$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: 7csotrpOVIjA8xM3iRrZtgfDFVp5GMxyZtEJB8oeQXY= Subject key identifier: 48:45:BA:3D:FB:14:50:C2:04:E5:22:42:F3:58:7D:0C:E3:82:26:46 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B6E Signing time: Fri 22 Aug 2025 16:21:05 +0000 Manifest this update: Fri 22 Aug 2025 16:21:04 +0000 Manifest next update: Fri 29 Aug 2025 16:21:04 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: rxshVDUVYkKfVh8j+zyIZ/oATA4mr6fn7vdkw6lKzyc=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7032 (0x1b78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Aug 22 16:21:04 2025 GMT Not After : Aug 29 16:21:04 2025 GMT Subject: CN=68a898f0-c744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5e:27:fc:76:a2:52:d8:23:02:5a:ca:6b:df: 84:6d:0b:40:6f:1e:ff:03:6a:c1:56:f8:3b:4a:6a: 73:01:79:aa:93:f6:29:8c:a0:33:98:e6:f7:36:d6: ef:f7:a3:4f:2f:cb:94:b8:1c:5d:c6:b0:1f:8d:dd: dc:e3:e6:45:2f:55:6b:ec:b7:c6:d7:81:da:dc:9b: 88:7f:00:99:20:90:0b:56:64:c3:f4:ba:0d:51:92: f7:38:75:08:77:57:6a:c6:dc:1d:58:eb:34:c9:d6: 0e:c2:cd:cb:b7:de:e7:4a:e0:f5:0e:84:bf:f9:23: 43:f7:ae:06:75:af:42:0c:7d:a2:6d:95:88:51:45: 76:c4:2c:db:e0:6b:03:33:ef:13:19:62:69:42:40: 1c:c9:b2:7e:ce:fa:85:4e:09:cb:fb:ea:16:c8:a6: d0:ab:b3:09:ff:66:34:9f:74:eb:96:e3:d8:b9:78: 5b:b0:f7:45:aa:15:67:a3:b6:1e:ab:40:41:44:75: 3f:c2:31:fc:6a:74:ef:83:68:f8:2e:7f:52:df:c5: 1e:76:0c:e8:57:3a:bc:e7:d3:f4:be:1d:ea:4c:2e: 1e:55:a2:9c:ac:20:a8:c2:e3:d1:ab:b7:d2:58:f0: 93:04:fc:4a:42:7c:06:4a:2a:6c:66:a6:c1:19:de: fd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:45:BA:3D:FB:14:50:C2:04:E5:22:42:F3:58:7D:0C:E3:82:26:46 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:88:55:39:3b:33:fe:98:15:63:85:ae:87:0a:50:04:0b:16: 3b:12:46:04:d6:8e:25:1d:99:c4:5f:ba:60:04:a6:b0:51:81: 0b:21:3d:f9:14:d8:34:d9:56:e8:9d:53:5f:e1:14:f9:c6:14: 76:d0:18:3c:38:aa:26:f4:b8:6c:3e:3e:e4:09:45:10:7b:61: f7:fb:4b:a9:c3:b6:07:ec:06:7c:a4:85:e2:69:e2:d9:5b:45: b6:89:f1:18:37:01:04:32:b0:62:18:70:ec:b7:17:0e:16:54: 88:6e:da:b1:2d:50:e6:62:c0:0c:18:e7:d6:5a:80:8e:a6:cf: 91:46:40:50:14:37:46:88:ec:68:c5:a8:1c:92:ba:30:c8:cf: eb:ff:e4:b5:5c:d6:a7:d9:f1:d3:4e:9d:53:f7:8c:dc:de:bc: 19:12:c4:a2:81:27:44:6a:1c:e4:9e:1e:c7:0b:0a:1d:94:ee: 8c:b7:22:1e:9c:d8:5c:da:54:7b:00:52:9e:65:a6:e8:b4:a2: 21:3e:e7:4c:03:0f:16:44:78:92:42:d4:45:7b:65:c4:16:f8: b8:9f:4e:a6:e0:18:36:be:9c:39:46:63:f8:05:ad:52:76:30: b0:b3:51:09:15:5a:82:83:b5:8e:15:a8:e4:84:fb:b6:bb:69: ba:76:bf:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwODIyMTYyMTA0WhcNMjUwODI5MTYyMTA0WjAYMRYwFAYD VQQDEw02OGE4OThmMC1jNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV4n/HaiUtgjAlrKa9+EbQtAbx7/A2rBVvg7SmpzAXmqk/YpjKAzmOb3Ntbv 96NPL8uUuBxdxrAfjd3c4+ZFL1Vr7LfG14Ha3JuIfwCZIJALVmTD9LoNUZL3OHUI d1dqxtwdWOs0ydYOws3Lt97nSuD1DoS/+SND964Gda9CDH2ibZWIUUV2xCzb4GsD M+8TGWJpQkAcybJ+zvqFTgnL++oWyKbQq7MJ/2Y0n3TrluPYuXhbsPdFqhVno7Ye q0BBRHU/wjH8anTvg2j4Ln9S38UedgzoVzq859P0vh3qTC4eVaKcrCCowuPRq7fS WPCTBPxKQnwGSipsZqbBGd799QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhFuj37 FFDCBOUiQvNYfQzjgiZGMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBciFU5OzP+mBVjha6HClAECxY7EkYE1o4lHZnEX7pgBKawUYELIT35 FNg02VbonVNf4RT5xhR20Bg8OKom9LhsPj7kCUUQe2H3+0upw7YH7AZ8pIXiaeLZ W0W2ifEYNwEEMrBiGHDstxcOFlSIbtqxLVDmYsAMGOfWWoCOps+RRkBQFDdGiOxo xagckrowyM/r/+S1XNan2fHTTp1T94zc3rwZEsSigSdEahzknh7HCwodlO6MtyIe nNhc2lR7AFKeZabotKIhPudMAw8WRHiSQtRFe2XEFvi4n06m4Bg2vpw5RmP4Ba1S djCws1EJFVqCg7WOFajkhPu2u2m6dr8n -----END CERTIFICATE-----Generated at Sat Aug 23 15:14:53 2025 by rpki-client