$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: p8ao6px3bQao8hma0uyvNkyReaiC2zHFe3TlXTA5Khs= Subject key identifier: DF:5F:1E:93:B9:34:3D:E7:7E:15:71:6F:09:F2:90:CB:B3:72:F6:A3 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 75 Signing time: Sat 23 Aug 2025 07:02:17 +0000 Manifest this update: Sat 23 Aug 2025 07:02:16 +0000 Manifest next update: Sat 30 Aug 2025 07:02:16 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: HeIu+ATMAcCOtxFQnTm/IQjKPX6ExXBayAReM5dDcY8=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Aug 23 07:02:16 2025 GMT Not After : Aug 30 07:02:16 2025 GMT Subject: CN=68a96778-4203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:40:52:82:f2:5b:45:ef:68:85:9d:7f:7b:0b: 2f:a6:42:59:cc:01:7d:23:dc:f0:86:a1:ef:1f:cb: ae:81:7a:f6:4d:6a:83:52:f6:d7:1e:35:c3:1c:6b: 3a:85:bb:5b:75:b3:10:00:a1:f2:36:28:cc:aa:71: 4a:df:5d:5e:85:dd:80:94:dd:5e:21:4f:6a:86:67: 23:d6:fd:60:3b:cc:29:ba:9b:00:8b:f6:2b:f6:62: b3:2a:0b:40:e2:08:0a:a6:62:21:9d:5d:8c:54:5c: 1d:c6:7a:1b:9f:9a:c2:5e:de:d8:cf:7f:f0:c2:f1: 2c:71:63:72:0c:5b:1e:47:68:59:b1:53:fe:77:71: 40:50:11:b9:d4:be:6d:44:58:46:9b:78:4a:8e:b2: 45:d3:b5:1e:25:e1:cb:43:b9:66:b8:cc:b0:77:9e: 78:3b:23:01:e0:ca:2a:df:ad:84:b7:80:8c:32:1e: 5d:1e:13:61:5a:aa:f5:30:69:5c:ae:8d:8f:a2:e5: b7:42:a7:f5:5c:40:ca:e3:b8:94:2e:bd:ba:7d:b3: db:ed:94:8d:23:15:2e:12:27:3d:80:8c:b7:c7:3a: c0:88:e9:3d:3a:bd:9f:95:fb:4d:96:99:7a:e8:06: fe:94:9d:84:0f:42:c4:e6:26:15:81:0f:2c:20:0f: 0e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:5F:1E:93:B9:34:3D:E7:7E:15:71:6F:09:F2:90:CB:B3:72:F6:A3 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:f0:37:fa:71:83:75:99:7b:93:05:62:85:8f:fa:32:b8:9e: 55:19:e1:79:51:dd:34:dd:51:b1:b1:20:56:3c:c2:2f:10:b9: 52:9b:89:26:dc:ee:d0:c1:c2:ee:8a:84:5a:a7:70:0f:23:be: 85:8c:0c:6c:d2:2c:e0:23:b5:5b:1b:6c:11:e9:80:b9:26:7d: 8e:17:10:95:0e:eb:7e:62:5b:fa:78:5c:e3:1c:4d:95:b6:9d: 5a:ea:4d:36:4e:24:7b:a9:0a:32:e7:cf:41:25:2a:00:f2:be: 1b:c9:a3:59:43:0f:33:85:db:4b:12:da:0a:f6:e2:7f:b0:b9: 13:5e:f0:3b:e1:96:0a:6e:a9:d9:45:cc:c9:24:3d:26:c7:f0: 48:5e:fd:a5:ef:c6:bb:2f:d9:49:1e:58:b7:88:cf:dc:72:76: e7:cc:c5:dd:e3:ea:a8:c8:48:d0:83:77:0a:e5:ab:6d:67:15: 1d:82:d0:02:90:aa:94:f4:6e:b0:91:1d:e9:83:69:87:05:fb: 37:a8:e7:8b:38:50:af:b5:1b:1b:93:6a:59:54:db:ac:ee:06: 4d:93:2d:be:95:eb:84:e5:62:ed:93:76:7c:45:10:f3:63:2f: 4c:c4:de:f2:fc:4f:12:4f:01:30:7b:be:d5:d3:8e:4d:3a:a6: 74:2c:ce:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA4MjMwNzAyMTZaFw0yNTA4MzAwNzAyMTZaMBgxFjAUBgNV BAMTDTY4YTk2Nzc4LTQyMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRQFKC8ltF72iFnX97Cy+mQlnMAX0j3PCGoe8fy66BevZNaoNS9tceNcMcazqF u1t1sxAAofI2KMyqcUrfXV6F3YCU3V4hT2qGZyPW/WA7zCm6mwCL9iv2YrMqC0Di CAqmYiGdXYxUXB3GehufmsJe3tjPf/DC8SxxY3IMWx5HaFmxU/53cUBQEbnUvm1E WEabeEqOskXTtR4l4ctDuWa4zLB3nng7IwHgyirfrYS3gIwyHl0eE2FaqvUwaVyu jY+i5bdCp/VcQMrjuJQuvbp9s9vtlI0jFS4SJz2AjLfHOsCI6T06vZ+V+02WmXro Bv6UnYQPQsTmJhWBDywgDw41AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU318ek7k0 Ped+FXFvCfKQy7Ny9qMwHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACjwN/pxg3WZe5MFYoWP+jK4nlUZ4XlR3TTdUbGxIFY8wi8QuVKbiSbc 7tDBwu6KhFqncA8jvoWMDGzSLOAjtVsbbBHpgLkmfY4XEJUO635iW/p4XOMcTZW2 nVrqTTZOJHupCjLnz0ElKgDyvhvJo1lDDzOF20sS2gr24n+wuRNe8DvhlgpuqdlF zMkkPSbH8Ehe/aXvxrsv2UkeWLeIz9xydufMxd3j6qjISNCDdwrlq21nFR2C0AKQ qpT0brCRHemDaYcF+zeo54s4UK+1GxuTallU26zuBk2TLb6V64TlYu2TdnxFEPNj L0zE3vL8TxJPATB7vtXTjk06pnQszkk= -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:34 2025 by rpki-client