$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: DAfZzxjfAmNpTmjI+07E2OOlbVVF6OBzoYmOvQXpqkI= Subject key identifier: 9E:A5:F5:1C:2F:49:B6:95:71:9E:0E:E5:39:33:24:22:05:80:13:9F Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 0508 Signing time: Sun 10 Aug 2025 23:45:39 +0000 Manifest this update: Sun 10 Aug 2025 23:45:39 +0000 Manifest next update: Sun 17 Aug 2025 23:45:38 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: hK2i9korgGyZCZ+LaaOiyOdz0YqbMZQsTbmZeeA0Vbg=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 8CERVYgkltWj4G95QfjHRAzhZOs/2MofXT3PQbZreQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 Aug 2025 23:45:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Aug 10 23:45:39 2025 GMT Not After : Aug 17 23:45:38 2025 GMT Subject: CN=68992f23-bba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3b:f7:c2:5b:96:fc:d6:07:aa:9c:eb:85:5c: de:62:3d:02:4d:57:40:cc:a9:11:2b:ac:14:89:e7: 4f:df:bf:c3:5f:0e:b8:ed:73:5b:a5:43:6e:b0:36: b9:21:e2:6a:e9:63:6c:07:01:4c:a3:e7:9c:c0:bf: 5d:83:de:f2:ac:6d:96:7e:9d:f6:95:34:bf:2d:2e: 39:db:58:3f:64:bf:21:9d:48:c4:91:d7:92:c9:73: 7e:af:ae:e7:65:4d:ec:57:25:f4:e7:02:c5:bf:77: 89:a5:b5:14:c6:59:58:d3:e8:6e:47:c4:8b:7d:02: 25:d0:a1:39:e4:33:10:23:8d:bd:af:1e:e3:00:35: de:90:77:0a:51:0f:ed:a6:ac:cf:fe:7f:2f:50:f1: 75:a1:ad:6a:f0:4d:c1:69:28:18:e0:20:3b:56:4f: 07:fb:59:00:bf:ec:58:8f:f5:9e:d1:95:fc:18:68: 3f:8c:17:91:6c:b4:b3:c7:62:a7:72:6e:8e:1b:ec: 30:e9:94:04:64:ae:f4:c0:b9:39:25:d2:f2:01:b0: b0:43:4b:c6:0d:6e:a7:f9:cc:40:2b:19:fc:f8:e3: 96:24:3b:c0:99:ec:bd:db:73:0a:fe:68:a9:c9:94: bc:e5:9d:7c:f4:4a:6a:cd:dd:e4:91:78:b5:e2:81: 66:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A5:F5:1C:2F:49:B6:95:71:9E:0E:E5:39:33:24:22:05:80:13:9F X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:6c:2d:be:f9:ca:ca:ea:58:11:be:cd:42:1a:c9:f0:b8:c9: 26:7d:61:dc:6a:5f:e0:63:80:95:f0:8c:c8:b9:a8:2a:63:ed: f5:25:89:c1:5f:78:f3:7f:55:35:3e:87:70:23:33:17:f9:80: 6f:f5:fb:52:46:64:c4:91:71:ad:19:50:66:be:e4:b3:aa:af: 36:86:6f:f1:b9:97:82:93:3c:a5:5f:ea:94:75:30:8d:76:fe: 73:e7:64:56:b2:a2:31:16:8f:3b:24:5e:46:f3:02:c5:df:ce: f8:81:10:0f:04:17:77:f2:fe:e9:28:65:f3:49:20:c8:f3:28: 35:c2:50:e4:3c:50:a0:20:22:d1:d9:7f:c4:72:83:c0:f7:46: b7:51:b3:77:fa:17:5b:87:bc:fe:4c:f8:db:c4:6d:c2:da:b2: 87:f4:1a:c7:11:48:29:9d:d6:17:06:02:2f:5f:8e:11:88:de: 82:11:e1:f1:fc:9a:b7:c4:c9:f8:a7:47:a6:fb:8d:e6:ea:22: 9d:0d:f0:61:ee:ce:60:79:21:12:aa:ae:71:67:ac:00:7c:26: 22:3e:1e:82:2d:7d:58:58:d3:50:db:8f:4c:94:d6:52:6d:f9: 8b:33:ba:53:2b:7b:82:2c:33:31:28:d7:de:59:73:67:e5:ea: fb:b5:37:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUwODEwMjM0NTM5WhcNMjUwODE3MjM0NTM4WjAYMRYwFAYD VQQDEw02ODk5MmYyMy1iYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjv3wluW/NYHqpzrhVzeYj0CTVdAzKkRK6wUiedP37/DXw647XNbpUNusDa5 IeJq6WNsBwFMo+ecwL9dg97yrG2Wfp32lTS/LS4521g/ZL8hnUjEkdeSyXN+r67n ZU3sVyX05wLFv3eJpbUUxllY0+huR8SLfQIl0KE55DMQI429rx7jADXekHcKUQ/t pqzP/n8vUPF1oa1q8E3BaSgY4CA7Vk8H+1kAv+xYj/We0ZX8GGg/jBeRbLSzx2Kn cm6OG+ww6ZQEZK70wLk5JdLyAbCwQ0vGDW6n+cxAKxn8+OOWJDvAmey923MK/mip yZS85Z189Epqzd3kkXi14oFmkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6l9Rwv SbaVcZ4O5TkzJCIFgBOfMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNbC2++crK6lgRvs1CGsnwuMkmfWHcal/gY4CV8IzIuagqY+31JYnB X3jzf1U1PodwIzMX+YBv9ftSRmTEkXGtGVBmvuSzqq82hm/xuZeCkzylX+qUdTCN dv5z52RWsqIxFo87JF5G8wLF3874gRAPBBd38v7pKGXzSSDI8yg1wlDkPFCgICLR 2X/EcoPA90a3UbN3+hdbh7z+TPjbxG3C2rKH9BrHEUgpndYXBgIvX44RiN6CEeHx /Jq3xMn4p0em+43m6iKdDfBh7s5geSESqq5xZ6wAfCYiPh6CLX1YWNNQ249MlNZS bfmLM7pTK3uCLDMxKNfeWXNn5er7tTe/ -----END CERTIFICATE-----Generated at Tue Aug 12 19:11:16 2025 by rpki-client