$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft File: rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft (raw, json) Hash identifier: 5u8FPjaaYw85vbvdZwRR3024RzOOnCx6aXeacSvjgyI= Subject key identifier: F4:4F:A0:DF:E1:C4:61:5B:1D:70:D3:0B:86:B7:3E:B5:67:EA:50:50 Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft Manifest number: 0417 Signing time: Sat 23 Aug 2025 00:41:05 +0000 Manifest this update: Sat 23 Aug 2025 00:41:05 +0000 Manifest next update: Sat 30 Aug 2025 00:41:05 +0000 Files and hashes: 1: rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl (hash: xS+f3Dl2GgrnRPIC1ACEuAxdxWzMYU/0ucoCBj9vZUs=) 2: E37002DA5EEC11F08928266FC4F9AE02.roa (hash: bP8QoLrN2cG+x9Zk4VLIpDMpINAZs4gBK6D1Lhe10Us=) 3: 2E82E686569E11F08015BC34C4F9AE02.roa (hash: lvLXESJcuRjSmTnSzTV0gfJc2SXdXizZz5eloJwhEZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:41:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Aug 23 00:41:05 2025 GMT Not After : Aug 30 00:41:05 2025 GMT Subject: CN=68a90e21-c27c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b8:56:65:67:96:2c:d6:e4:b6:77:c0:54:9f: b0:14:b5:4d:89:e8:f1:23:51:e1:27:d7:19:89:9d: ac:b7:7c:dd:75:f7:15:b8:ea:94:e4:1a:e1:26:4c: 71:6b:35:6c:ef:71:ca:08:7b:d2:eb:d8:c9:02:91: f7:81:30:94:88:4d:98:7e:df:da:49:ba:44:53:c4: ab:80:88:70:d1:ff:70:7e:6f:c1:62:44:6f:25:6b: 26:18:40:c1:a2:b2:d2:d2:f9:63:d6:12:51:be:b0: 6b:a9:56:eb:2f:0e:91:6b:ee:2b:1a:61:2f:f9:9f: e7:8c:88:42:ed:56:0b:39:a6:bc:99:67:72:6f:fc: 82:e8:13:e5:d8:26:ab:99:6f:79:3d:92:93:dc:b0: ef:f4:31:d9:e8:af:4e:c1:ef:36:08:be:c2:14:c7: f9:fd:8b:7a:c1:06:f0:53:e2:43:2a:1c:2b:c8:4e: 0f:94:9f:14:eb:84:31:03:90:0e:02:3a:eb:f4:18: aa:4b:02:5d:a4:e3:6d:34:03:68:c1:9a:a9:a5:e6: e1:e2:f5:17:b8:ad:3c:eb:91:a8:9a:02:49:f4:3c: 9e:ec:34:b6:62:14:61:cc:82:8f:d8:cd:c6:71:f6: 64:dd:0b:d7:11:22:7f:76:37:4c:16:13:97:cd:35: 81:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:4F:A0:DF:E1:C4:61:5B:1D:70:D3:0B:86:B7:3E:B5:67:EA:50:50 X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:47:69:e1:ab:1d:d0:02:16:07:27:95:0e:aa:fb:fd:b7:bb: 67:df:e6:fb:47:0b:c1:99:cb:f2:a7:0f:5d:b7:59:81:79:08: 20:66:47:27:ed:cb:56:cc:e2:7b:d3:c2:b7:e4:ae:a1:6d:60: 41:d9:c8:a4:c5:f3:28:19:9a:ca:b2:91:8d:fc:39:3d:bb:5a: 26:9c:5d:99:90:24:46:e9:45:85:62:09:68:0b:e5:1c:8b:e2: 88:c3:de:3e:6d:2f:da:f4:bd:a0:be:69:88:19:4a:9d:d8:25: 5b:5e:3a:43:9d:f2:03:5c:17:6d:aa:30:41:38:1e:38:58:4f: c0:85:b4:7c:da:9f:33:ef:d3:03:95:56:66:99:bc:8a:8b:9a: b3:1b:d6:be:01:25:1a:d2:76:3a:29:a1:3b:6e:3a:85:25:88: 2c:80:43:7e:35:d2:4e:49:67:76:30:22:83:bc:2d:79:c7:5e: e7:31:6f:d3:f5:bd:8b:ff:8b:7b:fa:d6:89:0f:f2:31:5a:bb: 79:bd:e6:fd:ce:54:02:13:ef:6d:c6:df:45:d1:bd:b8:d8:41: c0:43:e5:e6:12:f5:5e:84:35:d7:63:11:08:ca:bf:ba:32:cd: 14:df:af:85:b9:91:c7:89:2a:82:a3:ab:67:80:67:1d:3f:31: d7:e0:fc:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjUwODIzMDA0MTA1WhcNMjUwODMwMDA0MTA1WjAYMRYwFAYD VQQDEw02OGE5MGUyMS1jMjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7hWZWeWLNbktnfAVJ+wFLVNiejxI1HhJ9cZiZ2st3zddfcVuOqU5BrhJkxx azVs73HKCHvS69jJApH3gTCUiE2Yft/aSbpEU8SrgIhw0f9wfm/BYkRvJWsmGEDB orLS0vlj1hJRvrBrqVbrLw6Ra+4rGmEv+Z/njIhC7VYLOaa8mWdyb/yC6BPl2Car mW95PZKT3LDv9DHZ6K9Owe82CL7CFMf5/Yt6wQbwU+JDKhwryE4PlJ8U64QxA5AO Ajrr9BiqSwJdpONtNANowZqppebh4vUXuK0865GomgJJ9Dye7DS2YhRhzIKP2M3G cfZk3QvXESJ/djdMFhOXzTWBdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRPoN/h xGFbHXDTC4a3PrVn6lBQMB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODNCNC9FNzlFRDQ5MDgzRjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5 bUtlZzJwQlR2Q2NtOG1rRTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPR2nhqx3QAhYHJ5UOqvv9t7tn3+b7RwvBmcvypw9dt1mBeQggZkcn 7ctWzOJ708K35K6hbWBB2cikxfMoGZrKspGN/Dk9u1omnF2ZkCRG6UWFYgloC+Uc i+KIw94+bS/a9L2gvmmIGUqd2CVbXjpDnfIDXBdtqjBBOB44WE/AhbR82p8z79MD lVZmmbyKi5qzG9a+ASUa0nY6KaE7bjqFJYgsgEN+NdJOSWd2MCKDvC15x17nMW/T 9b2L/4t7+taJD/IxWrt5veb9zlQCE+9txt9F0b242EHAQ+XmEvVehDXXYxEIyr+6 Ms0U36+FuZHHiSqCo6tngGcdPzHX4PzL -----END CERTIFICATE-----Generated at Sat Aug 23 22:38:37 2025 by rpki-client