$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft File: 51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft (raw, json) Hash identifier: cLQTvJpM5Z7p5ymBYPSgyBL5FXiDsOCcq3k9VUaE2YU= Subject key identifier: 03:24:7F:D3:EE:C5:F3:20:51:5E:45:B2:7D:57:25:CF:17:A3:41:8F Authority key identifier: E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D Certificate issuer: /CN=A91AB063/serialNumber=E7584F959A081A4DD94809353051D235939C391D Certificate serial: 1BAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft Manifest number: 1BA2 Signing time: Fri 22 Aug 2025 16:20:10 +0000 Manifest this update: Fri 22 Aug 2025 16:20:09 +0000 Manifest next update: Fri 29 Aug 2025 16:20:09 +0000 Files and hashes: 1: 51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl (hash: LVR4LGWSboQ6yFvuH7l82y1Vw4ykx6m50wXxsJRDqHo=) 2: B6FD84CE54F611E79DF7E643C4F9AE02.roa (hash: YQFMKBF60xX3PieFKAIG2OCODzb9u3iqyawtkqXWSC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7086 (0x1bae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB063, serialNumber=E7584F959A081A4DD94809353051D235939C391D Validity Not Before: Aug 22 16:20:09 2025 GMT Not After : Aug 29 16:20:09 2025 GMT Subject: CN=68a898b9-e887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:96:51:51:c7:4f:81:33:00:cf:de:eb:b3:95: 9e:b4:90:0d:aa:0b:46:61:3a:79:d7:f1:dd:fa:de: fc:04:a5:a1:09:9f:32:1b:b4:0e:35:c1:29:61:17: 17:42:07:9c:cd:25:b2:97:65:dc:13:7c:1f:d6:df: d6:a3:9d:94:f4:07:5e:40:22:96:e5:dd:aa:b1:0f: 45:b0:6c:a3:7b:d0:00:e6:71:39:39:a6:19:e3:4f: 88:33:27:26:75:0c:72:b5:de:14:b0:72:10:c6:2a: ad:ce:86:a4:20:49:08:bf:83:91:4c:e4:37:ac:a9: 7a:cd:94:73:c8:16:a3:c0:11:30:c3:27:28:76:36: c9:6f:66:c3:cd:04:db:ee:68:e5:a2:d8:5a:12:7f: 3d:2c:73:31:36:78:f2:ce:93:b8:b1:e4:89:2d:e9: 81:b0:e3:eb:b5:ce:74:b7:06:35:19:1b:40:3a:0f: f6:27:33:ca:45:0f:31:0d:22:24:2b:17:93:96:cb: 96:c8:1d:e0:f3:ba:d4:48:7c:63:13:7f:be:a9:f2: e5:ae:2e:df:24:64:a8:d4:f7:81:c7:d5:bf:b6:27: 3a:8e:fc:2f:04:00:cc:33:b3:a7:d7:b7:e1:ae:cc: a2:05:b4:61:2d:a5:4f:97:02:2b:dc:54:3c:a4:1a: f9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:24:7F:D3:EE:C5:F3:20:51:5E:45:B2:7D:57:25:CF:17:A3:41:8F X509v3 Authority Key Identifier: keyid:E7:58:4F:95:9A:08:1A:4D:D9:48:09:35:30:51:D2:35:93:9C:39:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/51hPlZoIGk3ZSAk1MFHSNZOcOR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB063/1186B6BC093A11E79540950BC4F9AE02/51hPlZoIGk3ZSAk1MFHSNZOcOR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:d8:43:5c:0e:ec:8e:8b:b8:03:15:15:9d:16:4b:33:00:9d: f6:6a:46:88:c1:50:08:fc:dc:26:27:db:68:9b:4b:52:1a:12: 21:1c:cd:61:c4:7c:1e:e0:12:e3:9b:a6:85:19:ba:6c:7a:2d: d4:cc:c8:e2:22:30:4a:7a:af:3a:cb:ad:42:35:01:d9:bf:de: 4b:90:6a:10:dc:5b:61:e3:2f:a8:d4:d8:1f:91:c5:fe:57:3e: 59:ab:ed:8f:2d:da:48:14:e2:45:3f:b2:8e:01:ec:eb:57:15: 92:1f:d3:24:78:32:e2:da:d7:a8:e1:79:ff:f8:7d:c0:24:76: fc:86:51:b1:e2:d6:a8:2d:27:4e:86:0f:34:69:9e:4a:1f:2b: e6:02:c5:44:6b:31:e3:03:a0:a6:d0:d6:b5:12:b5:f3:77:34: 19:d3:27:28:0e:b3:12:7a:cc:4c:b4:54:8d:5f:a0:5d:4c:40: c6:18:fd:25:57:86:a2:71:31:a9:59:03:61:88:e9:51:4b:4a: 85:89:2e:2b:2a:9d:6b:66:3b:3a:c0:b9:a5:44:eb:7d:f1:7f: 96:9a:fa:39:60:ef:69:c8:18:d7:22:d0:6f:1b:4e:ef:5d:6d: db:74:fa:92:4b:86:92:83:bd:a9:2b:f0:72:40:0e:0e:cc:f4: c5:28:db:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNjMxMTAvBgNVBAUTKEU3NTg0Rjk1OUEwODFBNEREOTQ4MDkzNTMwNTFEMjM1 OTM5QzM5MUQwHhcNMjUwODIyMTYyMDA5WhcNMjUwODI5MTYyMDA5WjAYMRYwFAYD VQQDEw02OGE4OThiOS1lODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5ZRUcdPgTMAz97rs5WetJANqgtGYTp51/Hd+t78BKWhCZ8yG7QONcEpYRcX QgeczSWyl2XcE3wf1t/Wo52U9AdeQCKW5d2qsQ9FsGyje9AA5nE5OaYZ40+IMycm dQxytd4UsHIQxiqtzoakIEkIv4ORTOQ3rKl6zZRzyBajwBEwwycodjbJb2bDzQTb 7mjlothaEn89LHMxNnjyzpO4seSJLemBsOPrtc50twY1GRtAOg/2JzPKRQ8xDSIk KxeTlsuWyB3g87rUSHxjE3++qfLlri7fJGSo1PeBx9W/tic6jvwvBADMM7On17fh rsyiBbRhLaVPlwIr3FQ8pBr5LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMkf9Pu xfMgUV5Fsn1XJc8Xo0GPMB8GA1UdIwQYMBaAFOdYT5WaCBpN2UgJNTBR0jWTnDkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA2My8xMTg2QjZCQzA5 M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdrM1pTQWsxTUZIU05aT2NP UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUxaFBsWm9JR2szWlNBazFNRkhTTlpPY09SMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA2My8xMTg2QjZCQzA5M0ExMUU3OTU0MDk1MEJDNEY5QUUwMi81MWhQbFpvSUdr M1pTQWsxTUZIU05aT2NPUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt2ENcDuyOi7gDFRWdFkszAJ32akaIwVAI/NwmJ9tom0tSGhIhHM1h xHwe4BLjm6aFGbpsei3UzMjiIjBKeq86y61CNQHZv95LkGoQ3Fth4y+o1NgfkcX+ Vz5Zq+2PLdpIFOJFP7KOAezrVxWSH9MkeDLi2teo4Xn/+H3AJHb8hlGx4taoLSdO hg80aZ5KHyvmAsVEazHjA6Cm0Na1ErXzdzQZ0ycoDrMSesxMtFSNX6BdTEDGGP0l V4aicTGpWQNhiOlRS0qFiS4rKp1rZjs6wLmlROt98X+Wmvo5YO9pyBjXItBvG07v XW3bdPqSS4aSg72pK/ByQA4OzPTFKNuZ -----END CERTIFICATE-----Generated at Sat Aug 23 18:23:56 2025 by rpki-client