$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: paNfmvMcN/zBXCdtYRWfIH7JpM5S1m8AbIflmCUl5cs= Subject key identifier: 47:BC:06:E9:89:17:00:28:8C:2C:87:34:CE:84:56:27:8B:90:97:47 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 0479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0475 Signing time: Sat 23 Aug 2025 00:18:55 +0000 Manifest this update: Sat 23 Aug 2025 00:18:54 +0000 Manifest next update: Sat 30 Aug 2025 00:18:54 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: 9opU0c36j/RtUc/HA3lHC9NWaq0G1in3jDCJbG9rl58=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Aug 23 00:18:54 2025 GMT Not After : Aug 30 00:18:54 2025 GMT Subject: CN=68a908ee-a1fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:28:43:86:63:31:86:ee:bc:ff:a6:8a:19:7e: 70:2c:fe:ee:ba:9d:98:e7:d1:03:98:12:75:ad:07: 8e:3d:8e:89:71:ab:6e:2f:7a:25:dc:b1:20:65:6e: 81:36:cf:e6:00:87:59:e1:7f:fb:a3:33:d5:00:d6: c8:cd:67:59:7b:93:25:6e:a9:ac:91:cf:59:ac:8e: 4e:63:84:de:32:85:b1:5b:65:42:e2:43:33:13:ab: 93:16:a9:46:39:16:39:34:75:ff:bd:e1:3e:7b:f0: 02:60:bd:58:9a:3d:8d:71:8f:2c:b7:ec:3a:a6:d1: 5e:2f:7b:b0:de:fc:08:4f:7c:4d:e6:79:b6:c3:85: 39:6c:a3:47:e9:5a:1d:6a:e4:2c:43:5a:13:7f:8b: 1b:e6:4a:e6:92:f4:2d:02:d7:58:5f:e7:ed:de:03: 00:d8:47:06:67:7f:0e:3f:84:86:21:90:c6:e8:77: 4b:f1:89:9b:53:1a:d8:32:7f:90:5d:f4:49:ba:de: 96:9b:f7:67:93:48:20:31:48:52:62:6d:f0:5f:f4: e2:b8:d8:a5:ad:9c:52:10:e6:71:4f:30:11:05:2a: 9d:92:ee:f5:ab:fe:a3:4e:60:f5:d4:22:7c:92:16: c3:f8:ca:89:b3:a8:bf:5c:4b:97:3c:6d:e6:3d:1b: 21:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:BC:06:E9:89:17:00:28:8C:2C:87:34:CE:84:56:27:8B:90:97:47 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:fe:4b:77:cc:5e:3a:b1:3f:c5:66:57:4e:bb:a6:be:8d:21: ad:ec:d5:4d:95:7d:f6:32:32:41:4e:20:9e:09:ad:c7:41:52: 8b:f8:3d:31:31:bd:e6:c2:43:a7:2d:96:3c:b0:0a:68:38:ae: e3:ea:1a:0a:67:40:35:3d:c2:2e:c0:68:4e:5d:bf:82:24:43: 71:87:f9:53:83:ef:7d:9d:a3:80:36:04:cd:f5:99:bc:76:c3: 5e:32:cc:a8:bc:af:23:9f:a6:3d:d2:55:94:d6:c4:25:d0:7f: 1b:b1:03:c8:6e:3b:a3:cc:ed:97:31:5b:c2:31:5c:b3:f2:93: 17:a1:bc:4b:dd:bf:fb:b8:11:04:ea:7b:3c:bf:82:a4:99:e1: 29:49:68:9f:f1:d4:af:67:2d:ea:68:b6:0d:b1:cf:7d:35:5d: 1b:06:a5:36:2d:49:e5:0b:b0:98:0d:c4:1c:ba:2c:68:e1:17: 6d:e4:65:f6:64:6d:23:f7:32:ba:10:22:a6:f3:4e:75:fb:c9: de:bf:e4:51:c7:e0:10:d7:15:ec:75:e6:d5:6e:68:23:43:38: 8b:87:f3:35:36:eb:bb:6f:27:0a:83:a5:63:c8:ec:ad:15:73: 98:a4:fb:a6:ad:40:33:3c:1d:18:69:3f:dd:aa:40:9d:6c:59: 03:4b:83:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwODIzMDAxODU0WhcNMjUwODMwMDAxODU0WjAYMRYwFAYD VQQDEw02OGE5MDhlZS1hMWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqChDhmMxhu68/6aKGX5wLP7uup2Y59EDmBJ1rQeOPY6JcatuL3ol3LEgZW6B Ns/mAIdZ4X/7ozPVANbIzWdZe5Mlbqmskc9ZrI5OY4TeMoWxW2VC4kMzE6uTFqlG ORY5NHX/veE+e/ACYL1Ymj2NcY8st+w6ptFeL3uw3vwIT3xN5nm2w4U5bKNH6Vod auQsQ1oTf4sb5krmkvQtAtdYX+ft3gMA2EcGZ38OP4SGIZDG6HdL8YmbUxrYMn+Q XfRJut6Wm/dnk0ggMUhSYm3wX/TiuNilrZxSEOZxTzARBSqdku71q/6jTmD11CJ8 khbD+MqJs6i/XEuXPG3mPRshQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEe8BumJ FwAojCyHNM6EVieLkJdHMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw/kt3zF46sT/FZldOu6a+jSGt7NVNlX32MjJBTiCeCa3HQVKL+D0x Mb3mwkOnLZY8sApoOK7j6hoKZ0A1PcIuwGhOXb+CJENxh/lTg+99naOANgTN9Zm8 dsNeMsyovK8jn6Y90lWU1sQl0H8bsQPIbjujzO2XMVvCMVyz8pMXobxL3b/7uBEE 6ns8v4KkmeEpSWif8dSvZy3qaLYNsc99NV0bBqU2LUnlC7CYDcQcuixo4Rdt5GX2 ZG0j9zK6ECKm8051+8nev+RRx+AQ1xXsdebVbmgjQziLh/M1Nuu7bycKg6VjyOyt FXOYpPumrUAzPB0YaT/dqkCdbFkDS4OW -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:17 2025 by rpki-client