$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: Jbt6mSjEF7Gmr7NlizS6mmOUQ5ud6BhDWoPcYCuSJmQ= Subject key identifier: 67:1F:AF:6C:22:B2:FB:5E:9A:72:7C:C2:9D:8B:80:25:FC:B2:D4:21 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D74 Signing time: Fri 22 Aug 2025 18:04:45 +0000 Manifest this update: Fri 22 Aug 2025 18:04:44 +0000 Manifest next update: Fri 29 Aug 2025 18:04:44 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: J/A7ww6M/i44OeZsgc44Tll4y82h4cXNcYycH2YzZJk=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: SkBXJ2Cg15YTINlEK8cWxPkVEnzJM9DWZ0n7aJtqwN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Aug 22 18:04:44 2025 GMT Not After : Aug 29 18:04:44 2025 GMT Subject: CN=68a8b13d-0bba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b7:37:5b:46:49:57:1f:93:a4:93:24:70:97: 2a:b8:90:d7:6c:5f:e5:12:5a:60:0f:97:e7:c3:bb: eb:c2:90:56:0d:7c:b3:84:92:b4:6c:14:f2:48:2e: 1c:dd:5d:0d:70:6e:6d:16:41:b1:73:df:51:7f:47: 86:df:5b:36:2f:78:ba:51:85:ac:ef:27:64:f5:e1: 2f:7e:86:fd:83:e0:b4:53:51:43:d9:18:2b:b2:af: 76:f9:2a:b5:8b:65:e8:26:ed:68:e5:ea:a8:2f:3f: 4c:3d:5e:c0:66:5d:2f:6d:47:a2:df:d6:a7:86:e4: 54:d1:4c:5f:61:7e:4d:f4:06:ba:06:8d:e7:ae:d3: ae:90:29:e1:92:e1:e1:63:e0:87:66:a9:04:dc:d0: 7e:ad:ec:56:a5:ae:64:e5:73:7c:96:84:15:78:69: d0:47:4e:9f:c9:48:2a:13:73:c9:80:12:b9:4a:48: 10:18:87:9a:7b:79:a3:88:49:bb:f1:f8:23:32:6f: 91:40:08:dc:76:d9:7c:cf:55:39:bf:95:ce:6e:3a: 59:bc:91:d3:78:b0:65:68:9e:8d:55:94:46:19:de: de:d4:71:4b:23:c1:67:9c:44:15:a4:c7:6e:6e:16: 6d:3c:d6:e6:0e:f8:71:7a:dc:82:43:1f:c1:26:5d: fc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1F:AF:6C:22:B2:FB:5E:9A:72:7C:C2:9D:8B:80:25:FC:B2:D4:21 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:f3:ff:e4:35:73:d6:7e:8f:34:e7:9a:b0:37:da:14:01:c0: 1e:b3:67:b1:19:8f:19:5c:73:41:49:80:1f:d5:14:90:82:c9: 93:8c:33:f6:e3:c1:d9:1c:bc:5e:bc:d4:83:84:f9:7d:74:29: 29:7b:6c:4e:ea:98:07:a0:f2:a4:e3:8a:81:39:fd:9f:80:f9: e4:f8:38:da:3a:03:6b:99:29:db:64:0c:f5:9a:a8:17:4b:9c: 15:f0:4a:70:bb:44:20:64:0e:1f:e6:10:1d:9f:c7:97:d3:71: 53:d3:2c:e5:c7:90:76:09:f6:5e:f3:d4:1a:ab:3a:ff:ee:60: e6:1e:24:04:d2:90:da:19:b0:b8:ac:1c:f4:85:93:a7:e6:18: 0c:b3:09:ff:91:a1:6e:a6:d4:1c:41:28:e1:2f:0f:0a:94:96: 97:e2:e3:cd:6f:5a:d0:84:4a:66:7e:e1:04:c2:ed:cd:54:57: 9c:74:c6:ab:e4:b2:a4:d7:2f:c0:3e:e8:e4:86:94:03:c2:c7: 7e:d4:72:23:4d:32:f8:fe:44:a1:4a:d2:19:2a:31:f9:3b:fd: cf:26:24:38:39:cb:28:ff:d4:88:9e:74:b7:1d:d8:9f:84:5b: 66:3d:a9:29:30:c7:29:61:4e:99:31:c2:9f:82:e9:ea:df:c7: 82:a7:0b:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUwODIyMTgwNDQ0WhcNMjUwODI5MTgwNDQ0WjAYMRYwFAYD VQQDEw02OGE4YjEzZC0wYmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrc3W0ZJVx+TpJMkcJcquJDXbF/lElpgD5fnw7vrwpBWDXyzhJK0bBTySC4c 3V0NcG5tFkGxc99Rf0eG31s2L3i6UYWs7ydk9eEvfob9g+C0U1FD2Rgrsq92+Sq1 i2XoJu1o5eqoLz9MPV7AZl0vbUei39anhuRU0UxfYX5N9Aa6Bo3nrtOukCnhkuHh Y+CHZqkE3NB+rexWpa5k5XN8loQVeGnQR06fyUgqE3PJgBK5SkgQGIeae3mjiEm7 8fgjMm+RQAjcdtl8z1U5v5XObjpZvJHTeLBlaJ6NVZRGGd7e1HFLI8FnnEQVpMdu bhZtPNbmDvhxetyCQx/BJl380wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcfr2wi svtemnJ8wp2LgCX8stQhMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC58//kNXPWfo8055qwN9oUAcAes2exGY8ZXHNBSYAf1RSQgsmTjDP2 48HZHLxevNSDhPl9dCkpe2xO6pgHoPKk44qBOf2fgPnk+DjaOgNrmSnbZAz1mqgX S5wV8Epwu0QgZA4f5hAdn8eX03FT0yzlx5B2CfZe89Qaqzr/7mDmHiQE0pDaGbC4 rBz0hZOn5hgMswn/kaFuptQcQSjhLw8KlJaX4uPNb1rQhEpmfuEEwu3NVFecdMar 5LKk1y/APujkhpQDwsd+1HIjTTL4/kShStIZKjH5O/3PJiQ4Ocso/9SInnS3Hdif hFtmPakpMMcpYU6ZMcKfgunq38eCpwvz -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:28 2025 by rpki-client