$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: LIhf9trKv6KdIWKwZ9cWfw4Grrzdwl+9V9PbcmRI2ak= Subject key identifier: 50:84:96:E1:7D:CD:A0:04:47:35:28:CB:59:CD:D7:C4:D8:60:FD:EB Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 035D Signing time: Sat 23 Aug 2025 01:14:22 +0000 Manifest this update: Sat 23 Aug 2025 01:14:21 +0000 Manifest next update: Sat 30 Aug 2025 01:14:21 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: BzbwpY2xP9t3dg71ZdyfIALwGZj8FEeE5Ceh9NMIVPw=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: WjUHxTEWTF20WZmvNCerm3WpHrjM2Bec4x3sz7dnvmU=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Aug 23 01:14:21 2025 GMT Not After : Aug 30 01:14:21 2025 GMT Subject: CN=68a915ed-fb85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:a4:d7:fa:0a:61:d7:c8:fd:05:86:c1:76: f0:ea:47:f3:3c:52:48:9b:e8:0a:f2:44:e5:f5:fa: 61:6d:1f:fa:45:51:6e:41:09:81:ec:d8:e2:97:95: 5d:c9:70:38:3b:44:35:8f:c3:4c:5e:bc:2b:59:f1: f3:5e:0f:79:dc:f0:75:6c:b4:4d:ac:78:b1:f2:81: 58:61:4b:a8:bd:70:e9:2d:18:43:6b:3e:75:22:17: 8f:93:73:15:67:f0:dd:66:3e:c3:bf:84:34:db:14: 07:7e:f7:05:5f:79:ac:db:1c:d1:c9:d7:a5:2a:65: 23:6b:f3:8c:16:91:64:34:1c:97:fb:e6:4e:ed:28: c4:04:43:f9:35:18:8a:51:6d:8a:7b:d4:70:1e:29: ec:bc:7f:bc:82:38:3a:1f:c5:98:4b:a8:f2:b5:61: 94:de:6b:f8:33:f7:e3:a6:7c:f1:31:ff:ec:28:0d: fa:86:e0:bc:7f:97:6e:01:2f:f5:65:8e:10:09:94: 92:1a:4c:aa:cd:c5:d4:db:d7:26:35:28:cf:bc:c1: 65:15:3b:af:1f:bf:ad:e0:fc:f1:6e:54:3e:77:96: d8:a3:a9:19:76:98:be:7f:37:c7:d4:58:32:38:9c: dd:1c:11:76:d1:9c:5d:7f:24:ed:8d:de:c6:17:03: 06:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:84:96:E1:7D:CD:A0:04:47:35:28:CB:59:CD:D7:C4:D8:60:FD:EB X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:81:46:a0:a6:17:cc:fe:8a:01:18:48:c7:1b:e3:1c:ec:40: ba:a7:65:3d:2a:a5:52:db:f2:b8:48:9b:2b:7b:68:92:15:ea: 6c:ff:a6:88:9e:05:d1:07:f6:a2:79:7a:9a:eb:3f:24:ce:40: 36:95:00:28:7a:34:81:f1:b5:ec:b4:9e:dc:22:58:dd:80:6b: 71:55:b7:61:79:6d:5a:73:81:ad:4f:63:e2:79:0c:28:a2:74: 3d:b9:1b:09:b2:1c:d1:f5:84:9b:12:4b:7c:da:2a:e7:2e:7c: 74:0e:d8:5a:c8:fd:40:ba:2a:9a:7e:ab:03:e3:3c:b9:f8:7e: a9:70:4b:1f:91:c6:66:9a:3e:cb:ca:80:3d:85:f1:e2:12:5b: e4:46:8e:74:9f:f2:9f:fb:20:a9:15:3c:50:12:e7:c1:ea:ff: 1f:84:c2:a2:34:7d:6d:79:a1:f9:29:c3:6d:38:1b:ce:36:39: 81:c3:07:1e:7a:d9:82:14:b9:d2:1c:ea:1d:a3:ea:42:e8:52: 5b:63:37:37:38:48:b1:1c:16:91:02:08:0c:ec:97:2d:e4:55: 4a:66:a1:ab:a7:43:62:dd:e7:c8:e6:8c:87:48:42:22:fd:85: 5e:ff:90:11:a8:79:d0:6b:9c:c9:2d:49:1b:35:6c:ed:e8:7e: 99:12:e4:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUwODIzMDExNDIxWhcNMjUwODMwMDExNDIxWjAYMRYwFAYD VQQDEw02OGE5MTVlZC1mYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFyk1/oKYdfI/QWGwXbw6kfzPFJIm+gK8kTl9fphbR/6RVFuQQmB7Njil5Vd yXA4O0Q1j8NMXrwrWfHzXg953PB1bLRNrHix8oFYYUuovXDpLRhDaz51IhePk3MV Z/DdZj7Dv4Q02xQHfvcFX3ms2xzRydelKmUja/OMFpFkNByX++ZO7SjEBEP5NRiK UW2Ke9RwHinsvH+8gjg6H8WYS6jytWGU3mv4M/fjpnzxMf/sKA36huC8f5duAS/1 ZY4QCZSSGkyqzcXU29cmNSjPvMFlFTuvH7+t4PzxblQ+d5bYo6kZdpi+fzfH1Fgy OJzdHBF20ZxdfyTtjd7GFwMGKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCEluF9 zaAERzUoy1nN18TYYP3rMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANgUagphfM/ooBGEjHG+Mc7EC6p2U9KqVS2/K4SJsre2iSFeps/6aI ngXRB/aieXqa6z8kzkA2lQAoejSB8bXstJ7cIljdgGtxVbdheW1ac4GtT2PieQwo onQ9uRsJshzR9YSbEkt82irnLnx0DthayP1AuiqafqsD4zy5+H6pcEsfkcZmmj7L yoA9hfHiElvkRo50n/Kf+yCpFTxQEufB6v8fhMKiNH1teaH5KcNtOBvONjmBwwce etmCFLnSHOodo+pC6FJbYzc3OEixHBaRAggM7Jct5FVKZqGrp0Ni3efI5oyHSEIi /YVe/5ARqHnQa5zJLUkbNWzt6H6ZEuQO -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:22 2025 by rpki-client