$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: 06k5dmGMiC6Jr3XjDjHG6VVYTdqbq01NPBMndzmeBWU= Subject key identifier: A4:95:90:10:F3:40:AC:70:F7:4D:2F:B0:91:0A:1F:5D:33:C2:44:05 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 0872 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 086A Signing time: Fri 08 Aug 2025 21:00:50 +0000 Manifest this update: Fri 08 Aug 2025 21:00:50 +0000 Manifest next update: Fri 15 Aug 2025 21:00:50 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: um5Qxi5ZDY3M68mWFteXsq+6a+UjXsmL6/FzA5uWoaA=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: zvHITej7x6G5n4QCQAElY7CsJ+bvYQTRcFwTwkacxFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2162 (0x872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Aug 8 21:00:50 2025 GMT Not After : Aug 15 21:00:50 2025 GMT Subject: CN=68966582-5af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:4a:87:5f:49:eb:a3:74:d2:05:7e:7f:9d:44: 5f:62:e0:08:d7:17:90:2f:d0:cf:85:ca:70:2c:7a: 2c:65:c3:4a:72:65:a6:ae:a1:bd:28:99:22:1c:e9: 26:60:32:65:83:69:02:aa:39:a4:7f:9f:24:fd:8d: ab:38:1c:25:6e:33:cd:d6:bd:60:fc:ff:ef:68:e4: c5:d7:3a:de:62:a5:a6:1e:ab:b7:49:e0:85:30:6c: b9:4f:09:bb:63:a3:a7:2b:fc:5c:8d:68:66:2b:ba: 80:ea:78:b2:a1:e0:96:5f:fe:bd:e3:82:40:a1:bc: e6:fa:5e:5b:57:49:c8:9e:08:b2:06:ac:24:fa:bc: fc:28:ae:6b:23:99:44:06:e3:4d:39:1c:12:93:c8: 2f:55:1b:27:7f:6d:a3:dd:ba:1e:2f:22:b9:0e:49: 24:d4:8c:b6:45:f7:9d:be:a4:0a:1a:48:b1:a9:a4: 5c:96:91:9b:b5:02:48:3f:ad:7f:fb:34:63:f6:d8: 64:4f:f8:12:6c:f3:e3:00:d9:29:7f:92:24:f3:c1: d2:f9:06:d9:2a:58:8b:87:d4:cd:2b:b2:41:df:ec: b8:3a:7f:44:fe:42:96:16:f2:dc:44:de:14:88:f1: 3c:90:8e:1b:e7:92:50:43:e3:a1:2e:3b:92:1f:b9: 57:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:95:90:10:F3:40:AC:70:F7:4D:2F:B0:91:0A:1F:5D:33:C2:44:05 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:60:00:af:18:2e:76:45:af:36:8d:a0:b4:16:90:8a:73:21: af:46:0f:8d:19:c5:fd:c2:7b:03:59:dd:83:b2:26:b2:7e:6d: 3f:52:7f:bc:3e:eb:d5:7d:4a:c7:51:e2:da:42:f9:4c:4a:10: 11:f4:a3:85:cb:c9:33:71:62:ec:70:21:49:0d:f4:b8:02:d4: c3:95:9c:7c:c8:72:45:6d:bb:e1:7c:e9:f9:b4:f3:d5:b6:2a: dd:03:39:ef:3e:ce:c1:2e:0a:75:78:b1:ee:01:dd:f3:86:08: 1d:97:68:ca:3b:72:6b:bf:e1:a3:3a:32:20:d6:09:fd:51:17: 4c:a7:6d:97:2f:f8:7a:07:fe:36:18:17:32:e3:dd:07:69:f9: e3:3b:00:aa:8a:dc:86:d6:1a:da:b0:f0:cc:bf:6d:ef:8b:e5: 80:cf:f7:7d:8b:9b:12:98:88:dd:57:f5:9f:3c:c9:49:b8:86: 8b:4a:47:de:23:78:de:41:41:2e:43:f0:f9:db:b0:55:ec:74: e4:e0:a0:ac:9f:5a:23:10:2c:e3:51:5c:b4:14:51:45:d6:21: b5:54:62:55:29:4e:95:2f:bb:6d:ee:41:36:00:01:5e:19:cc: 4d:31:d3:a4:98:fd:6b:ff:7f:72:3a:02:94:f8:ee:98:5c:18: d4:78:cd:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUwODA4MjEwMDUwWhcNMjUwODE1MjEwMDUwWjAYMRYwFAYD VQQDEw02ODk2NjU4Mi01YWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA80qHX0nro3TSBX5/nURfYuAI1xeQL9DPhcpwLHosZcNKcmWmrqG9KJkiHOkm YDJlg2kCqjmkf58k/Y2rOBwlbjPN1r1g/P/vaOTF1zreYqWmHqu3SeCFMGy5Twm7 Y6OnK/xcjWhmK7qA6niyoeCWX/6944JAobzm+l5bV0nIngiyBqwk+rz8KK5rI5lE BuNNORwSk8gvVRsnf22j3boeLyK5Dkkk1Iy2RfedvqQKGkixqaRclpGbtQJIP61/ +zRj9thkT/gSbPPjANkpf5Ik88HS+QbZKliLh9TNK7JB3+y4On9E/kKWFvLcRN4U iPE8kI4b55JQQ+OhLjuSH7lXcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSVkBDz QKxw900vsJEKH10zwkQFMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/YACvGC52Ra82jaC0FpCKcyGvRg+NGcX9wnsDWd2Dsiayfm0/Un+8 PuvVfUrHUeLaQvlMShAR9KOFy8kzcWLscCFJDfS4AtTDlZx8yHJFbbvhfOn5tPPV tirdAznvPs7BLgp1eLHuAd3zhggdl2jKO3Jrv+GjOjIg1gn9URdMp22XL/h6B/42 GBcy490HafnjOwCqityG1hrasPDMv23vi+WAz/d9i5sSmIjdV/WfPMlJuIaLSkfe I3jeQUEuQ/D527BV7HTk4KCsn1ojECzjUVy0FFFF1iG1VGJVKU6VL7tt7kE2AAFe GcxNMdOkmP1r/39yOgKU+O6YXBjUeM1E -----END CERTIFICATE-----Generated at Sun Aug 10 20:02:50 2025 by rpki-client