$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: zbny5rnWtyhbnKS1Op0XPqQnAieANNPRrj/lJmtzQJk= Subject key identifier: 3D:E1:01:58:52:68:62:84:AF:51:2C:26:D8:9F:03:A8:4D:B1:55:4B Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 08D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 08D1 Signing time: Fri 22 Aug 2025 20:33:59 +0000 Manifest this update: Fri 22 Aug 2025 20:33:58 +0000 Manifest next update: Fri 29 Aug 2025 20:33:58 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: kLnLT8f3mMykKKQP+StN05b+5G1RJg6VNJpO2kwBPeM=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2265 (0x8d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Aug 22 20:33:58 2025 GMT Not After : Aug 29 20:33:58 2025 GMT Subject: CN=68a8d437-b218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:48:53:95:88:cc:27:ec:88:3e:46:fb:8a:a0: 8f:d3:2c:58:e0:f5:a5:21:c3:51:27:47:bc:e2:ae: d8:6c:d8:9e:37:c2:2b:2a:f1:19:2e:cf:47:70:91: 39:1c:07:8d:97:96:3e:0a:82:bc:0f:7c:d9:72:36: 9f:75:03:4c:5e:dd:e1:3f:8e:3d:4d:6f:e3:db:a6: b9:98:70:d3:3c:78:a5:c0:ef:3c:8a:6d:58:92:ea: 84:96:09:57:9a:22:50:8b:4d:29:09:7a:44:47:1d: 50:ab:8b:51:de:42:bd:4f:c2:18:37:43:a8:40:b0: 28:74:2b:e2:ed:02:17:ad:2e:be:b9:08:00:4d:5a: fc:88:d1:c4:08:fc:f9:e9:03:ac:bd:45:7e:9f:9b: 60:31:77:23:ab:b0:2d:79:8d:63:bc:f0:8e:d2:57: 50:fa:cf:9e:a7:1e:3a:2e:b9:bd:50:b8:e6:00:c9: 03:ad:1a:53:bd:16:b2:98:b6:7c:72:37:55:f9:2f: bc:ab:58:43:42:0a:a4:77:f9:61:fb:c0:65:18:06: fd:fe:72:d5:a7:d8:d1:85:5c:cd:2c:cf:fc:a9:a0: 02:23:75:55:b5:5a:69:1b:f6:c5:2b:bb:17:65:5a: 8a:63:1b:e2:b4:8a:40:00:30:b8:21:00:12:b3:de: cc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E1:01:58:52:68:62:84:AF:51:2C:26:D8:9F:03:A8:4D:B1:55:4B X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:af:ff:c6:19:42:df:c4:57:3e:3c:63:b7:56:4f:8b:87:8c: 44:1c:4d:6e:f2:12:61:c4:7b:f8:61:b3:6c:1a:dd:ac:03:60: c8:4b:75:c5:79:f1:76:d9:b2:73:41:b6:b7:9f:7e:1c:b8:c8: f9:63:90:a5:08:ea:ac:9d:6c:bc:24:bf:4f:11:52:98:32:38: 29:86:1f:45:44:95:41:8b:77:f4:85:11:c6:7b:94:76:02:71: 89:b6:d3:8f:4c:ce:88:bf:b1:8c:fb:a7:9a:08:0f:c6:ca:f9: c5:9c:eb:99:d6:21:b0:e0:25:ef:51:97:ee:7c:a0:f7:39:a8: 2c:43:f9:49:86:43:88:fb:ae:e6:64:fe:c8:5f:29:9b:09:06: 15:b6:7b:00:19:75:3f:ca:de:9b:fc:08:bd:06:8d:25:85:6a: 42:23:26:3f:1b:3e:82:8c:07:9b:9f:01:f2:19:42:53:f6:fd: 8c:0d:a8:f6:40:bd:e1:d7:6e:b8:42:e1:94:ac:85:6c:88:4a: 0b:9f:39:fd:fa:8d:87:5d:ac:ac:14:fd:a9:b3:aa:ef:a6:d0: 7d:a6:8b:77:de:3d:7c:c1:6a:c6:6a:ec:50:9c:61:93:2d:a6: b2:a4:7a:3f:34:d7:48:c7:0d:28:8a:34:c0:e7:3b:1f:c3:1f: 84:bf:0a:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUwODIyMjAzMzU4WhcNMjUwODI5MjAzMzU4WjAYMRYwFAYD VQQDEw02OGE4ZDQzNy1iMjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3EhTlYjMJ+yIPkb7iqCP0yxY4PWlIcNRJ0e84q7YbNieN8IrKvEZLs9HcJE5 HAeNl5Y+CoK8D3zZcjafdQNMXt3hP449TW/j26a5mHDTPHilwO88im1YkuqElglX miJQi00pCXpERx1Qq4tR3kK9T8IYN0OoQLAodCvi7QIXrS6+uQgATVr8iNHECPz5 6QOsvUV+n5tgMXcjq7AteY1jvPCO0ldQ+s+epx46Lrm9ULjmAMkDrRpTvRaymLZ8 cjdV+S+8q1hDQgqkd/lh+8BlGAb9/nLVp9jRhVzNLM/8qaACI3VVtVppG/bFK7sX ZVqKYxvitIpAADC4IQASs97M9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3hAVhS aGKEr1EsJtifA6hNsVVLMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKr//GGULfxFc+PGO3Vk+Lh4xEHE1u8hJhxHv4YbNsGt2sA2DIS3XF efF22bJzQba3n34cuMj5Y5ClCOqsnWy8JL9PEVKYMjgphh9FRJVBi3f0hRHGe5R2 AnGJttOPTM6Iv7GM+6eaCA/GyvnFnOuZ1iGw4CXvUZfufKD3OagsQ/lJhkOI+67m ZP7IXymbCQYVtnsAGXU/yt6b/Ai9Bo0lhWpCIyY/Gz6CjAebnwHyGUJT9v2MDaj2 QL3h1264QuGUrIVsiEoLnzn9+o2HXaysFP2ps6rvptB9pot33j18wWrGauxQnGGT LaaypHo/NNdIxw0oijTA5zsfwx+Evwo3 -----END CERTIFICATE-----Generated at Sun Aug 24 04:46:38 2025 by rpki-client