$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: 2YXi8IRAwd59rxofEW2FIyMJfs/Udl1FjOG47kZg8eg= Subject key identifier: 20:59:1A:94:12:E5:E2:6A:7D:38:31:CC:5B:73:63:2B:B4:18:FA:9A Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 019E Signing time: Sat 23 Aug 2025 03:31:59 +0000 Manifest this update: Sat 23 Aug 2025 03:31:59 +0000 Manifest next update: Sat 30 Aug 2025 03:31:59 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: YLMgGJTpBqO8gdmlPJbLDoWrli0LsbIO8oXayHKobpg=) 2: 939530627B6311F0BF7B4936C4F9AE02.roa (hash: 3WTSm0ARO6OxYTvyrfdEmxZEWxigI2p51l76SgzYhn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Aug 23 03:31:59 2025 GMT Not After : Aug 30 03:31:59 2025 GMT Subject: CN=68a9362f-c8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5b:79:3d:c3:22:a8:18:fe:bb:2f:32:bc:1a: fa:7f:3c:4a:c7:32:ff:b1:ac:a4:d0:29:0d:70:5c: 78:d4:67:9e:1a:1b:2a:0e:0d:e8:6e:d8:f2:f3:11: 6a:aa:4e:d8:79:7c:95:4a:94:88:ca:bd:34:ab:d9: d4:86:4f:31:33:f2:83:24:b8:1c:cd:ce:8b:19:08: 97:bf:38:f7:64:db:ce:81:e6:de:60:56:65:b8:08: a4:26:a5:55:0a:4f:13:4a:b0:9e:48:90:48:69:57: cb:f7:aa:2b:22:f3:1b:94:11:b8:10:4f:b4:97:cb: e2:d4:07:98:70:2f:78:8b:16:73:7b:d6:23:7b:61: bc:93:14:60:d7:37:c8:35:83:11:12:2b:e7:d4:f9: 60:cc:e0:82:89:98:19:e7:c6:6d:e9:79:de:d4:9b: dc:6b:0f:df:0e:3d:11:27:38:a1:7b:ae:c0:1e:6b: eb:6d:e5:a0:cd:83:e2:26:94:be:be:21:9f:a6:2c: c0:2d:ef:fa:e7:e6:08:78:8a:32:2e:dd:94:63:c5: 4a:db:5a:c5:93:90:aa:98:0f:7d:31:73:54:3f:e0: 82:67:c8:f4:7a:43:ec:ad:20:e5:d6:ab:07:40:bb: b4:34:72:62:7b:11:47:fb:e3:4b:fa:98:68:dd:ab: a6:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:59:1A:94:12:E5:E2:6A:7D:38:31:CC:5B:73:63:2B:B4:18:FA:9A X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b2:15:26:12:0b:7d:e3:97:4a:ef:39:26:ad:fd:ec:8c:2d: f9:9e:38:61:37:27:14:0d:86:5f:40:40:06:8c:7a:1e:25:bf: 1e:92:25:15:66:be:38:da:0d:13:35:71:6e:cc:3b:36:6c:dd: 16:25:72:cf:d7:fb:4b:ab:d4:aa:41:3b:9d:fc:0b:4e:7e:20: 7e:af:96:0d:a6:a9:66:2d:fb:03:b5:91:cb:b4:93:2f:9e:03: ad:79:07:e4:ea:cf:79:aa:97:f7:35:aa:df:d5:20:ec:b8:5a: dc:84:65:05:e6:c4:2c:ab:2a:39:ad:89:33:38:83:6a:de:f2: 03:57:6f:64:c0:8e:b4:90:c1:54:8f:75:aa:71:fa:2e:bf:c3: a7:fb:64:41:c4:65:bd:98:fa:38:93:b4:14:ff:db:5f:3f:87: da:07:03:07:08:75:33:cb:ca:76:1c:dd:3c:a3:4a:2a:c1:26: e3:e4:53:ef:e3:6a:51:8c:16:fd:06:c5:f4:8c:ad:79:18:f6: f2:f2:89:ad:bb:6d:53:a9:36:fe:9d:83:71:d9:33:39:51:e9: 4b:80:99:d6:5a:df:be:ba:03:67:55:bc:c3:81:12:95:8c:50: 1d:d2:e2:71:5a:5a:ac:0d:23:01:a8:fa:f6:57:b5:ef:64:58: b7:fb:54:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwODIzMDMzMTU5WhcNMjUwODMwMDMzMTU5WjAYMRYwFAYD VQQDEw02OGE5MzYyZi1jOGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlt5PcMiqBj+uy8yvBr6fzxKxzL/sayk0CkNcFx41GeeGhsqDg3obtjy8xFq qk7YeXyVSpSIyr00q9nUhk8xM/KDJLgczc6LGQiXvzj3ZNvOgebeYFZluAikJqVV Ck8TSrCeSJBIaVfL96orIvMblBG4EE+0l8vi1AeYcC94ixZze9Yje2G8kxRg1zfI NYMREivn1PlgzOCCiZgZ58Zt6Xne1Jvcaw/fDj0RJzihe67AHmvrbeWgzYPiJpS+ viGfpizALe/65+YIeIoyLt2UY8VK21rFk5CqmA99MXNUP+CCZ8j0ekPsrSDl1qsH QLu0NHJiexFH++NL+pho3aum4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBZGpQS 5eJqfTgxzFtzYyu0GPqaMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBashUmEgt945dK7zkmrf3sjC35njhhNycUDYZfQEAGjHoeJb8ekiUV Zr442g0TNXFuzDs2bN0WJXLP1/tLq9SqQTud/AtOfiB+r5YNpqlmLfsDtZHLtJMv ngOteQfk6s95qpf3Narf1SDsuFrchGUF5sQsqyo5rYkzOINq3vIDV29kwI60kMFU j3Wqcfouv8On+2RBxGW9mPo4k7QU/9tfP4faBwMHCHUzy8p2HN08o0oqwSbj5FPv 42pRjBb9BsX0jK15GPby8omtu21TqTb+nYNx2TM5UelLgJnWWt++ugNnVbzDgRKV jFAd0uJxWlqsDSMBqPr2V7XvZFi3+1S+ -----END CERTIFICATE-----Generated at Sun Aug 24 00:20:52 2025 by rpki-client