$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: 4cPeK6PbPFmNmmypyv/FzUahPenObdiflK2kYMWyH0E= Subject key identifier: E0:0B:3A:1E:6B:F6:97:74:FE:CA:9D:1A:8E:7A:D3:1B:AE:86:29:54 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 0882 Signing time: Fri 22 Aug 2025 20:48:08 +0000 Manifest this update: Fri 22 Aug 2025 20:48:08 +0000 Manifest next update: Fri 29 Aug 2025 20:48:08 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: /ow/GalKN2sTnLUf1yw1arCOGrn+Eqj5XP02CWSx8DM=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2228 (0x8b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Aug 22 20:48:08 2025 GMT Not After : Aug 29 20:48:08 2025 GMT Subject: CN=68a8d788-bf22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:34:19:3c:e7:2d:c3:1c:c0:32:b8:4b:bb:a3: 0e:31:a2:e9:76:56:ad:81:8e:29:4a:9f:6f:68:99: 58:b8:3f:a8:b6:46:03:a6:4b:d9:4f:52:40:8c:3c: cc:ac:91:3f:21:fc:eb:49:bf:9f:ad:e8:63:c0:1e: 32:df:e3:75:5f:a5:6d:3c:46:9e:0b:cd:f1:4c:06: 8b:28:be:fa:6e:41:0f:d4:75:82:bb:e8:d8:e5:c5: 85:c3:51:cb:bc:f7:a2:6a:f8:b3:e6:12:3a:38:2b: fc:a2:05:ac:5a:74:d5:9b:99:eb:53:2a:25:39:dc: cb:c9:9e:e5:a3:fc:94:03:bd:d4:da:1f:c9:e8:31: ee:4e:4e:7f:03:0b:fe:c0:10:34:8d:1b:dc:76:20: 14:d6:54:32:fd:ba:fe:a3:fc:c3:3b:d0:81:40:08: ea:77:c4:53:67:2b:4b:18:db:33:2d:04:fe:21:49: 76:1f:a4:ba:9f:8c:03:9c:84:39:5b:3f:6a:21:69: 9a:41:1b:3c:d5:7f:73:f9:17:2a:a7:79:cf:cb:d6: 54:92:cf:e5:6e:34:b0:c0:a1:9a:75:0a:d8:fb:67: 87:a5:9f:eb:e5:b8:e9:0b:01:cc:f7:52:f4:1a:d4: 30:fd:7f:e9:12:61:51:e5:0a:68:b2:a0:8c:82:13: 38:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:0B:3A:1E:6B:F6:97:74:FE:CA:9D:1A:8E:7A:D3:1B:AE:86:29:54 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:a4:de:46:eb:70:14:d8:da:58:85:9d:14:53:81:61:25:72: 88:d1:64:1e:6f:ee:c1:bb:95:1e:df:8a:d8:b8:29:81:58:35: 0c:3d:f1:c6:5b:92:31:b9:1a:59:ec:64:25:02:12:b4:d0:08: f1:8d:d4:ab:37:39:14:3f:ce:ab:d5:5d:14:3e:d4:9a:82:ab: 3e:51:91:cc:11:2f:84:70:c4:30:d2:f3:7c:fa:25:76:a8:00: 13:f2:7e:e0:03:cd:9d:b4:be:73:be:02:02:61:e6:f9:27:40: 50:4d:52:42:1b:33:55:18:ca:04:c0:3d:98:98:b8:38:ca:a5: d0:b3:20:8b:e8:45:95:59:19:53:50:52:ba:ad:e3:f7:ba:1b: 3d:ef:55:cf:1e:2a:e6:09:c6:05:56:e2:37:ad:dc:80:7d:2b: 67:9b:8f:7a:ac:e6:aa:99:3b:7b:b2:16:e8:fd:60:78:1d:34: 35:f2:ae:32:72:fa:61:a0:ab:1d:d6:28:87:f3:37:ed:71:f2: 60:6b:ea:52:fa:4d:58:0a:5a:57:df:de:1b:0a:fe:17:29:75: 23:4a:b7:90:cb:94:c9:1c:cf:fe:20:19:da:26:2e:4d:24:43: 11:3a:bf:5c:01:e1:c6:ea:ea:f7:39:1b:50:07:66:50:b7:31: 98:ce:87:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUwODIyMjA0ODA4WhcNMjUwODI5MjA0ODA4WjAYMRYwFAYD VQQDEw02OGE4ZDc4OC1iZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjQZPOctwxzAMrhLu6MOMaLpdlatgY4pSp9vaJlYuD+otkYDpkvZT1JAjDzM rJE/IfzrSb+frehjwB4y3+N1X6VtPEaeC83xTAaLKL76bkEP1HWCu+jY5cWFw1HL vPeiaviz5hI6OCv8ogWsWnTVm5nrUyolOdzLyZ7lo/yUA73U2h/J6DHuTk5/Awv+ wBA0jRvcdiAU1lQy/br+o/zDO9CBQAjqd8RTZytLGNszLQT+IUl2H6S6n4wDnIQ5 Wz9qIWmaQRs81X9z+Rcqp3nPy9ZUks/lbjSwwKGadQrY+2eHpZ/r5bjpCwHM91L0 GtQw/X/pEmFR5QposqCMghM4kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOALOh5r 9pd0/sqdGo560xuuhilUMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFpN5G63AU2NpYhZ0UU4FhJXKI0WQeb+7Bu5Ue34rYuCmBWDUMPfHG W5IxuRpZ7GQlAhK00AjxjdSrNzkUP86r1V0UPtSagqs+UZHMES+EcMQw0vN8+iV2 qAAT8n7gA82dtL5zvgICYeb5J0BQTVJCGzNVGMoEwD2YmLg4yqXQsyCL6EWVWRlT UFK6reP3uhs971XPHirmCcYFVuI3rdyAfStnm496rOaqmTt7shbo/WB4HTQ18q4y cvphoKsd1iiH8zftcfJga+pS+k1YClpX394bCv4XKXUjSreQy5TJHM/+IBnaJi5N JEMROr9cAeHG6ur3ORtQB2ZQtzGYzoc0 -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:27 2025 by rpki-client