$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: T6bkkKcvslCgw39wBdyOEW+j2ALYEubIajY/nrbkY40= Subject key identifier: 59:1D:7B:09:C3:F6:DB:6E:3E:EA:62:AE:FF:0E:B1:07:24:E3:1F:D6 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E52 Signing time: Tue 12 Aug 2025 17:53:37 +0000 Manifest this update: Tue 12 Aug 2025 17:53:36 +0000 Manifest next update: Tue 19 Aug 2025 17:53:36 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: XJhpoWU1RjnPUhxPJ61lw7728pJ4PTAWZRRO27MgYeo=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3676 (0xe5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Aug 12 17:53:36 2025 GMT Not After : Aug 19 17:53:36 2025 GMT Subject: CN=689b7fa0-8347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:2a:41:e4:cb:c4:33:89:77:18:da:aa:84: 1e:f2:f8:9f:db:8e:7f:2d:da:fb:49:e5:60:5d:96: a3:2d:5d:e1:ca:46:5d:00:30:6e:c2:28:4b:3d:95: b1:f4:4c:94:82:2a:bd:fb:73:63:16:6f:16:eb:9f: 2e:97:3d:d2:f3:d0:5a:45:f5:b9:29:12:90:7f:8a: 1d:ce:3a:79:7b:28:76:29:56:1c:e2:ee:75:5e:d1: bf:39:ab:b8:61:e9:92:b9:f3:bc:2d:ad:65:f5:c8: 61:06:b8:f6:06:15:39:d7:4a:2e:c8:33:7e:fe:7d: f6:c7:95:7d:ec:1c:4b:fb:e8:e0:b0:39:de:24:60: 3c:76:55:f0:f1:e7:0c:35:11:ab:b4:b3:17:b7:bf: 71:95:b5:b7:4e:ab:45:1b:b2:af:27:1c:8b:be:b1: 45:fa:5c:64:6a:87:d0:72:b2:6a:4f:33:e3:8f:5d: a9:83:5c:f0:c8:76:a6:c5:12:ff:df:6c:b5:12:a4: fd:6b:9a:85:6d:d7:94:60:ff:0f:6e:98:c4:9d:94: 00:fe:d0:00:45:e1:05:70:51:75:2a:30:88:e4:eb: 24:79:a0:3b:ee:9b:41:02:5f:6e:15:4e:46:24:84: 4e:71:92:85:a7:67:eb:7f:15:c8:5e:6e:28:f9:08: 5e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1D:7B:09:C3:F6:DB:6E:3E:EA:62:AE:FF:0E:B1:07:24:E3:1F:D6 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:14:c2:1e:b2:d1:25:8b:fb:bf:4a:c7:b2:7c:71:ea:ec:34: 22:54:27:e7:df:1b:f3:9a:c7:87:28:ea:b3:4b:4b:5e:03:94: 3e:7b:84:e2:75:d7:7a:ea:95:08:af:d8:89:e6:21:6f:c3:31: ca:f9:31:48:ae:b9:64:c9:6a:10:62:4b:25:ef:37:c6:0d:b0: c5:1b:7c:d7:07:8d:74:d2:c6:06:8b:7d:a6:24:ad:1c:22:a0: e9:19:e5:43:6f:09:bc:a0:58:6d:14:f7:08:b0:2e:41:c4:4d: 78:3e:f9:ea:b8:06:83:4d:fe:5e:d9:94:c8:63:cb:68:a4:59: c4:bd:b7:9f:26:8a:1f:9c:de:8b:a8:a5:43:f1:20:98:05:d5: 21:a0:57:11:44:e0:78:f4:ff:7b:68:c2:f2:07:3c:73:a6:31: de:3d:52:cd:b4:22:d0:7d:c5:dd:1a:9d:71:30:ea:c8:cb:cc: 12:b5:f2:ef:fe:40:8d:85:3a:ea:de:67:35:a6:43:89:fe:b1: da:0a:69:18:aa:1c:79:2b:e1:d4:bd:a0:7e:5c:2c:7b:b0:10: 2f:93:97:a2:aa:6a:d0:9c:b9:a8:b3:a1:73:3a:62:a5:54:fb: a6:30:e2:44:46:e6:77:f0:17:a8:fa:9b:0d:e8:8c:bd:21:1d: 94:9a:8c:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwODEyMTc1MzM2WhcNMjUwODE5MTc1MzM2WjAYMRYwFAYD VQQDEw02ODliN2ZhMC04MzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArscqQeTLxDOJdxjaqoQe8vif245/Ldr7SeVgXZajLV3hykZdADBuwihLPZWx 9EyUgiq9+3NjFm8W658ulz3S89BaRfW5KRKQf4odzjp5eyh2KVYc4u51XtG/Oau4 YemSufO8La1l9chhBrj2BhU510ouyDN+/n32x5V97BxL++jgsDneJGA8dlXw8ecM NRGrtLMXt79xlbW3TqtFG7KvJxyLvrFF+lxkaofQcrJqTzPjj12pg1zwyHamxRL/ 32y1EqT9a5qFbdeUYP8PbpjEnZQA/tAAReEFcFF1KjCI5OskeaA77ptBAl9uFU5G JIROcZKFp2frfxXIXm4o+QheVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkdewnD 9ttuPupirv8OsQck4x/WMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgFMIestEli/u/SseyfHHq7DQiVCfn3xvzmseHKOqzS0teA5Q+e4Ti ddd66pUIr9iJ5iFvwzHK+TFIrrlkyWoQYksl7zfGDbDFG3zXB4100sYGi32mJK0c IqDpGeVDbwm8oFhtFPcIsC5BxE14PvnquAaDTf5e2ZTIY8topFnEvbefJoofnN6L qKVD8SCYBdUhoFcRROB49P97aMLyBzxzpjHePVLNtCLQfcXdGp1xMOrIy8wStfLv /kCNhTrq3mc1pkOJ/rHaCmkYqhx5K+HUvaB+XCx7sBAvk5eiqmrQnLmos6FzOmKl VPumMOJERuZ38Beo+psN6Iy9IR2Umoym -----END CERTIFICATE-----Generated at Tue Aug 12 22:55:34 2025 by rpki-client