$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft File: Wr7NjqrTfqV665OfLAsUKXSEH4o.mft (raw, json) Hash identifier: IqeTH5Uvbe/rdUTrU8C++40OQyY10DZWxl4QBStuQPY= Subject key identifier: 3C:BF:3B:E2:0E:9A:45:D9:BC:2D:0D:01:77:F8:61:F1:07:E9:52:BB Authority key identifier: 5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A Certificate issuer: /CN=A91A5A82/serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft Manifest number: 4E Signing time: Sat 23 Aug 2025 07:33:48 +0000 Manifest this update: Sat 23 Aug 2025 07:33:47 +0000 Manifest next update: Sat 30 Aug 2025 07:33:47 +0000 Files and hashes: 1: Wr7NjqrTfqV665OfLAsUKXSEH4o.crl (hash: Q1vKz9r/gNANu8QKWuDyjFMGiOZwr77Mj19Kq3MwnGQ=) 2: D0B32912090911F0A5348F26C4F9AE02.roa (hash: uW1VF7Kvr3qqb0xY8fd0nDeotf3CK4ccwfdt9+YehUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A82, serialNumber=5ABECD8EAAD37EA57AEB939F2C0B142974841F8A Validity Not Before: Aug 23 07:33:47 2025 GMT Not After : Aug 30 07:33:47 2025 GMT Subject: CN=68a96edb-db9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b5:62:96:cc:71:3d:08:1a:56:59:ea:83:2b: 0c:62:37:83:65:76:8f:9a:fc:df:24:2f:f8:47:2b: 4d:31:49:fe:10:15:25:19:f1:1a:36:d7:07:c1:16: f9:21:22:02:c5:a5:f4:f3:38:05:14:1b:ed:3f:4f: 9e:db:b6:ef:f1:08:b6:02:5a:f8:f8:cb:d3:51:b1: e2:b3:f8:5d:1b:f9:e5:9f:53:f0:eb:2c:db:ba:3d: 73:df:cd:97:bc:4e:ca:3a:79:dc:a8:fc:5c:82:84: dd:28:54:77:2b:75:6a:a8:40:ee:de:8c:70:f0:39: 59:e1:94:3a:ec:ae:2f:84:ad:1d:7d:e9:f0:20:0a: 0e:6a:ed:a5:ac:5e:8f:31:99:1c:73:70:77:92:c8: 5c:49:3c:d2:a4:67:30:36:54:66:16:e1:c8:f5:cd: 78:8d:b7:d0:cc:c1:24:67:37:1e:2b:2e:ff:2b:0c: 0d:99:fc:f8:e2:a0:a1:dc:ca:84:68:04:4d:65:ac: 9c:8c:2b:78:15:75:56:1d:68:61:23:d9:66:14:02: 75:7d:0f:1e:a6:80:e0:28:97:20:c3:10:85:c0:31: 75:b7:fa:db:58:ba:5f:b2:26:ca:19:ac:2d:3a:41: e8:93:26:b3:65:5a:2d:d2:11:72:b5:95:d1:a7:87: bd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BF:3B:E2:0E:9A:45:D9:BC:2D:0D:01:77:F8:61:F1:07:E9:52:BB X509v3 Authority Key Identifier: keyid:5A:BE:CD:8E:AA:D3:7E:A5:7A:EB:93:9F:2C:0B:14:29:74:84:1F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wr7NjqrTfqV665OfLAsUKXSEH4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A82/BB98A45E090811F0A493E922C4F9AE02/Wr7NjqrTfqV665OfLAsUKXSEH4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a5:15:bf:b6:2f:94:73:76:75:43:04:8f:5a:2d:b3:98:1d: 06:56:31:7b:01:1f:36:60:e9:6c:a5:08:5e:e5:09:36:c2:6a: 1b:aa:85:4d:18:fa:ec:6f:07:0c:80:8b:b4:c0:87:8f:f9:1d: 28:99:d8:bf:47:19:b2:d3:56:9a:f6:f8:f6:36:fe:36:3a:b8: 58:5b:c0:31:66:7d:eb:c3:17:e2:d2:33:78:2f:dc:39:80:42: bd:ff:5a:75:21:d5:9c:24:61:4a:69:3d:93:2c:82:55:c6:28: 0b:08:2a:6c:66:a3:11:34:1d:8e:db:20:05:9d:b7:8c:61:40: 84:e7:f9:8d:6e:50:70:2f:1c:17:65:05:52:7a:ea:1f:56:4f: 07:94:b6:f0:4e:f2:c6:18:31:25:5d:27:b5:77:f3:11:27:a5: 65:a6:4c:4d:6d:66:cd:0e:8a:f3:7a:fc:e3:de:a3:09:77:5f: 4b:97:2d:af:bd:54:13:2c:1e:42:61:7b:b2:d8:ac:03:ea:33: dc:de:4a:dc:e9:c0:41:aa:13:54:87:c7:aa:1d:36:cf:f8:62: 78:e2:ac:31:6a:8d:b3:33:c1:91:7d:70:b9:b1:92:1b:dc:52: 2c:6b:4b:c1:4a:e1:0f:a6:36:01:0d:e0:81:58:d0:3d:09:88: 54:da:8c:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE4MjExMC8GA1UEBRMoNUFCRUNEOEVBQUQzN0VBNTdBRUI5MzlGMkMwQjE0Mjk3 NDg0MUY4QTAeFw0yNTA4MjMwNzMzNDdaFw0yNTA4MzAwNzMzNDdaMBgxFjAUBgNV BAMTDTY4YTk2ZWRiLWRiOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDStWKWzHE9CBpWWeqDKwxiN4Nldo+a/N8kL/hHK00xSf4QFSUZ8Ro21wfBFvkh IgLFpfTzOAUUG+0/T57btu/xCLYCWvj4y9NRseKz+F0b+eWfU/DrLNu6PXPfzZe8 Tso6edyo/FyChN0oVHcrdWqoQO7ejHDwOVnhlDrsri+ErR196fAgCg5q7aWsXo8x mRxzcHeSyFxJPNKkZzA2VGYW4cj1zXiNt9DMwSRnNx4rLv8rDA2Z/PjioKHcyoRo BE1lrJyMK3gVdVYdaGEj2WYUAnV9Dx6mgOAolyDDEIXAMXW3+ttYul+yJsoZrC06 QeiTJrNlWi3SEXK1ldGnh715AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPL874g6a Rdm8LQ0Bd/hh8QfpUrswHwYDVR0jBBgwFoAUWr7NjqrTfqV665OfLAsUKXSEH4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTgyL0JCOThBNDVFMDkw ODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFWNjY1T2ZMQXNVS1hTRUg0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3I3TmpxclRmcVY2NjVPZkxBc1VLWFNFSDRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTgyL0JCOThBNDVFMDkwODExRjBBNDkzRTkyMkM0RjlBRTAyL1dyN05qcXJUZnFW NjY1T2ZMQXNVS1hTRUg0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKWlFb+2L5RzdnVDBI9aLbOYHQZWMXsBHzZg6WylCF7lCTbCahuqhU0Y +uxvBwyAi7TAh4/5HSiZ2L9HGbLTVpr2+PY2/jY6uFhbwDFmfevDF+LSM3gv3DmA Qr3/WnUh1ZwkYUppPZMsglXGKAsIKmxmoxE0HY7bIAWdt4xhQITn+Y1uUHAvHBdl BVJ66h9WTweUtvBO8sYYMSVdJ7V38xEnpWWmTE1tZs0OivN6/OPeowl3X0uXLa+9 VBMsHkJhe7LYrAPqM9zeStzpwEGqE1SHx6odNs/4YnjirDFqjbMzwZF9cLmxkhvc UixrS8FK4Q+mNgEN4IFY0D0JiFTajMs= -----END CERTIFICATE-----Generated at Sat Aug 23 21:37:10 2025 by rpki-client