$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: GY6/kg71f8BpcDzghrMIliURl6viH2CUfVh8MsyqeTM= Subject key identifier: B3:75:C8:63:4A:86:3A:F5:35:05:31:C5:1F:B8:81:B8:5B:CD:C1:8A Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 01AD Signing time: Sat 23 Aug 2025 03:17:28 +0000 Manifest this update: Sat 23 Aug 2025 03:17:28 +0000 Manifest next update: Sat 30 Aug 2025 03:17:28 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: SOPy8UZc86pSSSnasy5bF9lnPASrUj/ob5WNzWrhsHo=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:17:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Aug 23 03:17:28 2025 GMT Not After : Aug 30 03:17:28 2025 GMT Subject: CN=68a932c8-a894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b3:d8:c8:56:91:84:3e:a1:df:c7:de:78:a9: 83:7f:67:0c:9d:a2:e1:95:d9:a9:d0:85:2f:94:3b: 28:09:c8:ba:78:fc:de:f5:ce:f2:b7:54:c0:0f:45: d3:a2:57:56:6c:ab:ba:88:de:bf:a8:4c:af:f3:7e: 57:4c:df:fd:e8:01:40:e4:73:1f:47:a7:3e:27:81: 8c:de:dc:cd:01:da:ba:31:56:2a:3f:57:a5:8f:e7: 98:69:f3:d1:ca:b9:b7:bd:56:d3:cb:ad:b9:2c:a6: 10:07:9f:6b:95:29:59:8f:77:b7:41:f5:9d:33:e7: 04:d5:25:01:0b:37:82:6e:37:06:bf:bf:0e:50:4f: cb:42:d1:25:2d:d5:a9:9c:2e:32:dd:79:f4:f1:99: a9:2d:c4:8f:99:41:1d:55:78:46:ca:d3:a3:53:6e: ab:85:1c:a2:3d:db:e8:0e:4a:67:d3:a4:28:98:63: d2:b7:4d:f9:89:b0:ba:1d:67:c4:47:22:07:9d:c8: bc:0b:d4:18:d5:41:05:33:73:33:17:44:a2:7a:af: 24:63:2e:ca:01:aa:8f:1b:8f:f1:d3:20:eb:19:bf: b6:84:6a:c5:12:83:10:d8:8b:5e:28:c2:64:61:12: c1:99:26:bb:4d:2b:dd:5d:3c:62:bb:9c:31:15:de: 46:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:75:C8:63:4A:86:3A:F5:35:05:31:C5:1F:B8:81:B8:5B:CD:C1:8A X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:84:9d:b8:6a:53:31:e3:2e:7f:a7:bf:0a:06:ed:86:04:c9: 92:25:c3:0a:9a:b1:ec:d5:5f:f5:9d:e4:b7:d0:ea:5a:71:50: aa:cb:69:09:bb:ee:07:56:91:c7:2f:1a:a1:2a:5c:4e:d9:fa: e7:c3:f8:1a:0d:d9:11:7d:a5:02:6a:eb:c7:79:2b:d3:ad:05: 19:89:6d:1e:b5:da:32:56:fb:80:5c:8f:c6:e3:91:5e:95:75: 37:d3:d7:40:c1:25:20:20:49:6b:10:54:5e:18:07:75:46:89: c0:78:e7:1b:ec:a3:78:cf:be:3c:4a:09:33:eb:ed:36:ba:0b: 9b:d8:d4:e6:a0:14:72:fd:ea:3e:85:e9:c3:ba:fb:4a:0d:95: a0:59:3e:72:92:9f:af:10:de:7f:95:bd:21:8f:73:fb:75:5a: 53:6b:7c:9f:aa:45:92:76:6a:fb:c8:57:1c:b5:e3:db:29:84: d2:ad:9e:8e:c5:4f:d7:68:58:8f:b9:5e:81:b2:4c:17:d0:c9: 0b:ed:77:c9:76:de:0a:ac:42:93:8a:a6:ee:91:cf:e8:1e:c8: e1:0f:3c:42:d4:13:75:5d:eb:7a:6b:d2:71:bb:20:60:eb:ac: 45:2f:a3:75:2f:05:f9:7f:34:84:95:8b:fa:ec:8b:26:a6:01: 3a:30:c9:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwODIzMDMxNzI4WhcNMjUwODMwMDMxNzI4WjAYMRYwFAYD VQQDEw02OGE5MzJjOC1hODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07PYyFaRhD6h38feeKmDf2cMnaLhldmp0IUvlDsoCci6ePze9c7yt1TAD0XT oldWbKu6iN6/qEyv835XTN/96AFA5HMfR6c+J4GM3tzNAdq6MVYqP1elj+eYafPR yrm3vVbTy625LKYQB59rlSlZj3e3QfWdM+cE1SUBCzeCbjcGv78OUE/LQtElLdWp nC4y3Xn08ZmpLcSPmUEdVXhGytOjU26rhRyiPdvoDkpn06QomGPSt035ibC6HWfE RyIHnci8C9QY1UEFM3MzF0Sieq8kYy7KAaqPG4/x0yDrGb+2hGrFEoMQ2IteKMJk YRLBmSa7TSvdXTxiu5wxFd5GBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLN1yGNK hjr1NQUxxR+4gbhbzcGKMB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvhJ24alMx4y5/p78KBu2GBMmSJcMKmrHs1V/1neS30OpacVCqy2kJ u+4HVpHHLxqhKlxO2frnw/gaDdkRfaUCauvHeSvTrQUZiW0etdoyVvuAXI/G45Fe lXU309dAwSUgIElrEFReGAd1RonAeOcb7KN4z748Sgkz6+02ugub2NTmoBRy/eo+ henDuvtKDZWgWT5ykp+vEN5/lb0hj3P7dVpTa3yfqkWSdmr7yFcctePbKYTSrZ6O xU/XaFiPuV6BskwX0MkL7XfJdt4KrEKTiqbukc/oHsjhDzxC1BN1Xet6a9JxuyBg 66xFL6N1LwX5fzSElYv67IsmpgE6MMl6 -----END CERTIFICATE-----Generated at Sat Aug 23 17:22:26 2025 by rpki-client