$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: 3OcMEj7HNM3vDvb5KkmMlLJBpCF7T56Neh+IJ0RrfCU= Subject key identifier: 0A:3B:5D:C8:47:10:ED:68:D9:D5:50:8C:95:46:8C:1D:1D:9C:94:DE Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 029F Signing time: Sat 23 Aug 2025 01:48:33 +0000 Manifest this update: Sat 23 Aug 2025 01:48:33 +0000 Manifest next update: Sat 30 Aug 2025 01:48:33 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: nUYsNlQQBNAbo71ixx4j3hVLaFY/tSw3xJ8m2IAhAKc=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Aug 23 01:48:33 2025 GMT Not After : Aug 30 01:48:33 2025 GMT Subject: CN=68a91df1-4cd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ee:ff:06:93:b5:a2:b3:6d:eb:6f:ce:80:df: f8:02:cd:b3:a2:c8:51:d9:28:a2:60:bf:62:61:fa: fc:f7:be:e1:52:ae:d4:be:03:c6:49:2c:68:c2:41: 20:44:87:9e:06:75:6b:9d:f4:bb:fe:e4:62:43:77: bf:c6:07:d2:10:b0:1b:ba:89:3d:3f:bf:8f:08:08: 18:10:66:f1:82:90:f9:78:8e:ab:e8:e0:95:b3:18: 06:9f:b8:49:fc:c0:e5:8f:b0:14:b6:06:14:42:b5: d7:d9:bc:45:ef:2d:c2:6b:e3:7c:1d:40:f8:43:89: 1f:59:26:ec:af:82:93:37:2a:f4:ba:f2:97:a6:6d: 4b:0a:f1:ff:e8:aa:a2:34:cd:43:d3:24:87:d5:de: 98:a4:4e:a0:3e:db:93:e5:8d:20:f2:cd:64:70:c0: 61:91:a2:31:89:ad:4b:f0:cf:9d:52:1a:0f:4d:9b: bd:0e:93:b8:cb:91:4a:6f:b7:ae:41:a6:9d:bd:06: f8:34:a2:72:38:e1:40:a5:41:c5:46:ad:ac:70:00: bf:b2:b0:c5:8f:22:e5:2d:99:69:f2:41:92:03:41: 84:fe:d9:b5:1d:3a:8b:4b:f1:a0:14:d2:18:37:6e: a1:12:9a:c7:4d:55:88:db:4a:01:9e:17:ac:a0:03: f8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3B:5D:C8:47:10:ED:68:D9:D5:50:8C:95:46:8C:1D:1D:9C:94:DE X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ea:fe:08:ce:8d:df:57:bf:f3:76:f1:7e:d5:2b:08:bc:5e: 47:60:b7:a7:b4:5b:93:6c:37:5a:e2:21:3c:87:b8:fa:da:0b: 0f:06:8c:a9:0f:5c:c1:f3:a7:85:02:69:a1:8d:0a:e5:ba:b5: 94:04:70:13:31:86:af:fa:4b:1c:9d:da:6c:df:40:ac:84:f3: 04:28:6a:31:2f:fb:24:7b:60:64:0f:f3:9c:9e:4f:86:c1:36: dd:ae:6c:7a:c2:aa:6a:ec:c8:0f:8d:76:39:ca:e3:d0:6d:ae: 17:88:16:73:f9:63:29:23:74:73:a2:8c:e0:37:c0:ae:9e:dc: 4e:57:9b:9b:46:9e:1d:e1:9b:41:7e:46:a3:44:46:f3:4a:a9: ce:8e:a8:17:da:97:71:18:9a:c4:fb:f9:3c:8c:ea:c3:87:32: ff:32:8d:49:b2:ea:ef:fd:e0:56:b0:a9:8d:a3:41:79:76:24: 6b:04:e8:d6:e9:42:b9:2d:d8:e1:c8:99:36:5a:28:cf:1b:40: 0d:3a:63:08:67:cc:a0:85:2e:81:f6:f9:56:85:66:93:57:88: 2b:8d:d2:ef:fa:00:7b:c0:d7:bf:fc:4c:31:e9:20:fe:08:bc: c6:85:90:33:59:73:c0:6e:86:05:11:37:e3:cb:1b:51:14:81: b8:1d:be:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwODIzMDE0ODMzWhcNMjUwODMwMDE0ODMzWjAYMRYwFAYD VQQDEw02OGE5MWRmMS00Y2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou7/BpO1orNt62/OgN/4As2zoshR2SiiYL9iYfr8977hUq7UvgPGSSxowkEg RIeeBnVrnfS7/uRiQ3e/xgfSELAbuok9P7+PCAgYEGbxgpD5eI6r6OCVsxgGn7hJ /MDlj7AUtgYUQrXX2bxF7y3Ca+N8HUD4Q4kfWSbsr4KTNyr0uvKXpm1LCvH/6Kqi NM1D0ySH1d6YpE6gPtuT5Y0g8s1kcMBhkaIxia1L8M+dUhoPTZu9DpO4y5FKb7eu QaadvQb4NKJyOOFApUHFRq2scAC/srDFjyLlLZlp8kGSA0GE/tm1HTqLS/GgFNIY N26hEprHTVWI20oBnhesoAP4pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo7XchH EO1o2dVQjJVGjB0dnJTeMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw6v4Izo3fV7/zdvF+1SsIvF5HYLentFuTbDda4iE8h7j62gsPBoyp D1zB86eFAmmhjQrlurWUBHATMYav+kscndps30CshPMEKGoxL/ske2BkD/Ocnk+G wTbdrmx6wqpq7MgPjXY5yuPQba4XiBZz+WMpI3RzoozgN8CuntxOV5ubRp4d4ZtB fkajREbzSqnOjqgX2pdxGJrE+/k8jOrDhzL/Mo1Jsurv/eBWsKmNo0F5diRrBOjW 6UK5LdjhyJk2WijPG0ANOmMIZ8yghS6B9vlWhWaTV4grjdLv+gB7wNe//Ewx6SD+ CLzGhZAzWXPAboYFETfjyxtRFIG4Hb4s -----END CERTIFICATE-----Generated at Sat Aug 23 10:46:51 2025 by rpki-client