$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: W/HjNHZ50e8xP32Y9BONeIiqujFYp43HYrrCoD/nLng= Subject key identifier: 1C:D4:25:EC:51:E2:28:91:E2:9C:FA:46:F3:6F:16:A4:22:1E:6B:B9 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 0502 Signing time: Fri 22 Aug 2025 23:51:08 +0000 Manifest this update: Fri 22 Aug 2025 23:51:08 +0000 Manifest next update: Fri 29 Aug 2025 23:51:08 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: HD01fCS9rICwM82UQYbo8BAnBwMa/wCrcmBndWWJEvk=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: b/ItM9VGVv0zUWnweJ6+Pz3YcBgADXF1u82bmhYCBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Aug 22 23:51:08 2025 GMT Not After : Aug 29 23:51:08 2025 GMT Subject: CN=68a9026c-e6ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:45:1d:19:6a:22:c8:c1:30:08:d1:af:6b:e0: 1a:01:ba:65:6d:d5:66:b8:a0:b8:69:c7:02:2a:23: 89:de:8f:ef:0d:8a:4a:33:a6:a9:31:d4:bd:f9:e3: b3:e1:55:7f:77:67:03:5f:58:57:6f:a2:cf:cd:05: e7:bf:5e:47:35:7b:7e:42:c9:3a:b4:b3:1f:42:5a: 57:b9:2e:b8:20:71:2e:be:a8:eb:01:6b:b7:3e:d9: 95:bf:97:68:29:c7:09:a1:20:9f:59:ce:8a:ad:25: af:52:0e:b9:db:5b:e1:cd:bc:6a:9b:18:ea:73:b8: c9:b5:6d:1d:b7:99:28:da:98:2a:64:25:dc:05:21: a6:32:c1:6b:3d:b8:7a:7f:d9:ab:50:d6:36:a5:1c: 04:46:05:74:0f:00:dd:46:be:e7:49:33:c1:81:92: 29:57:9d:20:9b:03:4d:f3:2a:c5:2f:3f:94:b3:32: 04:08:de:5b:1e:62:fc:db:d9:06:bd:2a:8e:89:a3: 21:9e:d1:f3:88:fd:57:5b:98:03:9e:1f:9f:fc:39: 1a:d4:f8:c1:b2:ec:d9:a0:47:26:ed:ac:5e:5f:d3: 37:b1:c8:98:ac:87:b9:7e:2e:99:c1:04:60:50:06: 07:d0:82:76:73:03:64:29:64:e4:b2:71:1a:a8:53: 44:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D4:25:EC:51:E2:28:91:E2:9C:FA:46:F3:6F:16:A4:22:1E:6B:B9 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:0b:32:7c:5c:05:f0:3b:fd:a3:35:88:5c:58:27:c9:90:9f: c9:6a:d2:7b:0b:ad:5f:69:22:03:ed:de:63:5a:37:7d:b7:fa: 8d:6b:dd:f1:0b:07:4a:11:8d:00:c2:17:d8:ca:3d:af:3b:ff: 6e:51:63:a3:1a:d3:43:2f:c3:df:50:bd:31:c3:5f:25:6b:25: d1:19:21:a9:03:9e:b9:4a:ec:d9:46:a2:d8:20:97:9c:83:2f: 85:e4:ce:ca:13:6e:3f:14:2e:84:a8:e1:61:6a:37:fb:5e:ac: bf:ba:ce:d3:5a:91:b6:74:54:82:70:42:c1:aa:81:cf:16:85: e0:3a:96:2d:f0:56:fd:55:da:91:34:20:6a:61:cd:c4:17:b1: 9c:48:b2:8e:a6:dd:0b:ab:b6:d8:fc:61:eb:c1:18:2e:bd:e8: 95:4f:58:b2:72:6d:d7:a3:b5:70:7d:56:07:0a:68:e2:71:5f: be:14:cb:22:1c:6e:8c:b7:a3:7f:ea:37:3d:c9:c0:d9:bb:b3: 07:40:15:34:44:04:88:db:d1:72:e0:12:9f:7e:95:4f:e8:9b: 18:c8:1d:29:b3:56:4c:de:46:1d:2a:2b:3d:6e:ac:82:30:7c: ca:a4:cb:7d:19:ac:44:7b:8a:9c:e6:50:39:17:33:4f:03:66: e2:71:31:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwODIyMjM1MTA4WhcNMjUwODI5MjM1MTA4WjAYMRYwFAYD VQQDEw02OGE5MDI2Yy1lNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEUdGWoiyMEwCNGva+AaAbplbdVmuKC4accCKiOJ3o/vDYpKM6apMdS9+eOz 4VV/d2cDX1hXb6LPzQXnv15HNXt+Qsk6tLMfQlpXuS64IHEuvqjrAWu3PtmVv5do KccJoSCfWc6KrSWvUg6521vhzbxqmxjqc7jJtW0dt5ko2pgqZCXcBSGmMsFrPbh6 f9mrUNY2pRwERgV0DwDdRr7nSTPBgZIpV50gmwNN8yrFLz+UszIECN5bHmL829kG vSqOiaMhntHziP1XW5gDnh+f/Dka1PjBsuzZoEcm7axeX9M3sciYrIe5fi6ZwQRg UAYH0IJ2cwNkKWTksnEaqFNEZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzUJexR 4iiR4pz6RvNvFqQiHmu5MB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeCzJ8XAXwO/2jNYhcWCfJkJ/JatJ7C61faSID7d5jWjd9t/qNa93x CwdKEY0AwhfYyj2vO/9uUWOjGtNDL8PfUL0xw18layXRGSGpA565SuzZRqLYIJec gy+F5M7KE24/FC6EqOFhajf7Xqy/us7TWpG2dFSCcELBqoHPFoXgOpYt8Fb9VdqR NCBqYc3EF7GcSLKOpt0Lq7bY/GHrwRguveiVT1iycm3Xo7VwfVYHCmjicV++FMsi HG6Mt6N/6jc9ycDZu7MHQBU0RASI29Fy4BKffpVP6JsYyB0ps1ZM3kYdKis9bqyC MHzKpMt9GaxEe4qc5lA5FzNPA2bicTHL -----END CERTIFICATE-----Generated at Sat Aug 23 17:05:25 2025 by rpki-client