$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: uf6ZqL1Gwi9T3eYnLGvpdGv8NFYNskMxmCgSnCEPJqo= Subject key identifier: 0B:B2:80:14:B7:46:5E:A9:F8:E4:A7:92:41:26:4A:79:7F:57:41:AC Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 03C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 03BC Signing time: Sat 23 Aug 2025 00:55:54 +0000 Manifest this update: Sat 23 Aug 2025 00:55:54 +0000 Manifest next update: Sat 30 Aug 2025 00:55:54 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: nTaNMa0ur65fKLI/0QKcYa+yvbX1BZ4jxKd96O9a9cU=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: n9RCBLHpgjOAFQhIl7OXxEtavy0mL+5/7gM0zNsjfBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Aug 23 00:55:54 2025 GMT Not After : Aug 30 00:55:54 2025 GMT Subject: CN=68a9119a-a294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9c:94:0c:ee:8a:35:b8:0d:3d:ca:57:f6:d1: 2a:5c:37:54:51:1b:27:42:c9:d4:58:12:8c:99:90: 1f:c9:23:63:d7:77:bf:df:c0:1f:14:23:38:cf:87: 6c:d2:08:90:93:6e:75:a7:67:6a:e7:e7:f8:98:3d: 1f:71:10:99:37:45:3d:c7:33:15:f3:ff:6d:17:79: 69:70:b2:18:1f:87:52:3b:09:4b:49:75:aa:79:c6: 45:a2:55:0c:c6:0f:af:8f:5c:b8:cb:c4:81:14:a2: e2:58:ee:92:57:70:63:60:e2:11:b8:06:9e:f0:9c: 02:0b:d7:e1:11:28:ae:2a:e3:38:68:1d:9a:b3:5a: 52:be:62:03:f4:24:68:ab:0d:2d:7e:21:bb:09:5e: f0:08:48:b2:88:e9:e1:d0:0f:10:d3:bb:9c:71:66: aa:d2:cc:05:43:03:8b:ba:3b:75:37:a0:7c:d4:60: f5:c5:00:af:8f:b5:7d:26:48:21:49:c9:00:c0:8e: 15:59:0a:d5:56:ee:d2:34:aa:dc:da:05:17:04:d6: 4a:a6:07:83:38:e7:80:03:1e:27:8d:9f:1d:50:29: cf:b8:e9:44:91:64:a7:ee:5d:fb:48:28:7a:43:2d: a9:7b:e9:54:8b:16:30:4a:a9:a1:90:f4:cd:30:2c: 40:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B2:80:14:B7:46:5E:A9:F8:E4:A7:92:41:26:4A:79:7F:57:41:AC X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b5:f8:83:65:ed:fc:77:d9:75:8f:dc:7e:24:79:a2:3a:d8: e6:7d:15:99:c6:9c:df:a4:11:96:a5:27:43:8d:23:73:60:d0: 21:2b:83:8e:08:39:d5:2c:35:df:5c:af:fd:63:ad:0e:08:63: 80:a1:d1:ad:63:5a:bc:e3:cc:28:9e:3c:42:ea:37:1b:fb:2c: 91:9a:26:69:39:69:e1:34:fc:5d:f1:60:53:7a:c7:ec:99:65: 0c:96:db:26:fe:54:9e:1f:51:0b:7d:93:a9:6c:2c:5b:11:85: e9:99:2e:31:e0:c8:f7:1e:09:04:a1:51:fb:96:54:ef:95:a8: 5b:b6:19:06:18:46:ae:d6:71:52:c9:39:0d:9a:5a:0d:dc:fc: 49:c8:d4:00:59:29:49:93:ff:cd:7b:9d:88:80:34:03:2e:6f: 6c:9a:33:e4:ca:c8:81:f4:ba:99:17:49:bf:f4:b8:9b:eb:41: 72:0a:1c:94:3d:09:5d:bd:4b:aa:3d:76:75:ed:84:b2:39:6f: 85:cb:c1:1f:8a:be:d6:4e:4d:d9:04:e8:55:f2:63:e5:50:53: b8:4d:4f:80:8d:80:25:a2:18:ee:48:fc:8c:99:ad:9a:84:62: 82:b7:c3:fc:e0:9f:f5:b7:c7:dc:fc:55:d5:63:07:71:03:9a: 6c:32:24:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwODIzMDA1NTU0WhcNMjUwODMwMDA1NTU0WjAYMRYwFAYD VQQDEw02OGE5MTE5YS1hMjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5yUDO6KNbgNPcpX9tEqXDdUURsnQsnUWBKMmZAfySNj13e/38AfFCM4z4ds 0giQk251p2dq5+f4mD0fcRCZN0U9xzMV8/9tF3lpcLIYH4dSOwlLSXWqecZFolUM xg+vj1y4y8SBFKLiWO6SV3BjYOIRuAae8JwCC9fhESiuKuM4aB2as1pSvmID9CRo qw0tfiG7CV7wCEiyiOnh0A8Q07uccWaq0swFQwOLujt1N6B81GD1xQCvj7V9Jkgh SckAwI4VWQrVVu7SNKrc2gUXBNZKpgeDOOeAAx4njZ8dUCnPuOlEkWSn7l37SCh6 Qy2pe+lUixYwSqmhkPTNMCxA3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuygBS3 Rl6p+OSnkkEmSnl/V0GsMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4tfiDZe38d9l1j9x+JHmiOtjmfRWZxpzfpBGWpSdDjSNzYNAhK4OO CDnVLDXfXK/9Y60OCGOAodGtY1q848wonjxC6jcb+yyRmiZpOWnhNPxd8WBTesfs mWUMltsm/lSeH1ELfZOpbCxbEYXpmS4x4Mj3HgkEoVH7llTvlahbthkGGEau1nFS yTkNmloN3PxJyNQAWSlJk//Ne52IgDQDLm9smjPkysiB9LqZF0m/9Lib60FyChyU PQldvUuqPXZ17YSyOW+Fy8Efir7WTk3ZBOhV8mPlUFO4TU+AjYAlohjuSPyMma2a hGKCt8P84J/1t8fc/FXVYwdxA5psMiRU -----END CERTIFICATE-----Generated at Sat Aug 23 21:32:56 2025 by rpki-client