$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: jkIQhTM39vO8Vq7JFibNpPyCenpWK5BHqcFGHG2ktz8= Subject key identifier: 4C:3B:7E:8C:DD:84:A7:7C:5F:4C:FA:FF:D9:1B:0B:01:FD:0B:B0:A5 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 08B8 Signing time: Fri 22 Aug 2025 20:37:54 +0000 Manifest this update: Fri 22 Aug 2025 20:37:53 +0000 Manifest next update: Fri 29 Aug 2025 20:37:53 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: sJUczyx4h5u2Ga2Ct8byID0/q/Es7YsQqyNzAXObxVM=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Aug 22 20:37:53 2025 GMT Not After : Aug 29 20:37:53 2025 GMT Subject: CN=68a8d521-66da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ee:df:59:d9:a4:3b:df:13:ca:2f:d6:e2:0e: 0b:38:08:01:35:22:f4:69:6f:80:66:71:98:57:3f: 74:7d:dd:a0:ef:9f:f6:07:c4:b9:aa:1c:e8:4c:48: e2:2b:c6:22:c8:38:1c:c4:3c:36:b6:a7:6b:af:fd: f7:10:05:37:0d:78:84:6a:e6:f0:83:6c:0f:49:bb: 08:d0:9c:34:e2:1f:28:84:9b:ec:f0:ce:bf:d4:52: 2a:bd:0b:ae:fb:91:e9:e4:0c:55:aa:e0:a9:25:c5: 49:b7:a8:e0:d9:2b:47:a8:5e:1d:9d:62:0b:06:30: 1a:15:87:ac:9f:05:eb:45:88:2f:26:85:71:b8:57: 83:11:a8:54:ec:ab:d2:a9:6c:26:a1:9a:d4:e8:03: ea:ca:9e:35:df:ab:79:66:4c:37:3e:e9:86:6a:4d: 58:54:50:b8:a3:cb:48:6a:f3:20:3b:d3:94:1e:db: 05:06:e1:30:be:a7:9c:26:14:ea:95:1a:01:49:9c: 4b:4f:9b:a4:2e:25:06:a8:f5:b4:8c:8c:56:1a:74: d7:e5:7e:3c:5e:3a:fa:b8:85:b0:00:f5:08:57:63: aa:67:47:3c:f7:c6:5f:c9:9d:2c:e5:97:12:6c:94: a8:da:f7:19:bf:a3:e1:aa:0c:be:5f:ce:43:ff:87: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3B:7E:8C:DD:84:A7:7C:5F:4C:FA:FF:D9:1B:0B:01:FD:0B:B0:A5 X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:1a:65:e0:f5:3d:c9:cd:a2:d8:e3:7b:ba:f3:aa:be:b1:bf: cb:db:f2:86:f4:9e:88:8a:94:f5:bc:7b:ec:cc:30:f5:f4:25: bb:77:0d:dc:24:00:35:45:e3:47:e5:c2:e7:0b:0f:96:51:eb: 97:f4:85:c8:02:78:79:8d:67:2c:8f:70:56:0c:53:85:25:71: 1f:bc:17:8e:4b:ed:80:f8:4b:64:90:48:de:ad:43:45:0b:81: 35:8c:1e:c9:71:5b:d8:92:f6:c7:e9:f8:9f:98:28:12:21:30: 81:9a:d2:4d:59:c6:58:de:07:25:97:84:f4:f5:c9:78:24:f2: d1:b4:fe:42:2e:7f:17:0f:8a:7c:85:c6:ee:69:41:6b:21:28: 5d:cb:2d:24:a0:e2:99:82:7b:b6:5d:64:4b:77:6c:b6:97:a9: 01:a6:b1:55:be:97:f5:13:0a:cb:db:63:dd:58:f0:e2:85:2e: f1:56:96:91:7e:1f:d4:5b:3c:e5:1f:c1:51:d2:3a:76:03:cb: 54:2a:01:9a:e4:9c:64:16:bf:5a:cc:63:69:b4:24:5c:cd:9f: 59:76:b8:d6:79:0d:4c:8f:7c:4e:d3:b8:5a:b2:08:c8:88:0f: 61:4e:79:9c:6b:e2:da:b3:06:44:72:97:57:fb:ce:25:05:1f: a1:70:e1:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUwODIyMjAzNzUzWhcNMjUwODI5MjAzNzUzWjAYMRYwFAYD VQQDEw02OGE4ZDUyMS02NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1u7fWdmkO98Tyi/W4g4LOAgBNSL0aW+AZnGYVz90fd2g75/2B8S5qhzoTEji K8YiyDgcxDw2tqdrr/33EAU3DXiEaubwg2wPSbsI0Jw04h8ohJvs8M6/1FIqvQuu +5Hp5AxVquCpJcVJt6jg2StHqF4dnWILBjAaFYesnwXrRYgvJoVxuFeDEahU7KvS qWwmoZrU6APqyp4136t5Zkw3PumGak1YVFC4o8tIavMgO9OUHtsFBuEwvqecJhTq lRoBSZxLT5ukLiUGqPW0jIxWGnTX5X48Xjr6uIWwAPUIV2OqZ0c898ZfyZ0s5ZcS bJSo2vcZv6Phqgy+X85D/4cKfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEw7fozd hKd8X0z6/9kbCwH9C7ClMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgGmXg9T3JzaLY43u686q+sb/L2/KG9J6IipT1vHvszDD19CW7dw3c JAA1ReNH5cLnCw+WUeuX9IXIAnh5jWcsj3BWDFOFJXEfvBeOS+2A+EtkkEjerUNF C4E1jB7JcVvYkvbH6fifmCgSITCBmtJNWcZY3gcll4T09cl4JPLRtP5CLn8XD4p8 hcbuaUFrIShdyy0koOKZgnu2XWRLd2y2l6kBprFVvpf1EwrL22PdWPDihS7xVpaR fh/UWzzlH8FR0jp2A8tUKgGa5JxkFr9azGNptCRczZ9ZdrjWeQ1Mj3xO07hasgjI iA9hTnmca+LaswZEcpdX+84lBR+hcOHH -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:23 2025 by rpki-client