$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: 9M1P4N4sx8b5YqniLFcfv8VCs6gt43vYVTU16kDAXGM= Subject key identifier: CB:57:3C:7A:FB:33:F7:3D:91:DB:89:8E:26:EF:4D:A5:B2:30:19:14 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 3545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 34F3 Signing time: Fri 22 Aug 2025 14:17:32 +0000 Manifest this update: Fri 22 Aug 2025 14:17:31 +0000 Manifest next update: Fri 29 Aug 2025 14:17:31 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: MY1HqKHFPanmXk2ncQnWFR2eQwC4d7O+A1lxXhoYDQQ=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13637 (0x3545) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Aug 22 14:17:31 2025 GMT Not After : Aug 29 14:17:31 2025 GMT Subject: CN=68a87bfb-34c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:b8:fa:2b:81:ce:45:66:cc:50:69:f4:60: 69:7b:31:e3:cf:78:4e:f8:c7:18:ec:fe:1d:7b:50: 13:dc:78:df:97:ff:63:e8:e8:91:f8:5f:96:ac:df: bd:85:a4:c2:2b:25:f6:14:05:2d:95:38:cc:26:79: 64:ae:be:b6:f9:3a:4f:38:6f:e6:60:5a:63:82:90: f0:bf:ac:5b:2b:76:54:4f:ce:b2:e2:7b:2c:4b:f2: 72:89:bd:4d:01:0b:e6:13:4c:50:52:93:2e:c2:4b: ab:d3:0d:1b:47:b1:2b:ef:0c:07:a9:ea:58:e8:28: f0:70:72:40:6f:31:9b:30:f0:fa:8d:f5:c9:b1:99: d5:dc:48:4c:19:be:09:dd:8a:33:c6:2f:9e:25:87: eb:ce:06:d2:1e:5b:69:ae:82:ba:c7:a4:3c:4e:2f: 26:a4:9f:1e:6d:e2:f3:bf:87:a9:29:c7:91:cd:c3: d1:04:41:bc:3a:c8:19:e5:e1:7c:14:77:ae:71:82: a3:2b:fb:45:e2:06:ec:ee:32:63:6e:2c:61:3f:d1: cc:37:ed:7c:4b:d1:e7:1a:a6:0d:3e:9c:fe:0b:e2: 1a:f9:e2:4b:8d:6c:c4:77:d8:63:fc:58:bc:c7:a3: b9:21:cd:0d:7b:bc:c6:5e:c5:49:d0:63:5d:40:39: 62:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:57:3C:7A:FB:33:F7:3D:91:DB:89:8E:26:EF:4D:A5:B2:30:19:14 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:f9:ad:7a:e5:c2:f7:e8:ed:95:7e:6a:a9:27:88:e2:ba:3d: 74:fe:93:a7:7a:55:a8:93:b4:c7:a6:90:ce:c6:83:5b:03:d2: de:aa:41:27:fa:0c:9e:7b:fc:be:54:a8:bd:25:dc:eb:ed:3d: 40:ed:81:66:1e:24:a6:a1:49:5a:15:b6:e9:95:64:c9:c4:d1: e3:01:37:de:09:20:d6:5e:a5:72:c6:41:22:40:48:7c:c1:f1: 2d:23:01:e3:19:84:80:a5:e3:13:ce:be:ec:db:ff:e1:12:75: a4:1b:28:3f:26:59:f9:2c:e4:41:ab:f3:73:3a:a7:d8:db:7a: f3:a2:28:b5:41:22:33:27:15:02:13:c9:1f:ca:25:1c:06:32: 60:70:1c:1d:69:ff:be:d3:8d:e0:36:2f:ce:33:d8:0b:51:1f: 86:22:09:04:c7:10:a9:b0:b4:94:0a:59:d7:a9:43:5a:8c:a3: c2:5a:23:3b:39:75:96:2f:e3:89:d2:dc:20:5e:43:b2:c9:7e: 30:2f:1f:af:69:67:01:7f:42:0a:8d:8b:76:4e:6b:22:df:e4: 30:fd:4e:1f:cc:a1:63:4f:91:a8:1e:bc:a8:0c:53:82:47:7e: 3f:76:31:e9:15:ef:e8:b5:73:58:14:3b:3f:f6:ee:1d:80:6e: 10:56:65:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUwODIyMTQxNzMxWhcNMjUwODI5MTQxNzMxWjAYMRYwFAYD VQQDEw02OGE4N2JmYi0zNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9m4+iuBzkVmzFBp9GBpezHjz3hO+McY7P4de1AT3Hjfl/9j6OiR+F+WrN+9 haTCKyX2FAUtlTjMJnlkrr62+TpPOG/mYFpjgpDwv6xbK3ZUT86y4nssS/Jyib1N AQvmE0xQUpMuwkur0w0bR7Er7wwHqepY6CjwcHJAbzGbMPD6jfXJsZnV3EhMGb4J 3Yozxi+eJYfrzgbSHltproK6x6Q8Ti8mpJ8ebeLzv4epKceRzcPRBEG8OsgZ5eF8 FHeucYKjK/tF4gbs7jJjbixhP9HMN+18S9HnGqYNPpz+C+Ia+eJLjWzEd9hj/Fi8 x6O5Ic0Ne7zGXsVJ0GNdQDlixwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtXPHr7 M/c9kduJjibvTaWyMBkUMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs+a165cL36O2VfmqpJ4jiuj10/pOnelWok7THppDOxoNbA9LeqkEn +gyee/y+VKi9Jdzr7T1A7YFmHiSmoUlaFbbplWTJxNHjATfeCSDWXqVyxkEiQEh8 wfEtIwHjGYSApeMTzr7s2//hEnWkGyg/Jln5LORBq/NzOqfY23rzoii1QSIzJxUC E8kfyiUcBjJgcBwdaf++043gNi/OM9gLUR+GIgkExxCpsLSUClnXqUNajKPCWiM7 OXWWL+OJ0twgXkOyyX4wLx+vaWcBf0IKjYt2Tmsi3+Qw/U4fzKFjT5GoHryoDFOC R34/djHpFe/otXNYFDs/9u4dgG4QVmUT -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:27 2025 by rpki-client