$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft File: M_iOrx5M4PGhh31J75fA5_7cA5o.mft (raw, json) Hash identifier: ue2Et7iBpZDJw4YjEF7GS6NTW/bCY/+DWIdVtKyltXQ= Subject key identifier: 0D:D2:E5:36:CD:D0:DF:34:38:65:8E:2A:4D:B5:15:EB:A2:99:F4:62 Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 04BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft Manifest number: 04B1 Signing time: Fri 22 Aug 2025 20:53:57 +0000 Manifest this update: Fri 22 Aug 2025 20:53:56 +0000 Manifest next update: Fri 29 Aug 2025 20:53:56 +0000 Files and hashes: 1: M_iOrx5M4PGhh31J75fA5_7cA5o.crl (hash: MjD0kZmybfYfPkZLX3o26ulrNjjadhXWgjTPuv/uvHo=) 2: E763AA76A3E811EC8665D621C4F9AE02.roa (hash: trLJfSwyymOYXghPy0PGh0ipgzAzEgwWMLJxE/C/bWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1212 (0x4bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: Aug 22 20:53:56 2025 GMT Not After : Aug 29 20:53:56 2025 GMT Subject: CN=68a8d8e5-b67b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:15:25:a1:9f:7c:d8:9a:f8:aa:c5:45:a2: eb:dd:37:95:ad:49:fc:d8:ed:b1:04:29:71:94:fa: ac:15:d6:d7:40:e1:d7:3f:8b:24:af:24:f4:c1:59: 96:1a:e8:9f:0a:b5:6f:29:1b:88:e2:46:b4:b6:a2: ac:10:45:72:ca:36:f6:93:57:40:2a:85:23:4b:4a: b9:27:c1:75:db:e9:0d:9d:46:56:df:40:36:6f:f9: 59:52:ac:2b:e2:74:7e:62:f5:64:a3:fb:70:d7:c6: 82:0c:34:66:00:33:1c:ae:5f:48:26:7f:e1:7b:83: 37:53:a1:9c:f7:99:16:d5:9c:1f:32:ec:1c:5f:85: 9d:c8:87:2a:43:1a:31:0a:b9:c8:d4:b3:73:35:f4: 02:26:84:46:a6:5b:5e:5e:43:b2:5c:9a:3a:6a:83: ab:f2:a0:e9:57:5b:5c:44:d9:ec:e4:d6:1c:57:1d: 7d:94:0b:80:4a:10:f9:86:37:7e:57:6d:2a:4b:01: 37:5c:8b:81:df:ab:e3:6c:cc:7b:a2:59:a6:fb:b0: 54:94:c2:f0:d3:5a:37:43:a1:0b:89:c2:ee:35:99: d1:9d:5c:c4:fb:bc:1c:bb:cc:db:7e:eb:78:7a:af: 25:cc:79:18:5b:45:6f:f9:71:eb:8c:bc:7e:00:80: 29:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D2:E5:36:CD:D0:DF:34:38:65:8E:2A:4D:B5:15:EB:A2:99:F4:62 X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:e9:f1:c0:42:ad:02:66:56:48:b8:f8:66:d8:2c:cc:e7:3f: 92:45:6d:4e:2a:3e:fa:6c:25:b9:3e:a8:05:70:b6:09:c4:80: a6:01:d5:cb:6f:ac:69:aa:be:ac:38:aa:90:73:03:3e:ec:7c: ea:8e:57:6c:48:6f:64:6e:47:53:7c:34:47:61:6a:83:8f:48: 13:fb:bf:e6:b1:da:98:0d:00:19:f8:20:77:43:ae:0e:b0:f8: 64:f2:03:31:ca:f3:6c:53:57:eb:4e:2e:e0:16:2a:cd:0c:e0: 14:e7:fa:39:fe:ee:5f:c0:2c:62:f6:be:00:76:ff:b6:0f:ca: f3:fa:50:e5:ad:85:fc:57:78:31:14:6d:0a:29:8b:8b:1c:93: 5a:ee:04:69:58:06:4e:29:65:32:c7:8d:29:40:9c:1b:cc:ab: dc:29:18:53:5c:e1:77:a7:a4:d8:18:96:e8:5b:fe:8a:f3:ed: f4:86:58:f0:45:a1:83:4e:21:5d:1d:45:f0:75:89:06:49:a7: 0e:11:90:30:42:8b:eb:d4:96:c1:19:22:d4:a7:a2:bb:f3:26: f8:65:f2:1d:2a:c8:52:b0:77:81:e2:b7:50:23:67:3e:70:78: 14:40:e3:6a:f9:d2:7c:d8:67:2a:dc:b8:0e:cc:fc:25:ad:53: 45:8a:73:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjUwODIyMjA1MzU2WhcNMjUwODI5MjA1MzU2WjAYMRYwFAYD VQQDEw02OGE4ZDhlNS1iNjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKcVJaGffNia+KrFRaLr3TeVrUn82O2xBClxlPqsFdbXQOHXP4skryT0wVmW GuifCrVvKRuI4ka0tqKsEEVyyjb2k1dAKoUjS0q5J8F12+kNnUZW30A2b/lZUqwr 4nR+YvVko/tw18aCDDRmADMcrl9IJn/he4M3U6Gc95kW1ZwfMuwcX4WdyIcqQxox CrnI1LNzNfQCJoRGplteXkOyXJo6aoOr8qDpV1tcRNns5NYcVx19lAuAShD5hjd+ V20qSwE3XIuB36vjbMx7olmm+7BUlMLw01o3Q6ELicLuNZnRnVzE+7wcu8zbfut4 eq8lzHkYW0Vv+XHrjLx+AIAp9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3S5TbN 0N80OGWOKk21FeuimfRiMB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThERi84NjczNjA4MDQ3RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQ R2hoMzFKNzVmQTVfN2NBNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj6fHAQq0CZlZIuPhm2CzM5z+SRW1OKj76bCW5PqgFcLYJxICmAdXL b6xpqr6sOKqQcwM+7HzqjldsSG9kbkdTfDRHYWqDj0gT+7/msdqYDQAZ+CB3Q64O sPhk8gMxyvNsU1frTi7gFirNDOAU5/o5/u5fwCxi9r4Adv+2D8rz+lDlrYX8V3gx FG0KKYuLHJNa7gRpWAZOKWUyx40pQJwbzKvcKRhTXOF3p6TYGJboW/6K8+30hljw RaGDTiFdHUXwdYkGSacOEZAwQovr1JbBGSLUp6K78yb4ZfIdKshSsHeB4rdQI2c+ cHgUQONq+dJ82Gcq3LgOzPwlrVNFinPe -----END CERTIFICATE-----Generated at Sat Aug 23 12:29:00 2025 by rpki-client