$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft File: -kF5Yn9bJllOVjA1Ogt3heDWksU.mft (raw, json) Hash identifier: YNVUdtLjXHPqJTRv4EHLmmgVTAB+j5OFw1W7w2oAlb8= Subject key identifier: E3:B9:C6:21:A7:A0:85:E1:33:09:05:CB:33:77:2C:B7:23:CF:A7:93 Authority key identifier: FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 Certificate issuer: /CN=A91C1621/serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Certificate serial: 34E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft Manifest number: 34CE Signing time: Fri 22 Aug 2025 14:16:15 +0000 Manifest this update: Fri 22 Aug 2025 14:16:14 +0000 Manifest next update: Fri 29 Aug 2025 14:16:14 +0000 Files and hashes: 1: -kF5Yn9bJllOVjA1Ogt3heDWksU.crl (hash: PwiiWWDwekoLC1ga/vjB5qWR+9OShj27axmRmydUO2E=) 2: CDE36D52DB9511E99F3F673EC4F9AE02.roa (hash: zbmIG6CT7ypIn3HcTtsDFC7ihfXsVyZlUb242ctePDw=) 3: BB8F87B4D4B011ECAA427351C4F9AE02.roa (hash: V6xVQh9iUu5NDnwtI8z/zA2tAozAKTEZViih6UdSdQ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1621, serialNumber=FA4179627F5B26594E5630353A0B7785E0D692C5 Validity Not Before: Aug 22 14:16:14 2025 GMT Not After : Aug 29 14:16:14 2025 GMT Subject: CN=68a87baf-1c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:eb:87:b4:56:09:24:be:ab:06:e7:2f:6f:b4: 6e:8a:d1:eb:48:0e:c6:04:67:ca:b7:69:28:c7:31: 59:71:08:24:d0:de:0d:50:1e:06:ba:cd:6c:88:10: f5:fe:e6:c2:76:a5:b6:46:80:d1:81:8d:16:7e:7a: 8e:08:a9:b7:1c:e5:8c:50:72:37:33:f5:d4:55:74: 94:27:67:67:4c:d7:ef:3a:42:0a:bb:71:d1:4e:37: 38:25:c3:f2:c0:f6:ec:15:28:15:80:15:a4:52:bb: 21:8c:27:03:e0:6d:1d:94:ad:35:83:8b:2e:43:ca: 45:d5:6a:ac:a3:47:8c:e5:17:f9:af:65:19:ee:3f: c4:02:13:f2:22:cd:f6:60:c8:78:11:46:44:5a:a0: d7:f5:5f:d7:45:ef:a6:5c:44:86:1e:8c:6c:23:41: 39:7a:0d:b7:30:60:d0:06:9f:a2:be:2f:50:36:85: 0a:84:b5:3b:e8:95:be:fa:21:7e:72:3f:de:13:29: 37:29:c4:bc:39:fc:28:a7:c7:fe:4f:32:73:96:53: f2:eb:88:e7:8f:cc:e1:35:2b:1b:7c:c9:35:f6:4b: af:11:59:15:ed:85:17:ba:e8:8b:86:12:71:d6:c4: 97:45:b4:48:02:4a:7d:c1:b0:30:ea:16:e7:d0:83: eb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:B9:C6:21:A7:A0:85:E1:33:09:05:CB:33:77:2C:B7:23:CF:A7:93 X509v3 Authority Key Identifier: keyid:FA:41:79:62:7F:5B:26:59:4E:56:30:35:3A:0B:77:85:E0:D6:92:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-kF5Yn9bJllOVjA1Ogt3heDWksU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1621/99D68DCE1D6911E2A4640DA708B02CD2/-kF5Yn9bJllOVjA1Ogt3heDWksU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:1e:0a:56:ee:b5:29:cf:bc:cb:27:4f:82:9b:7b:6d:72:82: cf:d4:40:c5:f9:80:db:bb:d9:c4:68:34:20:b0:a6:16:5e:3e: 05:1e:2e:dd:74:b7:54:39:a6:8e:e4:24:0a:e4:84:33:3a:82: c5:79:d5:74:7e:0b:db:e3:f0:ad:07:6a:5a:1e:a5:c6:3e:d2: d6:bc:c4:9c:ce:51:96:96:40:2e:1b:5f:30:34:12:ec:3d:d3: 70:c7:30:57:a8:fb:c4:b6:01:a6:05:87:8f:1e:d2:0e:1a:2f: da:ed:af:bc:81:1f:ae:76:88:84:08:88:34:19:58:e0:93:fc: 6b:cb:bb:dc:1c:03:54:e0:01:45:31:42:b3:b6:06:7c:d9:48: a4:55:d6:d4:79:c0:0c:57:74:c9:a3:64:77:f2:3b:26:3d:c8: d6:5c:e6:72:14:40:f0:e9:27:58:f9:07:01:23:af:a8:1a:78: 26:c8:5e:9c:59:2b:a3:cc:d4:71:61:59:06:9a:4f:fc:53:e2: db:a5:b3:20:0b:7a:78:9e:2c:7c:58:44:2a:b2:7b:16:97:c3: 0a:40:a0:08:fa:f3:23:5f:9d:98:f9:34:f1:17:0b:3b:bf:0f: 18:99:22:a5:72:fc:fb:ed:ee:a9:f3:0d:e7:73:60:eb:59:a6: c9:c5:a6:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2MjExMTAvBgNVBAUTKEZBNDE3OTYyN0Y1QjI2NTk0RTU2MzAzNTNBMEI3Nzg1 RTBENjkyQzUwHhcNMjUwODIyMTQxNjE0WhcNMjUwODI5MTQxNjE0WjAYMRYwFAYD VQQDEw02OGE4N2JhZi0xYzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7euHtFYJJL6rBucvb7RuitHrSA7GBGfKt2koxzFZcQgk0N4NUB4Gus1siBD1 /ubCdqW2RoDRgY0WfnqOCKm3HOWMUHI3M/XUVXSUJ2dnTNfvOkIKu3HRTjc4JcPy wPbsFSgVgBWkUrshjCcD4G0dlK01g4suQ8pF1Wqso0eM5Rf5r2UZ7j/EAhPyIs32 YMh4EUZEWqDX9V/XRe+mXESGHoxsI0E5eg23MGDQBp+ivi9QNoUKhLU76JW++iF+ cj/eEyk3KcS8Ofwop8f+TzJzllPy64jnj8zhNSsbfMk19kuvEVkV7YUXuuiLhhJx 1sSXRbRIAkp9wbAw6hbn0IProQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOO5xiGn oIXhMwkFyzN3LLcjz6eTMB8GA1UdIwQYMBaAFPpBeWJ/WyZZTlYwNToLd4Xg1pLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTYyMS85OUQ2OERDRTFE NjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45YkpsbE9WakExT2d0M2hlRFdr c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1rRjVZbjliSmxsT1ZqQTFPZ3QzaGVEV2tzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTYyMS85OUQ2OERDRTFENjkxMUUyQTQ2NDBEQTcwOEIwMkNEMi8ta0Y1WW45Ykps bE9WakExT2d0M2hlRFdrc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTHgpW7rUpz7zLJ0+Cm3ttcoLP1EDF+YDbu9nEaDQgsKYWXj4FHi7d dLdUOaaO5CQK5IQzOoLFedV0fgvb4/CtB2paHqXGPtLWvMSczlGWlkAuG18wNBLs PdNwxzBXqPvEtgGmBYePHtIOGi/a7a+8gR+udoiECIg0GVjgk/xry7vcHANU4AFF MUKztgZ82UikVdbUecAMV3TJo2R38jsmPcjWXOZyFEDw6SdY+QcBI6+oGngmyF6c WSujzNRxYVkGmk/8U+LbpbMgC3p4nix8WEQqsnsWl8MKQKAI+vMjX52Y+TTxFws7 vw8YmSKlcvz77e6p8w3nc2DrWabJxaaZ -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:05 2025 by rpki-client