$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft File: d31UDhYfpnH7JFijP_5L8z1qcBU.mft (raw, json) Hash identifier: DrcosGBpeA5fe/AL8f3ZXBd5zknN/ex+uq/T3WDo2W4= Subject key identifier: 24:48:C6:D9:A1:C7:CA:5D:AC:F2:FB:E5:A6:C2:8D:2C:DB:7F:02:5F Authority key identifier: 77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 Certificate issuer: /CN=A913BA27/serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft Manifest number: 29 Signing time: Sat 23 Aug 2025 07:59:58 +0000 Manifest this update: Sat 23 Aug 2025 07:59:58 +0000 Manifest next update: Sat 30 Aug 2025 07:59:58 +0000 Files and hashes: 1: d31UDhYfpnH7JFijP_5L8z1qcBU.crl (hash: U6Oa385dP93D3ndmJZXmk3grvTOYQ2dZZb2v+OCc1Ew=) 2: 71B7688645AB11F0949A471EC4F9AE02.roa (hash: yl2cL3cHIW46lNiv/5lOmjEF6XN4CiYiCi/4pbPGnEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA27, serialNumber=777D540E161FA671FB2458A33FFE4BF33D6A7015 Validity Not Before: Aug 23 07:59:58 2025 GMT Not After : Aug 30 07:59:58 2025 GMT Subject: CN=68a974fe-3a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:1a:a0:a9:e6:45:39:26:fd:5c:c0:c1:e1: 85:50:69:bc:1b:8d:bb:a6:9c:14:9f:3e:e8:6a:33: 47:ca:c6:33:2a:77:e4:32:82:f4:21:20:33:26:84: e7:ed:b9:1e:fb:52:94:0e:74:5f:f8:af:a1:90:cd: 81:3e:af:48:cf:5b:4f:d4:91:61:91:55:f7:d9:59: 54:f5:4c:5b:d1:bc:83:d8:26:91:6d:aa:45:81:75: 94:60:31:13:00:fd:6d:45:4e:ad:ad:dd:03:cb:1b: b0:dc:c1:7b:04:dd:e2:47:58:0a:72:93:f5:bd:05: 07:f8:a8:c7:a9:6a:ca:b3:03:16:01:72:e0:a7:48: d2:7a:36:3f:27:4e:36:ba:42:8b:69:74:f5:fa:c6: f6:34:8a:be:05:0b:d3:32:3a:0c:ab:8c:0b:2d:17: 6c:4b:7c:61:ee:be:09:c6:ee:45:2b:9c:f3:bf:19: 90:32:76:a6:8c:0b:f2:4b:0c:0b:e1:17:09:91:47: 73:bc:44:dc:b0:7b:d6:ab:f1:fc:1d:17:0d:d6:f2: 98:c2:69:3e:df:4d:55:67:4d:a3:e7:87:8f:dd:1a: 84:ef:83:7a:cf:b1:6c:5e:9e:88:0c:48:8f:30:30: 88:0e:59:be:22:75:49:71:c3:5a:58:27:0c:db:d1: 34:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:48:C6:D9:A1:C7:CA:5D:AC:F2:FB:E5:A6:C2:8D:2C:DB:7F:02:5F X509v3 Authority Key Identifier: keyid:77:7D:54:0E:16:1F:A6:71:FB:24:58:A3:3F:FE:4B:F3:3D:6A:70:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d31UDhYfpnH7JFijP_5L8z1qcBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA27/EA4E669C458C11F0B2BEB64DC4F9AE02/d31UDhYfpnH7JFijP_5L8z1qcBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9a:8a:47:e7:39:29:17:a5:0e:0b:ff:8f:58:ae:7f:21:bc: 15:ae:28:4a:d4:d5:09:e1:77:bd:77:45:bb:a5:51:ca:8f:88: 28:ae:9e:a3:cf:3f:9d:4b:cb:c2:ea:f4:c6:46:97:06:32:0e: e4:2c:40:21:ce:4e:4d:93:15:49:82:5c:27:e7:68:59:d2:6b: 72:46:34:dc:66:82:41:67:8b:51:bf:5b:45:fc:be:05:e5:47: 36:78:8c:f8:de:3f:d0:7c:c5:0b:a1:38:b5:57:83:71:0a:99: fb:b8:3f:e6:fe:d5:60:76:ba:3d:e4:4a:25:4b:8e:57:8e:ec: 63:2b:a5:c5:cb:4a:4e:0a:45:34:c9:e4:84:5a:70:6d:52:48: 3e:ea:20:54:49:1a:18:da:ad:e5:e0:10:92:5a:f0:75:cf:ec: 0d:dd:f2:2e:05:bb:63:02:1a:69:47:fa:49:a9:ea:64:09:2d: 90:8c:33:f3:e9:e2:f0:de:d8:35:aa:1b:3d:c3:31:a5:3d:c7: d9:b7:b4:96:21:79:e2:63:1a:55:1b:4d:75:be:b1:c8:a4:df: a4:07:e8:94:55:12:fe:45:78:9e:45:ee:05:62:eb:18:00:6c: c1:d4:88:7e:cb:3c:d8:c3:01:f8:95:9f:a8:81:0a:50:37:f8: e2:e6:f4:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QkEyNzExMC8GA1UEBRMoNzc3RDU0MEUxNjFGQTY3MUZCMjQ1OEEzM0ZGRTRCRjMz RDZBNzAxNTAeFw0yNTA4MjMwNzU5NThaFw0yNTA4MzAwNzU5NThaMBgxFjAUBgNV BAMTDTY4YTk3NGZlLTNhOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6rRqgqeZFOSb9XMDB4YVQabwbjbumnBSfPuhqM0fKxjMqd+QygvQhIDMmhOft uR77UpQOdF/4r6GQzYE+r0jPW0/UkWGRVffZWVT1TFvRvIPYJpFtqkWBdZRgMRMA /W1FTq2t3QPLG7DcwXsE3eJHWApyk/W9BQf4qMepasqzAxYBcuCnSNJ6Nj8nTja6 QotpdPX6xvY0ir4FC9MyOgyrjAstF2xLfGHuvgnG7kUrnPO/GZAydqaMC/JLDAvh FwmRR3O8RNywe9ar8fwdFw3W8pjCaT7fTVVnTaPnh4/dGoTvg3rPsWxenogMSI8w MIgOWb4idUlxw1pYJwzb0TTDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJEjG2aHH yl2s8vvlpsKNLNt/Al8wHwYDVR0jBBgwFoAUd31UDhYfpnH7JFijP/5L8z1qcBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNCQTI3L0VBNEU2NjlDNDU4 QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5IN0pGaWpQXzVMOHoxcWNC VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMxVURoWWZwbkg3SkZpalBfNUw4ejFxY0JVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNC QTI3L0VBNEU2NjlDNDU4QzExRjBCMkJFQjY0REM0RjlBRTAyL2QzMVVEaFlmcG5I N0pGaWpQXzVMOHoxcWNCVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJqaikfnOSkXpQ4L/49Yrn8hvBWuKErU1Qnhd713RbulUcqPiCiunqPP P51Ly8Lq9MZGlwYyDuQsQCHOTk2TFUmCXCfnaFnSa3JGNNxmgkFni1G/W0X8vgXl RzZ4jPjeP9B8xQuhOLVXg3EKmfu4P+b+1WB2uj3kSiVLjleO7GMrpcXLSk4KRTTJ 5IRacG1SSD7qIFRJGhjareXgEJJa8HXP7A3d8i4Fu2MCGmlH+kmp6mQJLZCMM/Pp 4vDe2DWqGz3DMaU9x9m3tJYheeJjGlUbTXW+scik36QH6JRVEv5FeJ5F7gVi6xgA bMHUiH7LPNjDAfiVn6iBClA3+OLm9B0= -----END CERTIFICATE-----Generated at Sat Aug 23 20:33:15 2025 by rpki-client