$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: bDuXRgVZMxaUuU16tdI8pTngT2bEkW6EhVENpWeKpg0= Subject key identifier: 91:D8:E8:7D:16:7F:BC:9B:F8:A5:01:36:CE:06:EE:16:D4:29:73:D2 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2DE4 Signing time: Sun 10 Aug 2025 15:26:59 +0000 Manifest this update: Sun 10 Aug 2025 15:26:58 +0000 Manifest next update: Sun 17 Aug 2025 15:26:58 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: 5G892DPWSoGVGqlXKcJy94xgQPxi4qmEryR93YoyzvA=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: Ge8zFlpjpqEtuKQN0h56H1Urr1O0D0HMkBD9jJfCPmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11772 (0x2dfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Aug 10 15:26:58 2025 GMT Not After : Aug 17 15:26:58 2025 GMT Subject: CN=6898ba42-c8cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e1:c1:32:23:c1:b2:0c:a3:f9:4d:a3:d6:00: 8c:46:07:c1:a1:56:1e:5f:0e:25:4b:ac:79:ee:96: 7e:35:ab:d7:ec:0e:d0:a1:3c:3b:41:ce:ac:6e:5b: eb:7b:f7:a4:bf:94:62:92:3a:a0:ba:42:c6:b2:ba: 2a:76:f9:fa:94:2a:7b:98:89:d6:b9:7f:ea:a7:1a: cb:12:1c:5b:0e:9f:54:04:f5:a4:aa:b8:63:c9:e5: 69:d9:08:9f:50:d1:53:6b:4b:d8:ed:59:d5:f1:00: d9:e7:59:b4:93:cd:f4:43:12:09:f7:60:d0:5a:98: cc:1b:83:04:53:b4:7f:bc:46:75:69:0e:3b:ad:67: 59:5a:d0:7a:31:d2:47:1b:01:cc:54:47:8e:5b:6a: 0d:82:bc:85:d8:44:79:c6:5c:48:0c:04:82:53:88: 8f:62:ae:68:36:e0:d4:b2:7e:c7:35:cd:2b:60:2f: 87:a3:c3:e4:c6:8f:36:a3:c2:93:2d:eb:c6:45:6d: 8c:8e:29:e8:f5:56:33:65:e5:28:43:76:18:a6:a8: b6:8d:bd:67:b7:e4:3c:24:7a:04:d0:e3:41:17:22: bc:9b:2f:f9:6a:5b:66:fb:68:99:cc:fe:00:2b:b1: 9e:75:b6:bc:64:cd:f5:05:d8:39:29:bf:cf:54:3d: b0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D8:E8:7D:16:7F:BC:9B:F8:A5:01:36:CE:06:EE:16:D4:29:73:D2 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f4:cd:f2:87:fd:1b:ab:d0:8f:cc:54:78:16:33:5b:04:12: 25:a8:96:f3:33:78:09:f6:8f:c5:36:0e:21:f9:18:04:a5:81: 90:38:b1:d0:a8:bc:07:e5:0b:7e:50:69:11:a7:86:2c:78:07: 2f:e2:9c:44:b3:f5:c9:02:e9:7f:2c:b3:7f:d4:4a:45:b6:41: 34:f1:6f:5a:b4:18:d4:4f:7d:64:8e:4c:83:73:10:34:43:ba: 03:ca:62:b2:0c:40:71:3e:4b:42:89:70:5c:45:0f:da:0f:21: 9c:bb:9e:f0:9e:ad:0d:f5:68:4f:e1:1b:ed:c3:fa:7b:1f:42: f9:7c:da:3b:c2:1d:77:8b:a6:9a:c1:c2:12:8f:71:bc:79:1a: 04:f8:18:68:79:00:f9:a3:1b:4a:a8:4e:f9:fd:d1:20:8f:3c: 86:57:97:2f:ab:3c:e7:71:96:7a:08:74:98:33:09:45:ea:0c: 3c:ca:ed:f0:9e:cf:5b:01:8f:32:eb:a1:09:34:dc:aa:ad:03: 5a:77:d4:01:2b:c2:d5:db:da:37:c3:46:d8:e5:a5:5c:5c:01: 47:00:45:a5:6c:c8:90:8c:08:6e:a7:a3:4c:e5:27:14:45:de: 88:b4:17:d6:0f:f8:94:7e:9a:fc:20:66:0c:95:04:12:c9:a3: 75:87:27:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUwODEwMTUyNjU4WhcNMjUwODE3MTUyNjU4WjAYMRYwFAYD VQQDEw02ODk4YmE0Mi1jOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eHBMiPBsgyj+U2j1gCMRgfBoVYeXw4lS6x57pZ+NavX7A7QoTw7Qc6sblvr e/ekv5RikjqgukLGsroqdvn6lCp7mInWuX/qpxrLEhxbDp9UBPWkqrhjyeVp2Qif UNFTa0vY7VnV8QDZ51m0k830QxIJ92DQWpjMG4MEU7R/vEZ1aQ47rWdZWtB6MdJH GwHMVEeOW2oNgryF2ER5xlxIDASCU4iPYq5oNuDUsn7HNc0rYC+Ho8Pkxo82o8KT LevGRW2Mjino9VYzZeUoQ3YYpqi2jb1nt+Q8JHoE0ONBFyK8my/5altm+2iZzP4A K7Gedba8ZM31Bdg5Kb/PVD2wcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHY6H0W f7yb+KUBNs4G7hbUKXPSMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj9M3yh/0bq9CPzFR4FjNbBBIlqJbzM3gJ9o/FNg4h+RgEpYGQOLHQ qLwH5Qt+UGkRp4YseAcv4pxEs/XJAul/LLN/1EpFtkE08W9atBjUT31kjkyDcxA0 Q7oDymKyDEBxPktCiXBcRQ/aDyGcu57wnq0N9WhP4Rvtw/p7H0L5fNo7wh13i6aa wcISj3G8eRoE+BhoeQD5oxtKqE75/dEgjzyGV5cvqzzncZZ6CHSYMwlF6gw8yu3w ns9bAY8y66EJNNyqrQNad9QBK8LV29o3w0bY5aVcXAFHAEWlbMiQjAhup6NM5ScU Rd6ItBfWD/iUfpr8IGYMlQQSyaN1hyfp -----END CERTIFICATE-----Generated at Sun Aug 10 19:00:13 2025 by rpki-client