$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: eN9xTre/Tr6TqbJtY0fkXlI5IKZiYEz0B1YuKmpFJI0= Subject key identifier: E5:53:91:1E:BE:F0:DE:0D:FC:C3:FF:EA:D8:F3:E0:95:3A:41:F9:D5 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0222 Signing time: Sat 23 Aug 2025 02:09:52 +0000 Manifest this update: Sat 23 Aug 2025 02:09:52 +0000 Manifest next update: Sat 30 Aug 2025 02:09:52 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: 0gKAOCmFVsOwNVXExDdAzEcuiaW0WPdSmX4UenM4XzM=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: tO/Vg+1jM6TnaROUPSYxvRElxqw/2z5ZN8ZDcSK7tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Aug 23 02:09:52 2025 GMT Not After : Aug 30 02:09:52 2025 GMT Subject: CN=68a922f0-0efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:3d:f5:39:9e:23:79:ba:06:f7:67:b0:84: bb:6b:d0:51:1d:8f:6c:54:36:ce:7f:be:b7:8a:22: d9:af:c0:6c:6d:5f:05:d4:c9:4a:c4:fb:54:93:92: f0:13:7b:cb:05:96:1a:f0:b8:d5:ab:f2:5e:a3:95: ef:a9:69:be:58:4a:45:48:5b:51:ce:47:54:44:92: ae:0f:4d:8a:6c:22:5f:33:f4:47:90:e4:f5:55:8e: c7:71:19:47:d4:a1:72:8a:e5:51:20:25:02:76:ff: 19:f1:5d:34:e1:10:23:de:ce:8a:5d:ae:c5:aa:c6: 30:5e:fe:24:ce:24:78:6f:f5:24:bd:6e:70:3c:9a: 37:7e:10:a4:e6:be:19:13:4e:30:c9:15:8b:09:9b: c0:9a:48:1b:74:41:42:3d:da:af:c3:d0:c8:14:67: 68:d3:e7:66:40:12:77:40:cc:de:a8:12:ee:1c:39: 59:bb:bc:59:aa:d4:1c:06:f4:53:d3:f3:ea:61:99: e4:ee:4e:61:05:bf:72:b4:4b:4b:1e:f5:e9:48:47: 3a:8f:de:b2:40:ff:8d:2f:64:5e:24:4d:58:88:64: 0f:ff:4b:91:ce:36:cd:0a:a5:84:a1:62:8b:16:a1: 85:4c:c4:4b:1a:cd:42:82:60:91:2b:70:dc:f0:a7: bc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:53:91:1E:BE:F0:DE:0D:FC:C3:FF:EA:D8:F3:E0:95:3A:41:F9:D5 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:13:81:6f:07:45:54:c1:dc:6e:dc:ff:07:74:ef:52:54:03: e5:a7:cb:ed:2e:2d:12:82:4b:45:e7:48:01:ec:e9:1a:e8:06: 7c:92:14:82:ea:95:be:38:e7:be:53:a5:74:74:27:50:6e:e3: b9:7b:ce:ae:89:80:18:3c:0c:42:31:b7:ca:2c:39:ad:5b:1b: 04:0e:da:49:ad:63:d7:12:0e:e5:c2:75:ed:ec:79:17:b3:df: c4:97:3f:c5:ce:a0:11:c0:ec:f5:01:8d:11:b2:b4:e5:37:53: 6c:ad:3b:c1:0e:18:1d:4a:0d:4b:d3:dc:95:05:a1:b1:ec:15: 5b:32:e6:d9:35:9b:4b:d0:8c:5a:b7:37:ac:20:e1:3d:b6:c7: 80:56:5e:00:a2:4f:1d:ee:3b:de:02:26:fb:f9:e1:9a:a8:ee: f7:8a:ab:83:17:4d:ec:44:1b:ec:9f:05:e0:3e:bc:48:f3:63: 60:d8:97:83:de:1b:2e:c0:8c:f5:a8:12:bb:76:ed:dc:87:e1: 42:17:96:09:ad:be:b7:87:e8:39:52:24:64:68:33:6f:75:fe: ba:8f:bb:25:04:05:e8:18:76:ff:f4:36:a0:8e:0e:b6:c4:93: 93:ef:44:93:44:ca:1a:07:3a:d7:2d:f3:51:ae:e7:47:c5:a3: 59:92:87:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUwODIzMDIwOTUyWhcNMjUwODMwMDIwOTUyWjAYMRYwFAYD VQQDEw02OGE5MjJmMC0wZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgw99TmeI3m6BvdnsIS7a9BRHY9sVDbOf763iiLZr8BsbV8F1MlKxPtUk5Lw E3vLBZYa8LjVq/Jeo5XvqWm+WEpFSFtRzkdURJKuD02KbCJfM/RHkOT1VY7HcRlH 1KFyiuVRICUCdv8Z8V004RAj3s6KXa7FqsYwXv4kziR4b/UkvW5wPJo3fhCk5r4Z E04wyRWLCZvAmkgbdEFCPdqvw9DIFGdo0+dmQBJ3QMzeqBLuHDlZu7xZqtQcBvRT 0/PqYZnk7k5hBb9ytEtLHvXpSEc6j96yQP+NL2ReJE1YiGQP/0uRzjbNCqWEoWKL FqGFTMRLGs1CgmCRK3Dc8Ke8gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVTkR6+ 8N4N/MP/6tjz4JU6QfnVMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0E4FvB0VUwdxu3P8HdO9SVAPlp8vtLi0SgktF50gB7Oka6AZ8khSC 6pW+OOe+U6V0dCdQbuO5e86uiYAYPAxCMbfKLDmtWxsEDtpJrWPXEg7lwnXt7HkX s9/Elz/FzqARwOz1AY0RsrTlN1NsrTvBDhgdSg1L09yVBaGx7BVbMubZNZtL0Ixa tzesIOE9tseAVl4Aok8d7jveAib7+eGaqO73iquDF03sRBvsnwXgPrxI82Ng2JeD 3hsuwIz1qBK7du3ch+FCF5YJrb63h+g5UiRkaDNvdf66j7slBAXoGHb/9Dagjg62 xJOT70STRMoaBzrXLfNRrudHxaNZkocU -----END CERTIFICATE-----Generated at Sat Aug 23 17:08:33 2025 by rpki-client