$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft File: S0fJxk08IyF6Fd2rh0fDncMBhPI.mft (raw, json) Hash identifier: 5YvsTKTP/QdOa6eXTK9dwVoDBMi1f+O64YL5Qt+ihL8= Subject key identifier: 85:8C:D2:16:60:78:3D:A4:CB:67:D8:13:37:69:43:55:DC:0E:FA:94 Authority key identifier: 4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 Certificate issuer: /CN=A91B31CE/serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Certificate serial: 06B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft Manifest number: 06AC Signing time: Fri 22 Aug 2025 22:23:08 +0000 Manifest this update: Fri 22 Aug 2025 22:23:07 +0000 Manifest next update: Fri 29 Aug 2025 22:23:07 +0000 Files and hashes: 1: S0fJxk08IyF6Fd2rh0fDncMBhPI.crl (hash: EZyJmEr5vcqgTwG/5ASZwqyUiH9l5qidg9aO8lAaceQ=) 2: AA51390A822B11EE8B95E475C4F9AE02.roa (hash: iVoQ4DzarwOJUrSELiNWak+s+ohZp/LfOai+uGXnZZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CE, serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Validity Not Before: Aug 22 22:23:07 2025 GMT Not After : Aug 29 22:23:07 2025 GMT Subject: CN=68a8edcb-0fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:17:e8:91:d4:af:fc:02:57:9d:0b:c7:99:48: c0:65:ad:1c:8b:ac:47:a6:25:4f:58:cc:40:04:14: 5c:16:ad:a2:88:af:a0:86:f5:84:45:b3:e8:8e:48: aa:02:b4:b7:b3:f8:61:fb:c8:5b:bb:46:15:dd:ef: 01:0a:a7:9a:02:5c:02:ae:1f:35:12:e7:69:e4:c0: 9e:18:c4:6a:ee:d0:48:7f:fc:ea:d2:3c:d9:11:b6: 5e:f6:02:ac:ca:ff:b6:84:ce:fa:66:f6:c1:76:bd: 4b:9e:53:58:5c:bd:b0:bf:2d:5e:f3:f7:9a:c9:9b: 27:78:51:cf:2d:d7:5c:cf:f4:07:3f:40:f5:bd:f7: 21:07:2b:3a:c1:9a:15:09:3a:40:25:4f:f5:07:6f: 97:0d:d3:33:23:38:ff:12:be:04:1a:9c:b7:64:bc: 94:b4:36:81:6a:ba:99:67:06:e9:ab:04:da:2d:e3: 1c:ad:ee:a4:3a:58:39:67:98:03:9a:33:cb:ab:90: 86:6f:37:f2:b1:79:5c:ff:24:e2:8b:6b:4f:bc:66: de:c5:a5:cd:86:9c:0e:eb:98:ff:fe:68:90:55:4b: 8b:1f:28:ef:12:88:5b:4c:ca:f6:ab:66:65:fa:4c: 69:ad:7f:55:03:3b:ef:09:ee:73:c1:bf:55:fa:44: ce:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8C:D2:16:60:78:3D:A4:CB:67:D8:13:37:69:43:55:DC:0E:FA:94 X509v3 Authority Key Identifier: keyid:4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:98:24:54:71:5e:c8:c4:4c:30:25:b3:fb:0a:9b:bb:a1:87: 24:12:06:81:ed:af:ce:e9:bd:3a:bc:94:0e:b6:c0:1e:4c:4d: 24:e9:74:13:45:d4:03:20:8e:7f:e0:ff:26:3a:84:e0:6f:43: d6:2e:1f:0e:ed:a2:e1:ad:af:a4:e9:98:26:6a:e3:32:67:43: 37:57:86:1d:98:b0:22:a5:b2:fe:ee:26:e4:f2:4c:17:9d:ff: c1:ea:01:7e:4c:9c:ad:63:99:db:8d:89:d3:49:5f:08:40:e5: 05:e1:54:a2:37:95:07:0d:2c:b5:e4:3b:51:39:63:c3:81:80: c7:4f:9c:dd:41:9e:d2:f1:13:af:c0:aa:83:6f:c7:db:32:3c: 57:d0:8a:d2:bb:79:09:27:47:f9:f4:b0:2b:99:0b:6e:98:84: d8:2c:f2:7c:7b:46:2f:31:cc:62:52:9c:b4:20:b5:66:c8:b2: f6:b5:1a:1e:b8:d0:07:f4:f5:d9:57:a1:ad:96:a1:d8:92:a1: 9f:a6:c7:c7:80:39:a8:bb:d6:b2:ed:9f:6d:8a:da:a2:7d:b5: 93:df:33:64:37:55:53:56:00:c9:2f:3b:1f:cb:e3:47:1d:b7: 41:b4:dd:45:53:94:d7:a8:57:49:28:47:d4:50:14:20:00:23: bc:ef:1a:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0UxMTAvBgNVBAUTKDRCNDdDOUM2NEQzQzIzMjE3QTE1RERBQjg3NDdDMzlE QzMwMTg0RjIwHhcNMjUwODIyMjIyMzA3WhcNMjUwODI5MjIyMzA3WjAYMRYwFAYD VQQDEw02OGE4ZWRjYi0wZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhfokdSv/AJXnQvHmUjAZa0ci6xHpiVPWMxABBRcFq2iiK+ghvWERbPojkiq ArS3s/hh+8hbu0YV3e8BCqeaAlwCrh81Eudp5MCeGMRq7tBIf/zq0jzZEbZe9gKs yv+2hM76ZvbBdr1LnlNYXL2wvy1e8/eayZsneFHPLddcz/QHP0D1vfchBys6wZoV CTpAJU/1B2+XDdMzIzj/Er4EGpy3ZLyUtDaBarqZZwbpqwTaLeMcre6kOlg5Z5gD mjPLq5CGbzfysXlc/yTii2tPvGbexaXNhpwO65j//miQVUuLHyjvEohbTMr2q2Zl +kxprX9VAzvvCe5zwb9V+kTO5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWM0hZg eD2ky2fYEzdpQ1XcDvqUMB8GA1UdIwQYMBaAFEtHycZNPCMhehXdq4dHw53DAYTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDRS82QjA1NjA3QTdD Q0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5RjZGZDJyaDBmRG5jTUJo UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwZkp4azA4SXlGNkZkMnJoMGZEbmNNQmhQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDRS82QjA1NjA3QTdDQ0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5 RjZGZDJyaDBmRG5jTUJoUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPmCRUcV7IxEwwJbP7Cpu7oYckEgaB7a/O6b06vJQOtsAeTE0k6XQT RdQDII5/4P8mOoTgb0PWLh8O7aLhra+k6ZgmauMyZ0M3V4YdmLAipbL+7ibk8kwX nf/B6gF+TJytY5nbjYnTSV8IQOUF4VSiN5UHDSy15DtROWPDgYDHT5zdQZ7S8ROv wKqDb8fbMjxX0IrSu3kJJ0f59LArmQtumITYLPJ8e0YvMcxiUpy0ILVmyLL2tRoe uNAH9PXZV6GtlqHYkqGfpsfHgDmou9ay7Z9titqifbWT3zNkN1VTVgDJLzsfy+NH HbdBtN1FU5TXqFdJKEfUUBQgACO87xq7 -----END CERTIFICATE-----Generated at Sat Aug 23 14:03:53 2025 by rpki-client