$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: gT3tbYjixKSLSMXfz2kLDmgqtBJU5UI/YrPTvLBBRac= Subject key identifier: 5B:B2:9F:B9:56:BD:9F:C8:33:40:9E:8B:CC:27:E5:C1:BB:C5:2A:82 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 49 Signing time: Sat 09 Aug 2025 07:53:34 +0000 Manifest this update: Sat 09 Aug 2025 07:53:34 +0000 Manifest next update: Sat 16 Aug 2025 07:53:34 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: +Duu4yeXZN6sUDHRC3bviULRXBglG8NwBVB3W3lqUcE=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Aug 9 07:53:34 2025 GMT Not After : Aug 16 07:53:34 2025 GMT Subject: CN=6896fe7e-f290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:54:5f:69:33:aa:12:e1:be:01:b4:7b:e7:51: 7c:47:99:09:4d:52:6f:08:df:92:d7:16:eb:6f:36: 12:24:4a:b8:23:df:e9:3f:5c:c4:78:56:c6:ff:cf: 8b:60:d2:2d:85:ec:b4:6c:0e:9d:45:88:ef:fa:af: cd:b7:33:c7:c3:14:f6:3c:b1:a3:09:1d:59:21:fd: ae:6f:54:2f:33:4a:47:63:1c:b7:7a:f4:53:f1:82: f3:68:de:2a:d3:77:67:71:b4:94:25:00:1a:fa:47: 08:63:fd:21:22:3f:83:57:1f:df:e0:e2:07:60:a6: 26:56:ab:ab:00:8b:68:39:d0:21:d1:a3:00:74:56: c1:d2:98:57:77:2f:5c:f9:f5:c7:68:db:0b:fe:77: fc:1e:86:2b:2a:4e:8c:f6:47:9e:2d:92:19:3e:47: 15:69:01:60:ca:f8:26:dd:79:95:42:6f:33:65:d3: 4f:70:1d:84:89:79:fa:55:82:ce:c3:ac:62:9e:ef: 40:b4:c4:ba:2d:ce:c3:d3:36:7d:85:02:4c:60:30: 14:c1:d0:d6:c5:9a:c3:c8:75:78:7f:dd:5b:ce:a7: 30:ef:b6:fc:48:d5:47:69:75:99:bb:64:84:5f:48: b4:b5:06:32:b4:de:e8:a0:eb:e9:b7:e4:a0:72:3b: 76:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B2:9F:B9:56:BD:9F:C8:33:40:9E:8B:CC:27:E5:C1:BB:C5:2A:82 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:93:1c:24:9e:15:7c:39:63:b4:2a:e6:59:2f:b5:8d:4d:f5: a3:e4:db:ad:04:c1:7e:45:34:4a:f5:ae:03:1d:83:18:75:38: f8:ff:86:ab:c2:b3:f1:92:45:e3:0d:33:83:f2:21:15:93:c4: 9f:fc:9d:b6:2c:b3:5f:bf:90:bc:64:9b:2c:16:e0:4e:88:02: 84:27:f3:52:de:60:85:fe:81:33:59:08:ef:b1:5f:46:d8:c6: 25:e0:75:61:ca:91:ef:24:ac:c4:f0:3b:e1:a6:e7:66:e3:43: 65:bc:1e:d9:fb:67:48:a9:0c:43:f6:81:7f:ac:72:a2:74:11: 8c:fa:dc:bf:4a:97:2e:d8:98:05:dc:a2:7b:a8:7c:3d:60:38: 2e:b6:52:de:b5:da:41:00:eb:95:9b:25:c0:9b:b7:94:d3:7f: c5:62:3e:30:bd:c3:bc:fb:ae:2c:7f:aa:85:3c:d7:a1:56:53: 3c:e2:50:e5:94:ff:9f:f6:43:4b:03:2c:4f:c8:ff:3d:ce:e0: d1:c5:ee:e8:d5:b6:3e:72:9a:d9:78:5a:35:f5:6d:ed:9a:d7: eb:61:89:d3:f2:bb:8b:c6:87:6b:28:a7:44:5f:9d:0b:40:71: 76:f1:03:f3:aa:cd:22:eb:91:af:ef:ff:55:32:df:a8:53:0d: 9f:54:50:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REJCMDExMC8GA1UEBRMoRkVEODRFOUZFMDE1OUE5OTM3QTIxOTNBMEI3REJBMjNC NkMyNjVCODAeFw0yNTA4MDkwNzUzMzRaFw0yNTA4MTYwNzUzMzRaMBgxFjAUBgNV BAMTDTY4OTZmZTdlLWYyOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuVF9pM6oS4b4BtHvnUXxHmQlNUm8I35LXFutvNhIkSrgj3+k/XMR4Vsb/z4tg 0i2F7LRsDp1FiO/6r823M8fDFPY8saMJHVkh/a5vVC8zSkdjHLd69FPxgvNo3irT d2dxtJQlABr6Rwhj/SEiP4NXH9/g4gdgpiZWq6sAi2g50CHRowB0VsHSmFd3L1z5 9cdo2wv+d/wehisqToz2R54tkhk+RxVpAWDK+CbdeZVCbzNl009wHYSJefpVgs7D rGKe70C0xLotzsPTNn2FAkxgMBTB0NbFmsPIdXh/3VvOpzDvtvxI1UdpdZm7ZIRf SLS1BjK03uig6+m35KByO3atAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUW7KfuVa9 n8gzQJ6LzCflwbvFKoIwHwYDVR0jBBgwFoAU/thOn+AVmpk3ohk6C326I7bCZbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEQkIwL0U2NTNFNTEyMDdF RDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1pi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3RoT24tQVZtcGszb2hrNkMzMjZJN2JDWmJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE QkIwL0U2NTNFNTEyMDdFRDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBr M29oazZDMzI2STdiQ1piZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKSTHCSeFXw5Y7Qq5lkvtY1N9aPk260EwX5FNEr1rgMdgxh1OPj/hqvC s/GSReMNM4PyIRWTxJ/8nbYss1+/kLxkmywW4E6IAoQn81LeYIX+gTNZCO+xX0bY xiXgdWHKke8krMTwO+Gm52bjQ2W8Htn7Z0ipDEP2gX+scqJ0EYz63L9Kly7YmAXc onuofD1gOC62Ut612kEA65WbJcCbt5TTf8ViPjC9w7z7rix/qoU816FWUzziUOWU /5/2Q0sDLE/I/z3O4NHF7ujVtj5ymtl4WjX1be2a1+thidPyu4vGh2sop0RfnQtA cXbxA/OqzSLrka/v/1Uy36hTDZ9UUDo= -----END CERTIFICATE-----Generated at Sun Aug 10 04:50:37 2025 by rpki-client