$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: +QHTU/0zamK1lDpTWLQ7sdDIR4+lQFzpxW3PghXP+iw= Subject key identifier: A3:46:31:52:5A:C0:E9:F7:57:C2:08:74:7C:F3:7A:7F:D2:DC:09:8B Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: A4 Signing time: Sat 23 Aug 2025 06:25:39 +0000 Manifest this update: Sat 23 Aug 2025 06:25:39 +0000 Manifest next update: Sat 30 Aug 2025 06:25:39 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: L/uPYuu/zrrY5G9BKd5TygRTtgYGf6Hn0JYy++HHit4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Aug 23 06:25:39 2025 GMT Not After : Aug 30 06:25:39 2025 GMT Subject: CN=68a95ee3-bbbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9d:71:31:76:63:30:90:44:15:70:dd:3d:85: a9:ed:86:45:47:0e:f9:c9:45:f2:80:ce:4f:3f:c8: 66:7b:3c:0e:41:cb:d2:8a:42:88:f2:55:43:be:05: c5:0b:02:4b:b5:a8:6d:3f:2e:80:93:9c:13:72:f2: e6:62:89:97:a3:4e:57:4c:94:bb:64:17:5d:2d:26: 23:cd:64:df:5e:2e:0b:58:b9:94:25:6d:04:52:7a: 68:b2:a0:9a:f0:9f:94:b9:33:ef:da:83:5e:cf:97: 60:16:42:79:0c:65:fb:2d:f2:2c:10:fc:8a:e3:b4: 20:e3:6f:73:e0:e1:f4:c3:20:59:ad:35:b6:17:a3: 92:df:9a:a4:5c:35:e0:b9:fc:4d:25:06:52:49:d5: 11:9f:a5:6f:e7:71:d1:31:6e:14:74:6a:bf:9f:09: 48:45:3d:63:28:24:33:5e:61:ef:e5:d6:39:81:1f: 00:d4:ca:65:e3:71:34:aa:e5:66:db:5d:1f:a3:59: cf:4d:3b:3b:ed:0b:49:71:c3:37:52:02:85:2e:78: 99:8b:e0:da:7c:8b:a0:42:e3:9a:61:28:b7:3b:19: b0:e6:fe:90:c0:66:6c:fb:db:9f:b6:00:dd:af:5a: b6:32:48:cb:8b:00:da:a7:f7:1e:f6:5e:3b:8f:8a: 43:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:46:31:52:5A:C0:E9:F7:57:C2:08:74:7C:F3:7A:7F:D2:DC:09:8B X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:d0:87:31:e9:34:ed:68:d2:75:4f:e6:d2:e0:a4:30:38:6a: 35:d6:9c:23:8a:cb:27:a6:5c:9c:5b:52:92:aa:56:13:11:ae: d7:c8:a1:f2:4c:94:5b:52:64:41:68:dc:62:44:3f:52:5e:38: 33:a9:49:c0:1f:38:17:b2:a5:a7:ec:6a:e3:60:6f:ac:59:47: be:55:bb:af:05:46:62:2a:d8:cb:53:64:e8:88:b9:ec:a1:8a: 2e:bf:18:69:93:a9:2f:4d:77:79:d3:9e:e7:8c:43:70:06:c9: 9e:4d:74:a2:67:78:30:2e:37:89:c9:4a:b0:a5:c5:78:d5:14: 0e:d2:a2:92:c8:aa:ba:92:47:3e:19:da:a7:31:e3:f9:67:b8: db:48:b0:0f:23:a9:14:41:19:72:88:e0:17:2a:de:59:cd:32: 48:be:50:17:bc:c7:d5:d3:e2:1c:90:27:70:0e:10:4e:d4:ae: a4:b6:01:13:98:30:37:84:64:19:74:4b:ab:9b:09:bf:5a:d7: 30:c2:da:6f:bc:fb:2e:c0:d7:24:74:f8:cb:a4:19:fd:40:1f: e0:64:da:32:00:f4:90:37:70:66:59:e7:4c:fa:2d:87:08:c5: c8:1c:83:85:eb:aa:21:13:bb:25:7f:b2:b5:b4:ed:30:b2:2e: 39:0e:46:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUwODIzMDYyNTM5WhcNMjUwODMwMDYyNTM5WjAYMRYwFAYD VQQDEw02OGE5NWVlMy1iYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Z1xMXZjMJBEFXDdPYWp7YZFRw75yUXygM5PP8hmezwOQcvSikKI8lVDvgXF CwJLtahtPy6Ak5wTcvLmYomXo05XTJS7ZBddLSYjzWTfXi4LWLmUJW0EUnposqCa 8J+UuTPv2oNez5dgFkJ5DGX7LfIsEPyK47Qg429z4OH0wyBZrTW2F6OS35qkXDXg ufxNJQZSSdURn6Vv53HRMW4UdGq/nwlIRT1jKCQzXmHv5dY5gR8A1Mpl43E0quVm 210fo1nPTTs77QtJccM3UgKFLniZi+DafIugQuOaYSi3Oxmw5v6QwGZs+9uftgDd r1q2MkjLiwDap/ce9l47j4pD/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNGMVJa wOn3V8IIdHzzen/S3AmLMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe0Icx6TTtaNJ1T+bS4KQwOGo11pwjissnplycW1KSqlYTEa7XyKHy TJRbUmRBaNxiRD9SXjgzqUnAHzgXsqWn7GrjYG+sWUe+VbuvBUZiKtjLU2ToiLns oYouvxhpk6kvTXd5057njENwBsmeTXSiZ3gwLjeJyUqwpcV41RQO0qKSyKq6kkc+ GdqnMeP5Z7jbSLAPI6kUQRlyiOAXKt5ZzTJIvlAXvMfV0+IckCdwDhBO1K6ktgET mDA3hGQZdEurmwm/WtcwwtpvvPsuwNckdPjLpBn9QB/gZNoyAPSQN3BmWedM+i2H CMXIHIOF66ohE7slf7K1tO0wsi45DkZE -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:12 2025 by rpki-client