$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft File: _vLBxOoJZEd1FMGqlG5sQXeNBr8.mft (raw, json) Hash identifier: KTGvsMehGZTd0BwX+kq6IbwMK/uHC9Ynp/jBymCNnC0= Subject key identifier: DA:12:1D:76:39:13:77:DF:DC:0A:25:E7:90:90:29:88:AF:8B:66:86 Authority key identifier: FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF Certificate issuer: /CN=A91D298D/serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft Manifest number: 0851 Signing time: Sun 10 Aug 2025 20:58:34 +0000 Manifest this update: Sun 10 Aug 2025 20:58:33 +0000 Manifest next update: Sun 17 Aug 2025 20:58:33 +0000 Files and hashes: 1: _vLBxOoJZEd1FMGqlG5sQXeNBr8.crl (hash: Vpc8q2QJB1JwVM+Mj7XWm0Gbh+/ndGs8cfccp3v7z/g=) 2: 65519ACC506C11EC99354984C4F9AE02.roa (hash: FSKLxu00ctg24+HmZkC2VPQWpobiDfHHaUN+7Y4NQZA=) 3: 01BB1B8E7C0411EFB0D29158C4F9AE02.roa (hash: KU0OYgNotYA3UtDO5hlxYlQJ813PAymWu54BIJPXlUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=FEF2C1C4EA0964477514C1AA946E6C41778D06BF Validity Not Before: Aug 10 20:58:33 2025 GMT Not After : Aug 17 20:58:33 2025 GMT Subject: CN=689907fa-4273 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:00:7b:d6:e0:77:d9:de:66:f7:ab:98:cd:e1: fa:8e:aa:54:fa:c7:a1:c0:0a:d9:f2:8a:4f:4f:d3: 7b:7a:c9:3d:5b:68:4f:56:d4:37:fc:d2:1f:73:d3: 46:c3:58:a8:d4:55:81:6f:4b:de:b9:c7:f2:ec:02: b6:26:ce:e8:83:f1:b6:33:e6:d3:e9:71:2e:33:11: 61:a5:07:c3:8d:fb:3d:3a:06:a4:97:90:ce:b8:3e: 02:fc:69:b0:c9:ef:a4:50:2e:ea:1a:c6:d7:23:cb: dc:e9:99:bd:d6:58:0b:c4:77:c4:3c:fa:f9:8b:f6: b6:60:da:0e:f5:ec:c1:75:77:19:b1:84:46:85:39: 34:48:a8:f3:6e:41:02:c0:56:01:c6:77:16:30:55: 64:63:90:18:75:b0:46:2e:b1:49:cc:e5:3a:ab:67: ec:75:2f:4f:60:69:3a:80:2c:ce:03:e5:8b:3f:99: 11:16:8f:86:db:e6:73:b9:15:3d:4d:6c:65:2c:f9: e0:f7:bf:90:97:52:21:c6:04:25:93:40:90:12:d6: 97:52:2a:79:89:12:03:52:da:f3:b1:7f:84:0e:fe: 4d:7f:a8:08:f7:06:02:a3:25:de:f1:f6:c6:78:96: 2b:23:66:66:f2:d8:f2:e7:3f:e9:e8:18:41:13:04: a5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:12:1D:76:39:13:77:DF:DC:0A:25:E7:90:90:29:88:AF:8B:66:86 X509v3 Authority Key Identifier: keyid:FE:F2:C1:C4:EA:09:64:47:75:14:C1:AA:94:6E:6C:41:77:8D:06:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_vLBxOoJZEd1FMGqlG5sQXeNBr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/337A6432F1A611EAB95C0E2FC4F9AE02/_vLBxOoJZEd1FMGqlG5sQXeNBr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:8e:63:df:f6:15:2b:78:ba:db:b7:6c:b8:65:a6:12:00:15: e9:6c:10:86:d6:e3:42:46:7a:ea:52:57:e3:07:88:45:3b:8b: 59:3a:45:8c:39:a9:a7:cc:34:83:24:60:e0:af:68:59:d5:61: a8:fa:bf:f7:7d:84:2d:3a:bd:38:ba:65:99:f0:ce:36:cc:b5: a2:c4:58:d0:34:37:6b:15:cc:44:8c:92:42:3f:d8:de:00:95: ca:99:4a:45:68:31:90:78:9c:05:7e:33:cd:59:de:3c:ea:dd: 1b:ec:09:b1:76:14:4d:59:33:21:92:a1:ef:1e:ae:04:c4:78: d8:ab:9c:68:fd:e5:94:3d:ef:08:bd:49:50:fe:1e:57:47:3a: f3:06:f3:1e:9c:12:f0:b6:34:d5:ed:9f:d9:bc:92:f1:f8:f8: 8b:cc:c4:fe:9a:4c:dc:91:35:ef:a9:47:28:d2:e5:4a:91:cb: ab:e9:f5:47:66:29:d2:8f:2d:ac:41:b2:e6:98:de:6b:11:58: e8:bf:19:29:f5:48:c5:5d:71:c4:f0:bd:7f:f6:9d:87:57:ae: bb:74:86:af:89:2e:6d:f6:55:7b:a4:c2:07:34:2e:4e:95:fe: f2:55:6c:f1:3e:f5:97:b7:c8:b3:39:33:92:fe:eb:a5:b4:d7: aa:8a:f0:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKEZFRjJDMUM0RUEwOTY0NDc3NTE0QzFBQTk0NkU2QzQx Nzc4RDA2QkYwHhcNMjUwODEwMjA1ODMzWhcNMjUwODE3MjA1ODMzWjAYMRYwFAYD VQQDEw02ODk5MDdmYS00MjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAB71uB32d5m96uYzeH6jqpU+sehwArZ8opPT9N7esk9W2hPVtQ3/NIfc9NG w1io1FWBb0veucfy7AK2Js7og/G2M+bT6XEuMxFhpQfDjfs9Ogakl5DOuD4C/Gmw ye+kUC7qGsbXI8vc6Zm91lgLxHfEPPr5i/a2YNoO9ezBdXcZsYRGhTk0SKjzbkEC wFYBxncWMFVkY5AYdbBGLrFJzOU6q2fsdS9PYGk6gCzOA+WLP5kRFo+G2+ZzuRU9 TWxlLPng97+Ql1IhxgQlk0CQEtaXUip5iRIDUtrzsX+EDv5Nf6gI9wYCoyXe8fbG eJYrI2Zm8tjy5z/p6BhBEwSlxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoSHXY5 E3ff3Aol55CQKYivi2aGMB8GA1UdIwQYMBaAFP7ywcTqCWRHdRTBqpRubEF3jQa/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8zMzdBNjQzMkYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9fdkxCeE9vSlpFZDFGTUdxbEc1c1FYZU5C cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL192TEJ4T29KWkVkMUZNR3FsRzVzUVhlTkJyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8zMzdBNjQzMkYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9fdkxCeE9vSlpF ZDFGTUdxbEc1c1FYZU5CcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByjmPf9hUreLrbt2y4ZaYSABXpbBCG1uNCRnrqUlfjB4hFO4tZOkWM OamnzDSDJGDgr2hZ1WGo+r/3fYQtOr04umWZ8M42zLWixFjQNDdrFcxEjJJCP9je AJXKmUpFaDGQeJwFfjPNWd486t0b7AmxdhRNWTMhkqHvHq4ExHjYq5xo/eWUPe8I vUlQ/h5XRzrzBvMenBLwtjTV7Z/ZvJLx+PiLzMT+mkzckTXvqUco0uVKkcur6fVH ZinSjy2sQbLmmN5rEVjovxkp9UjFXXHE8L1/9p2HV667dIaviS5t9lV7pMIHNC5O lf7yVWzxPvWXt8izOTOS/uultNeqivA0 -----END CERTIFICATE-----Generated at Mon Aug 11 10:30:43 2025 by rpki-client