$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft File: elR0EjxUiBfiXzSEzCa2CwZBvWk.mft (raw, json) Hash identifier: Z/UMZ7n5OzVCbzwMOhkEppheK2b7XAveu5H5jSdYgEo= Subject key identifier: 84:43:5C:91:49:D2:25:88:9E:37:72:A0:C3:59:C5:55:1D:D2:63:67 Authority key identifier: 7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 Certificate issuer: /CN=A91B6F87/serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Certificate serial: 07A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft Manifest number: 0793 Signing time: Fri 22 Aug 2025 21:40:36 +0000 Manifest this update: Fri 22 Aug 2025 21:40:35 +0000 Manifest next update: Fri 29 Aug 2025 21:40:35 +0000 Files and hashes: 1: elR0EjxUiBfiXzSEzCa2CwZBvWk.crl (hash: gyYIWfYLjJGJU7ffekCRBO/gHBneHOp8nc4B+bYHPsQ=) 2: 6AB849742C9C11EBB49A3A32C4F9AE02.roa (hash: d4sd7UZZo9a+uPHZX7tMr/i70JRLudIGa9+mnphuZB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F87, serialNumber=7A5474123C548817E25F3484CC26B60B0641BD69 Validity Not Before: Aug 22 21:40:35 2025 GMT Not After : Aug 29 21:40:35 2025 GMT Subject: CN=68a8e3d4-6ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:52:62:6c:32:85:4d:9d:b8:ec:b5:61:03:ec: 7e:73:ee:e6:94:47:fd:d9:94:35:8f:36:f1:48:26: 58:76:62:b5:4b:bc:99:c9:6c:da:fe:ac:60:2b:af: f5:af:16:75:25:47:d0:d4:10:56:bf:d3:16:e6:cd: cb:56:96:22:be:01:53:7b:b6:e3:56:e4:ce:e6:c5: 0f:6c:e3:98:6e:9b:60:68:03:cc:f7:92:78:1d:78: 94:02:4e:8a:ba:48:1c:86:18:69:a9:6a:4b:6e:7d: 58:4c:d3:84:fe:78:83:9a:97:25:2f:26:ff:9a:36: 14:75:b6:ca:93:ae:e4:5f:13:53:07:99:06:f8:5e: 9f:f3:0c:38:01:29:4d:7f:2b:c7:6c:fb:eb:fa:dc: 16:b2:2c:09:f6:12:7a:84:8e:b5:d8:1f:6b:a7:82: 23:05:ab:f6:c2:8c:78:1d:6e:91:8c:7e:6c:fd:59: ca:73:19:9c:24:01:ac:bc:d0:fc:55:85:d8:fa:45: 99:24:bf:41:ce:a0:22:c9:29:76:bd:d9:0e:3c:4d: 41:d6:48:b2:19:75:dc:33:aa:ee:48:26:c4:ee:c3: 22:8c:a3:5c:27:dd:9f:33:1a:d6:bb:5c:7a:73:a2: 34:0f:4c:70:9c:db:c7:e3:14:3a:84:45:77:f1:c1: 05:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:43:5C:91:49:D2:25:88:9E:37:72:A0:C3:59:C5:55:1D:D2:63:67 X509v3 Authority Key Identifier: keyid:7A:54:74:12:3C:54:88:17:E2:5F:34:84:CC:26:B6:0B:06:41:BD:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elR0EjxUiBfiXzSEzCa2CwZBvWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F87/B1CD71F0268811EBBE7C682BC4F9AE02/elR0EjxUiBfiXzSEzCa2CwZBvWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:03:6b:96:ea:fd:94:db:92:99:4f:f6:b6:ab:45:df:a9:7e: 6b:55:af:9d:83:fa:8a:19:e1:fb:59:87:41:f8:b0:5e:fa:48: d7:cf:10:72:ee:53:b8:86:09:fb:eb:fe:a4:1b:d8:36:ea:7b: 7b:b4:f8:d2:65:2a:b8:3e:0e:14:7f:72:6b:2f:b4:a3:0a:79: ff:fb:f9:0c:1b:67:48:44:8b:12:9f:7e:5d:23:5f:ac:b4:40: 61:fc:a5:cc:ad:2b:52:bb:b7:d3:b6:20:2a:9a:4a:1b:05:ef: 90:44:16:41:df:b4:11:1c:d1:75:18:62:86:de:ef:19:89:5b: 1a:5f:ed:de:ca:de:20:71:de:2e:28:2f:67:d4:cd:ba:c8:ab: 4b:de:67:da:bf:c7:a4:b7:1e:25:ab:58:7a:13:aa:63:c5:fc: 3b:d0:5b:57:31:fd:12:1f:9a:db:40:07:bb:91:0c:9f:f0:ac: c5:b9:36:75:58:5c:65:25:8c:02:66:6a:02:d5:d0:dd:3c:c8: bd:cc:73:9d:62:24:63:2d:20:3a:55:cc:94:5f:ea:b2:50:62: c7:c5:0e:3e:dd:23:83:47:3b:16:3c:51:d9:f7:5a:8b:e5:9f: cc:af:83:98:56:2c:2a:da:4d:aa:87:48:d8:57:65:4a:e1:eb: 0f:a4:70:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGODcxMTAvBgNVBAUTKDdBNTQ3NDEyM0M1NDg4MTdFMjVGMzQ4NENDMjZCNjBC MDY0MUJENjkwHhcNMjUwODIyMjE0MDM1WhcNMjUwODI5MjE0MDM1WjAYMRYwFAYD VQQDEw02OGE4ZTNkNC02ZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1JibDKFTZ247LVhA+x+c+7mlEf92ZQ1jzbxSCZYdmK1S7yZyWza/qxgK6/1 rxZ1JUfQ1BBWv9MW5s3LVpYivgFTe7bjVuTO5sUPbOOYbptgaAPM95J4HXiUAk6K ukgchhhpqWpLbn1YTNOE/niDmpclLyb/mjYUdbbKk67kXxNTB5kG+F6f8ww4ASlN fyvHbPvr+twWsiwJ9hJ6hI612B9rp4IjBav2wox4HW6RjH5s/VnKcxmcJAGsvND8 VYXY+kWZJL9BzqAiySl2vdkOPE1B1kiyGXXcM6ruSCbE7sMijKNcJ92fMxrWu1x6 c6I0D0xwnNvH4xQ6hEV38cEFjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRDXJFJ 0iWInjdyoMNZxVUd0mNnMB8GA1UdIwQYMBaAFHpUdBI8VIgX4l80hMwmtgsGQb1p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY4Ny9CMUNENzFGMDI2 ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlCZmlYelNFekNhMkN3WkJ2 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VsUjBFanhVaUJmaVh6U0V6Q2EyQ3daQnZXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY4Ny9CMUNENzFGMDI2ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9lbFIwRWp4VWlC ZmlYelNFekNhMkN3WkJ2V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1A2uW6v2U25KZT/a2q0XfqX5rVa+dg/qKGeH7WYdB+LBe+kjXzxBy 7lO4hgn76/6kG9g26nt7tPjSZSq4Pg4Uf3JrL7SjCnn/+/kMG2dIRIsSn35dI1+s tEBh/KXMrStSu7fTtiAqmkobBe+QRBZB37QRHNF1GGKG3u8ZiVsaX+3eyt4gcd4u KC9n1M26yKtL3mfav8ektx4lq1h6E6pjxfw70FtXMf0SH5rbQAe7kQyf8KzFuTZ1 WFxlJYwCZmoC1dDdPMi9zHOdYiRjLSA6VcyUX+qyUGLHxQ4+3SODRzsWPFHZ91qL 5Z/Mr4OYViwq2k2qh0jYV2VK4esPpHDG -----END CERTIFICATE-----Generated at Sun Aug 24 06:47:53 2025 by rpki-client