$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: Q2ner6LPt7D/39yKCYlsmIs+tFAQ5NTA464rR9d/b/U= Subject key identifier: DE:D3:47:98:82:97:B2:C2:14:1F:07:11:45:6C:90:27:E0:CF:78:C8 Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0857 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 084D Signing time: Wed 06 Aug 2025 21:01:50 +0000 Manifest this update: Wed 06 Aug 2025 21:01:49 +0000 Manifest next update: Wed 13 Aug 2025 21:01:49 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: IwOlf7+1HON7ym59fOwy9QjQi9Rv8AFWRLlkMMWCNe4=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: xQNJE/wFi8JMz2ss0ss1yj9BAf/VPU6rBNzmi8uV9UI=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 21:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2135 (0x857) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Aug 6 21:01:49 2025 GMT Not After : Aug 13 21:01:49 2025 GMT Subject: CN=6893c2bd-01b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:74:a1:07:95:be:c1:49:ea:08:fa:53:10:6b: 1b:3c:33:4c:48:7a:f9:4a:15:34:cd:9c:3f:18:64: 16:a2:32:4a:8b:4d:e3:87:78:36:0f:14:5e:ac:8e: cd:c0:3d:1b:5f:aa:88:62:28:8b:00:9d:c8:de:7e: 7c:27:36:ee:6d:72:eb:14:a4:2e:40:53:13:92:a0: 02:5a:03:26:68:98:04:77:81:47:7e:dd:84:e8:c5: db:b3:5e:aa:38:a1:2e:ef:09:8e:04:1d:44:fe:50: e6:39:2a:25:d1:48:a3:28:5d:8d:6e:b4:b6:78:d1: 0f:18:53:09:13:4a:3e:cd:81:d9:6d:12:00:30:2a: be:75:0a:95:9c:ab:ff:0a:69:c2:ff:9b:fb:28:90: 91:6b:6d:ac:9a:37:5b:a2:a6:d6:c8:81:3b:d3:f3: 6a:a2:c3:36:65:cc:75:7a:0a:17:0b:ea:bd:c9:8d: 00:21:73:b5:c9:d4:df:ee:14:94:a6:87:a6:b3:c3: c7:ab:59:7a:ab:ea:28:8f:06:a8:88:53:51:8a:83: 8c:0b:e3:3a:74:c3:bb:bc:4c:8f:1f:24:1f:f7:82: ef:2c:3d:98:0e:59:7c:ac:dc:a4:1d:c4:ea:ea:e9: 4e:1f:5c:81:20:17:7f:19:62:f3:7a:22:af:3e:9a: de:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:D3:47:98:82:97:B2:C2:14:1F:07:11:45:6C:90:27:E0:CF:78:C8 X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:73:a5:38:e8:fd:bb:ca:55:4e:5c:55:9a:43:96:bb:ae:f0: fb:b3:f5:b5:42:75:53:f0:6c:35:09:fd:98:d0:61:96:e5:da: 1a:4c:b4:f9:53:d2:a0:a1:7d:a6:01:b5:33:60:58:af:b3:6d: 37:f5:19:4a:93:fe:80:7e:ce:84:4e:79:ee:1e:c9:9b:9d:2e: 17:82:cb:24:a4:93:41:f0:6c:cb:ab:3e:b4:ff:ab:4b:5d:7d: ca:bd:30:bd:ad:d5:58:93:73:54:7a:57:b2:62:98:98:7f:8e: cb:83:01:44:11:ee:7a:58:a0:ad:43:62:18:2a:65:3b:83:4e: 7f:4b:99:25:c3:d9:60:3e:9c:e6:d7:43:bc:1b:3d:25:30:70: ee:b0:74:af:ea:93:81:b6:71:d0:06:e3:4e:f1:b5:c0:72:a9: 15:06:91:c9:0e:4a:52:8b:00:65:3b:7a:75:0f:c0:4a:f4:6c: df:7a:53:d6:5d:e6:70:14:26:8e:7a:03:60:59:27:dc:06:ff: dc:e0:ce:09:11:84:32:07:6e:dd:a7:11:59:e0:37:ac:93:0d: 82:a0:7e:cc:c0:7d:62:ce:55:0a:2e:7c:d3:31:7c:be:92:c6: a7:9d:d0:71:39:29:2e:87:14:0b:a8:69:41:ad:f0:17:69:d3: 45:06:0f:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUwODA2MjEwMTQ5WhcNMjUwODEzMjEwMTQ5WjAYMRYwFAYD VQQDEw02ODkzYzJiZC0wMWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HShB5W+wUnqCPpTEGsbPDNMSHr5ShU0zZw/GGQWojJKi03jh3g2DxRerI7N wD0bX6qIYiiLAJ3I3n58JzbubXLrFKQuQFMTkqACWgMmaJgEd4FHft2E6MXbs16q OKEu7wmOBB1E/lDmOSol0UijKF2NbrS2eNEPGFMJE0o+zYHZbRIAMCq+dQqVnKv/ CmnC/5v7KJCRa22smjdboqbWyIE70/NqosM2Zcx1egoXC+q9yY0AIXO1ydTf7hSU poems8PHq1l6q+oojwaoiFNRioOMC+M6dMO7vEyPHyQf94LvLD2YDll8rNykHcTq 6ulOH1yBIBd/GWLzeiKvPprehQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7TR5iC l7LCFB8HEUVskCfgz3jIMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjc6U46P27ylVOXFWaQ5a7rvD7s/W1QnVT8Gw1Cf2Y0GGW5doaTLT5 U9KgoX2mAbUzYFivs2039RlKk/6Afs6ETnnuHsmbnS4XgsskpJNB8GzLqz60/6tL XX3KvTC9rdVYk3NUeleyYpiYf47LgwFEEe56WKCtQ2IYKmU7g05/S5klw9lgPpzm 10O8Gz0lMHDusHSv6pOBtnHQBuNO8bXAcqkVBpHJDkpSiwBlO3p1D8BK9GzfelPW XeZwFCaOegNgWSfcBv/c4M4JEYQyB27dpxFZ4Deskw2CoH7MwH1izlUKLnzTMXy+ ksanndBxOSkuhxQLqGlBrfAXadNFBg+/ -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:54 2025 by rpki-client