$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: FiACfJ4kJwVj8m47g/lbpRbnTgi9/NtKRs2fRGlAfHQ= Subject key identifier: E9:00:AC:5E:A4:3E:61:FF:D1:75:EF:96:A0:D0:70:58:32:D2:EA:91 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 07F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 07ED Signing time: Fri 22 Aug 2025 21:08:02 +0000 Manifest this update: Fri 22 Aug 2025 21:08:01 +0000 Manifest next update: Fri 29 Aug 2025 21:08:01 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: GO8iBN82scuI/wDHvuyTCVQs+T/H0m1p4lLSesadEyU=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2, serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: Aug 22 21:08:01 2025 GMT Not After : Aug 29 21:08:01 2025 GMT Subject: CN=68a8dc31-1606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:74:ef:5f:a8:05:4e:2f:50:ce:98:d1:a6:44: 27:83:aa:a8:00:97:00:a8:5e:d1:a0:cb:ef:d1:bf: 89:61:82:a8:be:42:7d:cd:bb:d8:35:aa:95:8d:57: 0a:db:65:70:de:8e:f9:ff:79:e1:f0:9e:01:05:63: 2e:7b:dc:05:db:6f:99:09:8b:cc:a9:2e:06:28:5c: 81:bb:ff:32:19:af:d9:4a:2b:05:97:c4:09:7d:ff: 16:d3:42:18:bc:e6:0f:48:75:84:f5:56:d3:12:c2: 37:85:fd:5e:0b:83:f4:28:b2:18:bc:cc:45:0d:f4: 02:5b:19:fd:0c:b0:a1:b7:40:33:a2:d4:0e:8a:f3: 40:db:af:e7:4b:29:39:00:0e:cf:fd:bf:65:07:53: 0b:d6:e0:02:f0:ce:58:16:0d:bd:af:26:af:60:8c: 5f:35:ff:f1:19:e4:6e:d9:91:7f:d6:16:92:db:2b: 3b:b0:67:27:ff:35:ed:ad:a9:ce:28:81:e3:af:58: de:93:2a:b3:ab:3f:81:41:66:44:ed:20:2c:1b:11: 2a:4b:cf:e0:b0:39:86:f1:c8:b9:77:5a:c3:79:fb: a8:a2:e0:c5:02:a2:cc:f8:fc:63:22:db:c1:7c:08: b4:88:1c:93:a3:c2:8f:f8:ff:f6:8e:8f:0e:55:b3: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:00:AC:5E:A4:3E:61:FF:D1:75:EF:96:A0:D0:70:58:32:D2:EA:91 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:3f:d5:f8:05:12:a3:69:08:29:a1:a2:d9:44:e9:f3:7b:d8: d5:04:ac:30:b6:db:7c:3f:c3:12:fb:dd:09:8e:4d:39:9d:25: 8a:19:52:f6:bb:a7:e6:ba:83:3a:3f:19:fc:df:f3:f0:ba:dd: 85:d9:1a:3c:0f:94:97:6f:99:ee:1c:d9:f0:d7:2a:cb:3c:90: 3d:f8:d9:79:13:82:3a:cf:54:1e:77:f1:39:e4:c0:27:83:03: a2:65:07:0d:da:33:f4:63:6d:d1:ca:78:08:d6:fa:46:18:ba: 4e:22:a7:af:e5:ec:e2:f3:65:6b:86:26:90:76:26:d8:cf:57: a7:8e:a2:04:4e:05:c9:70:5d:f9:a8:6a:19:27:8c:d1:f4:bc: 4d:be:d4:bc:ff:9e:7e:8e:eb:fa:cc:9b:13:98:36:5c:8b:c4: 8d:00:bf:9a:31:e3:a8:5b:ed:e0:d2:12:b9:58:98:04:f8:63: 3b:9a:8b:77:3e:e4:d9:30:36:4f:27:be:de:bf:9d:bc:7c:03: 09:98:0d:70:97:43:a6:0d:c6:6c:47:5b:fa:03:cb:6e:66:37: 6f:a7:28:ed:6b:08:b7:38:97:2d:f5:af:a4:91:a1:0a:d0:a0: 6c:f3:e0:93:da:a4:9f:19:e4:6a:3d:36:3c:8d:5d:b5:8b:b9: 75:15:35:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUwODIyMjEwODAxWhcNMjUwODI5MjEwODAxWjAYMRYwFAYD VQQDEw02OGE4ZGMzMS0xNjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nTvX6gFTi9QzpjRpkQng6qoAJcAqF7RoMvv0b+JYYKovkJ9zbvYNaqVjVcK 22Vw3o75/3nh8J4BBWMue9wF22+ZCYvMqS4GKFyBu/8yGa/ZSisFl8QJff8W00IY vOYPSHWE9VbTEsI3hf1eC4P0KLIYvMxFDfQCWxn9DLCht0AzotQOivNA26/nSyk5 AA7P/b9lB1ML1uAC8M5YFg29ryavYIxfNf/xGeRu2ZF/1haS2ys7sGcn/zXtranO KIHjr1jekyqzqz+BQWZE7SAsGxEqS8/gsDmG8ci5d1rDefuoouDFAqLM+PxjItvB fAi0iByTo8KP+P/2jo8OVbOliQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkArF6k PmH/0XXvlqDQcFgy0uqRMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIP9X4BRKjaQgpoaLZROnze9jVBKwwttt8P8MS+90Jjk05nSWKGVL2 u6fmuoM6Pxn83/Pwut2F2Ro8D5SXb5nuHNnw1yrLPJA9+Nl5E4I6z1Qed/E55MAn gwOiZQcN2jP0Y23RyngI1vpGGLpOIqev5ezi82VrhiaQdibYz1enjqIETgXJcF35 qGoZJ4zR9LxNvtS8/55+juv6zJsTmDZci8SNAL+aMeOoW+3g0hK5WJgE+GM7mot3 PuTZMDZPJ77ev528fAMJmA1wl0OmDcZsR1v6A8tuZjdvpyjtawi3OJct9a+kkaEK 0KBs8+CT2qSfGeRqPTY8jV21i7l1FTX7 -----END CERTIFICATE-----Generated at Sat Aug 23 17:04:58 2025 by rpki-client