$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: URIRCGWcAbHCU9z77e6HT7BL+eB2yWJBmQycDRE3xPI= Subject key identifier: 8C:AE:46:8A:AF:09:D6:5C:23:BA:01:C4:40:18:3F:2A:16:CB:EA:82 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 0202 Signing time: Fri 22 Aug 2025 16:08:13 +0000 Manifest this update: Fri 22 Aug 2025 16:08:12 +0000 Manifest next update: Fri 29 Aug 2025 16:08:12 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: 5f+zvCVuFED1GVMBTwL0gNuxts89v+JNHEWoLhDV3XA=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Aug 22 16:08:12 2025 GMT Not After : Aug 29 16:08:12 2025 GMT Subject: CN=68a895ed-aa85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:d6:57:5c:40:8a:6e:bb:87:57:25:7e:4a: 40:cf:07:53:bf:ee:be:f1:e3:bf:0c:6d:c3:1e:7f: 34:22:a7:41:fd:34:28:79:6f:17:ab:49:4f:42:39: bf:3e:32:a3:db:fd:b3:3c:26:1e:1d:bc:a8:d1:9c: d1:90:85:9c:95:d3:d4:ce:d7:ac:59:1a:1b:dc:e2: 4d:e4:82:e8:4f:de:30:ca:a1:69:68:d8:cf:c1:1f: 8b:ae:58:ea:26:8a:65:c1:70:06:0d:2a:b1:fb:69: 9f:a1:43:cf:60:8a:8e:2d:2b:1a:17:8d:db:62:4d: 68:7e:9f:8a:d4:58:1d:99:dd:83:47:33:c5:27:a3: 4c:9a:00:de:ec:06:5d:62:5d:81:eb:4d:d5:e6:9e: e7:b2:89:41:bb:1f:1a:29:42:00:73:43:85:15:b4: 79:7b:1a:e9:48:97:dd:9c:22:cd:fd:98:0a:4e:e4: 76:e3:09:4e:34:b4:d7:86:7a:ff:9c:c7:22:a8:2f: 32:4b:59:bd:96:2e:28:9d:3e:e3:86:56:7b:f5:45: 49:fa:23:6e:b1:a1:91:66:37:29:6c:e3:a7:c0:e3: a6:5a:e3:50:b9:48:20:78:b4:c9:89:e7:b2:83:9d: fa:d6:6d:53:af:5f:02:cb:c5:53:68:11:86:82:e5: ed:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AE:46:8A:AF:09:D6:5C:23:BA:01:C4:40:18:3F:2A:16:CB:EA:82 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d1:93:53:ad:2e:d9:b2:23:07:8d:16:3b:87:03:f2:d6:7c: 84:76:6e:c8:b0:f8:8b:3c:29:ce:c9:62:10:7d:0a:51:5f:5a: 6d:4c:de:b5:66:cc:c1:ee:c0:fa:35:ef:9e:a3:17:ac:4a:18: dd:04:12:c5:bb:19:23:af:dd:7f:1c:7e:09:6f:91:34:80:72: 9d:bb:5b:f8:35:fa:a2:22:ae:ad:fa:93:d6:bb:46:69:4e:74: 3f:10:e0:bb:02:6a:3b:ad:f8:b9:bf:10:c7:e6:f2:eb:e4:bb: 7e:f1:eb:75:55:be:6a:cc:a1:06:91:79:ba:4c:b8:0e:76:94: 0d:da:23:5c:7a:ce:53:55:c6:92:b8:a4:40:f0:b0:d6:a1:4b: d7:a1:11:ee:d8:14:56:cc:c8:e3:0e:4e:fc:a6:e0:6e:d9:8f: 2a:8d:aa:68:8d:cd:17:6a:bb:cf:23:bb:72:95:96:2d:c4:fa: fc:10:29:a1:58:6f:b3:9e:70:a5:23:08:6d:fb:a3:90:92:e5: 84:ba:96:46:44:35:b0:bb:f0:eb:5f:3f:50:35:eb:cd:43:f7: 53:09:ba:1a:05:a3:6a:47:ee:84:3f:20:3d:d0:5b:80:e0:ef: ae:32:0b:92:1b:ad:f9:7b:16:41:92:4d:e4:e4:c4:6c:6f:cf: ac:6a:96:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUwODIyMTYwODEyWhcNMjUwODI5MTYwODEyWjAYMRYwFAYD VQQDEw02OGE4OTVlZC1hYTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYzWV1xAim67h1clfkpAzwdTv+6+8eO/DG3DHn80IqdB/TQoeW8Xq0lPQjm/ PjKj2/2zPCYeHbyo0ZzRkIWcldPUztesWRob3OJN5ILoT94wyqFpaNjPwR+Lrljq JoplwXAGDSqx+2mfoUPPYIqOLSsaF43bYk1ofp+K1Fgdmd2DRzPFJ6NMmgDe7AZd Yl2B603V5p7nsolBux8aKUIAc0OFFbR5exrpSJfdnCLN/ZgKTuR24wlONLTXhnr/ nMciqC8yS1m9li4onT7jhlZ79UVJ+iNusaGRZjcpbOOnwOOmWuNQuUggeLTJieey g5361m1Tr18Cy8VTaBGGguXtGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyuRoqv CdZcI7oBxEAYPyoWy+qCMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC0ZNTrS7ZsiMHjRY7hwPy1nyEdm7IsPiLPCnOyWIQfQpRX1ptTN61 ZszB7sD6Ne+eoxesShjdBBLFuxkjr91/HH4Jb5E0gHKdu1v4NfqiIq6t+pPWu0Zp TnQ/EOC7Amo7rfi5vxDH5vLr5Lt+8et1Vb5qzKEGkXm6TLgOdpQN2iNces5TVcaS uKRA8LDWoUvXoRHu2BRWzMjjDk78puBu2Y8qjapojc0XarvPI7tylZYtxPr8ECmh WG+znnClIwht+6OQkuWEupZGRDWwu/DrXz9QNevNQ/dTCboaBaNqR+6EPyA90FuA 4O+uMguSG635exZBkk3k5MRsb8+sapZj -----END CERTIFICATE-----Generated at Sat Aug 23 16:32:49 2025 by rpki-client