$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: wNmAc6ta5Z4+KNBB+WXN7f6wULTtWd8FHqqSKE/nTwg= Subject key identifier: F8:F4:FA:B1:6C:4D:F6:6A:F0:78:7F:30:A4:9C:E0:4B:73:18:C1:8B Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 03BF Signing time: Sat 23 Aug 2025 00:54:13 +0000 Manifest this update: Sat 23 Aug 2025 00:54:13 +0000 Manifest next update: Sat 30 Aug 2025 00:54:13 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: 64HCXfN4KZPcIc6M0Fvb6frudP4HQvli83YQiet5fb4=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: IKsBlPoiBaV1Y/8FMivKysodYXv24LUe7kGHbrSaUFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A, serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Aug 23 00:54:13 2025 GMT Not After : Aug 30 00:54:13 2025 GMT Subject: CN=68a91135-4aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:35:4f:03:b2:f7:29:72:fb:0b:a9:e0:5c:c1: 0b:44:70:30:88:49:e8:c1:23:be:e5:ad:f3:52:af: 7e:5a:eb:78:61:62:56:47:47:9a:21:64:1a:35:81: a4:ec:4f:e5:14:e3:c6:7b:66:cb:31:2a:4e:a9:09: f8:b5:e9:c2:14:c1:41:8a:70:81:6e:df:1e:f9:c2: 31:f0:12:a2:8b:5e:6b:98:62:4f:bd:be:2a:ee:2d: 65:fc:1f:38:75:b4:e0:e7:84:62:b8:c4:d0:5d:49: 26:84:b6:a0:34:dc:dd:e9:c8:d6:8f:31:b1:09:21: c5:85:72:57:7b:59:f6:c7:f6:ab:35:3b:27:94:45: b9:20:c9:d8:bf:c2:99:34:88:0e:a2:6e:ae:d8:1c: 89:c3:05:ab:c6:0b:d1:3f:7a:b5:21:34:70:d7:a8: 4c:13:f1:15:4a:da:de:98:f0:74:fc:e4:c3:3e:86: 43:62:61:9e:11:b0:e8:42:fa:00:80:14:4e:3c:98: 9b:fe:ad:b6:42:b5:c5:0d:65:b9:0c:e4:d8:86:28: 0e:ec:ee:c2:56:ec:cb:a0:86:eb:b9:11:a0:69:52: 4b:7f:27:e3:06:5b:d0:1b:74:ce:c4:86:8e:fd:65: 7f:a6:e6:9d:22:68:f2:2d:a1:6d:8d:6f:1a:b2:a9: 2e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F4:FA:B1:6C:4D:F6:6A:F0:78:7F:30:A4:9C:E0:4B:73:18:C1:8B X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:92:7f:c1:e8:98:0b:c5:4e:3a:4b:b0:df:b3:fd:c5:dc:95: 47:14:6b:30:0a:fe:e0:db:fe:b7:60:11:78:e0:01:e5:a0:6d: 5f:f7:5f:9e:66:da:c5:f0:b6:fa:be:a1:04:82:d3:3a:d1:01: 19:5e:06:1f:a9:5c:bb:ee:eb:cd:67:4f:23:38:28:7b:c6:05: c7:40:d0:7c:bd:8e:7d:a8:f3:eb:37:b7:22:fc:3f:12:12:38: 63:81:1b:12:c2:92:43:4c:94:9f:84:d4:ba:78:f4:a8:c7:73: a8:4b:60:14:7d:05:dd:5d:d9:52:90:11:8c:2f:aa:c3:17:31: e6:ce:68:76:f5:93:b6:15:b6:6d:3a:bc:98:76:c9:39:71:79: 9c:c8:37:be:0b:9f:f2:26:30:db:74:f6:36:2c:6d:b1:72:0d: e6:ab:c5:cf:e2:b7:ac:4e:20:09:0d:d6:d9:8b:46:dc:e0:6a: a8:94:54:cf:9e:75:e9:ce:d3:db:17:53:c3:14:79:37:2b:b0: e0:40:dc:ed:1a:a5:cb:d0:4d:46:22:c0:7d:44:cc:4c:e5:30: 2d:05:85:e8:77:6a:e7:9d:34:d3:60:2e:1b:0b:b9:9c:b7:b9: b0:5e:b1:f9:f2:c2:fc:82:54:54:a0:0b:f3:1c:89:94:85:fc: 9f:0f:0e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjUwODIzMDA1NDEzWhcNMjUwODMwMDA1NDEzWjAYMRYwFAYD VQQDEw02OGE5MTEzNS00YWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzVPA7L3KXL7C6ngXMELRHAwiEnowSO+5a3zUq9+Wut4YWJWR0eaIWQaNYGk 7E/lFOPGe2bLMSpOqQn4tenCFMFBinCBbt8e+cIx8BKii15rmGJPvb4q7i1l/B84 dbTg54RiuMTQXUkmhLagNNzd6cjWjzGxCSHFhXJXe1n2x/arNTsnlEW5IMnYv8KZ NIgOom6u2ByJwwWrxgvRP3q1ITRw16hME/EVStremPB0/OTDPoZDYmGeEbDoQvoA gBROPJib/q22QrXFDWW5DOTYhigO7O7CVuzLoIbruRGgaVJLfyfjBlvQG3TOxIaO /WV/puadImjyLaFtjW8asqkuTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPj0+rFs TfZq8Hh/MKSc4EtzGMGLMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbkn/B6JgLxU46S7Dfs/3F3JVHFGswCv7g2/63YBF44AHloG1f91+e ZtrF8Lb6vqEEgtM60QEZXgYfqVy77uvNZ08jOCh7xgXHQNB8vY59qPPrN7ci/D8S EjhjgRsSwpJDTJSfhNS6ePSox3OoS2AUfQXdXdlSkBGML6rDFzHmzmh29ZO2FbZt OryYdsk5cXmcyDe+C5/yJjDbdPY2LG2xcg3mq8XP4resTiAJDdbZi0bc4GqolFTP nnXpztPbF1PDFHk3K7DgQNztGqXL0E1GIsB9RMxM5TAtBYXod2rnnTTTYC4bC7mc t7mwXrH58sL8glRUoAvzHImUhfyfDw7G -----END CERTIFICATE-----Generated at Sat Aug 23 17:20:57 2025 by rpki-client