$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: Fd+CA6pSKqSg3JcDorqTzR5182AxP+tY/z0CfTHsDWs= Subject key identifier: 9F:26:D7:C7:57:58:A4:F4:58:F6:B3:FF:B6:40:CE:0C:DE:3C:6A:B3 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 22CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 22BF Signing time: Fri 08 Aug 2025 15:56:14 +0000 Manifest this update: Fri 08 Aug 2025 15:56:13 +0000 Manifest next update: Fri 15 Aug 2025 15:56:13 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: 3C0Tgds9JjWlc7zmRGwCwLuL27XgWRqp56eGhPnNYrE=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: +yqS5ARpGMGBWr2MyFGiajoFZUJV/KOEs+STzodgJKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8910 (0x22ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Aug 8 15:56:13 2025 GMT Not After : Aug 15 15:56:13 2025 GMT Subject: CN=68961e1d-d5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2f:97:a2:25:1e:73:88:d4:a0:8d:4e:96:8d: 5c:df:1c:1a:d0:aa:95:d3:62:b3:3c:c4:26:ad:04: a4:80:6b:36:07:39:b6:81:7e:8a:b4:dd:95:a3:47: ef:e7:c0:5e:70:05:0f:7b:6f:cd:1b:92:0f:a1:ed: b9:4d:74:49:be:eb:11:aa:3e:f9:4a:6b:ea:f6:69: 0f:2b:05:93:d6:ea:c4:dc:01:30:bc:5f:74:48:66: dd:80:0f:f7:09:a2:96:93:de:5f:f5:3e:40:9f:21: 47:50:4b:1b:14:2a:f7:d7:10:2b:4e:07:a9:35:f3: aa:bf:7b:ae:b6:02:5f:b8:aa:05:89:56:a7:af:04: e5:4a:f1:ef:c9:86:41:fe:d8:f3:09:2e:6c:13:d7: ce:b1:a4:2a:c4:98:d9:bc:c0:c6:c5:a7:09:fc:28: dd:bd:1f:b9:b7:d2:cc:8a:c8:bc:51:a5:ac:53:b1: 49:3d:e2:33:96:64:cf:83:7f:5e:66:e5:2b:ff:a2: ae:b7:18:6d:6e:ba:bb:a6:16:0e:e8:cb:02:bf:37: 61:bf:4f:47:8d:29:a7:f9:31:4f:82:f2:db:23:55: dc:ba:4b:c8:61:99:59:72:c5:c1:8c:01:09:93:95: 90:5f:e2:16:2c:f8:54:42:9a:25:7a:1d:0b:be:f2: 02:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:26:D7:C7:57:58:A4:F4:58:F6:B3:FF:B6:40:CE:0C:DE:3C:6A:B3 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:ac:d7:2f:1d:a7:6d:01:57:18:90:09:8e:f9:fe:c0:88:8b: 07:93:ec:15:a4:7c:35:22:96:99:0f:dc:d7:f9:a7:57:74:9c: dc:9a:56:f2:2c:c2:2c:87:0e:58:36:55:f8:f7:e2:97:9e:35: 0b:fc:90:00:cf:8b:30:40:bc:9d:44:f4:8a:c1:20:ad:0f:ff: ce:b1:5f:e5:e9:34:13:0e:90:07:76:11:bb:bc:6d:7e:30:b0: 47:05:f9:76:af:7d:74:54:20:a8:8b:1c:09:dc:6c:39:92:ee: 14:09:d6:54:fd:95:a3:29:f0:3c:ca:0e:dd:06:3d:26:ab:93: ea:44:42:0f:9c:c0:28:51:d5:01:27:09:1a:e6:26:6a:b7:bf: 22:1a:2a:d5:ec:28:50:16:a8:71:c6:69:30:ff:17:73:18:d8: 1f:2e:1f:30:71:7b:b1:cf:50:10:48:b3:88:1d:8b:03:c0:32: 16:30:ce:61:c0:0e:e4:5e:a0:56:ba:2e:6d:a4:5a:0e:03:ff: b7:82:40:b7:95:15:ab:3e:81:e9:79:5a:d6:af:b0:7b:24:cc: df:ce:49:ff:67:1c:80:f8:1b:07:f9:4d:6e:ab:44:b3:35:c6: ff:50:66:8e:04:a8:61:77:f4:c1:ed:cb:c4:24:f8:d3:4f:d6: be:96:bb:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUwODA4MTU1NjEzWhcNMjUwODE1MTU1NjEzWjAYMRYwFAYD VQQDEw02ODk2MWUxZC1kNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC+XoiUec4jUoI1Olo1c3xwa0KqV02KzPMQmrQSkgGs2Bzm2gX6KtN2Vo0fv 58BecAUPe2/NG5IPoe25TXRJvusRqj75Smvq9mkPKwWT1urE3AEwvF90SGbdgA/3 CaKWk95f9T5AnyFHUEsbFCr31xArTgepNfOqv3uutgJfuKoFiVanrwTlSvHvyYZB /tjzCS5sE9fOsaQqxJjZvMDGxacJ/CjdvR+5t9LMisi8UaWsU7FJPeIzlmTPg39e ZuUr/6Kutxhtbrq7phYO6MsCvzdhv09HjSmn+TFPgvLbI1XcukvIYZlZcsXBjAEJ k5WQX+IWLPhUQpoleh0LvvICfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8m18dX WKT0WPaz/7ZAzgzePGqzMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0rNcvHadtAVcYkAmO+f7AiIsHk+wVpHw1IpaZD9zX+adXdJzcmlby LMIshw5YNlX49+KXnjUL/JAAz4swQLydRPSKwSCtD//OsV/l6TQTDpAHdhG7vG1+ MLBHBfl2r310VCCoixwJ3Gw5ku4UCdZU/ZWjKfA8yg7dBj0mq5PqREIPnMAoUdUB Jwka5iZqt78iGirV7ChQFqhxxmkw/xdzGNgfLh8wcXuxz1AQSLOIHYsDwDIWMM5h wA7kXqBWui5tpFoOA/+3gkC3lRWrPoHpeVrWr7B7JMzfzkn/ZxyA+BsH+U1uq0Sz Ncb/UGaOBKhhd/TB7cvEJPjTT9a+lrsX -----END CERTIFICATE-----Generated at Sun Aug 10 14:01:25 2025 by rpki-client