$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft File: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft (raw, json) Hash identifier: 0/MN6va5gKK2VeoT7o1+ZV6CDncSp8u/LNGOQHK7Gvo= Subject key identifier: 30:B7:45:F6:37:6D:8F:2E:CF:AE:86:97:4A:D5:2E:F0:81:CF:8B:09 Authority key identifier: 99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA Certificate issuer: /CN=A91FD378/serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Certificate serial: 0AEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft Manifest number: 0ADF Signing time: Wed 06 Aug 2025 19:41:41 +0000 Manifest this update: Wed 06 Aug 2025 19:41:41 +0000 Manifest next update: Wed 13 Aug 2025 19:41:41 +0000 Files and hashes: 1: mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl (hash: 1DQE6O34IAuPx1N4ci/fBtuImzx0/3PGs/MaT+milbo=) 2: EF44A44E51EB11EABC11800DC4F9AE02.roa (hash: wVjOHBRTAFBzywxmlgqw2C8A1H3crVXb96hs+TBB5RU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2794 (0xaea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD378, serialNumber=99BE085D1C696CBC21B678F9188ECCE5DBCDD4CA Validity Not Before: Aug 6 19:41:41 2025 GMT Not After : Aug 13 19:41:41 2025 GMT Subject: CN=6893aff5-7aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:22:c1:31:3d:5c:ba:9c:1d:6e:b4:12:35:57: d3:16:22:e1:3c:92:59:20:f2:3d:e1:5e:6f:e2:93: a5:8c:9f:e0:c4:18:33:9f:17:b9:d9:11:a0:34:43: 95:78:2a:d2:e3:b7:74:ce:65:27:1d:06:01:c4:dc: 0e:38:7e:0c:a1:4e:80:95:11:b3:d8:0a:95:b4:0b: 78:12:bf:d3:0d:6f:21:d8:4d:52:3f:00:27:31:58: 9f:ec:2d:08:ea:6a:67:86:5b:1b:81:ce:b3:77:d2: b9:ba:cd:bd:36:51:98:9d:10:fc:67:a3:42:5d:c7: f1:96:f6:66:d4:78:4c:f6:24:93:52:c8:87:d9:8b: e5:8a:e0:1d:c7:91:55:03:c3:a2:d2:9e:d1:22:c6: 8f:df:6a:c8:6a:34:11:69:5a:f0:ae:49:f0:5e:b3: d5:ce:7e:c3:07:da:7f:3b:e4:fa:06:4f:38:ef:1f: 2b:46:44:7c:3d:07:cd:d9:a5:e2:b4:fb:66:1a:75: ca:94:be:96:0e:b3:22:6a:73:af:84:33:74:76:1a: 63:00:67:2c:c8:22:dd:c3:df:73:59:b5:90:40:b1: 16:53:81:dd:27:b5:28:07:c2:99:d0:79:f6:ef:44: 56:90:7c:1e:2b:f4:f1:3c:5d:ba:c4:da:d7:a1:9b: 54:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B7:45:F6:37:6D:8F:2E:CF:AE:86:97:4A:D5:2E:F0:81:CF:8B:09 X509v3 Authority Key Identifier: keyid:99:BE:08:5D:1C:69:6C:BC:21:B6:78:F9:18:8E:CC:E5:DB:CD:D4:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD378/632FA8CE51EA11EAB6A5CD86C4F9AE02/mb4IXRxpbLwhtnj5GI7M5dvN1Mo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:69:5b:95:db:a6:89:1c:84:3f:42:78:53:f3:50:3c:24:32: 8e:41:d4:9f:fc:a3:43:0b:a1:a2:43:5e:f3:3b:42:94:6d:c6: bf:56:ad:60:ef:51:7b:a0:0f:0f:3f:37:da:b7:10:4c:fc:61: 0c:78:37:ef:21:1f:80:4d:28:a2:58:e6:34:e4:5b:cc:5e:e2: 6a:03:30:56:89:27:10:e3:85:9d:fd:0f:64:98:0a:e7:37:00: db:94:d1:02:12:3f:27:15:8d:82:d9:f1:32:b3:36:45:9c:7f: 01:72:1c:99:41:71:62:7f:0b:17:a7:a6:a8:85:7f:1d:20:c4: f4:df:e9:c6:93:24:24:f3:53:50:52:33:64:11:f1:7c:8f:38: d1:b9:61:20:4c:aa:e0:0e:a9:e1:f0:e1:66:8d:6a:be:93:79: 5d:80:fd:8a:f4:28:67:dd:f3:02:dd:da:4f:9c:d3:97:97:3b: 11:5c:7e:67:f6:0e:f8:46:ca:ab:26:7f:f9:f0:d1:16:e1:8a: 68:34:91:06:80:92:39:5e:a2:47:a4:f8:a6:a6:77:3b:f9:12: fb:26:f6:32:2c:3c:aa:e9:92:6d:49:5e:14:c4:04:3f:92:69: 31:5f:50:13:c9:4f:a4:54:99:f0:f1:08:f0:9a:ca:89:2e:0e: ee:fd:9a:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzNzgxMTAvBgNVBAUTKDk5QkUwODVEMUM2OTZDQkMyMUI2NzhGOTE4OEVDQ0U1 REJDREQ0Q0EwHhcNMjUwODA2MTk0MTQxWhcNMjUwODEzMTk0MTQxWjAYMRYwFAYD VQQDEw02ODkzYWZmNS03YWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiLBMT1cupwdbrQSNVfTFiLhPJJZIPI94V5v4pOljJ/gxBgznxe52RGgNEOV eCrS47d0zmUnHQYBxNwOOH4MoU6AlRGz2AqVtAt4Er/TDW8h2E1SPwAnMVif7C0I 6mpnhlsbgc6zd9K5us29NlGYnRD8Z6NCXcfxlvZm1HhM9iSTUsiH2YvliuAdx5FV A8Oi0p7RIsaP32rIajQRaVrwrknwXrPVzn7DB9p/O+T6Bk847x8rRkR8PQfN2aXi tPtmGnXKlL6WDrMianOvhDN0dhpjAGcsyCLdw99zWbWQQLEWU4HdJ7UoB8KZ0Hn2 70RWkHweK/TxPF26xNrXoZtUmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDC3RfY3 bY8uz66Gl0rVLvCBz4sJMB8GA1UdIwQYMBaAFJm+CF0caWy8IbZ4+RiOzOXbzdTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM3OC82MzJGQThDRTUx RUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJMd2h0bmo1R0k3TTVkdk4x TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21iNElYUnhwYkx3aHRuajVHSTdNNWR2TjFNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM3OC82MzJGQThDRTUxRUExMUVBQjZBNUNEODZDNEY5QUUwMi9tYjRJWFJ4cGJM d2h0bmo1R0k3TTVkdk4xTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHaVuV26aJHIQ/QnhT81A8JDKOQdSf/KNDC6GiQ17zO0KUbca/Vq1g 71F7oA8PPzfatxBM/GEMeDfvIR+ATSiiWOY05FvMXuJqAzBWiScQ44Wd/Q9kmArn NwDblNECEj8nFY2C2fEyszZFnH8BchyZQXFifwsXp6aohX8dIMT03+nGkyQk81NQ UjNkEfF8jzjRuWEgTKrgDqnh8OFmjWq+k3ldgP2K9Chn3fMC3dpPnNOXlzsRXH5n 9g74RsqrJn/58NEW4YpoNJEGgJI5XqJHpPimpnc7+RL7JvYyLDyq6ZJtSV4UxAQ/ kmkxX1ATyU+kVJnw8QjwmsqJLg7u/Zoe -----END CERTIFICATE-----Generated at Fri Aug 8 19:38:58 2025 by rpki-client