$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: HbMAgpp10xifzFCbYs0jjZU6tExSMyT6/yt466NC0ko= Subject key identifier: 99:D5:E4:88:82:31:0E:45:CD:DE:22:56:E8:44:27:EB:1F:CD:01:74 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B41 Signing time: Fri 08 Aug 2025 19:24:56 +0000 Manifest this update: Fri 08 Aug 2025 19:24:55 +0000 Manifest next update: Fri 15 Aug 2025 19:24:55 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: yIsoffVJ9miwBKnz81jo0a0u5tqsjluKOXVv48EYkvo=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Aug 8 19:24:55 2025 GMT Not After : Aug 15 19:24:55 2025 GMT Subject: CN=68964f07-ba17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b5:f4:94:a4:d7:af:05:8f:45:5e:cd:fc:16: 72:3a:ee:a9:50:f4:66:75:c5:2f:6a:fc:03:bb:cd: 45:24:4b:f9:f3:52:fd:6b:45:5a:f3:0a:af:6d:9b: f4:10:8d:ac:7c:ee:1d:c2:cd:e1:88:80:77:1d:14: e8:38:3d:4a:9f:e8:63:f0:10:56:f0:50:4c:e6:a4: dc:18:79:5e:b7:29:a0:94:08:b9:f0:d3:4f:7d:1e: ef:5e:58:ea:1e:dc:a6:b2:ee:c7:3d:1a:43:ed:4c: fa:ac:39:0e:61:d2:ac:8c:07:af:cb:85:ff:fa:2b: af:fb:0b:cd:13:d8:92:7c:fb:c8:21:af:7b:c9:fe: 76:3f:fb:37:61:e5:e8:f1:0a:f5:17:8a:5b:a1:ce: fd:1f:2b:0d:9d:9c:6f:90:68:9d:f6:94:94:11:b0: 1e:da:59:35:bc:ef:7d:35:19:3e:e4:2a:28:5f:c5: 42:fd:e0:0c:a0:fe:36:c2:31:36:68:54:99:03:a5: c5:a7:2d:cc:9d:d0:6f:01:40:fe:99:f1:aa:1e:00: e2:a6:7d:76:7e:9e:3d:4b:7e:b0:eb:5e:9d:84:73: 10:5e:20:3a:7d:d9:8f:8c:50:6c:58:03:5b:36:ca: 04:9c:09:f9:91:83:39:2c:1e:06:67:48:bb:b9:36: 10:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D5:E4:88:82:31:0E:45:CD:DE:22:56:E8:44:27:EB:1F:CD:01:74 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:4f:04:11:fe:6b:17:b2:79:b5:ec:cf:8d:bf:74:29:ce:a9: c2:f7:70:3b:15:6d:a0:2f:fd:90:8b:35:74:f5:47:5e:2a:dc: bd:ac:c7:0b:6d:0d:dd:d2:0b:fa:94:68:63:f1:28:75:0b:0a: a4:1e:96:e9:99:1f:84:00:e3:b2:1e:05:39:af:f7:7f:9c:84: 7b:03:09:dd:13:2a:29:c1:e0:86:1c:c6:22:17:47:8f:83:0d: fc:0c:f5:eb:9d:78:31:dd:d8:78:c6:a2:8f:55:0e:9f:67:00: 26:7d:ab:fd:2b:4f:f2:64:aa:a7:10:44:d1:3c:64:80:23:27: f4:d8:92:a7:39:b5:f2:75:0b:88:ec:98:5d:f1:a1:27:c7:d9: 79:27:1e:f6:45:51:55:ca:df:c5:be:6c:5c:a1:1b:36:81:5e: 70:bb:7a:7c:bb:f2:6d:38:6e:f8:59:3b:6e:98:05:91:ea:12: f6:52:09:d5:a6:93:3b:ff:e1:09:10:1e:be:15:bf:ad:bc:2d: ff:e4:a5:0c:6a:60:68:fc:54:07:1d:cf:80:99:d7:97:13:a7: d0:b7:28:4a:7c:1e:78:34:37:00:fa:f1:fc:09:02:17:5d:25: bd:de:d9:6b:b9:f6:64:d0:cf:aa:91:86:dd:d5:ac:78:66:97: e1:94:83:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUwODA4MTkyNDU1WhcNMjUwODE1MTkyNDU1WjAYMRYwFAYD VQQDEw02ODk2NGYwNy1iYTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbX0lKTXrwWPRV7N/BZyOu6pUPRmdcUvavwDu81FJEv581L9a0Va8wqvbZv0 EI2sfO4dws3hiIB3HRToOD1Kn+hj8BBW8FBM5qTcGHletymglAi58NNPfR7vXljq Htymsu7HPRpD7Uz6rDkOYdKsjAevy4X/+iuv+wvNE9iSfPvIIa97yf52P/s3YeXo 8Qr1F4pboc79HysNnZxvkGid9pSUEbAe2lk1vO99NRk+5CooX8VC/eAMoP42wjE2 aFSZA6XFpy3MndBvAUD+mfGqHgDipn12fp49S36w616dhHMQXiA6fdmPjFBsWANb NsoEnAn5kYM5LB4GZ0i7uTYQsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnV5IiC MQ5Fzd4iVuhEJ+sfzQF0MB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9TwQR/msXsnm17M+Nv3QpzqnC93A7FW2gL/2QizV09UdeKty9rMcL bQ3d0gv6lGhj8Sh1CwqkHpbpmR+EAOOyHgU5r/d/nIR7AwndEyopweCGHMYiF0eP gw38DPXrnXgx3dh4xqKPVQ6fZwAmfav9K0/yZKqnEETRPGSAIyf02JKnObXydQuI 7Jhd8aEnx9l5Jx72RVFVyt/FvmxcoRs2gV5wu3p8u/JtOG74WTtumAWR6hL2UgnV ppM7/+EJEB6+Fb+tvC3/5KUMamBo/FQHHc+AmdeXE6fQtyhKfB54NDcA+vH8CQIX XSW93tlrufZk0M+qkYbd1ax4ZpfhlIPA -----END CERTIFICATE-----Generated at Sun Aug 10 13:51:14 2025 by rpki-client