$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: t7CGwUaJFyChGfd3XY5hNx9HBmTzz2j4jHiaknJDx4Q= Subject key identifier: 58:8A:C8:70:EA:45:CF:F8:F0:0B:D4:57:F7:2C:A4:61:26:DD:FB:9B Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0206 Signing time: Sat 23 Aug 2025 02:29:22 +0000 Manifest this update: Sat 23 Aug 2025 02:29:21 +0000 Manifest next update: Sat 30 Aug 2025 02:29:21 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: lp3p+Fk7nd651Zhmxmm6hj/Nk5cJVdBcXYzCZcPw4ow=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Aug 23 02:29:21 2025 GMT Not After : Aug 30 02:29:21 2025 GMT Subject: CN=68a92782-3702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:70:82:0a:76:9f:cf:4e:08:91:aa:f7:3c: dc:02:63:bd:c0:17:0d:1c:43:63:64:e9:6b:cc:66: 92:f8:15:58:4d:b2:f7:65:ae:f4:c1:d0:1c:ca:c0: 00:87:2f:ff:10:2f:8f:3f:10:2a:63:41:17:01:45: 59:ed:1a:7d:e3:9a:e1:a7:f3:e6:e4:05:b1:80:65: e5:61:06:26:d2:29:fa:b5:d7:16:67:dd:18:15:ba: 67:d8:86:82:e4:35:cc:d1:2c:11:dd:2b:8d:23:80: 1c:24:fc:e0:84:6f:b6:54:ea:15:7b:b5:9f:30:83: f4:71:b5:dc:e6:c2:9b:fa:5d:89:95:ec:e0:da:29: d5:2c:18:97:96:81:9b:27:5e:37:32:f1:e3:b6:54: 35:4b:aa:9d:6f:ed:71:db:71:b8:c8:90:3c:c1:d2: d8:5a:b2:10:a8:8a:c2:4e:e5:a8:25:90:e1:1f:9d: 02:07:42:85:27:00:74:3d:bf:9f:e5:a8:61:82:5f: 2a:0a:db:be:5a:9c:43:bf:5d:dc:b4:a6:0e:f4:94: 8c:d5:06:28:24:50:7e:7d:47:f8:65:d0:8f:c1:e8: 77:48:c5:86:a9:97:86:4d:ed:48:79:ef:b2:0f:9f: 3e:6b:83:c6:97:44:9d:1e:b1:d7:41:83:df:de:ce: ea:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8A:C8:70:EA:45:CF:F8:F0:0B:D4:57:F7:2C:A4:61:26:DD:FB:9B X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:41:e0:62:da:99:42:c4:31:32:8d:77:60:7c:b0:cb:3c:e0: 09:1a:7c:17:ff:a2:26:e7:57:6c:18:a8:52:94:e1:e2:25:33: e9:f8:49:00:a4:29:41:e9:9e:35:2b:47:d8:e2:8e:16:2c:41: 44:09:c5:ef:49:87:26:94:f6:4c:39:99:a9:08:57:46:22:f7: a3:e6:7c:25:82:47:21:a9:0a:0f:bd:68:59:01:f8:01:93:c4: 1e:09:29:e2:d7:85:ed:84:57:1f:39:3c:71:46:f1:26:71:e1: e5:cb:da:b5:03:76:a6:1f:ad:ab:b3:20:72:fd:8a:fc:2c:21: 56:10:66:51:49:52:b6:2b:28:90:8b:cb:a6:cf:1d:50:f0:aa: de:9d:69:85:f2:5b:fc:7a:7b:e9:32:7c:bc:be:14:cc:23:9f: f4:27:83:90:f0:27:c6:37:e5:c1:fa:88:60:86:9f:19:99:4e: a0:ab:eb:59:d4:e6:a0:d4:4c:95:a1:c5:04:af:61:6d:1d:72: 6d:f7:8a:cb:02:ff:9e:61:ae:65:f4:a7:a9:d6:5e:14:18:20: 5c:c4:7c:79:d3:43:5d:aa:17:05:26:b3:1b:99:b9:fb:89:c3: f0:5d:4e:c8:51:10:05:67:41:88:42:76:0a:6f:6c:0f:ec:11: fc:63:12:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUwODIzMDIyOTIxWhcNMjUwODMwMDIyOTIxWjAYMRYwFAYD VQQDEw02OGE5Mjc4Mi0zNzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy1wggp2n89OCJGq9zzcAmO9wBcNHENjZOlrzGaS+BVYTbL3Za70wdAcysAA hy//EC+PPxAqY0EXAUVZ7Rp945rhp/Pm5AWxgGXlYQYm0in6tdcWZ90YFbpn2IaC 5DXM0SwR3SuNI4AcJPzghG+2VOoVe7WfMIP0cbXc5sKb+l2Jlezg2inVLBiXloGb J143MvHjtlQ1S6qdb+1x23G4yJA8wdLYWrIQqIrCTuWoJZDhH50CB0KFJwB0Pb+f 5ahhgl8qCtu+WpxDv13ctKYO9JSM1QYoJFB+fUf4ZdCPweh3SMWGqZeGTe1Iee+y D58+a4PGl0SdHrHXQYPf3s7quwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiKyHDq Rc/48AvUV/cspGEm3fubMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKQeBi2plCxDEyjXdgfLDLPOAJGnwX/6Im51dsGKhSlOHiJTPp+EkA pClB6Z41K0fY4o4WLEFECcXvSYcmlPZMOZmpCFdGIvej5nwlgkchqQoPvWhZAfgB k8QeCSni14XthFcfOTxxRvEmceHly9q1A3amH62rsyBy/Yr8LCFWEGZRSVK2KyiQ i8umzx1Q8KrenWmF8lv8envpMny8vhTMI5/0J4OQ8CfGN+XB+ohghp8ZmU6gq+tZ 1Oag1EyVocUEr2FtHXJt94rLAv+eYa5l9Kep1l4UGCBcxHx500NdqhcFJrMbmbn7 icPwXU7IURAFZ0GIQnYKb2wP7BH8YxLJ -----END CERTIFICATE-----Generated at Sun Aug 24 03:10:32 2025 by rpki-client