt7T7PGLG3p0YwLveze/rpBPa3Q6LlrLVaGZNCfCwQJY CaOgwXstOJpysORvMQT2r97HFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOH6fJnU RIDp6PhPexU+1hwlZw7fMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGg3RhE/nWxMOcwKMpfx1JhtUTB9UPlNgLMeHojLFJcNZ/9/TChKux renfJYOByjrSyoN92peH7Z8lAShfP+TxOA/HsqucwvolomdsPbcCX0g6aCdAauHB vxmVzuGO3D9HfQQwuY53QnZgH+qLqlQBbO4d+UWLSZWn5pUdoXoGhdzgKoRcidX+ 6w+PdhbLk5UKiqu0AyivjJ/+7L6WRqryaHuHbntRAQgoO2HeQtXufOKT9p61/MVb PzNiJcl7dUH6Pmk7ggLps/oeTIAiCan0b0e7rsWsXH89wwnUyCSstpk6wr5lUCL8 jHUEFqNi4xKlo4wqrkuzgdFdbNASLfBi -----END CERTIFICATE-----Generated at Sun Aug 10 15:59:40 2025 by rpki-client