$ rpki-client -vvf rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft File: 83VHbzI13D1SUXHivpIRY45JCEc.mft (raw, json) Hash identifier: +n7M/k/g0DJrrQAonopEremKHKMdsScDwA4KnpXeAT8= Subject key identifier: 5C:DF:AD:30:02:6F:79:53:19:AD:87:59:1C:9F:7E:C1:49:D0:C3:CF Authority key identifier: F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 Certificate issuer: /CN=A91627F9/serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft Manifest number: 6B Signing time: Sat 23 Aug 2025 07:16:13 +0000 Manifest this update: Sat 23 Aug 2025 07:16:13 +0000 Manifest next update: Sat 30 Aug 2025 07:16:13 +0000 Files and hashes: 1: 83VHbzI13D1SUXHivpIRY45JCEc.crl (hash: 4HcshQzHxr5vhHv1yCmNZ4V1nR9/J17Ey3AYiQPHi4Q=) 2: BA8DB662085911F082EDFD31C4F9AE02.roa (hash: +kDevtWz9Zb8E9hUtq+Uoh1dNdwrgx3ww0ByNbhsSc4=) 3: 99E2D388E9C411EFAFABDD0BC4F9AE02.roa (hash: HyBY5t49VXGObL7xNBvYsj3P5DUndJz8OLCiO0M3LtI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627F9, serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Validity Not Before: Aug 23 07:16:13 2025 GMT Not After : Aug 30 07:16:13 2025 GMT Subject: CN=68a96abd-672a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1f:8e:33:4e:1d:51:2b:b3:89:a5:7b:3b:03: a8:21:32:f6:33:54:57:e2:16:3e:e8:83:7c:05:49: c9:2c:52:d9:de:1c:d4:d0:4e:a1:30:92:71:97:b4: 0f:b7:f5:df:bd:9b:15:b9:af:54:d7:eb:86:38:b4: 41:0e:da:22:70:d0:8e:5a:38:2e:21:17:2b:e9:20: 93:af:d9:f6:1c:46:45:58:ad:3a:50:ac:11:c2:1b: 7e:8e:54:a5:d3:e2:7b:b3:70:ec:d4:3a:34:29:db: 90:55:0d:b6:b6:2a:d0:4e:fc:46:14:c4:11:be:03: a9:56:ff:4d:82:6a:98:15:73:af:49:4b:ab:5b:ce: 3b:e0:8c:ca:e5:bf:80:60:4f:0b:10:83:e4:92:a2: d6:16:ad:6e:58:35:4d:c5:45:51:b4:df:05:b6:3d: ac:cc:00:16:a0:05:43:f5:8a:16:02:69:1b:39:87: 1f:0d:d8:05:72:49:f7:95:ae:3c:4e:3d:b8:4d:a9: 06:02:45:18:29:f3:75:3b:8c:fc:ed:7f:17:63:10: a0:99:5e:a4:72:6a:cf:22:73:35:d2:f9:cd:dc:88: f1:de:c6:07:7c:84:23:52:3a:1a:da:1c:8b:6e:50: 75:f5:df:3c:35:7d:32:5e:7d:67:c9:7d:2a:cb:79: bb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DF:AD:30:02:6F:79:53:19:AD:87:59:1C:9F:7E:C1:49:D0:C3:CF X509v3 Authority Key Identifier: keyid:F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:4d:1e:ba:99:55:92:65:2a:8a:78:49:ec:12:c1:20:11:1a: 8c:fa:b8:35:36:17:a6:98:de:e0:17:9e:59:32:67:cf:96:dc: f2:aa:47:79:3a:9f:83:b7:35:fe:9e:86:23:4e:5c:58:aa:27: 32:09:00:8d:29:ca:46:8d:c9:ae:07:7b:6d:2b:a7:92:b3:76: 70:5d:a1:f2:ee:5f:84:6a:2e:fd:e5:b8:3b:7c:69:c1:8c:a5: ab:07:f6:af:d3:d5:6a:05:f1:7a:cd:e1:5b:5c:ea:f5:04:92: b1:35:31:8a:d5:04:78:71:d5:0f:06:c7:6f:27:0c:23:11:10: 05:38:67:a7:40:a6:32:f9:72:18:42:9e:71:3e:45:97:57:52: d8:5f:10:85:b6:21:7d:63:82:68:f4:bc:4e:7c:b9:2a:5b:83: c4:fa:14:70:ff:b0:7b:cf:90:48:1b:9a:0a:cd:4d:44:65:44: 54:b2:b3:0d:91:ee:23:f5:e1:f6:0e:0e:6e:f5:84:5d:8e:d7: 9d:55:43:d6:d1:0d:07:30:3e:d7:45:0f:45:ba:96:07:3b:a7: ab:3a:ad:fc:3e:8e:5d:8f:a6:95:c4:00:7e:04:a0:59:8c:ca: f2:51:89:f2:67:29:a5:60:31:e3:29:fb:04:41:7b:04:a6:bd: 75:dd:4a:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjdGOTExMC8GA1UEBRMoRjM3NTQ3NkYzMjM1REMzRDUyNTE3MUUyQkU5MjExNjM4 RTQ5MDg0NzAeFw0yNTA4MjMwNzE2MTNaFw0yNTA4MzAwNzE2MTNaMBgxFjAUBgNV BAMTDTY4YTk2YWJkLTY3MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEH44zTh1RK7OJpXs7A6ghMvYzVFfiFj7og3wFScksUtneHNTQTqEwknGXtA+3 9d+9mxW5r1TX64Y4tEEO2iJw0I5aOC4hFyvpIJOv2fYcRkVYrTpQrBHCG36OVKXT 4nuzcOzUOjQp25BVDba2KtBO/EYUxBG+A6lW/02CapgVc69JS6tbzjvgjMrlv4Bg TwsQg+SSotYWrW5YNU3FRVG03wW2PazMABagBUP1ihYCaRs5hx8N2AVySfeVrjxO PbhNqQYCRRgp83U7jPztfxdjEKCZXqRyas8iczXS+c3ciPHexgd8hCNSOhraHItu UHX13zw1fTJefWfJfSrLebs5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXN+tMAJv eVMZrYdZHJ9+wUnQw88wHwYDVR0jBBgwFoAU83VHbzI13D1SUXHivpIRY45JCEcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyN0Y5LzI4OERGMTRBRTlD NDExRUY5OTIwOTMwQUM0RjlBRTAyLzgzVkhiekkxM0QxU1VYSGl2cElSWTQ1SkNF Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODNWSGJ6STEzRDFTVVhIaXZwSVJZNDVKQ0VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYy N0Y5LzI4OERGMTRBRTlDNDExRUY5OTIwOTMwQUM0RjlBRTAyLzgzVkhiekkxM0Qx U1VYSGl2cElSWTQ1SkNFYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKpNHrqZVZJlKop4SewSwSARGoz6uDU2F6aY3uAXnlkyZ8+W3PKqR3k6 n4O3Nf6ehiNOXFiqJzIJAI0pykaNya4He20rp5KzdnBdofLuX4RqLv3luDt8acGM pasH9q/T1WoF8XrN4Vtc6vUEkrE1MYrVBHhx1Q8Gx28nDCMREAU4Z6dApjL5chhC nnE+RZdXUthfEIW2IX1jgmj0vE58uSpbg8T6FHD/sHvPkEgbmgrNTURlRFSysw2R 7iP14fYODm71hF2O151VQ9bRDQcwPtdFD0W6lgc7p6s6rfw+jl2PppXEAH4EoFmM yvJRifJnKaVgMeMp+wRBewSmvXXdSj4= -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:02 2025 by rpki-client