$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: LSpGVzyMrELt+bIsFsoMPwnroJRGYLa8hckiTfcrouU= Subject key identifier: A9:DB:E6:0E:C7:7B:AA:DD:2E:B0:FB:37:72:F9:93:D2:57:23:5F:78 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: 5D Signing time: Sat 09 Aug 2025 07:36:47 +0000 Manifest this update: Sat 09 Aug 2025 07:36:47 +0000 Manifest next update: Sat 16 Aug 2025 07:36:47 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: 7ukHPP1awpjW3aI4+WLOCFfxanrVljYoN3hmU1o+EY0=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: NgHWuWasRdq7/Tb6jtbOAPkZk5G59CnEADx3vts0M7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Aug 9 07:36:47 2025 GMT Not After : Aug 16 07:36:47 2025 GMT Subject: CN=6896fa8f-ba50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:eb:d4:ea:cd:e8:9e:1b:cb:4b:b1:b4:62:19: 20:6e:f1:2b:6f:85:75:e5:10:5e:58:de:c2:10:85: ac:73:5f:63:f1:91:09:3c:fc:df:76:95:08:84:27: 7b:19:6e:38:bd:db:b9:e0:ad:14:04:2c:28:5d:6f: 74:6e:8a:54:7f:fb:c4:b6:d4:71:df:58:04:8a:7b: 8d:c2:90:c8:32:c4:c3:d3:0a:52:7a:1f:28:8b:6f: 7b:ae:63:33:8a:29:25:41:09:1f:6b:7d:7d:4b:61: b1:51:e3:56:f4:7c:ab:ee:14:0b:84:fc:38:a2:56: 7c:26:be:44:fb:71:48:6b:2c:da:43:1d:d3:61:6b: 67:76:6d:31:a7:45:5a:47:79:3f:4a:0d:3d:63:2e: bf:10:a7:c2:61:c4:8e:2a:cb:81:2d:2e:a1:34:cc: 8e:c2:ea:8b:d1:3a:d8:4c:6f:d6:80:28:4e:fb:fa: c2:7e:0d:58:4b:36:3e:57:ae:2e:0e:9a:7b:7f:94: f6:36:71:10:0a:50:29:06:52:73:20:a7:21:d5:27: 40:49:ce:b6:ee:87:f8:d7:f3:6a:dc:20:c7:6f:ee: 9c:65:ec:53:53:90:11:2d:72:3e:67:f6:a3:7b:fa: 97:7f:19:a1:96:3e:75:42:71:d2:e9:20:5d:1a:04: d6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DB:E6:0E:C7:7B:AA:DD:2E:B0:FB:37:72:F9:93:D2:57:23:5F:78 X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9b:29:42:05:4b:f8:f4:9d:44:27:32:2b:ac:37:38:99:98: 94:82:ee:55:43:89:39:09:27:34:a3:ac:86:3f:b0:44:7c:17: d5:6e:fb:db:f4:d3:4f:50:24:87:fb:be:d7:f7:69:e4:dd:45: 45:da:43:a9:fd:1d:fc:aa:e8:58:ae:df:95:05:86:e7:84:6f: 83:ca:5e:67:9c:72:e3:b5:ef:11:18:fa:d6:ef:73:e4:c2:38: 3a:dc:a0:c7:99:93:c5:f0:2f:e7:19:a0:1d:22:4f:98:57:b0: d7:06:f0:8e:41:97:0b:b1:ac:35:ea:f0:93:4a:f5:d1:c4:e0: 0f:1b:d9:73:86:13:17:56:84:65:0f:dd:34:8f:54:c4:1d:e4: 2a:0e:1e:c5:31:41:a5:32:73:ac:f2:7b:26:a6:b3:11:fa:82: ff:3a:96:da:d3:ab:09:fd:a9:c0:09:14:b5:4c:ec:f8:6f:6f: 72:bb:36:0e:21:e6:b5:6f:c3:a0:67:93:61:bc:48:63:c7:22: 94:df:d2:36:d8:0e:7e:fe:af:42:df:fe:90:91:c6:1a:53:8d: 66:c8:ea:06:5e:19:a2:4d:3f:e0:42:53:49:6b:e3:65:3b:fa: f1:77:db:9b:f4:2d:66:7f:f1:8b:27:e9:5f:3c:fd:95:97:75: 2e:94:ba:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RUYzQjExMC8GA1UEBRMoQTM4RDQ4N0JENUQ5QThBODk0ODAyNzRGRTZGN0MwNjFD NjI0QkNDMDAeFw0yNTA4MDkwNzM2NDdaFw0yNTA4MTYwNzM2NDdaMBgxFjAUBgNV BAMTDTY4OTZmYThmLWJhNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC769TqzeieG8tLsbRiGSBu8StvhXXlEF5Y3sIQhaxzX2PxkQk8/N92lQiEJ3sZ bji927ngrRQELChdb3RuilR/+8S21HHfWASKe43CkMgyxMPTClJ6HyiLb3uuYzOK KSVBCR9rfX1LYbFR41b0fKvuFAuE/DiiVnwmvkT7cUhrLNpDHdNha2d2bTGnRVpH eT9KDT1jLr8Qp8JhxI4qy4EtLqE0zI7C6ovROthMb9aAKE77+sJ+DVhLNj5Xri4O mnt/lPY2cRAKUCkGUnMgpyHVJ0BJzrbuh/jX82rcIMdv7pxl7FNTkBEtcj5n9qN7 +pd/GaGWPnVCcdLpIF0aBNYFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqdvmDsd7 qt0usPs3cvmT0lcjX3gwHwYDVR0jBBgwFoAUo41Ie9XZqKiUgCdP5vfAYcYkvMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFRjNCL0FDNzYyMjAwRTlD NjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzQxSWU5WFpxS2lVZ0NkUDV2ZkFZY1lrdk1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZF RjNCL0FDNzYyMjAwRTlDNjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtp VWdDZFA1dmZBWWNZa3ZNQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD2bKUIFS/j0nUQnMiusNziZmJSC7lVDiTkJJzSjrIY/sER8F9Vu+9v0 009QJIf7vtf3aeTdRUXaQ6n9Hfyq6Fiu35UFhueEb4PKXmeccuO17xEY+tbvc+TC ODrcoMeZk8XwL+cZoB0iT5hXsNcG8I5BlwuxrDXq8JNK9dHE4A8b2XOGExdWhGUP 3TSPVMQd5CoOHsUxQaUyc6zyeyamsxH6gv86ltrTqwn9qcAJFLVM7Phvb3K7Ng4h 5rVvw6Bnk2G8SGPHIpTf0jbYDn7+r0Lf/pCRxhpTjWbI6gZeGaJNP+BCU0lr42U7 +vF325v0LWZ/8Ysn6V88/ZWXdS6Uuq0= -----END CERTIFICATE-----Generated at Mon Aug 11 01:48:38 2025 by rpki-client