$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: HTENmQXCqLKh+46VjXEAsFjVnyVE0ZvwzdqXf+UmVa4= Subject key identifier: D0:DD:95:DA:46:2E:A1:D7:A5:F0:59:F1:ED:12:64:0F:23:00:55:97 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2DEA Signing time: Fri 22 Aug 2025 15:32:26 +0000 Manifest this update: Fri 22 Aug 2025 15:32:26 +0000 Manifest next update: Fri 29 Aug 2025 15:32:26 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: KtVyA8wPgQi9JEqFpMVd0LbbIvJ1krr7+dkK/NGJ48s=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: Ge8zFlpjpqEtuKQN0h56H1Urr1O0D0HMkBD9jJfCPmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11778 (0x2e02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Aug 22 15:32:26 2025 GMT Not After : Aug 29 15:32:26 2025 GMT Subject: CN=68a88d8a-f23c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:61:70:41:22:c8:10:b7:f4:ca:87:9d:08:dc: c4:4f:f2:7a:5e:75:73:a7:cd:7a:ae:24:fd:96:1d: 3f:3f:cf:4e:b3:fc:62:60:f7:8f:1f:cb:8e:ae:26: 98:3c:fe:9c:27:3a:9b:8a:91:01:c7:e1:c3:f4:69: 95:58:8a:ac:28:fa:b8:59:a6:37:ee:6a:9f:15:74: 89:50:51:d4:f2:92:95:e3:d2:c5:4e:11:16:2d:ae: 74:cf:61:0b:a7:ff:c7:22:80:bc:e4:65:af:0a:74: 8d:1e:ba:38:1e:cc:07:7f:cb:a9:ad:19:c4:60:1b: 65:b8:ed:37:d1:98:c3:23:b3:de:35:92:d2:ad:8d: a3:49:db:73:dd:32:c5:90:2d:81:9f:a5:78:1e:1e: 5f:71:9b:26:ec:a0:a8:5b:6c:27:36:b3:bc:27:3f: 88:4f:d1:81:63:11:1e:f8:67:3e:2c:ec:c8:4f:83: 20:6c:6f:16:a9:2d:7d:90:e6:ac:16:3f:e8:af:46: 48:cb:35:21:72:4d:26:5e:14:d7:94:97:89:6e:2f: 96:02:6c:30:d3:81:ca:54:20:5f:c8:d7:83:73:3a: b0:01:e5:55:a1:3a:91:90:e1:f5:73:bc:a0:b7:bc: 64:bd:8f:d7:46:51:6f:16:7d:2c:48:44:0b:2a:90: 09:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:DD:95:DA:46:2E:A1:D7:A5:F0:59:F1:ED:12:64:0F:23:00:55:97 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:31:db:cd:f7:9d:1a:88:77:5e:41:92:1d:bb:04:93:8e:cf: 67:22:6f:43:71:5e:59:fc:82:85:65:e2:ac:bb:ee:f0:a8:bd: b5:6a:68:2f:0c:80:67:94:2e:31:24:df:9f:8e:dc:03:41:67: 74:83:fd:72:89:16:57:0f:d4:69:62:40:03:15:c3:0d:b8:e3: 59:3d:29:0b:49:f8:5b:aa:4d:aa:4f:8a:18:c3:4a:d9:ba:27: 6b:80:b1:3f:e6:f2:3f:a1:cf:08:77:8b:9a:2e:74:76:de:31: 38:c3:17:83:d0:17:ba:70:b1:65:b7:15:86:e1:19:a2:48:c6: 14:1f:44:29:db:97:4b:0f:a9:04:e6:c3:26:ae:43:5d:5d:56: 12:3b:54:87:2b:cf:12:86:cb:bc:9f:ed:77:fc:58:eb:f2:2b: 2b:7f:b4:3e:87:3c:f2:c2:2e:f8:30:96:cc:88:2b:0a:a1:34: 87:ac:91:d4:fc:f4:03:e0:a4:e2:70:bd:75:f8:48:4c:53:74: 8b:6c:3f:6c:a8:00:b0:b3:17:b9:61:15:61:5b:ab:a4:59:81: 52:c6:03:15:35:23:90:3e:2d:dd:d6:6b:f9:51:cb:66:0c:b2: a5:e2:7b:c3:22:89:88:55:ec:6b:8b:38:e9:7e:73:15:57:4e: 00:9e:4d:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUwODIyMTUzMjI2WhcNMjUwODI5MTUzMjI2WjAYMRYwFAYD VQQDEw02OGE4OGQ4YS1mMjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmFwQSLIELf0yoedCNzET/J6XnVzp816riT9lh0/P89Os/xiYPePH8uOriaY PP6cJzqbipEBx+HD9GmVWIqsKPq4WaY37mqfFXSJUFHU8pKV49LFThEWLa50z2EL p//HIoC85GWvCnSNHro4HswHf8uprRnEYBtluO030ZjDI7PeNZLSrY2jSdtz3TLF kC2Bn6V4Hh5fcZsm7KCoW2wnNrO8Jz+IT9GBYxEe+Gc+LOzIT4MgbG8WqS19kOas Fj/or0ZIyzUhck0mXhTXlJeJbi+WAmww04HKVCBfyNeDczqwAeVVoTqRkOH1c7yg t7xkvY/XRlFvFn0sSEQLKpAJTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDdldpG LqHXpfBZ8e0SZA8jAFWXMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFMdvN950aiHdeQZIduwSTjs9nIm9DcV5Z/IKFZeKsu+7wqL21amgv DIBnlC4xJN+fjtwDQWd0g/1yiRZXD9RpYkADFcMNuONZPSkLSfhbqk2qT4oYw0rZ uidrgLE/5vI/oc8Id4uaLnR23jE4wxeD0Be6cLFltxWG4RmiSMYUH0Qp25dLD6kE 5sMmrkNdXVYSO1SHK88Shsu8n+13/Fjr8isrf7Q+hzzywi74MJbMiCsKoTSHrJHU /PQD4KTicL11+EhMU3SLbD9sqACwsxe5YRVhW6ukWYFSxgMVNSOQPi3d1mv5Uctm DLKl4nvDIomIVexrizjpfnMVV04Ank0O -----END CERTIFICATE-----Generated at Sat Aug 23 20:29:58 2025 by rpki-client