$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft File: 83YJDdec9qJZrioXAgNy6eYWC7Y.mft (raw, json) Hash identifier: HupT7XsqLTbI21rvRfcbBNblMKC1EI/1hEtFA52fgjg= Subject key identifier: E4:F6:CA:9A:74:0E:A9:F3:2F:55:41:8F:93:C5:80:F2:E9:34:22:0A Authority key identifier: F3:76:09:0D:D7:9C:F6:A2:59:AE:2A:17:02:03:72:E9:E6:16:0B:B6 Certificate issuer: /CN=A91E8EAD/serialNumber=F376090DD79CF6A259AE2A17020372E9E6160BB6 Certificate serial: 09A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft Manifest number: 099E Signing time: Fri 08 Aug 2025 20:23:28 +0000 Manifest this update: Fri 08 Aug 2025 20:23:28 +0000 Manifest next update: Fri 15 Aug 2025 20:23:28 +0000 Files and hashes: 1: 83YJDdec9qJZrioXAgNy6eYWC7Y.crl (hash: BBq/CVCZ9RkadrCSlj4zXN5mWydJfGcVvVnSnTyew84=) 2: 16F7FB3E8FAF11EA96738C46C4F9AE02.roa (hash: FDVevWofhV4OBWCY3mCV+bPsuc2xoyahcfyBo3UC3vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.crl rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2470 (0x9a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8EAD, serialNumber=F376090DD79CF6A259AE2A17020372E9E6160BB6 Validity Not Before: Aug 8 20:23:28 2025 GMT Not After : Aug 15 20:23:28 2025 GMT Subject: CN=68965cc0-dcc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5f:ce:91:8a:a4:05:26:28:22:a1:1a:57:c0: c2:12:d8:09:4a:58:01:e1:73:49:3b:a5:6e:41:28: 30:1d:be:8c:7e:e6:98:c9:3a:16:f3:e9:03:01:bb: 45:65:d9:78:c1:5f:70:51:47:81:6e:98:fb:e5:ea: fe:95:92:22:35:3c:54:3a:97:ec:1f:47:f2:75:fb: 60:5b:3e:f8:53:90:94:88:e0:09:f6:69:be:53:61: 63:46:6e:c5:1b:12:68:ce:27:5d:1f:34:ef:a1:26: e4:35:eb:0e:07:88:8e:d8:e6:74:f3:3f:32:5c:fb: 6f:8e:87:f1:3d:4d:40:53:d0:f2:be:a3:8d:94:1b: 36:81:5d:e1:e7:d5:9a:ec:97:e9:d6:fc:79:f7:13: fe:50:63:9d:a7:29:10:34:91:0d:6f:ff:5e:29:40: 95:5d:6a:f6:e4:15:a5:99:4c:fa:c4:ce:38:3a:70: 33:57:67:a0:39:08:bd:31:27:c4:ff:79:7a:bc:67: 05:a0:e7:9b:3b:57:26:6b:6b:f7:77:ae:05:77:08: 02:65:2f:38:e9:a7:eb:e4:c7:16:5d:93:09:a3:80: 78:e5:13:03:8a:24:42:f4:2f:9e:b1:72:af:33:26: f3:7b:59:b6:54:d5:e3:4b:95:8f:bb:38:d1:7b:39: 51:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:F6:CA:9A:74:0E:A9:F3:2F:55:41:8F:93:C5:80:F2:E9:34:22:0A X509v3 Authority Key Identifier: keyid:F3:76:09:0D:D7:9C:F6:A2:59:AE:2A:17:02:03:72:E9:E6:16:0B:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83YJDdec9qJZrioXAgNy6eYWC7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8EAD/3C24DAD28FAD11EA92D1F642C4F9AE02/83YJDdec9qJZrioXAgNy6eYWC7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:99:3b:be:d0:99:d0:f8:31:a2:92:89:aa:2d:6f:29:7f:2b: d7:40:de:51:4e:4b:ac:5b:a7:e0:9e:32:e8:42:3e:22:15:e8: 27:36:7e:0a:e5:52:8e:8c:18:5f:04:85:03:a6:d4:97:36:fb: fd:9b:a2:10:19:ac:ae:00:8e:ab:46:e7:48:7b:a8:4b:eb:2d: b4:dd:9f:4a:ce:f7:84:f0:f3:d3:51:18:55:b5:6f:88:30:fb: e4:45:a1:d4:c1:15:a5:e4:5f:eb:e5:10:56:c7:fe:58:5a:f7: 3e:dd:89:e8:b5:ee:b3:94:de:43:a0:ab:4c:13:c0:a1:85:be: f7:c1:37:14:6e:18:da:0e:4a:6d:b3:35:d4:4e:58:3d:e0:4a: 35:8b:be:ec:2c:23:e7:e1:ae:0b:41:80:0f:40:ad:ef:1f:03: 39:a3:09:23:0b:23:9b:40:d2:21:af:62:71:dc:bf:a9:41:2d: 03:67:b3:71:6c:68:2e:01:56:74:69:63:37:10:4d:d4:c5:06: 49:aa:1b:c4:3c:81:da:d1:05:86:a4:b7:79:b7:f9:b8:88:8d: 95:07:07:e4:5b:3b:02:65:28:e1:15:da:7f:8c:ef:78:7e:b6: 7c:ec:ce:9e:fd:b3:9c:ba:a8:9d:bb:ee:9c:e0:4a:8c:c1:0b: 57:d7:ae:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThFQUQxMTAvBgNVBAUTKEYzNzYwOTBERDc5Q0Y2QTI1OUFFMkExNzAyMDM3MkU5 RTYxNjBCQjYwHhcNMjUwODA4MjAyMzI4WhcNMjUwODE1MjAyMzI4WjAYMRYwFAYD VQQDEw02ODk2NWNjMC1kY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01/OkYqkBSYoIqEaV8DCEtgJSlgB4XNJO6VuQSgwHb6MfuaYyToW8+kDAbtF Zdl4wV9wUUeBbpj75er+lZIiNTxUOpfsH0fydftgWz74U5CUiOAJ9mm+U2FjRm7F GxJoziddHzTvoSbkNesOB4iO2OZ08z8yXPtvjofxPU1AU9DyvqONlBs2gV3h59Wa 7Jfp1vx59xP+UGOdpykQNJENb/9eKUCVXWr25BWlmUz6xM44OnAzV2egOQi9MSfE /3l6vGcFoOebO1cma2v3d64FdwgCZS846afr5McWXZMJo4B45RMDiiRC9C+esXKv Mybze1m2VNXjS5WPuzjRezlR3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOT2ypp0 DqnzL1VBj5PFgPLpNCIKMB8GA1UdIwQYMBaAFPN2CQ3XnPaiWa4qFwIDcunmFgu2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEVBRC8zQzI0REFEMjhG QUQxMUVBOTJEMUY2NDJDNEY5QUUwMi84M1lKRGRlYzlxSlpyaW9YQWdOeTZlWVdD N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzWUpEZGVjOXFKWnJpb1hBZ055NmVZV0M3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEVBRC8zQzI0REFEMjhGQUQxMUVBOTJEMUY2NDJDNEY5QUUwMi84M1lKRGRlYzlx SlpyaW9YQWdOeTZlWVdDN1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZmTu+0JnQ+DGikomqLW8pfyvXQN5RTkusW6fgnjLoQj4iFegnNn4K 5VKOjBhfBIUDptSXNvv9m6IQGayuAI6rRudIe6hL6y203Z9KzveE8PPTURhVtW+I MPvkRaHUwRWl5F/r5RBWx/5YWvc+3Ynote6zlN5DoKtME8Chhb73wTcUbhjaDkpt szXUTlg94Eo1i77sLCPn4a4LQYAPQK3vHwM5owkjCyObQNIhr2Jx3L+pQS0DZ7Nx bGguAVZ0aWM3EE3UxQZJqhvEPIHa0QWGpLd5t/m4iI2VBwfkWzsCZSjhFdp/jO94 frZ87M6e/bOcuqidu+6c4EqMwQtX165e -----END CERTIFICATE-----Generated at Sat Aug 9 10:47:44 2025 by rpki-client