$ rpki-client -vvf rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft File: A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft (raw, json) Hash identifier: J/ZOpSVTljlQ6gSeVs8lp5YAzMDmpdi5QwNvxKnkdv4= Subject key identifier: FB:8E:D0:D2:1B:72:4A:C9:B8:60:FB:B4:63:2F:4E:0E:55:36:2B:8A Authority key identifier: 03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 Certificate issuer: /CN=A91380F7/serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft Manifest number: 8D Signing time: Sat 23 Aug 2025 06:44:53 +0000 Manifest this update: Sat 23 Aug 2025 06:44:53 +0000 Manifest next update: Sat 30 Aug 2025 06:44:53 +0000 Files and hashes: 1: A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl (hash: SamkfU8BMtWEL7LQ6Bx5J84z5s8DOuyfmmyagP3QDgU=) 2: 9B3FE178A7FA11EFA7886875C4F9AE02.roa (hash: wskyOCDE340iqc6+xbxJBMsRJGfe9vODWh/hz8Ga1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380F7, serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Validity Not Before: Aug 23 06:44:53 2025 GMT Not After : Aug 30 06:44:53 2025 GMT Subject: CN=68a96365-03d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:b6:1d:a6:2d:92:96:09:0c:b5:bd:9f:1a: 31:19:a5:02:99:30:63:c4:b6:92:f0:6c:5d:35:2e: 61:cb:0f:da:20:3c:aa:9b:f5:14:03:43:9e:9d:de: 60:53:7b:2a:cf:ac:3f:55:80:11:68:a1:1e:1c:8d: c5:32:28:94:de:ca:7c:df:33:6a:e2:1d:29:2e:f7: ef:26:32:e1:c2:95:f8:f6:0d:86:ff:1a:70:a8:51: 88:56:41:a7:ee:e8:f0:b4:bd:e8:f9:32:24:e8:41: e8:c0:2d:fd:ea:42:fe:3f:18:a0:2c:73:ea:bf:b0: 82:8f:50:8b:8d:64:b6:57:02:96:4a:d4:b8:06:7c: 61:5f:93:d0:34:d7:10:c7:3f:50:2e:f7:4f:82:e8: a4:b6:23:cf:a5:09:8e:c5:4b:81:96:1b:30:bc:27: 9a:1c:8a:4f:a1:7d:2b:aa:a8:c5:3b:84:78:81:72: 41:e5:98:ab:d1:da:7a:02:35:f3:f3:6b:71:cc:d5: 1e:24:f0:89:0a:c7:1a:35:13:3f:8d:dd:43:73:6b: df:65:ab:eb:db:f5:f9:e6:f2:4a:6a:00:cc:58:bd: b5:38:60:37:f1:9d:e3:65:0d:4c:5f:19:e2:41:0f: 74:6b:fb:32:e8:48:9c:9d:c0:06:40:db:52:47:65: f6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8E:D0:D2:1B:72:4A:C9:B8:60:FB:B4:63:2F:4E:0E:55:36:2B:8A X509v3 Authority Key Identifier: keyid:03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:95:73:44:66:2d:6e:ea:e9:13:96:c3:78:82:51:33:29:21: c0:fe:41:53:b0:79:c6:3c:a5:31:3d:3d:b5:16:3f:bd:11:fc: 7c:5a:1a:58:52:70:de:08:a8:f8:47:cb:5c:e0:40:a0:8a:5d: 26:8c:ff:9f:e3:ec:8d:62:19:6d:3b:43:c2:cb:cd:98:9f:a3: 12:18:1e:2d:e2:c4:24:8d:a4:dd:80:11:07:39:0d:a6:98:74: 26:51:f8:23:e2:19:a8:a9:ac:52:da:2a:4d:95:c7:af:09:83: 10:c3:83:db:31:10:3a:69:98:36:a8:6d:f3:5c:e1:0e:58:c7: 6e:51:1c:fa:89:7f:8c:46:1d:aa:b4:ee:eb:9e:bd:56:db:67: 2b:c6:9f:db:03:74:91:3d:15:01:16:47:db:eb:fb:40:cb:05: cd:3b:16:51:73:7a:e5:0d:f5:67:bf:28:fb:2c:88:c9:56:7c: bc:17:8d:d5:c4:3b:a4:f5:f1:2a:f8:5a:51:d5:c6:31:6b:3b: 59:1d:66:97:6c:20:4b:d1:f5:04:a5:07:c4:21:72:76:a7:31: e1:38:65:8e:ef:0b:3a:3f:22:ec:63:c8:fb:6b:fd:4d:ee:97: 17:33:dc:42:6b:e3:dd:d0:03:c7:12:36:d5:1d:51:4e:51:78: a5:5c:9b:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwRjcxMTAvBgNVBAUTKDAzOTFEOUE3MEU4OTNFNzUxQkM2MTI4OUM1NDQxN0I4 N0ExMDQ1NTkwHhcNMjUwODIzMDY0NDUzWhcNMjUwODMwMDY0NDUzWjAYMRYwFAYD VQQDEw02OGE5NjM2NS0wM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAq2HaYtkpYJDLW9nxoxGaUCmTBjxLaS8GxdNS5hyw/aIDyqm/UUA0Oend5g U3sqz6w/VYARaKEeHI3FMiiU3sp83zNq4h0pLvfvJjLhwpX49g2G/xpwqFGIVkGn 7ujwtL3o+TIk6EHowC396kL+PxigLHPqv7CCj1CLjWS2VwKWStS4BnxhX5PQNNcQ xz9QLvdPguiktiPPpQmOxUuBlhswvCeaHIpPoX0rqqjFO4R4gXJB5Zir0dp6AjXz 82txzNUeJPCJCscaNRM/jd1Dc2vfZavr2/X55vJKagDMWL21OGA38Z3jZQ1MXxni QQ90a/sy6EicncAGQNtSR2X2NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuO0NIb ckrJuGD7tGMvTg5VNiuKMB8GA1UdIwQYMBaAFAOR2acOiT51G8YSicVEF7h6EEVZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBGNy9BN0VCQzFEMkE3 RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi9BNUhacHc2SlBuVWJ4aEtKeFVRWHVIb1FS VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E1SFpwdzZKUG5VYnhoS0p4VVFYdUhvUVJWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBGNy9BN0VCQzFEMkE3RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi9BNUhacHc2SlBu VWJ4aEtKeFVRWHVIb1FSVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIlXNEZi1u6ukTlsN4glEzKSHA/kFTsHnGPKUxPT21Fj+9Efx8WhpY UnDeCKj4R8tc4ECgil0mjP+f4+yNYhltO0PCy82Yn6MSGB4t4sQkjaTdgBEHOQ2m mHQmUfgj4hmoqaxS2ipNlcevCYMQw4PbMRA6aZg2qG3zXOEOWMduURz6iX+MRh2q tO7rnr1W22crxp/bA3SRPRUBFkfb6/tAywXNOxZRc3rlDfVnvyj7LIjJVny8F43V xDuk9fEq+FpR1cYxaztZHWaXbCBL0fUEpQfEIXJ2pzHhOGWO7ws6PyLsY8j7a/1N 7pcXM9xCa+Pd0APHEjbVHVFOUXilXJuV -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:46 2025 by rpki-client