$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: ZPCWX1Lx5ZhHaQWSSPesaaYExSb8TaHxW5/DGPzupps= Subject key identifier: 98:EF:03:3A:C3:95:4C:C3:B6:CA:D2:AE:2D:70:F1:75:3A:A3:A7:02 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 092D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 0913 Signing time: Fri 22 Aug 2025 20:27:39 +0000 Manifest this update: Fri 22 Aug 2025 20:27:38 +0000 Manifest next update: Fri 29 Aug 2025 20:27:38 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: Ds1JbacWQNmCmoLLu007pBuPbgrIzonBro73B6iaxm8=) 2: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: Del+9YrkACA6yrhYJeSPVVuh01l/16gJ82iy69S9BRo=) 3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: PnqDvM4vjQdsVy80UhznbWoKhp/dlqh33E+GG+RU+dk=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: qKXv165pzdK/WBxXfxqKy/V+953i+G1rFbe37yvanHk=) 5: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: Ci305f1V47fRIRqmqjLy+EIi8DLnLoGCGpVVZ48v10E=) 6: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: lvX9qWs0U9FJpaiKhdFBFudNcs3mWD37dbOmEs33Njk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Aug 22 20:27:38 2025 GMT Not After : Aug 29 20:27:38 2025 GMT Subject: CN=68a8d2ba-c82d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ba:21:59:84:df:08:66:b4:2f:d4:06:b5:24: c0:74:d9:f7:86:c3:df:7c:87:31:01:33:2a:76:18: 0b:37:64:02:ba:96:25:54:b9:a2:c7:20:6f:c3:96: 7f:cd:ff:9b:61:1d:af:68:b2:2a:d8:ab:24:92:e3: 26:6c:41:5e:33:da:54:87:4a:9c:fd:3b:d4:ba:30: 69:77:40:9e:e2:d7:3c:c6:25:f3:5e:20:7c:76:88: 28:86:08:d3:48:bf:7d:41:17:43:61:8e:32:58:f7: fb:83:4b:2f:1b:4a:bf:39:6b:18:f9:77:ac:71:af: 18:a4:52:87:a2:17:64:a4:cb:53:08:c9:9d:e4:83: 33:c6:2b:37:a6:36:1f:af:ed:27:57:64:9d:59:22: 31:35:e6:91:a1:17:54:a6:c7:07:04:95:bf:93:d9: 16:54:27:43:3b:37:18:0c:b1:17:54:fc:dc:b5:ff: ed:65:2d:a2:51:30:af:f5:fd:24:19:ac:18:a7:45: a0:3a:65:ff:d2:33:a7:ee:88:03:e3:43:8b:c6:97: bc:ca:23:2e:dd:79:a0:b4:89:ef:46:03:7f:48:41: cd:da:9d:57:5b:0f:b8:be:70:79:a9:42:00:6e:e4: 16:54:d4:f9:e8:03:33:5c:b7:78:f5:42:1e:50:38: 82:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EF:03:3A:C3:95:4C:C3:B6:CA:D2:AE:2D:70:F1:75:3A:A3:A7:02 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a6:b2:cf:64:ef:95:f9:d1:37:af:b2:02:ad:db:13:06:a2: 38:0f:d4:0b:92:af:ee:ea:d2:4a:85:35:39:cb:27:44:3f:43: ce:2e:4e:a1:6a:fb:ee:92:f8:ea:7e:6e:3b:93:ec:7c:73:2e: 12:c3:39:bb:cf:0c:90:b7:0b:53:50:38:0a:f5:df:6e:2d:d9: 82:1c:77:d1:de:b2:6b:cc:c6:28:4b:d6:84:ba:4d:f9:f6:c9: 44:60:bd:6a:a4:20:44:ef:97:48:fe:10:23:22:64:54:e5:2f: 7d:06:87:ec:74:c3:95:3d:22:5f:8a:f5:4a:1b:f6:53:ef:b9: 29:d7:b4:24:63:d6:99:4b:15:03:cf:a2:bc:41:a2:3a:03:02: d5:de:ae:7c:93:17:e7:99:9c:b4:b1:8e:10:3f:b5:70:b8:d8: e0:2a:e2:88:b6:5a:a6:13:69:17:50:84:29:11:9d:96:8f:b4: 6d:88:8e:9c:60:e0:3b:8e:9f:05:f0:d6:f3:b5:59:1e:93:36: b1:ab:51:de:3a:bb:2f:94:d4:ab:19:09:2b:75:be:75:4a:d6: cf:0e:3c:6f:18:7b:78:d5:34:e7:6e:19:e0:00:e5:41:fe:b7: bc:1f:0f:de:94:3d:64:68:eb:d4:a7:7e:87:c5:7d:d5:a3:09: 42:5e:5e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwODIyMjAyNzM4WhcNMjUwODI5MjAyNzM4WjAYMRYwFAYD VQQDEw02OGE4ZDJiYS1jODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrohWYTfCGa0L9QGtSTAdNn3hsPffIcxATMqdhgLN2QCupYlVLmixyBvw5Z/ zf+bYR2vaLIq2KskkuMmbEFeM9pUh0qc/TvUujBpd0Ce4tc8xiXzXiB8dogohgjT SL99QRdDYY4yWPf7g0svG0q/OWsY+Xesca8YpFKHohdkpMtTCMmd5IMzxis3pjYf r+0nV2SdWSIxNeaRoRdUpscHBJW/k9kWVCdDOzcYDLEXVPzctf/tZS2iUTCv9f0k GawYp0WgOmX/0jOn7ogD40OLxpe8yiMu3XmgtInvRgN/SEHN2p1XWw+4vnB5qUIA buQWVNT56AMzXLd49UIeUDiCywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjvAzrD lUzDtsrSri1w8XU6o6cCMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASprLPZO+V+dE3r7ICrdsTBqI4D9QLkq/u6tJKhTU5yydEP0POLk6h avvukvjqfm47k+x8cy4Swzm7zwyQtwtTUDgK9d9uLdmCHHfR3rJrzMYoS9aEuk35 9slEYL1qpCBE75dI/hAjImRU5S99BofsdMOVPSJfivVKG/ZT77kp17QkY9aZSxUD z6K8QaI6AwLV3q58kxfnmZy0sY4QP7VwuNjgKuKItlqmE2kXUIQpEZ2Wj7RtiI6c YOA7jp8F8NbztVkekzaxq1HeOrsvlNSrGQkrdb51StbPDjxvGHt41TTnbhngAOVB /re8Hw/elD1kaOvUp36HxX3VowlCXl6s -----END CERTIFICATE-----Generated at Sat Aug 23 10:39:08 2025 by rpki-client