$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: GOnnfdvfdsP1Zjl1N5SA4uftndRzuU5ZaBu8o9/WXrw= Subject key identifier: A4:B0:CA:33:D8:B7:89:44:9B:8F:20:AB:E1:B4:1C:7E:F8:4B:F1:CB Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C00 Signing time: Sun 10 Aug 2025 16:11:08 +0000 Manifest this update: Sun 10 Aug 2025 16:11:07 +0000 Manifest next update: Sun 17 Aug 2025 16:11:07 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: OIJQOXkaY3LIkAtUTL0KU0FDlwHx/3qF38Bj8kp1RXw=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7185 (0x1c11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Aug 10 16:11:07 2025 GMT Not After : Aug 17 16:11:07 2025 GMT Subject: CN=6898c49c-2f23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fa:ca:50:cd:ce:55:97:51:ec:17:4f:bc:e9: 8d:31:bd:97:f5:0e:5d:5c:9a:09:47:55:8f:a8:24: 5f:8c:ce:9a:df:62:e7:7f:7d:b4:3f:01:99:21:96: d6:40:4f:ce:02:ee:c8:fc:24:46:8c:b3:ac:c6:f2: 98:79:f7:e0:7c:bb:0d:73:1d:25:3a:2c:93:db:9c: c5:7a:bf:7e:a4:99:bb:d5:8a:80:7f:b1:5c:58:30: 7e:36:a7:a8:4d:b4:9c:8b:0c:f9:20:d5:7c:91:a2: 78:5f:63:76:c5:47:1d:a0:82:35:2f:fb:7f:ad:22: a0:74:ed:a5:5b:c1:5d:2e:a5:f5:36:46:1f:55:92: 27:19:04:b4:20:9e:01:f9:1a:47:c0:05:06:19:9d: bf:2f:68:b1:1d:bb:aa:2a:34:af:32:b3:6c:a3:6e: c8:87:99:35:e9:b8:1c:69:9b:ad:96:05:d3:d4:7b: 7f:60:ec:51:9e:0d:a7:09:a1:fa:b7:e4:8f:eb:58: fc:3a:eb:da:18:8a:a4:3f:d9:5a:44:78:e4:87:f6: 30:41:c9:ec:5e:62:80:2e:f0:44:44:02:5c:14:57: bc:c0:c2:8b:64:2e:3b:47:4e:f1:0d:54:78:d0:41: 56:a0:13:4b:16:50:ab:24:24:de:d8:5d:8b:78:3d: 34:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B0:CA:33:D8:B7:89:44:9B:8F:20:AB:E1:B4:1C:7E:F8:4B:F1:CB X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:f4:dc:6d:77:93:ff:93:95:26:dd:01:7a:f4:9b:fb:08:43: e7:c1:65:29:58:1b:d0:12:18:ed:dc:5c:f1:84:a7:2a:47:f3: 4e:b8:fd:c0:ba:cb:9f:40:af:ce:36:3e:cc:47:eb:9a:10:12: 91:6f:d5:8d:fd:6d:b6:bc:49:49:35:5c:60:e8:02:cd:fa:98: ee:09:e4:87:ee:8b:68:5a:5a:4f:9a:2e:86:7a:cd:1b:a2:5d: 61:bc:e1:42:67:3c:4a:15:85:5d:33:d5:1f:73:ec:f4:54:4b: 19:28:e9:ed:26:42:b1:6d:9d:f3:3c:09:00:90:72:e6:80:5c: 03:80:cf:13:cb:b3:bd:26:50:fa:7e:4a:0e:98:3d:9f:d8:51: 3d:db:71:31:52:ec:4b:a9:2e:76:c2:08:3c:47:a2:5b:cd:a3: f8:56:6d:26:cd:2b:cc:2f:5b:ba:88:9d:36:7b:9e:08:2f:13: 14:5e:70:7a:10:1a:75:de:8d:ec:a2:07:5c:a0:76:04:cb:3c: f8:8f:c1:92:ed:81:28:16:93:a2:5c:79:ff:33:4d:30:e2:f3: 72:fc:ed:27:ec:29:30:59:39:31:41:23:c5:d3:4c:87:03:48: 7b:cc:a8:c2:1a:d4:0c:c2:4d:5e:ee:d4:fb:2a:79:48:b2:47: f4:21:c1:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwODEwMTYxMTA3WhcNMjUwODE3MTYxMTA3WjAYMRYwFAYD VQQDEw02ODk4YzQ5Yy0yZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPrKUM3OVZdR7BdPvOmNMb2X9Q5dXJoJR1WPqCRfjM6a32Lnf320PwGZIZbW QE/OAu7I/CRGjLOsxvKYeffgfLsNcx0lOiyT25zFer9+pJm71YqAf7FcWDB+Nqeo TbSciwz5INV8kaJ4X2N2xUcdoII1L/t/rSKgdO2lW8FdLqX1NkYfVZInGQS0IJ4B +RpHwAUGGZ2/L2ixHbuqKjSvMrNso27Ih5k16bgcaZutlgXT1Ht/YOxRng2nCaH6 t+SP61j8OuvaGIqkP9laRHjkh/YwQcnsXmKALvBERAJcFFe8wMKLZC47R07xDVR4 0EFWoBNLFlCrJCTe2F2LeD00cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSwyjPY t4lEm48gq+G0HH74S/HLMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC29Nxtd5P/k5Um3QF69Jv7CEPnwWUpWBvQEhjt3FzxhKcqR/NOuP3A usufQK/ONj7MR+uaEBKRb9WN/W22vElJNVxg6ALN+pjuCeSH7otoWlpPmi6Ges0b ol1hvOFCZzxKFYVdM9Ufc+z0VEsZKOntJkKxbZ3zPAkAkHLmgFwDgM8Ty7O9JlD6 fkoOmD2f2FE923ExUuxLqS52wgg8R6JbzaP4Vm0mzSvML1u6iJ02e54ILxMUXnB6 EBp13o3sogdcoHYEyzz4j8GS7YEoFpOiXHn/M00w4vNy/O0n7CkwWTkxQSPF00yH A0h7zKjCGtQMwk1e7tT7KnlIskf0IcFW -----END CERTIFICATE-----Generated at Mon Aug 11 13:03:18 2025 by rpki-client