$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft File: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft (raw, json) Hash identifier: uKIbFAT/nTSiNQBJrK5CsGN1VcBjwR/RaZyCTu++TPw= Subject key identifier: 4B:5F:F0:AE:47:37:F2:AD:93:DD:AA:70:E3:F3:EB:09:E5:FF:89:2C Authority key identifier: B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 Certificate issuer: /CN=A91F3099/serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft Manifest number: 04D7 Signing time: Thu 07 Aug 2025 00:20:41 +0000 Manifest this update: Thu 07 Aug 2025 00:20:40 +0000 Manifest next update: Thu 14 Aug 2025 00:20:40 +0000 Files and hashes: 1: sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl (hash: BBPaFg9JkE597iu7knQCXduzvc8eibxk57iWdFShNNc=) 2: 99961F74315E11EC953A8215C4F9AE02.roa (hash: OEZzXzknZfZ5+s266LCfZPiCa3g7F7GJ2hmeU6hbgO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3099, serialNumber=B0F47A696ACD77C74A3473C4CD171DA3721CECD0 Validity Not Before: Aug 7 00:20:40 2025 GMT Not After : Aug 14 00:20:40 2025 GMT Subject: CN=6893f159-5644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:97:28:c6:a0:7f:49:c8:2f:9b:66:90:61: 76:96:a8:1b:1e:e9:a7:75:51:62:33:43:44:ab:13: 03:72:aa:6b:c1:ea:70:75:83:d7:cc:88:b8:d9:30: dc:b2:4f:07:44:95:a0:04:cf:9a:0a:f8:a4:5c:3c: 61:ed:03:6f:cc:a9:05:a8:a2:b2:a5:98:a5:f5:bf: f6:a4:13:3f:8b:7a:e3:6f:98:d8:80:99:c4:5d:01: 0c:74:3b:f7:ca:45:ce:ce:a6:b4:0d:96:7f:df:9e: ae:f9:c9:5e:48:0e:b2:67:b6:4a:e8:c5:cf:06:c0: 0f:7a:32:5a:31:f2:67:39:53:4e:fc:28:74:81:e1: c1:c4:73:92:3b:2a:81:d0:e2:a5:74:f1:75:47:9f: a9:bf:6f:24:8b:4a:02:76:8e:c9:10:f4:ee:7f:13: b3:63:7a:f7:af:a1:81:65:ea:9e:aa:3c:cc:d1:6b: d0:08:37:46:c3:3f:11:1b:ba:fa:38:ba:e2:ab:21: ab:0c:3f:67:b3:77:ab:98:54:d8:8c:e6:07:05:da: 08:d0:ff:a8:d4:b7:f2:aa:37:72:3d:b4:0e:c2:df: 0f:19:52:43:63:87:ab:17:32:77:9a:94:71:74:fb: 79:50:de:64:b1:cf:c5:f6:c3:a6:29:63:38:b3:2d: 4e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5F:F0:AE:47:37:F2:AD:93:DD:AA:70:E3:F3:EB:09:E5:FF:89:2C X509v3 Authority Key Identifier: keyid:B0:F4:7A:69:6A:CD:77:C7:4A:34:73:C4:CD:17:1D:A3:72:1C:EC:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3099/EB4EFBC6315C11ECA9B73D15C4F9AE02/sPR6aWrNd8dKNHPEzRcdo3Ic7NA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8a:8f:7a:9a:9d:19:74:56:50:50:fd:d8:b9:ed:7d:b0:29: 2d:c8:f9:d5:db:2c:67:42:fb:8f:23:f2:b0:c0:ee:09:00:95: 0a:8d:6c:e4:4a:a2:b6:45:02:34:fa:4b:15:2a:20:b1:6d:22: 55:8b:f2:3c:61:57:1c:c9:26:f3:b7:67:12:25:a6:2c:96:bc: c4:8a:8a:09:ca:2d:ef:47:4e:ef:6c:55:57:5b:e0:be:49:d1: 20:99:22:ae:6a:0d:ae:21:d4:c6:d1:36:5c:30:a4:8d:ef:5b: fe:f0:37:16:a0:8a:77:9f:31:1c:c3:05:06:bc:ec:98:da:0c: 9c:13:02:74:f7:c9:01:06:d3:d3:4b:c6:46:16:e9:b0:04:dc: a2:50:26:b6:fb:45:58:b4:a3:df:cf:64:b9:05:87:9b:8b:12: c3:a4:b5:fd:c7:4e:18:b9:08:02:2d:ea:98:e8:62:a8:f3:13: 39:63:d9:6c:7b:bc:e4:6c:d8:fc:2e:9a:57:7b:bb:9c:81:6b: 57:8f:52:86:1f:ff:25:f8:69:10:e9:28:00:20:3e:09:b4:59: bf:37:25:a0:c6:50:e0:98:a0:9c:d1:59:19:8f:6a:c8:b7:44: 15:fd:69:69:30:cc:92:54:9e:e4:da:9a:f6:5c:8d:3e:69:2f: 16:72:4e:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwOTkxMTAvBgNVBAUTKEIwRjQ3QTY5NkFDRDc3Qzc0QTM0NzNDNENEMTcxREEz NzIxQ0VDRDAwHhcNMjUwODA3MDAyMDQwWhcNMjUwODE0MDAyMDQwWjAYMRYwFAYD VQQDEw02ODkzZjE1OS01NjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SqXKMagf0nIL5tmkGF2lqgbHumndVFiM0NEqxMDcqprwepwdYPXzIi42TDc sk8HRJWgBM+aCvikXDxh7QNvzKkFqKKypZil9b/2pBM/i3rjb5jYgJnEXQEMdDv3 ykXOzqa0DZZ/356u+cleSA6yZ7ZK6MXPBsAPejJaMfJnOVNO/Ch0geHBxHOSOyqB 0OKldPF1R5+pv28ki0oCdo7JEPTufxOzY3r3r6GBZeqeqjzM0WvQCDdGwz8RG7r6 OLriqyGrDD9ns3ermFTYjOYHBdoI0P+o1LfyqjdyPbQOwt8PGVJDY4erFzJ3mpRx dPt5UN5ksc/F9sOmKWM4sy1O4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtf8K5H N/Ktk92qcOPz6wnl/4ksMB8GA1UdIwQYMBaAFLD0emlqzXfHSjRzxM0XHaNyHOzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzA5OS9FQjRFRkJDNjMx NUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4ZEtOSFBFelJjZG8zSWM3 TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NQUjZhV3JOZDhkS05IUEV6UmNkbzNJYzdOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzA5OS9FQjRFRkJDNjMxNUMxMUVDQTlCNzNEMTVDNEY5QUUwMi9zUFI2YVdyTmQ4 ZEtOSFBFelJjZG8zSWM3TkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfio96mp0ZdFZQUP3Yue19sCktyPnV2yxnQvuPI/KwwO4JAJUKjWzk SqK2RQI0+ksVKiCxbSJVi/I8YVccySbzt2cSJaYslrzEiooJyi3vR07vbFVXW+C+ SdEgmSKuag2uIdTG0TZcMKSN71v+8DcWoIp3nzEcwwUGvOyY2gycEwJ098kBBtPT S8ZGFumwBNyiUCa2+0VYtKPfz2S5BYebixLDpLX9x04YuQgCLeqY6GKo8xM5Y9ls e7zkbNj8LppXe7ucgWtXj1KGH/8l+GkQ6SgAID4JtFm/NyWgxlDgmKCc0VkZj2rI t0QV/WlpMMySVJ7k2pr2XI0+aS8Wck47 -----END CERTIFICATE-----Generated at Fri Aug 8 20:51:06 2025 by rpki-client