$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: npbeMGKgkodNMFIfrUwe4LqKMuYJfeFj8IFEOMQfN3g= Subject key identifier: 68:97:E1:91:A0:79:71:61:05:73:5E:D8:A6:BF:B9:0A:3C:A1:6C:B6 Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 0241 Signing time: Sat 23 Aug 2025 02:05:38 +0000 Manifest this update: Sat 23 Aug 2025 02:05:38 +0000 Manifest next update: Sat 30 Aug 2025 02:05:37 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: HkzVupTDF8g6xLC4XV0xG/oNd1D4v2PY72hXwYxiJ08=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Aug 23 02:05:38 2025 GMT Not After : Aug 30 02:05:37 2025 GMT Subject: CN=68a921f2-befc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c6:ee:84:7d:a9:bb:bb:49:f6:bf:a4:53:74: 75:1e:66:4c:4e:e2:85:c1:f0:b2:b2:dc:60:e4:80: fa:ed:21:a4:01:10:4e:7c:ff:b9:59:9b:59:5b:a2: 67:7c:13:29:42:17:a7:08:d6:b3:38:e3:a3:da:f8: 7f:6a:f2:88:dd:16:e6:3c:f9:23:3a:50:33:f9:53: 76:36:3e:0f:b3:f4:db:f9:5a:49:65:fd:92:ec:f5: bb:4a:a5:dc:a7:5d:64:58:67:8d:2b:d1:a4:48:cf: e7:d3:ea:29:93:c6:c1:35:be:1a:3d:cc:23:af:ba: ab:b8:6c:2e:f1:00:ec:ff:13:34:db:4a:3e:c2:1a: 34:ac:88:ce:c1:92:a0:57:4a:c2:12:26:3d:b9:85: df:f0:55:6c:cb:9e:ea:20:3c:0f:50:86:e9:68:94: 7c:5b:f4:a2:94:53:d3:1e:25:fa:1a:b2:d8:43:8b: 6f:a8:8f:b8:52:0a:ef:a3:bb:63:f2:e8:70:4a:ac: bb:ba:aa:52:e5:4a:07:7b:e1:b4:73:72:c5:cf:8a: dc:cd:9d:34:23:3e:dc:70:9b:99:b2:8f:c2:c4:6b: 2d:d1:c7:4b:00:b9:82:8e:c5:91:45:b4:32:88:dd: 47:5e:36:da:06:64:c8:e6:6f:84:4e:7a:7b:b0:08: bf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:97:E1:91:A0:79:71:61:05:73:5E:D8:A6:BF:B9:0A:3C:A1:6C:B6 X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:b6:4b:2d:df:6e:43:33:9a:8b:0b:c2:d5:90:e4:81:b4:e5: a5:2f:36:95:62:29:66:9b:fc:91:03:d0:1c:c1:37:2b:3e:ee: 3c:01:ed:6e:65:4e:02:5c:05:8e:6e:74:a5:82:10:a9:a0:dd: 70:d9:30:3d:d6:95:b7:92:c1:b2:00:49:bd:d4:4d:d2:fc:76: 7f:7e:56:96:4b:74:ff:69:c8:10:30:fb:67:b2:33:cb:84:12: a4:32:5a:10:f3:7e:dd:a5:4d:4e:f7:57:51:5f:56:79:5f:8d: d4:4a:14:98:13:14:b6:6a:06:b3:d8:4b:ec:57:85:af:7a:1d: 2a:ca:12:84:9d:59:28:ae:3a:67:55:77:61:b2:4d:8b:f2:98: 40:c8:1e:64:b6:4b:f1:e8:7b:d9:9f:ac:dc:a7:1a:8e:d1:f8: c6:ca:1a:3b:26:4d:a6:fe:00:98:5c:22:e6:f2:40:e5:14:3a: 19:76:29:45:e2:18:f9:19:bc:c2:d3:47:92:e7:a3:92:79:61: 65:5a:38:25:07:6d:9e:c5:b9:55:6b:02:2f:6a:36:dc:43:c0: 5d:97:2e:a3:26:ff:1c:d7:fa:e3:ee:6e:a1:b8:d8:c4:45:37: 50:96:67:ff:bc:97:da:4d:3a:76:2e:20:ac:cc:f5:57:00:6e: cc:4f:84:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUwODIzMDIwNTM4WhcNMjUwODMwMDIwNTM3WjAYMRYwFAYD VQQDEw02OGE5MjFmMi1iZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6sbuhH2pu7tJ9r+kU3R1HmZMTuKFwfCystxg5ID67SGkARBOfP+5WZtZW6Jn fBMpQhenCNazOOOj2vh/avKI3RbmPPkjOlAz+VN2Nj4Ps/Tb+VpJZf2S7PW7SqXc p11kWGeNK9GkSM/n0+opk8bBNb4aPcwjr7qruGwu8QDs/xM020o+who0rIjOwZKg V0rCEiY9uYXf8FVsy57qIDwPUIbpaJR8W/SilFPTHiX6GrLYQ4tvqI+4Ugrvo7tj 8uhwSqy7uqpS5UoHe+G0c3LFz4rczZ00Iz7ccJuZso/CxGst0cdLALmCjsWRRbQy iN1HXjbaBmTI5m+ETnp7sAi/BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiX4ZGg eXFhBXNe2Ka/uQo8oWy2MB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrtkst325DM5qLC8LVkOSBtOWlLzaVYilmm/yRA9AcwTcrPu48Ae1u ZU4CXAWObnSlghCpoN1w2TA91pW3ksGyAEm91E3S/HZ/flaWS3T/acgQMPtnsjPL hBKkMloQ837dpU1O91dRX1Z5X43UShSYExS2agaz2EvsV4Wveh0qyhKEnVkorjpn VXdhsk2L8phAyB5ktkvx6HvZn6zcpxqO0fjGyho7Jk2m/gCYXCLm8kDlFDoZdilF 4hj5GbzC00eS56OSeWFlWjglB22exblVawIvajbcQ8Bdly6jJv8c1/rj7m6huNjE RTdQlmf/vJfaTTp2LiCszPVXAG7MT4Rn -----END CERTIFICATE-----Generated at Sat Aug 23 16:17:51 2025 by rpki-client