$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft File: 148wkE5135TOt1lmr4OOdj6ol2I.mft (raw, json) Hash identifier: jtxorJuTshpm1u7niwy7qku53tQxa/XtJer9Yqh5EzE= Subject key identifier: 03:FA:1F:07:BA:B9:B3:3B:93:D0:61:9D:38:2C:1C:69:21:10:1F:0B Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft Manifest number: ED Signing time: Sat 23 Aug 2025 05:28:28 +0000 Manifest this update: Sat 23 Aug 2025 05:28:28 +0000 Manifest next update: Sat 30 Aug 2025 05:28:28 +0000 Files and hashes: 1: 148wkE5135TOt1lmr4OOdj6ol2I.crl (hash: 8UQC3RCPmyj1Sp1rbRPv+x89l4AdQEZPSlXJHLO1gtg=) 2: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (hash: 3q4SG/qlGVDYq4EV5cqZmr+jLzfEittQVkz7pS+z/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403, serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Validity Not Before: Aug 23 05:28:28 2025 GMT Not After : Aug 30 05:28:28 2025 GMT Subject: CN=68a9517c-2c3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ed:04:1e:de:56:ab:33:e7:72:7d:cd:38:be: 5d:a6:7e:b8:92:d2:b1:1b:c8:8d:f5:b9:63:b1:6d: 6d:50:4b:4e:7c:d5:a3:b9:82:8e:9f:fe:44:06:a5: 40:be:f5:83:f2:fc:fa:e7:fc:16:3e:9c:59:6b:68: 84:c3:6e:6c:60:6b:b7:82:2e:6d:36:a6:fd:9f:d3: 82:30:c9:d8:37:55:11:85:18:2b:85:32:e3:09:ba: b9:15:c8:28:3e:3f:0c:8b:0b:84:60:2f:9b:5d:f6: 7e:c4:ff:78:6e:63:28:ba:9c:a0:6b:ca:79:45:47: e9:bf:22:f5:44:f5:40:20:92:2f:c0:a7:af:0f:83: 6e:85:e5:9c:79:18:f7:19:d2:78:9b:50:97:ea:a2: 03:51:d3:06:0d:91:46:b3:a2:4f:7d:27:4f:b3:d7: 43:bf:76:2b:11:2f:7e:35:9d:b2:c7:d5:16:fb:7e: a3:20:9e:58:dd:6d:cb:c5:01:4f:ce:ec:de:b3:42: eb:ab:88:4f:1a:e8:42:7e:7f:b1:64:d1:8f:af:63: 9e:cf:66:5d:72:b0:10:82:33:fe:3d:5f:c0:ba:e7: 6b:ad:1a:62:50:e5:c9:3c:66:d9:6e:2a:7d:64:24: ef:32:da:df:86:76:ad:29:c1:d6:cb:9c:4b:bc:d2: af:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:FA:1F:07:BA:B9:B3:3B:93:D0:61:9D:38:2C:1C:69:21:10:1F:0B X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:1e:5c:f6:cd:9f:8b:65:21:72:22:eb:51:ba:0b:af:d5:80: 40:4f:13:b7:bf:50:5e:a2:67:36:73:32:a9:8c:c1:07:e2:e7: bf:81:19:68:b7:5d:e0:1b:7c:b8:b0:a0:72:8a:af:04:a0:9c: d3:53:0a:7f:7f:d9:a3:b8:a0:f5:4e:bc:85:61:0f:3e:dc:c3: 2c:b7:8d:f2:b3:eb:80:11:28:a3:45:fb:34:57:c3:86:6d:0a: 7d:01:88:e2:00:e6:3d:c9:ba:e9:da:6c:42:73:a8:8b:0b:6b: b0:d2:47:c9:0f:5a:20:3e:86:21:7c:40:6a:0b:a0:e1:15:3d: 21:e9:32:39:86:20:51:f0:91:4b:a4:d4:ec:41:a5:64:7e:6f: 7d:25:31:b0:f4:06:23:f5:a9:23:36:b3:cf:fd:c4:96:be:50: a7:05:9f:f3:2c:c0:e8:ec:fe:6a:5a:95:bf:ee:fd:f2:36:5d: bd:18:11:2b:3c:b9:c4:35:9b:07:98:12:01:fe:b5:1a:6e:85: d9:28:e0:ed:55:ed:4f:7d:4e:4e:99:ce:b4:9f:ea:25:c9:6e: b7:14:77:5b:71:ce:67:9f:05:39:50:20:0c:93:f4:78:ee:87: 43:bd:8e:09:e6:e5:af:df:94:1e:51:00:ff:47:a9:64:db:9a: 5b:5b:cf:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0MDMxMTAvBgNVBAUTKEQ3OEYzMDkwNEU3NURGOTRDRUI3NTk2NkFGODM4RTc2 M0VBODk3NjIwHhcNMjUwODIzMDUyODI4WhcNMjUwODMwMDUyODI4WjAYMRYwFAYD VQQDEw02OGE5NTE3Yy0yYzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u0EHt5WqzPncn3NOL5dpn64ktKxG8iN9bljsW1tUEtOfNWjuYKOn/5EBqVA vvWD8vz65/wWPpxZa2iEw25sYGu3gi5tNqb9n9OCMMnYN1URhRgrhTLjCbq5Fcgo Pj8MiwuEYC+bXfZ+xP94bmMoupyga8p5RUfpvyL1RPVAIJIvwKevD4NuheWceRj3 GdJ4m1CX6qIDUdMGDZFGs6JPfSdPs9dDv3YrES9+NZ2yx9UW+36jIJ5Y3W3LxQFP zuzes0Lrq4hPGuhCfn+xZNGPr2Oez2ZdcrAQgjP+PV/AuudrrRpiUOXJPGbZbip9 ZCTvMtrfhnatKcHWy5xLvNKvsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAP6Hwe6 ubM7k9BhnTgsHGkhEB8LMB8GA1UdIwQYMBaAFNePMJBOdd+UzrdZZq+DjnY+qJdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTQwMy84MDIwNzJFODE4 QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1VE90MWxtcjRPT2RqNm9s MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1 VE90MWxtcjRPT2RqNm9sMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYHlz2zZ+LZSFyIutRuguv1YBATxO3v1Beomc2czKpjMEH4ue/gRlo t13gG3y4sKByiq8EoJzTUwp/f9mjuKD1TryFYQ8+3MMst43ys+uAESijRfs0V8OG bQp9AYjiAOY9ybrp2mxCc6iLC2uw0kfJD1ogPoYhfEBqC6DhFT0h6TI5hiBR8JFL pNTsQaVkfm99JTGw9AYj9akjNrPP/cSWvlCnBZ/zLMDo7P5qWpW/7v3yNl29GBEr PLnENZsHmBIB/rUaboXZKODtVe1PfU5Omc60n+olyW63FHdbcc5nnwU5UCAMk/R4 7odDvY4J5uWv35QeUQD/R6lk25pbW8/+ -----END CERTIFICATE-----Generated at Sat Aug 23 17:23:59 2025 by rpki-client