$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: HWv/7j3xv5X1so/vDQi2r3UjEeI+IVv+fLt9qJr+HLE= Subject key identifier: 7E:DB:80:51:8C:D7:B1:15:06:C4:1E:38:20:CF:58:4E:EC:0E:D3:DC Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BF2 Signing time: Fri 22 Aug 2025 19:03:44 +0000 Manifest this update: Fri 22 Aug 2025 19:03:44 +0000 Manifest next update: Fri 29 Aug 2025 19:03:44 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: tgzW2Pxq5vL8q7QANowxGtOBgJQkN7VXfcTfGQ5LOq0=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 4: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: edBs+LqPeq6VId1edbW8z5stcuCPjdTspdZcbHXD4ms=) 5: C5639A105E3B11F09FAC9B6DC4F9AE02.roa (hash: +jkx8ForKRaNqf1DBVMg/S9cIOq8CLcZaNyeQAklIwQ=) 6: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: bYDuNI3W6+4EZSV4cW7DNvBB9NpXjXY4h4lfRb3nwhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Aug 22 19:03:44 2025 GMT Not After : Aug 29 19:03:44 2025 GMT Subject: CN=68a8bf10-6346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:99:98:96:ad:46:aa:86:17:06:6d:30:bf: 9d:19:d0:68:26:e3:b7:d5:4a:e9:7e:6b:23:ae:ad: 56:da:b5:a0:9f:1b:77:1e:bf:94:b6:3b:df:82:74: 60:cb:c2:d0:b3:f0:47:39:3d:b1:87:a0:1a:6a:5c: 12:08:f6:37:54:4f:44:7e:07:b7:c1:4f:20:fa:80: 22:33:f9:19:57:82:82:c4:a9:7a:e6:98:c6:97:88: 48:d7:52:0e:2e:59:f2:d3:63:ca:01:59:b8:34:7c: 36:8f:6a:a4:e0:81:fb:d9:e3:ac:a8:44:18:59:ae: e2:3b:7b:ef:a1:23:f6:5f:9d:fd:a5:cd:f9:e0:81: e6:d9:ce:d5:17:6e:a3:8f:c7:b7:68:3f:45:bb:c4: 59:32:dc:a1:54:70:bd:7e:68:d0:a7:a4:a9:0c:bd: 03:75:31:ce:45:47:a1:78:9f:e6:49:e4:21:4d:9f: 75:06:07:1d:7d:a1:43:5a:c7:66:fb:3d:10:ef:1e: a1:17:40:64:1a:50:37:94:4a:e0:5e:f5:bb:d1:02: c6:56:97:64:36:3d:bf:99:ae:e1:8b:c9:f5:2e:81: 46:4f:23:4b:e3:a3:0e:8b:04:ab:ee:88:13:7f:24: 05:ad:31:1c:20:6f:bc:19:54:3c:d6:cc:9b:6c:11: d2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DB:80:51:8C:D7:B1:15:06:C4:1E:38:20:CF:58:4E:EC:0E:D3:DC X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:61:00:b7:a0:6d:e9:11:e3:86:6c:89:db:7c:5f:1b:2f:1a: f5:07:c8:aa:95:10:be:78:73:d3:c0:95:2f:92:c5:eb:36:bf: e9:b9:e5:da:7a:16:d6:a1:26:89:75:6f:1b:df:16:b1:be:19: 68:6a:f1:7d:d3:96:65:46:41:36:c7:0f:29:c4:ae:e6:95:39: 4a:71:5b:71:c5:29:df:53:22:58:5c:aa:95:f1:15:57:f9:f2: 60:f9:95:03:04:dc:e9:44:f0:56:fa:d3:ca:3a:80:3d:f7:8e: 9b:12:37:19:ee:ee:cf:f2:30:ff:4e:fc:0d:27:21:e2:f1:7c: 77:62:4c:99:1c:95:74:cc:02:8b:d2:96:e7:a7:80:10:d6:23: 75:fe:9b:04:55:91:ae:73:bd:24:b2:ce:f8:5b:80:6e:7b:e4: eb:89:59:93:73:ef:6d:21:98:30:c1:cc:5c:1b:64:81:ce:28: c2:e4:99:63:30:29:3d:8b:96:db:aa:3a:fd:4c:d7:9b:e2:ee: 9b:14:10:c2:18:27:79:dd:33:26:47:68:1b:7d:c4:7e:c9:0f: bd:ab:e5:32:3b:53:bf:ee:9b:56:89:e6:60:69:a9:2b:3b:1d: c5:dc:e7:15:5f:28:66:44:bd:b0:14:d6:26:c1:36:a1:a7:79: 5c:11:91:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwODIyMTkwMzQ0WhcNMjUwODI5MTkwMzQ0WjAYMRYwFAYD VQQDEw02OGE4YmYxMC02MzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA+ZmJatRqqGFwZtML+dGdBoJuO31Urpfmsjrq1W2rWgnxt3Hr+UtjvfgnRg y8LQs/BHOT2xh6AaalwSCPY3VE9Efge3wU8g+oAiM/kZV4KCxKl65pjGl4hI11IO Llny02PKAVm4NHw2j2qk4IH72eOsqEQYWa7iO3vvoSP2X539pc354IHm2c7VF26j j8e3aD9Fu8RZMtyhVHC9fmjQp6SpDL0DdTHORUeheJ/mSeQhTZ91BgcdfaFDWsdm +z0Q7x6hF0BkGlA3lErgXvW70QLGVpdkNj2/ma7hi8n1LoFGTyNL46MOiwSr7ogT fyQFrTEcIG+8GVQ81sybbBHSgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7bgFGM 17EVBsQeOCDPWE7sDtPcMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXYQC3oG3pEeOGbInbfF8bLxr1B8iqlRC+eHPTwJUvksXrNr/pueXa ehbWoSaJdW8b3xaxvhloavF905ZlRkE2xw8pxK7mlTlKcVtxxSnfUyJYXKqV8RVX +fJg+ZUDBNzpRPBW+tPKOoA9946bEjcZ7u7P8jD/TvwNJyHi8Xx3YkyZHJV0zAKL 0pbnp4AQ1iN1/psEVZGuc70kss74W4Bue+TriVmTc+9tIZgwwcxcG2SBzijC5Jlj MCk9i5bbqjr9TNeb4u6bFBDCGCd53TMmR2gbfcR+yQ+9q+UyO1O/7ptWieZgaakr Ox3F3OcVXyhmRL2wFNYmwTahp3lcEZF9 -----END CERTIFICATE-----Generated at Sun Aug 24 06:43:25 2025 by rpki-client