$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft File: 0VLfcuXWwcb-QrZCN3w7CIEobec.mft (raw, json) Hash identifier: 4rbwcd9K7xmdjVRiLe7qMEMfpVEowuKp0py/VEVDPPI= Subject key identifier: 6C:49:D2:05:41:FA:3D:0F:AB:A4:BD:78:57:20:92:8D:80:C6:46:8E Authority key identifier: D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 Certificate issuer: /CN=A91C0FAC/serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Certificate serial: 0548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft Manifest number: 0543 Signing time: Sat 23 Aug 2025 00:04:39 +0000 Manifest this update: Sat 23 Aug 2025 00:04:39 +0000 Manifest next update: Sat 30 Aug 2025 00:04:39 +0000 Files and hashes: 1: 0VLfcuXWwcb-QrZCN3w7CIEobec.crl (hash: Q2JkRP/KvE570KXf4netCQukMHyjMf5+nvDtq58bLG0=) 2: 4C2E7A3C049B11ECAC7E5D0DC4F9AE02.roa (hash: JNxs4L4e1ceFr4b8NRWrFPbylob6Fmj/cL16X1jkyEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FAC, serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Validity Not Before: Aug 23 00:04:39 2025 GMT Not After : Aug 30 00:04:39 2025 GMT Subject: CN=68a90597-8a42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ab:18:75:5e:da:28:33:0e:dd:5f:8d:57:d1: 5d:38:50:b1:95:96:ea:1b:bb:3f:4b:1e:0e:64:72: 6a:4c:22:a2:24:82:f7:c4:73:54:20:d4:fa:18:a5: 4f:d3:41:7f:16:cd:72:d0:eb:d6:0a:37:5c:94:41: cb:2c:8f:1c:c1:b7:6a:ae:e9:d8:aa:40:0d:3a:be: 41:6f:ec:05:68:7c:48:de:48:d5:98:c3:89:d5:f5: f1:9e:c2:bd:b2:da:20:4b:c9:b8:5f:ac:43:ae:fb: 97:3f:7c:9b:a3:47:d5:2f:ef:e6:f9:ef:d0:9e:6e: ee:09:1d:28:bd:2a:e0:48:0f:16:b1:af:10:89:55: 6b:5a:d7:23:69:86:5c:a7:24:a3:db:7b:7c:f3:bc: 7a:43:6a:d9:fd:5a:b3:07:e3:5a:c0:80:00:25:0b: 28:59:5d:ee:93:30:a1:33:cd:62:80:1b:69:7f:06: 85:8c:cf:de:50:11:3b:ea:bd:05:2b:c2:5b:0f:31: ca:a6:0f:de:5c:ee:94:60:c5:e1:e3:17:1d:37:d5: fc:0b:7c:9f:aa:a5:be:31:af:1d:58:06:92:54:1a: 16:ca:ce:0e:cd:6f:7e:11:7b:80:12:2a:a8:44:65: f9:1f:c9:2c:32:ac:85:0e:0b:fd:fc:96:4b:2c:47: c2:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:49:D2:05:41:FA:3D:0F:AB:A4:BD:78:57:20:92:8D:80:C6:46:8E X509v3 Authority Key Identifier: keyid:D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:bb:84:11:a1:78:35:c6:5c:68:ef:52:44:47:95:dc:fc:8f: aa:e7:ca:e2:ef:3f:1f:ff:b0:75:d0:74:ea:67:ec:4b:d1:d5: ff:e9:55:65:49:93:c5:9a:78:00:52:0f:2e:c7:1d:48:1b:93: 42:b5:fd:da:9e:9a:17:34:f7:c1:5c:04:11:93:c5:ef:42:d1: dd:22:8e:5a:08:9b:82:10:80:25:f2:cd:ea:fe:47:c0:c7:5d: 3d:5e:b4:2d:0f:da:a9:e6:a3:04:5a:83:b4:35:c8:27:f7:96: 81:68:e4:2d:ce:49:e6:22:23:6e:1a:0b:41:bd:a9:01:c5:e2: bc:b4:a3:08:77:e3:f4:64:5f:86:fe:91:ea:95:f4:60:1e:4d: ef:2e:8c:14:53:d9:15:60:99:eb:1c:2d:45:35:44:82:46:af: 53:8d:76:a6:65:68:a6:ec:5d:ff:6e:c1:72:8b:e5:b1:10:7b: 52:9b:c2:76:53:63:e3:fc:13:13:e2:0b:55:c3:2e:e7:c7:e9: 16:de:70:d9:fc:3b:28:cf:d2:e9:f7:61:9a:05:a5:63:e6:03: ac:bf:e7:f8:18:43:98:ce:12:e4:4f:8b:80:a8:3e:78:e6:0c: 92:6d:6c:b6:f1:eb:80:2d:81:60:a7:ff:f3:e0:94:06:97:d5: b9:db:06:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGQUMxMTAvBgNVBAUTKEQxNTJERjcyRTVENkMxQzZGRTQyQjY0MjM3N0MzQjA4 ODEyODZERTcwHhcNMjUwODIzMDAwNDM5WhcNMjUwODMwMDAwNDM5WjAYMRYwFAYD VQQDEw02OGE5MDU5Ny04YTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56sYdV7aKDMO3V+NV9FdOFCxlZbqG7s/Sx4OZHJqTCKiJIL3xHNUINT6GKVP 00F/Fs1y0OvWCjdclEHLLI8cwbdqrunYqkANOr5Bb+wFaHxI3kjVmMOJ1fXxnsK9 stogS8m4X6xDrvuXP3ybo0fVL+/m+e/Qnm7uCR0ovSrgSA8Wsa8QiVVrWtcjaYZc pySj23t887x6Q2rZ/VqzB+NawIAAJQsoWV3ukzChM81igBtpfwaFjM/eUBE76r0F K8JbDzHKpg/eXO6UYMXh4xcdN9X8C3yfqqW+Ma8dWAaSVBoWys4OzW9+EXuAEiqo RGX5H8ksMqyFDgv9/JZLLEfCrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxJ0gVB +j0Pq6S9eFcgko2AxkaOMB8GA1UdIwQYMBaAFNFS33Ll1sHG/kK2Qjd8OwiBKG3n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZBQy8zQ0Y3OThFMDA0 OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3djYi1RclpDTjN3N0NJRW9i ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWTGZjdVhXd2NiLVFyWkNOM3c3Q0lFb2JlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZBQy8zQ0Y3OThFMDA0OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3dj Yi1RclpDTjN3N0NJRW9iZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2u4QRoXg1xlxo71JER5Xc/I+q58ri7z8f/7B10HTqZ+xL0dX/6VVl SZPFmngAUg8uxx1IG5NCtf3anpoXNPfBXAQRk8XvQtHdIo5aCJuCEIAl8s3q/kfA x109XrQtD9qp5qMEWoO0Ncgn95aBaOQtzknmIiNuGgtBvakBxeK8tKMId+P0ZF+G /pHqlfRgHk3vLowUU9kVYJnrHC1FNUSCRq9TjXamZWim7F3/bsFyi+WxEHtSm8J2 U2Pj/BMT4gtVwy7nx+kW3nDZ/Dsoz9Lp92GaBaVj5gOsv+f4GEOYzhLkT4uAqD54 5gySbWy28euALYFgp//z4JQGl9W52wYY -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:54 2025 by rpki-client