$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft (raw, json) Hash identifier: A50R4nETiSjG4xkovi0X3qOPN29RuelH/HZoaqHgVTY= Subject key identifier: 2B:0C:05:C5:27:9B:D2:A2:2C:95:FC:58:99:A2:84:44:5B:92:27:C8 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 04E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft Manifest number: 04DC Signing time: Sat 23 Aug 2025 00:01:30 +0000 Manifest this update: Sat 23 Aug 2025 00:01:30 +0000 Manifest next update: Sat 30 Aug 2025 00:01:30 +0000 Files and hashes: 1: keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl (hash: kT4Xv7qXri1zOFUL7RGCjjlRngjw9TjJ4RNwojCTrqo=) 2: C52B4E0A3FE011EF88794913C4F9AE02.roa (hash: BHc0YO4uerOV3pChxVjG7O544zd2LrVw+gOJhxCdrB0=) 3: 1295B5943FA611EF94664041C4F9AE02.roa (hash: FuWrvkmDIg3mxhyAWWbi/ukBRQacmBTwsE71FX0nX8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Aug 23 00:01:30 2025 GMT Not After : Aug 30 00:01:30 2025 GMT Subject: CN=68a904da-2902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c8:5d:48:c3:f4:0c:4f:fc:a0:a6:ae:42:3e: a3:6e:39:b7:a2:1b:be:2f:49:84:b7:df:fa:e5:16: 4c:f0:3c:93:a4:b1:aa:51:ed:b9:c8:d2:e6:3e:7b: f7:66:f3:8c:2b:df:23:3b:fe:5b:00:92:f8:90:4e: 4e:92:a3:8e:19:8f:4d:e5:71:65:95:93:17:a6:2c: 99:23:2c:5b:b2:8e:9b:94:fc:3f:08:b7:04:62:9c: af:63:25:67:d3:cb:4d:40:c0:c5:26:f8:fe:81:87: 62:94:56:cd:93:2e:52:16:01:20:14:4a:1b:c6:cb: 75:01:5d:23:49:cc:6b:aa:77:71:71:41:62:b9:72: e8:fd:52:68:c0:d8:9b:1a:6a:65:ea:4a:c1:97:6a: 94:50:00:0d:0d:a6:9d:38:b2:c2:bb:3b:00:d8:28: 22:5a:58:d9:e0:9d:f4:22:c8:39:dc:8e:9e:22:da: 88:60:e4:e2:85:27:12:bf:75:cb:53:7e:27:53:a9: 2c:59:50:4f:ca:21:13:60:0c:15:4a:f5:68:e1:99: 0b:5c:e8:53:c5:65:82:99:09:1a:c0:70:e4:5e:f1: 57:73:b2:b2:ce:45:7a:8b:28:1d:8d:9b:25:81:e5: 15:63:a8:c8:1e:40:0e:2e:eb:d6:31:df:f9:a2:32: f4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:0C:05:C5:27:9B:D2:A2:2C:95:FC:58:99:A2:84:44:5B:92:27:C8 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ab:19:1e:18:a1:08:85:fd:d9:09:ee:fd:ea:6c:28:e4:62: c6:a6:26:e5:1d:1c:40:36:4a:c4:b5:4f:41:36:ac:ef:d0:b1: 0b:5e:74:8f:4c:c3:f7:66:12:7a:3c:d6:36:77:22:69:3d:51: 3a:32:9c:89:74:7c:e2:de:63:e5:06:54:00:4b:3b:01:dc:4e: ac:79:72:9e:13:36:07:c9:49:d3:82:b5:ff:15:73:3d:8a:78: c5:20:0d:e5:c1:39:0d:02:d9:bf:24:6c:b6:40:38:3e:aa:9c: 0d:15:08:1c:f8:93:01:8a:32:67:a4:cd:c7:3f:44:61:d3:aa: 13:f5:90:97:7b:64:cf:9f:a5:4e:54:4c:51:b1:38:d2:8d:d9: 8d:3b:08:15:b3:63:90:07:51:f1:30:43:37:f0:7c:dc:ee:b4: 2f:ba:3c:53:9f:c1:48:08:36:ac:3d:96:ca:e9:de:50:61:f9: aa:ae:88:1b:30:08:27:83:54:c0:ca:31:04:3f:88:59:4c:46: f9:f7:ae:93:51:66:af:50:ad:2c:31:dc:97:77:93:cc:e0:5e: 4f:c3:6b:f5:b3:54:7f:5d:a7:a0:f3:3a:5d:ae:5f:2c:78:18: e9:da:a7:be:70:23:f9:a2:27:2c:26:9f:bb:12:44:22:dc:19: 24:aa:2e:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjUwODIzMDAwMTMwWhcNMjUwODMwMDAwMTMwWjAYMRYwFAYD VQQDEw02OGE5MDRkYS0yOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwshdSMP0DE/8oKauQj6jbjm3ohu+L0mEt9/65RZM8DyTpLGqUe25yNLmPnv3 ZvOMK98jO/5bAJL4kE5OkqOOGY9N5XFllZMXpiyZIyxbso6blPw/CLcEYpyvYyVn 08tNQMDFJvj+gYdilFbNky5SFgEgFEobxst1AV0jScxrqndxcUFiuXLo/VJowNib Gmpl6krBl2qUUAANDaadOLLCuzsA2CgiWljZ4J30Isg53I6eItqIYOTihScSv3XL U34nU6ksWVBPyiETYAwVSvVo4ZkLXOhTxWWCmQkawHDkXvFXc7KyzkV6iygdjZsl geUVY6jIHkAOLuvWMd/5ojL00QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsMBcUn m9KiLJX8WJmihERbkifIMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRK Si11MzVHSElCWURTT1RXU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNqxkeGKEIhf3ZCe796mwo5GLGpiblHRxANkrEtU9BNqzv0LELXnSP TMP3ZhJ6PNY2dyJpPVE6MpyJdHzi3mPlBlQASzsB3E6seXKeEzYHyUnTgrX/FXM9 injFIA3lwTkNAtm/JGy2QDg+qpwNFQgc+JMBijJnpM3HP0Rh06oT9ZCXe2TPn6VO VExRsTjSjdmNOwgVs2OQB1HxMEM38Hzc7rQvujxTn8FICDasPZbK6d5QYfmqrogb MAgng1TAyjEEP4hZTEb5966TUWavUK0sMdyXd5PM4F5Pw2v1s1R/Xaeg8zpdrl8s eBjp2qe+cCP5oicsJp+7EkQi3Bkkqi5t -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:13 2025 by rpki-client