$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 7i2xkplxJol6jM/TD1nYeHL+O1vR2poTgcPT1mVR4OU= Subject key identifier: 72:37:83:F6:62:22:28:62:CE:3B:2C:80:51:7A:8E:27:6D:52:7D:24 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 36A3 Signing time: Fri 22 Aug 2025 14:33:35 +0000 Manifest this update: Fri 22 Aug 2025 14:33:34 +0000 Manifest next update: Fri 29 Aug 2025 14:33:34 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: 3IZ/+w9M/Ufrzj+dBByWf+LOd1BL5r66CwS9cnu2+XU=) 2: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (hash: nh94eTTHYj6LF33H1WS71VdzV0Cak2sfzem+EZwjKa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13988 (0x36a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Aug 22 14:33:34 2025 GMT Not After : Aug 29 14:33:34 2025 GMT Subject: CN=68a87fbe-8dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:66:03:b7:cb:bb:dc:69:85:23:54:8a:31:c2: 07:26:1f:cf:b7:a3:48:b1:e1:fb:a1:73:f5:03:d7: 65:1d:9e:78:3b:ed:49:35:cb:d2:75:5f:89:ce:5c: 02:5f:94:21:ce:63:38:8e:b4:9a:42:8a:7d:a0:a8: 88:7b:e3:66:75:6e:e8:89:6c:c8:68:df:87:8c:f0: 34:56:a1:fd:19:38:09:b0:a5:9f:a5:e5:4a:6f:ce: d6:31:64:78:db:6b:ac:f0:21:80:32:ac:c9:66:bd: 77:5f:7f:e6:df:d4:b1:d1:3d:cc:94:53:1d:04:e6: 6c:f9:18:79:f5:bf:26:b0:b3:89:20:cc:7e:a3:b0: 7a:e2:4e:87:58:86:04:c4:97:ae:3b:e1:6d:0b:10: 64:7c:ee:d1:76:75:e5:05:a3:31:c7:78:ae:a3:af: 57:7f:a8:70:c8:fd:02:96:e6:d5:d3:2a:e8:98:27: f8:9d:58:a9:21:d6:f7:78:a7:18:ea:e9:b1:ff:c1: 65:fb:d7:3b:d0:b2:c5:b6:00:1a:e1:63:63:3a:d8: 69:5a:b0:3e:2d:50:77:87:12:a4:c6:01:0a:b8:98: 29:ff:fa:39:8a:07:af:8c:6f:bc:bc:ef:6f:d5:f5: fe:2c:56:18:a7:a2:8b:89:40:7b:06:5e:1a:cc:03: 79:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:37:83:F6:62:22:28:62:CE:3B:2C:80:51:7A:8E:27:6D:52:7D:24 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:fb:52:1c:81:a1:9e:0c:7d:75:9f:71:b0:e3:a9:29:3b:e5: 98:16:41:35:7b:24:93:0a:a3:e7:0f:89:46:04:2c:b5:40:d6: ec:e3:1d:22:66:a3:1b:a4:17:59:c4:73:6d:0e:2d:4a:43:0d: c2:9d:70:e6:10:19:b9:c7:63:bb:97:50:ac:0e:f5:1d:9f:e1: 57:a1:f9:64:2f:cc:d6:3b:ea:82:69:b0:fb:f5:a4:07:31:05: 12:6f:0d:b2:fd:69:50:0b:44:2f:a8:94:11:8e:13:ac:82:37: 71:7a:53:4b:01:0d:ba:a9:91:65:b5:15:47:b6:e3:53:ad:a4: f7:89:a0:a8:c7:bf:be:5e:a8:55:3c:b1:cd:da:72:9e:d7:7b: f1:30:da:59:fb:8a:05:0b:a7:36:5f:b9:e1:c9:e2:f9:3e:c7: c7:62:79:89:18:fa:ed:ba:f8:2f:d5:01:f3:28:07:3b:a6:95: 2c:de:d6:9c:ef:d3:8b:eb:68:20:7c:ff:6d:98:fb:cb:d3:1f: 6d:d7:77:44:69:ab:df:14:5c:73:da:77:8b:34:1d:43:e7:c3: 4a:0f:2f:70:72:8a:bf:1e:4b:39:1e:92:94:87:c9:83:cf:4f: a4:45:7a:5e:a5:3a:58:30:14:eb:2b:5f:90:51:76:ec:d2:d5: 29:a0:d8:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwODIyMTQzMzM0WhcNMjUwODI5MTQzMzM0WjAYMRYwFAYD VQQDEw02OGE4N2ZiZS04ZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9mYDt8u73GmFI1SKMcIHJh/Pt6NIseH7oXP1A9dlHZ54O+1JNcvSdV+JzlwC X5QhzmM4jrSaQop9oKiIe+NmdW7oiWzIaN+HjPA0VqH9GTgJsKWfpeVKb87WMWR4 22us8CGAMqzJZr13X3/m39Sx0T3MlFMdBOZs+Rh59b8msLOJIMx+o7B64k6HWIYE xJeuO+FtCxBkfO7RdnXlBaMxx3iuo69Xf6hwyP0ClubV0yromCf4nVipIdb3eKcY 6umx/8Fl+9c70LLFtgAa4WNjOthpWrA+LVB3hxKkxgEKuJgp//o5igevjG+8vO9v 1fX+LFYYp6KLiUB7Bl4azAN53QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHI3g/Zi IihizjssgFF6jidtUn0kMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDI+1IcgaGeDH11n3Gw46kpO+WYFkE1eySTCqPnD4lGBCy1QNbs4x0i ZqMbpBdZxHNtDi1KQw3CnXDmEBm5x2O7l1CsDvUdn+FXoflkL8zWO+qCabD79aQH MQUSbw2y/WlQC0QvqJQRjhOsgjdxelNLAQ26qZFltRVHtuNTraT3iaCox7++XqhV PLHN2nKe13vxMNpZ+4oFC6c2X7nhyeL5PsfHYnmJGPrtuvgv1QHzKAc7ppUs3tac 79OL62ggfP9tmPvL0x9t13dEaavfFFxz2neLNB1D58NKDy9wcoq/Hks5HpKUh8mD z0+kRXpepTpYMBTrK1+QUXbs0tUpoNjK -----END CERTIFICATE-----Generated at Sat Aug 23 20:16:35 2025 by rpki-client