$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: kg+CL/bwCK0qDD+LLPuUOaTm6j38lN4J9FlF8nHOSyU= Subject key identifier: 54:44:85:CC:C5:6E:74:6D:AD:D7:A9:4D:07:15:AC:3A:8D:A0:3C:4C Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0BEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0BDA Signing time: Fri 22 Aug 2025 19:01:13 +0000 Manifest this update: Fri 22 Aug 2025 19:01:13 +0000 Manifest next update: Fri 29 Aug 2025 19:01:13 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: BXa247wxQWO2vMz/o52VmwwRZCKXYJJkM+/k7lC0ODw=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3050 (0xbea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Aug 22 19:01:13 2025 GMT Not After : Aug 29 19:01:13 2025 GMT Subject: CN=68a8be79-b06a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e1:9a:d8:e7:2c:1c:b5:1b:51:bb:01:98:38: d1:8f:08:26:df:8b:cc:96:e6:52:f8:c5:de:07:b9: 4b:96:b8:bf:c6:88:2c:99:ec:40:78:3d:5f:24:be: ce:4f:b4:ea:a1:3f:7f:11:a3:88:86:09:e2:4b:f4: 68:e1:88:2c:0d:ea:1b:4a:e8:f1:74:69:a0:cd:e5: 4f:98:ae:d1:7d:40:c9:61:4f:cc:80:0a:31:2e:83: fb:01:a5:4a:1a:35:4b:51:ae:da:fd:b9:99:89:f3: f0:c8:00:98:27:09:6e:25:1b:29:b8:43:77:25:40: 08:c3:f7:6a:77:65:88:48:b0:91:c8:57:69:30:3c: f8:6a:53:ca:5b:09:3f:c1:65:dc:ed:f5:78:db:3d: af:23:90:4f:47:fa:50:50:35:8a:5f:b1:52:f3:d0: a6:60:63:c0:33:09:62:d6:6f:07:bb:15:aa:14:19: 2d:82:43:5a:02:a6:7e:ea:e2:c3:f1:2e:6a:59:2c: 70:0c:a4:53:fc:76:27:62:ba:92:42:d8:0d:32:43: f2:a6:9c:f7:27:c6:2f:b2:3d:2c:2f:33:74:95:cd: c8:72:42:7a:39:9b:97:78:5d:4b:8c:bd:9a:c0:26: ce:40:9c:92:53:52:1f:3d:c5:b2:38:33:c6:57:05: 91:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:44:85:CC:C5:6E:74:6D:AD:D7:A9:4D:07:15:AC:3A:8D:A0:3C:4C X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:5b:1b:72:5d:78:f9:21:cc:19:92:df:cc:76:68:77:83:f1: ee:3e:25:14:04:b5:e2:21:ee:16:68:33:2d:9a:55:23:0e:8b: 96:28:ba:24:cf:15:dd:b4:45:c3:db:17:7d:e3:eb:9f:53:3d: 09:12:d0:c2:40:82:11:2c:fe:49:ee:ed:f3:55:a2:4a:38:0f: fc:d9:06:6a:02:03:c2:2b:46:9b:13:db:e2:ed:56:04:05:c1: 00:5c:d5:8c:51:4f:30:37:a7:75:d4:40:25:4f:a4:66:ee:b7: ab:c9:9d:41:0a:41:e4:96:3a:1e:c4:23:8c:78:b7:61:63:a3: de:90:07:ba:ec:c9:b7:40:50:f1:d3:92:f5:a8:c0:cf:45:1b: c1:c5:34:18:c1:e7:e2:32:ad:45:c9:e6:42:57:cb:e9:34:0d: 62:9e:de:6f:7f:08:86:77:7b:f9:be:18:30:07:a0:88:a9:e4: e1:b3:ae:9e:f1:7f:04:2c:e1:be:10:bb:6d:5d:25:39:43:bf: d2:e9:37:3c:4f:f3:6f:a1:2a:42:09:1a:28:ae:03:c6:be:3d: a1:bb:1f:a9:48:91:05:f3:7d:de:36:9b:80:4b:45:09:b0:c0: 86:4a:82:de:4b:c3:d3:f5:62:f0:d3:12:7f:a7:ce:90:49:6a: d7:b7:d4:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUwODIyMTkwMTEzWhcNMjUwODI5MTkwMTEzWjAYMRYwFAYD VQQDEw02OGE4YmU3OS1iMDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+Ga2OcsHLUbUbsBmDjRjwgm34vMluZS+MXeB7lLlri/xogsmexAeD1fJL7O T7TqoT9/EaOIhgniS/Ro4YgsDeobSujxdGmgzeVPmK7RfUDJYU/MgAoxLoP7AaVK GjVLUa7a/bmZifPwyACYJwluJRspuEN3JUAIw/dqd2WISLCRyFdpMDz4alPKWwk/ wWXc7fV42z2vI5BPR/pQUDWKX7FS89CmYGPAMwli1m8HuxWqFBktgkNaAqZ+6uLD 8S5qWSxwDKRT/HYnYrqSQtgNMkPyppz3J8Yvsj0sLzN0lc3IckJ6OZuXeF1LjL2a wCbOQJySU1IfPcWyODPGVwWR0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFREhczF bnRtrdepTQcVrDqNoDxMMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuWxtyXXj5IcwZkt/Mdmh3g/HuPiUUBLXiIe4WaDMtmlUjDouWKLok zxXdtEXD2xd94+ufUz0JEtDCQIIRLP5J7u3zVaJKOA/82QZqAgPCK0abE9vi7VYE BcEAXNWMUU8wN6d11EAlT6Rm7reryZ1BCkHkljoexCOMeLdhY6PekAe67Mm3QFDx 05L1qMDPRRvBxTQYwefiMq1FyeZCV8vpNA1int5vfwiGd3v5vhgwB6CIqeThs66e 8X8ELOG+ELttXSU5Q7/S6Tc8T/NvoSpCCRoorgPGvj2hux+pSJEF833eNpuAS0UJ sMCGSoLeS8PT9WLw0xJ/p86QSWrXt9Qg -----END CERTIFICATE-----Generated at Sat Aug 23 12:35:50 2025 by rpki-client