$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: T0Mrc1qL4jk0sSooa5q3BU8wqxOF9nskeyFfzRZVNAE= Subject key identifier: D2:60:24:FF:B3:60:CC:5E:95:13:23:EE:4A:B9:47:66:E9:E8:37:DB Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 097A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 0935 Signing time: Wed 06 Aug 2025 20:39:46 +0000 Manifest this update: Wed 06 Aug 2025 20:39:45 +0000 Manifest next update: Wed 13 Aug 2025 20:39:45 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: IKqEjFbnN6WjGKaOLCMBwQvv7nxuLkem8Kverrf8M6E=) 2: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 3: A02B90EA479311F0BBFADC27C4F9AE02.roa (hash: FSGba/ksTfUcD5c5nTx4WizNyHeIp3OO4bcFqqjagGE=) 4: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 5: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2426 (0x97a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Aug 6 20:39:45 2025 GMT Not After : Aug 13 20:39:45 2025 GMT Subject: CN=6893bd91-3367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:88:63:6a:17:d4:c6:86:31:02:74:d6:4a:75: 37:c2:f9:90:02:e6:ea:0f:36:ce:6f:15:f3:27:39: 0f:c5:26:a9:6a:5a:85:79:41:4b:fe:72:2a:34:b0: 13:70:8e:f0:5a:2a:16:b7:6b:85:d3:b0:31:a4:c2: 1e:33:28:ed:73:e9:a0:90:fc:b5:5f:2a:39:43:c1: 6c:c1:c0:68:04:7e:0c:a4:68:b0:5b:58:2d:89:39: 9d:d1:28:97:98:80:9a:bf:46:ce:73:b8:ec:45:da: 5c:38:22:ee:d4:14:32:c8:aa:ba:5b:4a:ce:cc:fb: dd:7b:f9:c0:62:88:b0:01:d1:e5:09:be:9a:80:89: cc:0b:68:04:91:cb:6a:98:45:5e:ba:01:65:15:4f: 57:fa:22:f1:cf:57:c3:a8:23:7f:9c:52:a0:d1:5e: 50:6c:2d:9d:7d:ec:cc:02:f3:24:f3:31:1c:56:a9: a2:3b:9b:ec:df:0e:ee:55:01:a8:c9:6a:7c:ad:1e: 1e:b7:ba:b0:91:2d:fe:28:d4:34:95:9d:58:39:6b: e3:c0:a1:d0:be:ed:f7:b6:d6:fd:27:df:c2:b7:43: db:47:e3:e8:ed:81:3d:65:f8:cf:2c:eb:a7:c2:d0: 79:15:93:d9:91:1f:ac:b8:1f:74:b2:24:c8:5d:4f: 58:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:60:24:FF:B3:60:CC:5E:95:13:23:EE:4A:B9:47:66:E9:E8:37:DB X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:85:27:2e:d2:68:55:a3:05:c3:16:79:a5:92:dc:63:0c:5f: 6c:bf:67:aa:d3:9c:47:15:0f:eb:46:02:10:21:d2:80:b5:de: d5:a8:a8:28:76:26:e6:6a:ed:e0:20:44:2e:9e:56:83:1b:29: 8e:4e:bf:28:c6:73:95:d8:a5:63:ae:be:1d:c5:34:9a:56:df: f0:a8:ad:a7:72:bd:0b:81:e6:6d:34:99:ba:0f:6c:ea:f0:2b: 52:40:08:b7:50:7b:3e:8f:4c:64:a8:0c:f4:a9:bc:42:4d:a0: 69:a1:05:aa:29:94:8f:0e:0b:10:97:68:1f:e2:bf:00:ad:dc: e8:67:53:62:1a:30:45:a5:d4:a6:47:29:7b:4d:e6:4c:05:d9: 05:e1:1c:fa:ab:13:b8:4a:95:93:5b:d2:28:26:b6:4b:b9:4b: 42:42:6a:b0:3e:c9:fb:7e:5b:54:85:54:e8:7e:52:05:4f:4b: a8:7d:30:95:0c:e1:51:5c:55:9f:d0:c1:b9:22:0f:5a:e8:c3: 6f:ae:9a:fe:16:bf:95:5f:53:87:08:ce:33:32:c1:1e:9e:66: 30:9e:f5:ef:fa:f3:31:b9:d7:1a:79:62:c0:27:e1:20:7a:2d: b9:c6:e3:8e:6b:82:e9:3a:85:fe:b8:6d:3e:cd:80:4c:89:1b: ee:a1:90:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUwODA2MjAzOTQ1WhcNMjUwODEzMjAzOTQ1WjAYMRYwFAYD VQQDEw02ODkzYmQ5MS0zMzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4hjahfUxoYxAnTWSnU3wvmQAubqDzbObxXzJzkPxSapalqFeUFL/nIqNLAT cI7wWioWt2uF07AxpMIeMyjtc+mgkPy1Xyo5Q8FswcBoBH4MpGiwW1gtiTmd0SiX mICav0bOc7jsRdpcOCLu1BQyyKq6W0rOzPvde/nAYoiwAdHlCb6agInMC2gEkctq mEVeugFlFU9X+iLxz1fDqCN/nFKg0V5QbC2dfezMAvMk8zEcVqmiO5vs3w7uVQGo yWp8rR4et7qwkS3+KNQ0lZ1YOWvjwKHQvu33ttb9J9/Ct0PbR+Po7YE9ZfjPLOun wtB5FZPZkR+suB90siTIXU9YDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJgJP+z YMxelRMj7kq5R2bp6DfbMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzhScu0mhVowXDFnmlktxjDF9sv2eq05xHFQ/rRgIQIdKAtd7VqKgo dibmau3gIEQunlaDGymOTr8oxnOV2KVjrr4dxTSaVt/wqK2ncr0LgeZtNJm6D2zq 8CtSQAi3UHs+j0xkqAz0qbxCTaBpoQWqKZSPDgsQl2gf4r8ArdzoZ1NiGjBFpdSm Ryl7TeZMBdkF4Rz6qxO4SpWTW9IoJrZLuUtCQmqwPsn7fltUhVToflIFT0uofTCV DOFRXFWf0MG5Ig9a6MNvrpr+Fr+VX1OHCM4zMsEenmYwnvXv+vMxudcaeWLAJ+Eg ei25xuOOa4LpOoX+uG0+zYBMiRvuoZAe -----END CERTIFICATE-----Generated at Thu Aug 7 04:35:13 2025 by rpki-client