$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: 8P9ssMahgibLQH1qeSGW56sV8JW6mh9DDflwyrrt5QM= Subject key identifier: 13:20:43:BD:73:F0:FB:03:F4:B9:17:1A:03:8E:E1:13:C4:F1:43:23 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: DF Signing time: Tue 05 Aug 2025 05:57:39 +0000 Manifest this update: Tue 05 Aug 2025 05:57:38 +0000 Manifest next update: Tue 12 Aug 2025 05:57:38 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: 4oDSz7KApAVLuWvK6umcT0dkmuP4Ie4DHTphORmjSKc=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Aug 5 05:57:38 2025 GMT Not After : Aug 12 05:57:38 2025 GMT Subject: CN=68919d52-59f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a9:52:9f:e6:4b:4f:5c:68:34:40:7b:77:4c: 8e:ef:72:99:e4:9c:f3:bb:5a:6e:8c:7a:84:70:47: ac:b6:cc:4b:bc:fa:1d:5d:19:46:cd:a8:ab:c5:6c: 5b:7f:91:7e:88:e0:91:52:65:49:f6:03:4c:41:a0: 37:29:2b:1e:98:ca:bf:3e:22:d1:69:f8:a4:0d:a6: ac:79:e2:4f:1d:e7:74:bc:8e:76:d3:3b:eb:4c:7b: 64:95:d2:7a:c1:bb:82:39:e6:a3:82:15:28:0b:23: 02:f1:16:52:e8:76:20:8b:59:6d:20:40:6f:ce:7d: 89:24:1b:ca:82:1b:71:7c:3c:26:86:12:49:2d:d0: 4d:f9:b7:ed:98:21:a6:53:ae:12:c8:6f:c1:3e:5c: 48:0e:13:5e:78:38:3e:a9:a0:47:a6:4f:4e:fa:1f: 8c:68:2c:b8:a1:e9:8d:05:a5:3a:2e:0f:8e:57:db: 9f:16:c0:44:78:80:05:9a:9a:5a:95:63:e6:b5:18: 67:9a:98:9d:cb:1d:51:2c:3e:60:8c:cc:85:93:f1: f6:ff:8b:5a:b2:85:83:72:20:cf:08:a9:4d:b5:b1: ea:83:d0:93:4d:40:36:74:69:0e:f2:fa:fb:b9:fd: 4a:8d:1d:bd:6b:2c:0a:ff:58:17:d1:b7:02:e6:24: af:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:20:43:BD:73:F0:FB:03:F4:B9:17:1A:03:8E:E1:13:C4:F1:43:23 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:78:c2:52:57:32:c0:02:34:5f:f7:ca:70:06:70:28:81:6e: 50:80:2e:d1:e5:46:f1:6b:23:7d:81:18:13:a0:48:85:d9:81: 62:1d:3f:cc:0b:95:3d:66:03:b5:63:e9:79:5a:bd:07:2f:ad: af:6a:43:c1:30:47:e6:1f:3c:6a:2c:72:78:3f:9f:c6:33:b3: 52:75:21:b6:be:ef:67:82:d4:e5:ca:5f:a9:72:f7:b9:f9:af: 2d:9f:e0:07:80:ee:bd:f9:35:85:17:43:ad:8c:2d:dd:76:56: 59:c1:ad:54:a0:93:81:91:83:39:13:48:3e:e7:e7:04:e7:c9: 41:77:54:97:0c:60:84:bb:46:f7:74:d8:a8:6b:5d:08:c9:d8: 58:5c:17:b4:59:ba:d9:c6:20:8a:57:50:b0:3d:4d:42:de:3e: b7:d2:9f:03:cb:b2:19:dc:12:c0:4d:12:a6:aa:e3:f0:a6:73: c6:a4:ae:3a:8c:d8:84:12:87:38:94:44:97:46:f6:79:a1:8d: 90:b4:98:c9:bb:74:0b:42:3b:c2:16:6b:91:fa:24:1b:3f:c4: 61:e9:b0:3d:34:37:8e:2e:9f:92:08:3f:02:98:2c:f4:5e:5d: 49:bf:2b:da:1b:f7:dc:24:2e:46:7c:ce:9f:be:cb:de:ec:9d: 04:ef:94:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwODA1MDU1NzM4WhcNMjUwODEyMDU1NzM4WjAYMRYwFAYD VQQDEw02ODkxOWQ1Mi01OWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qlSn+ZLT1xoNEB7d0yO73KZ5Jzzu1pujHqEcEestsxLvPodXRlGzairxWxb f5F+iOCRUmVJ9gNMQaA3KSsemMq/PiLRafikDaaseeJPHed0vI520zvrTHtkldJ6 wbuCOeajghUoCyMC8RZS6HYgi1ltIEBvzn2JJBvKghtxfDwmhhJJLdBN+bftmCGm U64SyG/BPlxIDhNeeDg+qaBHpk9O+h+MaCy4oemNBaU6Lg+OV9ufFsBEeIAFmppa lWPmtRhnmpidyx1RLD5gjMyFk/H2/4tasoWDciDPCKlNtbHqg9CTTUA2dGkO8vr7 uf1KjR29aywK/1gX0bcC5iSv3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMgQ71z 8PsD9LkXGgOO4RPE8UMjMB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNeMJSVzLAAjRf98pwBnAogW5QgC7R5UbxayN9gRgToEiF2YFiHT/M C5U9ZgO1Y+l5Wr0HL62vakPBMEfmHzxqLHJ4P5/GM7NSdSG2vu9ngtTlyl+pcve5 +a8tn+AHgO69+TWFF0OtjC3ddlZZwa1UoJOBkYM5E0g+5+cE58lBd1SXDGCEu0b3 dNioa10IydhYXBe0WbrZxiCKV1CwPU1C3j630p8Dy7IZ3BLATRKmquPwpnPGpK46 jNiEEoc4lESXRvZ5oY2QtJjJu3QLQjvCFmuR+iQbP8Rh6bA9NDeOLp+SCD8CmCz0 Xl1JvyvaG/fcJC5GfM6fvsve7J0E75QM -----END CERTIFICATE-----Generated at Thu Aug 7 01:18:07 2025 by rpki-client