$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: aAnFDrfMulL4bzukMRWuQzdVJBJF8DPLtlblFCcjyIE= Subject key identifier: 2F:76:CE:6E:A9:D2:39:2E:B7:6D:8F:4A:4D:75:CF:57:83:BC:51:9B Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0D0E Signing time: Fri 22 Aug 2025 18:11:30 +0000 Manifest this update: Fri 22 Aug 2025 18:11:30 +0000 Manifest next update: Fri 29 Aug 2025 18:11:30 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: mv7AlrPxm9k9IMMt/O4Z/c4M8l4OaA9wn85L2ePUS9s=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3354 (0xd1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Aug 22 18:11:30 2025 GMT Not After : Aug 29 18:11:30 2025 GMT Subject: CN=68a8b2d2-13bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:3a:29:0e:c7:ca:56:2c:6a:8b:b2:6f:1b: 73:c4:6b:18:94:e0:e7:0b:1e:32:c8:71:75:b1:89: d0:95:e8:49:d1:bb:20:71:18:bc:26:65:a0:c6:ba: 5a:a7:49:2b:57:22:16:24:d0:76:6f:7e:8f:1e:d5: 70:63:e6:ef:b8:1f:fa:14:d0:43:58:6b:12:5b:d3: 61:ae:a3:66:d5:6f:d7:a6:9d:bd:b3:88:3d:b0:9e: 84:65:d0:89:79:42:10:88:19:ff:b9:2e:92:fc:6c: 3b:2b:1a:d0:36:24:a9:42:c5:ee:42:80:45:40:db: 4f:60:98:d3:24:5c:a0:42:52:a5:bd:22:2e:5a:63: 73:39:62:e3:7b:35:0f:b2:6d:1e:af:cd:48:35:5a: 0f:00:9d:89:3d:cf:fc:30:6e:b6:57:bc:ee:2b:dd: c2:bd:24:fd:b4:49:4e:b8:54:8e:ff:48:85:61:e6: 21:3b:7f:4d:33:1a:9c:91:e8:03:92:b3:d6:3a:40: 7f:a6:51:e0:b8:75:9c:bf:5a:6f:f2:7b:db:70:c8: 2c:07:5e:87:cf:8c:fa:a4:6c:a7:70:41:0f:4b:eb: 15:1e:2e:ff:d3:0c:13:7d:be:60:d9:19:67:db:ba: f6:6f:7d:1c:2f:a5:03:7b:48:d1:50:a1:d4:86:67: de:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:76:CE:6E:A9:D2:39:2E:B7:6D:8F:4A:4D:75:CF:57:83:BC:51:9B X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:5b:47:3e:cb:6c:81:9f:af:48:d3:fb:ea:b6:88:b4:56:65: 3d:9f:f2:c2:84:71:34:db:25:29:63:13:23:3e:3d:5e:4d:47: 5f:1d:37:01:d2:03:ca:d7:94:c2:44:a7:87:4b:78:b2:66:0b: 6a:fc:07:0c:f5:93:50:c5:c2:3f:e8:bd:0c:c7:a4:de:81:4d: 29:f4:2b:f3:69:9e:19:c6:4a:37:af:79:96:fc:d7:a4:cc:6a: cc:15:ce:71:ff:85:02:51:2b:de:13:bd:01:d5:64:4b:58:62: 08:f9:6e:7b:e0:93:aa:55:5e:2d:e6:95:e1:ba:c1:24:b8:71: f1:15:91:64:12:30:27:5a:2e:63:64:49:09:2b:c0:6f:96:96: 75:c8:f9:be:3e:11:22:ab:36:d1:87:f3:68:61:25:83:b2:86: 10:95:2a:ad:36:e6:6a:66:97:43:57:30:91:0d:c2:fd:70:13: 5f:c5:96:0b:42:82:ef:2d:fc:a9:b1:52:54:8a:89:37:06:68: 1d:24:d1:88:6c:8b:65:c6:9c:17:18:82:e4:7e:cb:79:26:93: 71:ca:ff:5e:9b:71:42:b5:83:ea:5b:63:9a:2b:6c:f6:77:34: 8c:6d:46:89:ba:c1:5f:7b:b5:75:6f:07:5b:df:d1:4e:72:87: 9f:e5:e8:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUwODIyMTgxMTMwWhcNMjUwODI5MTgxMTMwWjAYMRYwFAYD VQQDEw02OGE4YjJkMi0xM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyY6KQ7HylYsaouybxtzxGsYlODnCx4yyHF1sYnQlehJ0bsgcRi8JmWgxrpa p0krVyIWJNB2b36PHtVwY+bvuB/6FNBDWGsSW9NhrqNm1W/Xpp29s4g9sJ6EZdCJ eUIQiBn/uS6S/Gw7KxrQNiSpQsXuQoBFQNtPYJjTJFygQlKlvSIuWmNzOWLjezUP sm0er81INVoPAJ2JPc/8MG62V7zuK93CvST9tElOuFSO/0iFYeYhO39NMxqckegD krPWOkB/plHguHWcv1pv8nvbcMgsB16Hz4z6pGyncEEPS+sVHi7/0wwTfb5g2Rln 27r2b30cL6UDe0jRUKHUhmfeUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC92zm6p 0jkut22PSk11z1eDvFGbMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADW0c+y2yBn69I0/vqtoi0VmU9n/LChHE02yUpYxMjPj1eTUdfHTcB 0gPK15TCRKeHS3iyZgtq/AcM9ZNQxcI/6L0Mx6TegU0p9CvzaZ4Zxko3r3mW/Nek zGrMFc5x/4UCUSveE70B1WRLWGII+W574JOqVV4t5pXhusEkuHHxFZFkEjAnWi5j ZEkJK8BvlpZ1yPm+PhEiqzbRh/NoYSWDsoYQlSqtNuZqZpdDVzCRDcL9cBNfxZYL QoLvLfypsVJUiok3BmgdJNGIbItlxpwXGILkfst5JpNxyv9em3FCtYPqW2OaK2z2 dzSMbUaJusFfe7V1bwdb39FOcoef5eiV -----END CERTIFICATE-----Generated at Sat Aug 23 20:37:50 2025 by rpki-client