$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft File: 45Npup3YgJmHsja0d6144Vx1qxw.mft (raw, json) Hash identifier: UsKcCb8ljwm/tMpjjwKhXDrkfbgSgcOOzdjv5EFk7b4= Subject key identifier: AF:D6:81:C4:97:BB:18:38:CC:55:E2:59:EF:6C:F0:0F:0A:80:2A:45 Authority key identifier: E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C Certificate issuer: /CN=A91C0C73/serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Certificate serial: 0251 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft Manifest number: 0248 Signing time: Sat 23 Aug 2025 02:06:41 +0000 Manifest this update: Sat 23 Aug 2025 02:06:40 +0000 Manifest next update: Sat 30 Aug 2025 02:06:40 +0000 Files and hashes: 1: 45Npup3YgJmHsja0d6144Vx1qxw.crl (hash: tshhlgicWUAfP6F1+iPpQ0gSP+u75r7x10usdVwnykE=) 2: 3728DA229A8611EFA824F73BC4F9AE02.roa (hash: s/TAy9epcEKTC12lHA/WIlwW4b4QaIyA/jvIAJ5W4eQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C73, serialNumber=E39369BA9DD8809987B236B477AD78E15C75AB1C Validity Not Before: Aug 23 02:06:40 2025 GMT Not After : Aug 30 02:06:40 2025 GMT Subject: CN=68a92231-d0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d3:c4:3f:eb:c3:04:b1:cf:c9:47:c8:c9:1d: 10:3b:94:02:91:db:2e:d0:75:3a:31:65:f4:8c:dc: b5:75:75:62:47:42:ce:18:69:16:05:16:23:3e:73: ae:87:3b:cc:a2:3d:a9:41:3b:8c:f8:fc:3e:6f:16: cb:2c:9b:e4:6f:95:54:bd:5f:ef:6e:a0:9e:8f:93: 4f:dc:79:e2:64:ad:f2:92:95:b9:98:96:e5:ed:71: 80:54:c0:73:b7:1c:a5:fd:de:37:c7:e8:d5:1a:c3: a1:b0:7b:ac:9e:b0:96:4d:04:2a:d7:4d:b0:06:27: 86:2b:da:d7:e2:01:3a:83:04:e5:8c:03:d7:0f:23: d0:27:e4:27:21:13:9d:dd:26:ad:61:d5:aa:6e:93: bb:6d:44:0d:3a:78:19:ad:0f:24:59:17:83:0f:d3: c1:04:59:aa:b6:21:b9:63:6e:df:59:44:7d:e6:47: 4e:e8:8d:c9:36:b6:ec:01:8f:2d:19:ff:0e:10:d2: 7c:d4:3f:a8:55:7b:c8:9a:8f:0c:be:17:c7:b3:e8: ca:97:e7:f9:6f:86:e5:0d:83:ea:77:b4:75:ef:d5: b9:73:3c:5b:a3:3e:0f:12:82:59:8c:dd:f8:f7:65: 8b:57:f3:21:88:b3:19:60:38:58:43:e6:c2:03:e2: f9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:D6:81:C4:97:BB:18:38:CC:55:E2:59:EF:6C:F0:0F:0A:80:2A:45 X509v3 Authority Key Identifier: keyid:E3:93:69:BA:9D:D8:80:99:87:B2:36:B4:77:AD:78:E1:5C:75:AB:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45Npup3YgJmHsja0d6144Vx1qxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C73/215E5D3A365A11EDAD10BA7AC4F9AE02/45Npup3YgJmHsja0d6144Vx1qxw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:2a:1c:60:ec:e4:9c:cb:98:1b:66:8e:0c:4d:da:e3:e9:7a: 2b:e1:4b:82:bb:f1:02:2b:8a:d8:1a:30:d9:82:8a:3f:14:38: 1c:f1:de:94:51:01:b3:4e:30:cf:5a:a0:07:c0:78:04:a9:b8: d7:7e:1e:9c:31:d5:8a:e3:1f:e1:d1:86:33:b2:ce:fb:d8:f0: f7:4a:f6:84:b4:0f:22:0d:2f:6d:9d:e0:cf:90:9f:ef:03:9a: 6a:29:4e:12:d1:d3:5b:35:d0:48:d1:34:ed:d6:e9:e3:ad:d9: a2:a2:46:d7:61:1e:63:f5:61:8c:c4:1d:9a:54:9f:59:9a:c3: 94:db:40:9a:94:54:f4:89:71:85:fd:3d:f5:d6:1a:96:16:de: f2:19:59:af:69:f3:c1:39:c2:16:e4:7a:89:ae:f3:7b:3e:87: b2:7c:02:1c:45:1a:be:1d:e3:eb:75:30:3b:78:40:45:10:4e: 1c:3c:c2:33:fb:e3:e0:d1:b2:13:2f:7c:94:84:14:71:5f:ac: fc:7a:01:78:49:25:3c:b7:56:b8:d3:6c:07:03:d3:85:5d:ba: 00:3b:aa:b7:ca:48:f0:ba:9e:b1:2b:df:40:b2:a2:ad:da:63: 25:5f:d2:88:3e:29:8a:a9:52:a2:8a:a6:4c:c0:c5:1e:27:bc: 0f:0d:70:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDNzMxMTAvBgNVBAUTKEUzOTM2OUJBOUREODgwOTk4N0IyMzZCNDc3QUQ3OEUx NUM3NUFCMUMwHhcNMjUwODIzMDIwNjQwWhcNMjUwODMwMDIwNjQwWjAYMRYwFAYD VQQDEw02OGE5MjIzMS1kMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dPEP+vDBLHPyUfIyR0QO5QCkdsu0HU6MWX0jNy1dXViR0LOGGkWBRYjPnOu hzvMoj2pQTuM+Pw+bxbLLJvkb5VUvV/vbqCej5NP3HniZK3ykpW5mJbl7XGAVMBz txyl/d43x+jVGsOhsHusnrCWTQQq102wBieGK9rX4gE6gwTljAPXDyPQJ+QnIROd 3SatYdWqbpO7bUQNOngZrQ8kWReDD9PBBFmqtiG5Y27fWUR95kdO6I3JNrbsAY8t Gf8OENJ81D+oVXvImo8MvhfHs+jKl+f5b4blDYPqd7R179W5czxboz4PEoJZjN34 92WLV/MhiLMZYDhYQ+bCA+L5hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/WgcSX uxg4zFXiWe9s8A8KgCpFMB8GA1UdIwQYMBaAFOOTabqd2ICZh7I2tHeteOFcdasc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM3My8yMTVFNUQzQTM2 NUExMUVEQUQxMEJBN0FDNEY5QUUwMi80NU5wdXAzWWdKbUhzamEwZDYxNDRWeDFx eHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1TnB1cDNZZ0ptSHNqYTBkNjE0NFZ4MXF4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEM3My8yMTVFNUQzQTM2NUExMUVEQUQxMEJBN0FDNEY5QUUwMi80NU5wdXAzWWdK bUhzamEwZDYxNDRWeDFxeHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHKhxg7OScy5gbZo4MTdrj6Xor4UuCu/ECK4rYGjDZgoo/FDgc8d6U UQGzTjDPWqAHwHgEqbjXfh6cMdWK4x/h0YYzss772PD3SvaEtA8iDS9tneDPkJ/v A5pqKU4S0dNbNdBI0TTt1unjrdmiokbXYR5j9WGMxB2aVJ9ZmsOU20CalFT0iXGF /T311hqWFt7yGVmvafPBOcIW5HqJrvN7PoeyfAIcRRq+HePrdTA7eEBFEE4cPMIz ++Pg0bITL3yUhBRxX6z8egF4SSU8t1a402wHA9OFXboAO6q3ykjwup6xK99AsqKt 2mMlX9KIPimKqVKiiqZMwMUeJ7wPDXBa -----END CERTIFICATE-----Generated at Sat Aug 23 19:10:27 2025 by rpki-client