$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: VDSwc3BgGvGteOGRYMEpPhRCCbiKbeCYigh/3vZ9Q1k= Subject key identifier: 35:F4:00:C1:E4:6E:B2:7D:0B:63:50:6F:7C:19:F7:9F:1A:1F:18:5D Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 0547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 0541 Signing time: Fri 22 Aug 2025 23:41:01 +0000 Manifest this update: Fri 22 Aug 2025 23:41:00 +0000 Manifest next update: Fri 29 Aug 2025 23:41:00 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: MOXvbIbGHyF/fAesqzNQEAyccSkJ/v/oH0cImXblzcY=) 2: CDFDBE10061C11ECA4633B32C4F9AE02.roa (hash: phE+adBWK7PYAI4KAosAkS6IfQBeyVMqazuKmnqaEwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: Aug 22 23:41:00 2025 GMT Not After : Aug 29 23:41:00 2025 GMT Subject: CN=68a9000d-499e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a9:8a:20:5b:94:67:be:30:f0:34:73:82:32: af:10:18:4b:c5:73:25:88:58:c3:6d:90:f8:57:0c: 1f:45:73:4f:19:7c:46:f6:98:35:d1:cf:ca:28:f9: 73:c0:f0:21:61:59:2d:3d:28:f1:cb:6d:eb:2e:42: 9b:6f:6c:ad:d8:21:27:4f:af:15:f3:e6:7b:85:57: 95:03:f4:5c:31:9b:18:fc:b2:96:5a:b7:4a:72:c4: cd:b1:b8:9f:98:88:aa:5d:2b:0c:91:22:a5:be:39: 85:8f:13:8b:23:fa:75:2d:55:6a:b6:b0:2b:fc:7a: c1:2b:b8:51:b1:77:79:8f:45:d6:ee:be:1f:09:15: 30:bd:bc:1e:ac:f3:96:6a:e3:cd:93:2b:be:53:df: 59:c6:30:3c:39:c5:ad:46:79:78:8a:e9:92:20:9c: 83:5c:07:61:f7:23:2c:6d:d6:1a:a4:f0:37:b9:d1: 3b:9d:69:ea:f0:b7:c6:87:5b:06:91:cf:38:53:a9: 98:2c:47:c7:c8:03:65:f7:88:03:2e:61:4d:4d:53: c0:22:9a:6e:00:3f:0f:6e:49:6a:b0:b5:59:69:87: 7e:4e:36:e5:01:e0:4a:31:e9:ac:80:a6:0d:7a:96: 47:bf:2e:69:18:ce:99:c3:00:b1:b0:1b:b2:71:f9: 48:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F4:00:C1:E4:6E:B2:7D:0B:63:50:6F:7C:19:F7:9F:1A:1F:18:5D X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:31:33:6c:72:c7:35:c3:6b:ff:a6:82:b0:dc:30:a3:01:c9: d7:19:54:63:ea:20:38:9c:38:79:df:44:2f:cd:87:41:c1:b7: 32:59:86:7e:d2:d6:f8:e9:f5:30:5b:12:ba:48:87:8f:67:3a: db:1c:de:c8:41:e4:b6:2d:02:ec:c4:88:21:7a:94:57:5b:e2: bb:7c:88:f4:d3:9b:7d:f8:79:f6:6d:96:74:02:94:46:e9:41: 04:e6:64:a9:e0:44:54:c8:51:8c:d7:b3:d9:6b:93:33:d1:9c: 22:f7:3c:2f:0a:ea:b9:43:43:7d:7c:5b:0b:ff:da:09:3e:22: 14:04:ab:ec:4b:de:0a:48:92:0f:02:00:cd:dc:fc:b8:08:37: 17:0c:bf:c0:cd:7e:d5:62:2a:02:06:ea:90:75:c0:d4:cf:9b: 16:f0:bf:d9:7e:4d:dc:e1:12:53:99:79:3b:74:ba:d7:f3:f4: e5:de:0d:7d:e1:f5:66:29:27:15:54:71:76:76:1a:89:86:6f: 81:1b:71:fc:68:97:4b:a9:8f:ad:ec:62:20:ff:b1:97:c9:74: 05:dc:ff:ca:18:66:1a:72:37:92:ea:69:e3:54:8f:66:33:a7: 52:70:81:30:06:e3:3b:5c:e8:51:0e:06:fc:4a:b8:5a:62:f6: 8a:4c:07:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjUwODIyMjM0MTAwWhcNMjUwODI5MjM0MTAwWjAYMRYwFAYD VQQDEw02OGE5MDAwZC00OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66mKIFuUZ74w8DRzgjKvEBhLxXMliFjDbZD4VwwfRXNPGXxG9pg10c/KKPlz wPAhYVktPSjxy23rLkKbb2yt2CEnT68V8+Z7hVeVA/RcMZsY/LKWWrdKcsTNsbif mIiqXSsMkSKlvjmFjxOLI/p1LVVqtrAr/HrBK7hRsXd5j0XW7r4fCRUwvbwerPOW auPNkyu+U99ZxjA8OcWtRnl4iumSIJyDXAdh9yMsbdYapPA3udE7nWnq8LfGh1sG kc84U6mYLEfHyANl94gDLmFNTVPAIppuAD8PbklqsLVZaYd+TjblAeBKMemsgKYN epZHvy5pGM6ZwwCxsBuycflISQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDX0AMHk brJ9C2NQb3wZ958aHxhdMB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvMTNscsc1w2v/poKw3DCjAcnXGVRj6iA4nDh530QvzYdBwbcyWYZ+ 0tb46fUwWxK6SIePZzrbHN7IQeS2LQLsxIghepRXW+K7fIj005t9+Hn2bZZ0ApRG 6UEE5mSp4ERUyFGM17PZa5Mz0Zwi9zwvCuq5Q0N9fFsL/9oJPiIUBKvsS94KSJIP AgDN3Py4CDcXDL/AzX7VYioCBuqQdcDUz5sW8L/Zfk3c4RJTmXk7dLrX8/Tl3g19 4fVmKScVVHF2dhqJhm+BG3H8aJdLqY+t7GIg/7GXyXQF3P/KGGYacjeS6mnjVI9m M6dScIEwBuM7XOhRDgb8SrhaYvaKTAeB -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:57 2025 by rpki-client