$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: Xs/BtO9pFuIa0uRCV34BDTPyD962FVIqbBtrcZcsm1Q= Subject key identifier: 56:AB:86:1D:FA:62:D1:D4:73:FD:AA:38:B4:48:81:9E:48:BA:49:C7 Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 0872 Signing time: Fri 22 Aug 2025 20:45:49 +0000 Manifest this update: Fri 22 Aug 2025 20:45:48 +0000 Manifest next update: Fri 29 Aug 2025 20:45:48 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: TqzW3Th4VDzyTDef1tFV4CjGdRfNsRWh8NG23EH6Tx8=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: Orts9nJAHIeXwpDUPuUMiOuSaf1VvGVbpuD8ge8k//4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Aug 22 20:45:48 2025 GMT Not After : Aug 29 20:45:48 2025 GMT Subject: CN=68a8d6fd-7cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a6:f7:e8:9f:b6:af:3b:df:fe:48:f7:8f:58: 64:cb:76:b7:69:d6:05:88:62:f8:d0:5a:1c:ee:db: 52:28:7f:95:bf:f9:6f:ba:57:9d:1c:7a:5c:90:a0: 81:b8:2e:3e:51:f6:ee:96:b0:a0:c7:59:e3:3e:4d: 16:fc:c5:6e:ce:26:82:b9:c2:ba:7c:06:8e:63:f8: a7:3d:b9:ee:7a:16:6b:4a:a3:b1:a6:45:08:27:ee: c0:ca:5b:25:30:56:a0:86:f9:d8:67:d8:3c:bc:5d: 1f:82:2e:2a:c3:db:57:8a:56:59:10:9d:4f:51:1f: 37:e6:fe:23:ae:3c:cb:56:da:ec:56:ef:d3:d4:a3: 16:49:3f:4b:63:4a:44:26:e6:52:bc:73:43:a5:9d: b4:b0:3d:e1:b5:cc:ba:73:dd:b5:a9:df:88:8f:39: df:04:0c:06:fc:52:50:75:4a:d6:d9:01:7c:dd:4b: ed:40:ef:f1:6a:d2:73:3c:b2:fe:fd:76:fe:f3:37: dc:e7:64:7e:e4:8b:e6:26:82:42:d5:b4:d3:96:16: 4f:28:64:d6:fe:00:5c:69:cd:02:e7:b3:e0:82:11: 34:3c:e0:ac:d8:6f:72:17:ea:ce:d1:c9:2d:c5:a2: f8:04:f0:79:67:4c:97:2f:1a:be:13:87:94:65:e8: 98:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:AB:86:1D:FA:62:D1:D4:73:FD:AA:38:B4:48:81:9E:48:BA:49:C7 X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:85:f6:48:64:63:a3:fa:2e:dd:a1:ab:b3:a6:92:ea:b4:4a: 3b:ca:87:77:b8:9b:cc:70:04:8f:e6:ca:0d:26:e6:2d:5c:f9: 33:f5:25:0b:6a:a9:70:53:de:1d:71:9b:b8:2b:c0:51:98:a9: fb:a9:80:05:88:20:45:bc:b5:87:71:ce:e5:6d:8a:89:e8:38: b0:f2:f8:3e:8f:b4:30:2a:1b:34:6d:1e:fa:b5:74:2f:78:19: e7:35:87:dc:d7:6d:a5:e8:6c:d8:6a:d7:5f:37:c0:ae:10:5c: 1a:bd:27:8e:c4:75:42:1b:09:8a:e0:d9:ee:3d:bb:64:e5:9f: 3f:26:66:09:cf:2d:ac:26:b7:92:45:fa:52:d7:fe:1b:ea:a2: 8f:99:15:94:89:70:2d:bb:d6:9c:dc:98:3b:2c:15:03:5b:1f: 7e:5b:33:e1:d8:09:67:71:96:b1:c8:f0:f1:2a:85:7c:9d:72: 98:60:c5:4f:85:da:ba:72:e9:bb:a5:34:0c:bf:cd:ff:05:bf: cb:b2:33:19:8e:a6:3e:ea:ad:4c:76:a3:fc:10:72:5d:90:9d: 0f:3f:e6:54:d5:a4:fa:ec:4a:d0:19:41:67:b7:8e:fb:c3:c9: 76:c4:fd:dc:a1:26:1e:1e:b1:cc:1a:7a:66:cf:a6:34:b8:3e: 93:38:df:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUwODIyMjA0NTQ4WhcNMjUwODI5MjA0NTQ4WjAYMRYwFAYD VQQDEw02OGE4ZDZmZC03Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ab36J+2rzvf/kj3j1hky3a3adYFiGL40Foc7ttSKH+Vv/lvuledHHpckKCB uC4+UfbulrCgx1njPk0W/MVuziaCucK6fAaOY/inPbnuehZrSqOxpkUIJ+7Aylsl MFaghvnYZ9g8vF0fgi4qw9tXilZZEJ1PUR835v4jrjzLVtrsVu/T1KMWST9LY0pE JuZSvHNDpZ20sD3htcy6c921qd+IjznfBAwG/FJQdUrW2QF83UvtQO/xatJzPLL+ /Xb+8zfc52R+5IvmJoJC1bTTlhZPKGTW/gBcac0C57PgghE0POCs2G9yF+rO0ckt xaL4BPB5Z0yXLxq+E4eUZeiYpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFarhh36 YtHUc/2qOLRIgZ5IuknHMB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIhfZIZGOj+i7doauzppLqtEo7yod3uJvMcASP5soNJuYtXPkz9SUL aqlwU94dcZu4K8BRmKn7qYAFiCBFvLWHcc7lbYqJ6Diw8vg+j7QwKhs0bR76tXQv eBnnNYfc122l6GzYatdfN8CuEFwavSeOxHVCGwmK4NnuPbtk5Z8/JmYJzy2sJreS RfpS1/4b6qKPmRWUiXAtu9ac3Jg7LBUDWx9+WzPh2AlncZaxyPDxKoV8nXKYYMVP hdq6cum7pTQMv83/Bb/LsjMZjqY+6q1MdqP8EHJdkJ0PP+ZU1aT67ErQGUFnt477 w8l2xP3coSYeHrHMGnpmz6Y0uD6TON/Y -----END CERTIFICATE-----Generated at Sat Aug 23 20:22:39 2025 by rpki-client