$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: nX3myZaL2XfckzknXRX/rkGFxzFv/1cwvdpceaClKOo= Subject key identifier: 48:9D:1D:FA:7E:36:43:9C:5E:FE:D6:23:09:A5:92:F6:3A:A1:0A:74 Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05E7 Signing time: Sun 10 Aug 2025 23:03:53 +0000 Manifest this update: Sun 10 Aug 2025 23:03:53 +0000 Manifest next update: Sun 17 Aug 2025 23:03:53 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: qTfbYXxtjq71IXwm3ydpCUY5QFCQp1g0jH6GcdbuW8w=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Aug 10 23:03:53 2025 GMT Not After : Aug 17 23:03:53 2025 GMT Subject: CN=68992559-0ffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:43:ec:5e:88:d3:08:af:ab:08:35:3e:f6:da: 8e:8f:68:b6:80:bb:0b:fe:47:d1:60:14:da:88:79: 6d:82:4d:8a:73:62:c2:bf:93:13:0b:58:35:c6:0e: be:11:c7:29:35:95:69:2b:fc:a1:cc:97:98:43:d6: 03:75:dd:31:14:6c:f3:12:6b:9b:2c:c8:1b:3a:15: db:b2:51:5b:1d:c1:d6:a8:2f:fe:e3:32:e5:5d:11: 06:44:14:94:c2:53:e5:87:cc:e3:a2:34:ae:97:a4: 71:69:9e:a2:b5:5f:20:33:62:f8:81:ad:e4:e5:fc: ff:80:a2:3f:5b:83:37:f9:22:bd:9a:c2:71:51:37: 34:aa:8e:b6:49:7d:41:33:3b:b7:c1:2c:cd:5d:1b: fa:52:b0:61:78:c3:51:67:21:c2:02:e3:87:b1:50: 99:fa:a5:e5:33:8e:d4:01:55:bb:07:21:15:71:d1: 37:b1:82:2f:21:1f:67:c8:b1:85:9a:81:3c:b5:fe: e6:9f:0f:34:b4:d5:5c:e6:14:f9:8a:09:d1:6a:b6: 10:ad:01:25:1e:1b:d8:53:7d:64:ce:ce:d5:9b:2e: e0:9a:c5:43:1d:54:fe:f2:63:46:fe:72:4a:c9:62: 0b:ee:21:f9:c8:d0:28:72:9f:c8:0b:e2:f2:1c:f5: d8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9D:1D:FA:7E:36:43:9C:5E:FE:D6:23:09:A5:92:F6:3A:A1:0A:74 X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:1f:a4:d1:04:53:6a:d0:a9:e9:72:4b:c9:56:8d:9c:f0:f1: a9:17:65:cc:41:43:17:98:5c:a2:88:bd:93:46:ca:fb:6a:7e: e3:07:85:46:29:8c:4f:f5:ce:25:46:0d:39:0b:89:3c:58:8d: cf:dc:c3:a5:46:5a:07:70:5b:4b:9a:af:0e:f9:78:c0:a4:03: c1:49:a9:01:a9:1f:87:d3:53:85:f3:72:99:8c:37:9d:a5:4b: 8b:06:2f:ea:9c:6d:2e:74:aa:2c:9b:01:79:c8:de:b4:2a:6e: ad:e9:22:01:0e:8d:21:d1:6d:77:16:62:1f:59:11:38:ba:68: 5f:ca:08:16:8a:69:85:83:3d:61:16:a7:1b:ea:d0:83:cc:10: 6b:c6:4b:9f:8f:d6:d8:ef:73:fa:e6:db:92:14:1f:d1:ce:5a: f1:1c:35:f7:79:42:7b:a6:e4:8a:fa:eb:10:e7:f7:a6:2d:5a: ce:7e:39:0a:ef:fd:37:71:72:00:44:ab:c8:34:ee:68:c7:67: 29:26:41:27:34:fa:01:53:0a:06:db:59:93:5a:81:79:f8:8c: 29:0c:2a:73:05:cc:b8:05:3e:a9:e6:05:54:a4:ab:12:9b:3b: 80:17:c8:35:1d:d0:17:4c:98:31:4a:1d:68:6c:0f:d3:32:4b: 65:d9:a6:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwODEwMjMwMzUzWhcNMjUwODE3MjMwMzUzWjAYMRYwFAYD VQQDEw02ODk5MjU1OS0wZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EPsXojTCK+rCDU+9tqOj2i2gLsL/kfRYBTaiHltgk2Kc2LCv5MTC1g1xg6+ EccpNZVpK/yhzJeYQ9YDdd0xFGzzEmubLMgbOhXbslFbHcHWqC/+4zLlXREGRBSU wlPlh8zjojSul6RxaZ6itV8gM2L4ga3k5fz/gKI/W4M3+SK9msJxUTc0qo62SX1B Mzu3wSzNXRv6UrBheMNRZyHCAuOHsVCZ+qXlM47UAVW7ByEVcdE3sYIvIR9nyLGF moE8tf7mnw80tNVc5hT5ignRarYQrQElHhvYU31kzs7Vmy7gmsVDHVT+8mNG/nJK yWIL7iH5yNAocp/IC+LyHPXYqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEidHfp+ NkOcXv7WIwmlkvY6oQp0MB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJH6TRBFNq0KnpckvJVo2c8PGpF2XMQUMXmFyiiL2TRsr7an7jB4VG KYxP9c4lRg05C4k8WI3P3MOlRloHcFtLmq8O+XjApAPBSakBqR+H01OF83KZjDed pUuLBi/qnG0udKosmwF5yN60Km6t6SIBDo0h0W13FmIfWRE4umhfyggWimmFgz1h Fqcb6tCDzBBrxkufj9bY73P65tuSFB/RzlrxHDX3eUJ7puSK+usQ5/emLVrOfjkK 7/03cXIARKvINO5ox2cpJkEnNPoBUwoG21mTWoF5+IwpDCpzBcy4BT6p5gVUpKsS mzuAF8g1HdAXTJgxSh1obA/TMktl2aay -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:13 2025 by rpki-client