$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft File: 089k1dsXYfy2pVLwaAkTMMW19Ts.mft (raw, json) Hash identifier: JAsO7keWhwJ+41DR02hqoqbpSiotafzqNH/223f9xN0= Subject key identifier: 97:80:9B:C4:BB:21:63:A8:C7:58:8C:C0:78:89:0B:3E:7E:DF:97:E1 Authority key identifier: D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B Certificate issuer: /CN=A91A25DF/serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft Manifest number: 19 Signing time: Sat 23 Aug 2025 08:12:12 +0000 Manifest this update: Sat 23 Aug 2025 08:12:11 +0000 Manifest next update: Sat 30 Aug 2025 08:12:11 +0000 Files and hashes: 1: 089k1dsXYfy2pVLwaAkTMMW19Ts.crl (hash: Xw1WLrmv0tG4esXQAADdivzpPX/tDEapo0lNeMEdQrY=) 2: C54DD1F45EDA11F0A5EAB579C4F9AE02.roa (hash: yvTiS/oFSBojbCtB284WFEZBM+3n1uqQBo+L9aW7vLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=D3CF64D5DB1761FCB6A552F068091330C5B5F53B Validity Not Before: Aug 23 08:12:11 2025 GMT Not After : Aug 30 08:12:11 2025 GMT Subject: CN=68a977dc-4fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:13:22:c5:c4:ce:aa:21:08:d7:7c:54:67:3a: 6f:df:3d:bd:05:28:a9:00:3a:b1:29:39:5a:46:0e: 41:48:11:39:46:ec:52:18:94:e6:43:61:ce:1e:23: 8a:b5:4c:a3:ad:21:1b:ff:12:a4:04:41:95:33:07: 2c:93:39:7d:47:96:39:27:59:8a:fc:ea:d3:9e:b8: c0:ec:b1:46:2f:4f:24:c2:e3:32:d0:a3:a3:3e:ee: a1:a1:e9:f0:08:11:0c:b0:c3:6a:4e:ae:33:2c:9e: 26:a8:f6:6a:63:60:bf:5b:c8:05:1e:88:b0:8d:79: 4d:54:86:b9:36:1f:a7:71:73:8e:d7:59:3e:55:8d: 63:16:e1:1b:d5:cb:e2:3e:da:54:8d:d6:7a:48:bd: cd:e3:5e:0c:ff:8f:1c:c4:4f:c3:ac:fc:fe:9e:1b: 4d:38:25:c5:a2:b2:5b:82:58:18:e3:4c:50:b3:9a: 1f:94:47:49:0b:17:ca:bd:83:da:ab:3c:06:f1:7b: e8:80:8b:37:07:eb:69:17:1d:11:8b:d3:7a:20:18: e3:bb:e5:8b:23:5f:8c:83:3c:78:17:44:78:3e:59: 10:ef:42:7a:eb:42:c6:b0:38:82:93:16:87:20:a2: 13:28:45:e9:81:56:3e:a1:34:f8:63:90:25:f6:b0: 6c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:80:9B:C4:BB:21:63:A8:C7:58:8C:C0:78:89:0B:3E:7E:DF:97:E1 X509v3 Authority Key Identifier: keyid:D3:CF:64:D5:DB:17:61:FC:B6:A5:52:F0:68:09:13:30:C5:B5:F5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/089k1dsXYfy2pVLwaAkTMMW19Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/E61240825ED511F09CF1D50CC4F9AE02/089k1dsXYfy2pVLwaAkTMMW19Ts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:2e:14:61:55:0f:c2:3f:68:b8:46:3d:e0:57:31:0a:15:08: 42:55:92:b2:2a:82:f0:c6:cd:62:2c:1c:0d:4a:86:cc:f2:ba: eb:16:bd:60:4a:e0:f2:07:19:1c:ab:3b:12:27:07:93:04:73: 8d:31:56:c7:ae:17:4c:27:e2:f7:c2:7f:ce:c2:3f:9b:9a:f9: 4f:32:bb:a6:e3:c6:57:89:43:30:83:40:14:97:f6:45:65:08: a5:d3:83:ad:0b:c9:38:63:85:80:30:86:ed:26:58:b3:52:cf: 3c:ab:94:55:eb:c5:79:e0:ad:c9:a4:a7:8d:9a:bd:ce:8e:89: 67:4d:34:3d:3d:ad:a6:7b:ac:4f:c9:ed:07:7f:ed:60:06:6f: c4:37:72:4f:64:df:2e:20:8b:df:b0:8b:b4:49:2e:14:d9:13: 95:c7:00:44:cd:98:7a:5b:18:42:4d:ed:96:c0:22:d1:14:7d: 7e:87:f1:8b:24:aa:64:5e:54:a8:e8:9b:b0:01:2e:7c:f0:ee: 47:2b:64:bb:c8:8d:9e:98:ab:be:c5:e2:bb:e3:13:1e:51:f9: 61:ba:49:1b:31:6d:97:92:c0:06:db:5a:97:f8:97:38:a6:c6: 26:73:32:01:5f:06:24:2d:75:10:ea:35:2a:c8:66:80:3e:40: 82:63:67:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoRDNDRjY0RDVEQjE3NjFGQ0I2QTU1MkYwNjgwOTEzMzBD NUI1RjUzQjAeFw0yNTA4MjMwODEyMTFaFw0yNTA4MzAwODEyMTFaMBgxFjAUBgNV BAMTDTY4YTk3N2RjLTRmZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZEyLFxM6qIQjXfFRnOm/fPb0FKKkAOrEpOVpGDkFIETlG7FIYlOZDYc4eI4q1 TKOtIRv/EqQEQZUzByyTOX1HljknWYr86tOeuMDssUYvTyTC4zLQo6M+7qGh6fAI EQyww2pOrjMsniao9mpjYL9byAUeiLCNeU1Uhrk2H6dxc47XWT5VjWMW4RvVy+I+ 2lSN1npIvc3jXgz/jxzET8Os/P6eG004JcWisluCWBjjTFCzmh+UR0kLF8q9g9qr PAbxe+iAizcH62kXHRGL03ogGOO75YsjX4yDPHgXRHg+WRDvQnrrQsawOIKTFocg ohMoRemBVj6hNPhjkCX2sGwjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl4CbxLsh Y6jHWIzAeIkLPn7fl+EwHwYDVR0jBBgwFoAU089k1dsXYfy2pVLwaAkTMMW19Tsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0U2MTI0MDgyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5MnBWTHdhQWtUTU1XMTlU cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDg5azFkc1hZZnkycFZMd2FBa1RNTVcxOVRzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0U2MTI0MDgyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyLzA4OWsxZHNYWWZ5 MnBWTHdhQWtUTU1XMTlUcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD0uFGFVD8I/aLhGPeBXMQoVCEJVkrIqgvDGzWIsHA1KhszyuusWvWBK 4PIHGRyrOxInB5MEc40xVseuF0wn4vfCf87CP5ua+U8yu6bjxleJQzCDQBSX9kVl CKXTg60LyThjhYAwhu0mWLNSzzyrlFXrxXngrcmkp42avc6OiWdNND09raZ7rE/J 7Qd/7WAGb8Q3ck9k3y4gi9+wi7RJLhTZE5XHAETNmHpbGEJN7ZbAItEUfX6H8Ysk qmReVKjom7ABLnzw7kcrZLvIjZ6Yq77F4rvjEx5R+WG6SRsxbZeSwAbbWpf4lzim xiZzMgFfBiQtdRDqNSrIZoA+QIJjZ7Y= -----END CERTIFICATE-----Generated at Sat Aug 23 12:29:29 2025 by rpki-client