$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft File: A6PIek8tglWUdvcc-u5ST_URNXk.mft (raw, json) Hash identifier: NGivSU7pq24KLD2BdQw0ZQJ6tQvnq3kShaOpy+a/z70= Subject key identifier: 66:AD:1A:D0:7D:55:69:B8:CF:2F:29:62:CB:D6:BD:DC:5D:9F:D9:F1 Authority key identifier: 03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 Certificate issuer: /CN=A91A4CAD/serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Certificate serial: 0B28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft Manifest number: 0B20 Signing time: Fri 22 Aug 2025 19:25:08 +0000 Manifest this update: Fri 22 Aug 2025 19:25:07 +0000 Manifest next update: Fri 29 Aug 2025 19:25:07 +0000 Files and hashes: 1: A6PIek8tglWUdvcc-u5ST_URNXk.crl (hash: Edkf4oDkxKOzsp1EzLaULgU9ymewdFwrzCqZMziW+QA=) 2: 6553D6106C2B11EA87ED1160C4F9AE02.roa (hash: BZiEWDD0IL9/iTmQj4cpibFzXusaM/aZuvYBDfGJDK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2856 (0xb28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4CAD, serialNumber=03A3C87A4F2D82559476F71CFAEE524FF5113579 Validity Not Before: Aug 22 19:25:07 2025 GMT Not After : Aug 29 19:25:07 2025 GMT Subject: CN=68a8c414-4b04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fc:9a:9a:2e:75:82:04:fb:26:76:d1:f8:c8: ab:3e:2c:fa:c3:d3:5b:4c:d5:53:a3:5e:85:2a:eb: 85:6e:f1:d0:c1:64:36:c1:9b:3f:fc:54:25:2d:33: 2a:36:34:f7:09:06:66:7d:47:69:7a:4e:8a:6d:32: cc:90:91:01:c8:f1:ae:37:fb:7f:eb:23:fd:9f:b6: 15:40:d6:c2:b9:4e:3f:b6:cc:bf:22:8c:a0:17:a3: 5e:b3:05:a2:66:3c:ce:94:42:17:1d:55:72:a0:4d: ae:88:2f:55:1a:17:55:43:36:1a:7a:4e:34:26:3a: fc:20:5e:1a:7d:c1:e1:be:a2:3f:86:0e:2c:43:dc: 58:b6:05:02:f8:3e:f1:51:4a:3e:7a:22:23:a0:c2: 77:44:8d:9c:08:ca:13:c5:79:44:0a:4c:1f:db:85: ec:2e:f2:bf:9e:82:80:6e:dc:2e:65:86:af:cb:c5: 84:42:29:05:d9:48:3a:24:c8:bf:a2:68:1e:71:03: c9:2d:db:8d:3d:e3:86:ff:38:1e:78:05:43:bb:00: 9c:4e:4c:2f:f3:20:7d:cb:35:4a:c6:90:8c:33:99: e5:f4:fa:39:31:3b:49:45:4d:e1:37:33:13:4d:cc: 8b:59:c5:ae:0b:a1:8c:d0:f0:5e:da:51:51:ef:b8: c0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:AD:1A:D0:7D:55:69:B8:CF:2F:29:62:CB:D6:BD:DC:5D:9F:D9:F1 X509v3 Authority Key Identifier: keyid:03:A3:C8:7A:4F:2D:82:55:94:76:F7:1C:FA:EE:52:4F:F5:11:35:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6PIek8tglWUdvcc-u5ST_URNXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4CAD/9FD97A0845C311EABEF5D439C4F9AE02/A6PIek8tglWUdvcc-u5ST_URNXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:7c:c6:d6:ab:8b:f9:f1:2e:94:97:32:46:e9:54:7e:3e:b9: 96:7f:5a:68:91:d4:98:3b:72:99:56:c8:7e:41:6c:e6:92:18: ea:97:9a:2f:ce:c8:51:9a:e2:2e:3e:7e:a6:19:fb:f5:21:90: 58:f8:c6:68:70:83:34:0e:af:25:e0:d7:6d:61:dc:9e:2a:ef: 3f:62:cf:6d:a0:96:5f:5d:ae:62:2a:b8:cb:12:e3:91:1a:5b: 5a:50:46:79:e3:78:3d:08:0c:3d:dc:44:15:eb:46:e9:1a:03: 97:77:db:e2:d1:90:14:cc:b9:01:a4:00:9a:c9:b2:eb:b0:af: c3:9f:40:32:28:b3:b6:1e:fc:70:57:eb:0f:0a:79:7b:b7:86: 97:5c:63:95:1c:ba:3b:b0:51:99:79:46:68:fe:b6:a1:24:9c: a4:98:90:2c:48:9e:ce:d7:f5:88:2e:ae:5a:53:41:76:3b:5c: c6:c9:61:49:16:9c:ac:44:54:ff:c0:67:31:62:20:a9:83:fa: 3d:7d:5c:05:f8:2b:2a:93:2f:95:52:12:80:1d:13:cc:36:99: 9d:c1:7c:c1:aa:63:e6:1a:99:de:6a:79:1b:ac:ec:0f:01:e2: 1e:31:e8:6b:e3:83:c8:65:0b:86:98:23:a0:c5:5f:98:4e:4b: 34:5a:6a:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDQUQxMTAvBgNVBAUTKDAzQTNDODdBNEYyRDgyNTU5NDc2RjcxQ0ZBRUU1MjRG RjUxMTM1NzkwHhcNMjUwODIyMTkyNTA3WhcNMjUwODI5MTkyNTA3WjAYMRYwFAYD VQQDEw02OGE4YzQxNC00YjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvyami51ggT7JnbR+MirPiz6w9NbTNVTo16FKuuFbvHQwWQ2wZs//FQlLTMq NjT3CQZmfUdpek6KbTLMkJEByPGuN/t/6yP9n7YVQNbCuU4/tsy/IoygF6NeswWi ZjzOlEIXHVVyoE2uiC9VGhdVQzYaek40Jjr8IF4afcHhvqI/hg4sQ9xYtgUC+D7x UUo+eiIjoMJ3RI2cCMoTxXlECkwf24XsLvK/noKAbtwuZYavy8WEQikF2Ug6JMi/ omgecQPJLduNPeOG/zgeeAVDuwCcTkwv8yB9yzVKxpCMM5nl9Po5MTtJRU3hNzMT TcyLWcWuC6GM0PBe2lFR77jAwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGatGtB9 VWm4zy8pYsvWvdxdn9nxMB8GA1UdIwQYMBaAFAOjyHpPLYJVlHb3HPruUk/1ETV5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNENBRC85RkQ5N0EwODQ1 QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGdsV1VkdmNjLXU1U1RfVVJO WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2UEllazh0Z2xXVWR2Y2MtdTVTVF9VUk5Yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NENBRC85RkQ5N0EwODQ1QzMxMUVBQkVGNUQ0MzlDNEY5QUUwMi9BNlBJZWs4dGds V1VkdmNjLXU1U1RfVVJOWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7fMbWq4v58S6UlzJG6VR+PrmWf1pokdSYO3KZVsh+QWzmkhjql5ov zshRmuIuPn6mGfv1IZBY+MZocIM0Dq8l4NdtYdyeKu8/Ys9toJZfXa5iKrjLEuOR GltaUEZ543g9CAw93EQV60bpGgOXd9vi0ZAUzLkBpACaybLrsK/Dn0AyKLO2Hvxw V+sPCnl7t4aXXGOVHLo7sFGZeUZo/rahJJykmJAsSJ7O1/WILq5aU0F2O1zGyWFJ FpysRFT/wGcxYiCpg/o9fVwF+Csqky+VUhKAHRPMNpmdwXzBqmPmGpneankbrOwP AeIeMehr44PIZQuGmCOgxV+YTks0Wmos -----END CERTIFICATE-----Generated at Sat Aug 23 18:56:40 2025 by rpki-client