$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: XFAldY9hYMW06w0SKjEDq4GNsXMsn7eoGz2+LepiuEc= Subject key identifier: 86:90:29:07:D0:46:5C:EE:90:5D:CD:DF:47:84:D2:14:6B:0E:DD:3A Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BA1 Signing time: Sun 10 Aug 2025 18:59:21 +0000 Manifest this update: Sun 10 Aug 2025 18:59:20 +0000 Manifest next update: Sun 17 Aug 2025 18:59:20 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: jOBnyY/x9zjWqHQLLgxYyqbt5hdJnrw3vCBpuDtASa4=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2991 (0xbaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Aug 10 18:59:20 2025 GMT Not After : Aug 17 18:59:20 2025 GMT Subject: CN=6898ec09-8693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:83:fe:5b:ca:02:67:67:2a:61:ed:b9:8c:bf: 12:51:e7:65:e9:ca:e8:01:1d:17:e9:50:6f:ab:5b: 41:0e:f8:78:93:8c:2d:75:dd:6b:54:cf:83:e4:37: d4:f2:37:07:2c:a0:af:03:22:41:3b:27:5e:7b:e2: 2b:d4:51:c6:46:d8:f3:3a:68:dd:40:ee:48:61:a0: cd:3f:77:64:b3:cf:01:ad:cd:83:f1:e5:20:c3:05: 99:14:d2:3b:d0:06:fc:a9:86:83:bf:0f:6e:f7:22: 36:4f:cc:50:d0:48:06:d7:8e:e9:e7:e9:52:d3:27: c9:c9:9f:28:7c:4e:10:dc:8a:15:6c:5a:da:59:db: 52:eb:f6:57:b7:3c:e3:63:7a:5e:d7:ec:6b:07:05: 82:c0:c2:07:93:5b:d3:7b:c7:e1:cd:02:be:73:b2: 8e:23:77:4a:d3:41:71:7a:f7:7c:0f:ec:30:44:31: ca:25:e8:a7:ff:dd:5e:a0:86:f1:86:38:25:66:eb: f3:80:3b:ef:b7:ec:45:96:44:a3:92:70:e8:24:59: f3:60:9d:75:1d:b2:ac:16:f0:f5:e8:d5:c3:29:9a: b2:21:4a:dd:0d:89:ef:5c:55:19:ab:bc:22:d0:c1: 3d:e5:00:5d:ac:2b:77:f9:92:f4:6c:55:92:9b:5f: 04:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:90:29:07:D0:46:5C:EE:90:5D:CD:DF:47:84:D2:14:6B:0E:DD:3A X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:8f:6a:22:62:73:a1:1a:d5:8e:1b:56:42:55:b0:56:ab:ea: d4:58:ec:37:1b:a7:6a:1c:73:ad:73:e0:ab:37:59:82:c7:47: a1:35:12:b7:d7:0a:47:07:00:ed:b1:88:1d:5c:c3:25:fb:53: 40:6a:ae:dc:e7:0e:d8:8b:b9:78:90:33:63:f9:79:10:63:aa: 68:49:93:ed:5f:52:ca:70:11:95:bb:cf:e2:49:5b:b2:8f:ad: bf:67:49:62:c0:b1:99:1c:aa:a8:0b:3d:e0:2e:88:6f:42:a8: 79:09:37:ca:e9:62:40:c5:76:25:ce:3b:c6:cf:cf:bd:7b:17: 91:53:3f:c0:a7:f9:9c:99:aa:b0:93:93:b6:b0:d5:0b:70:1c: f8:10:3f:21:56:34:e3:7c:60:fe:1f:36:49:b1:16:42:c3:4e: ca:8c:a9:e5:8c:57:d4:68:d2:01:c3:33:13:8f:38:2f:42:a8: 83:bf:08:b1:da:11:4c:d1:02:66:36:78:fd:36:e3:43:86:d4: c6:2a:20:c8:aa:3a:8e:59:78:4b:63:33:26:48:e8:5f:44:5e: 21:7c:b1:4e:52:4e:af:99:18:d4:c6:13:6c:93:d8:41:f2:15: 36:1b:9e:0b:19:cd:58:6e:a5:f6:df:16:b7:1f:f7:56:36:50: 95:90:a2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUwODEwMTg1OTIwWhcNMjUwODE3MTg1OTIwWjAYMRYwFAYD VQQDEw02ODk4ZWMwOS04NjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YP+W8oCZ2cqYe25jL8SUedl6croAR0X6VBvq1tBDvh4k4wtdd1rVM+D5DfU 8jcHLKCvAyJBOydee+Ir1FHGRtjzOmjdQO5IYaDNP3dks88Brc2D8eUgwwWZFNI7 0Ab8qYaDvw9u9yI2T8xQ0EgG147p5+lS0yfJyZ8ofE4Q3IoVbFraWdtS6/ZXtzzj Y3pe1+xrBwWCwMIHk1vTe8fhzQK+c7KOI3dK00Fxevd8D+wwRDHKJein/91eoIbx hjglZuvzgDvvt+xFlkSjknDoJFnzYJ11HbKsFvD16NXDKZqyIUrdDYnvXFUZq7wi 0ME95QBdrCt3+ZL0bFWSm18ECQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaQKQfQ RlzukF3N30eE0hRrDt06MB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfj2oiYnOhGtWOG1ZCVbBWq+rUWOw3G6dqHHOtc+CrN1mCx0ehNRK3 1wpHBwDtsYgdXMMl+1NAaq7c5w7Yi7l4kDNj+XkQY6poSZPtX1LKcBGVu8/iSVuy j62/Z0liwLGZHKqoCz3gLohvQqh5CTfK6WJAxXYlzjvGz8+9exeRUz/Ap/mcmaqw k5O2sNULcBz4ED8hVjTjfGD+HzZJsRZCw07KjKnljFfUaNIBwzMTjzgvQqiDvwix 2hFM0QJmNnj9NuNDhtTGKiDIqjqOWXhLYzMmSOhfRF4hfLFOUk6vmRjUxhNsk9hB 8hU2G54LGc1YbqX23xa3H/dWNlCVkKIu -----END CERTIFICATE-----Generated at Mon Aug 11 05:58:38 2025 by rpki-client