$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft File: A72QmhoVpFA9-tWUw8bem5RgTmY.mft (raw, json) Hash identifier: mdbWA1wyV+RYBYpxfPGjsbjiy4JuVLnLOCGymcWHbDM= Subject key identifier: 28:A9:9D:BC:CD:22:AC:71:1F:74:65:2E:7D:E1:3E:DE:94:74:02:8A Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 0362 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft Manifest number: 035B Signing time: Sat 23 Aug 2025 01:13:07 +0000 Manifest this update: Sat 23 Aug 2025 01:13:07 +0000 Manifest next update: Sat 30 Aug 2025 01:13:07 +0000 Files and hashes: 1: A72QmhoVpFA9-tWUw8bem5RgTmY.crl (hash: pWaGxk0z42VhIE/tyhR9rxu5eyjzBCqrBuR6z1RYlcM=) 2: E15CC33CD55011EFB17CB022C4F9AE02.roa (hash: YkgVY3NySYm4wFHmOVUk89wTvIIkdJt3TNVnKoMCNEA=) 3: 5409C188C6CB11ECB185E43EC4F9AE02.roa (hash: qkNJcqJasGm5DqRK6RDLwIc76BxJl9ChsFknMyrjOEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 866 (0x362) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B, serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Aug 23 01:13:07 2025 GMT Not After : Aug 30 01:13:07 2025 GMT Subject: CN=68a915a3-7607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:62:af:be:e1:58:c3:37:e2:da:15:52:e3:5c: 3c:c7:de:6d:f9:f8:46:25:66:1a:9f:c7:5e:f4:0f: 29:23:c1:15:45:03:b0:01:3e:38:1b:d2:b7:8a:5e: 3e:91:06:9d:ec:a9:1d:61:ee:c1:53:01:8b:61:7f: 44:8e:61:87:f4:b3:92:77:63:97:c5:94:0e:13:fd: 4e:01:ba:c1:e7:7d:15:ed:c7:5e:70:3b:88:51:29: ce:62:12:69:29:56:6a:87:2f:6b:48:f2:30:eb:15: 11:bb:66:f4:df:eb:27:62:00:c0:d5:c0:4f:b8:d8: ca:bd:2c:b6:a9:e1:77:e8:83:d2:d4:b6:5c:4a:2e: 9d:8a:97:cd:c7:4e:05:cc:28:8e:e5:da:b8:9d:eb: ca:b6:41:b5:0f:d0:ff:d9:d7:79:7a:d7:de:19:6b: ad:e2:4c:e3:ae:52:3f:b9:8b:ad:1e:15:28:f6:29: 1e:61:58:f7:94:41:6f:70:db:9a:dd:89:9b:bb:60: 94:60:9f:25:87:5c:72:41:7f:a3:8b:0f:03:3c:c8: 88:95:50:52:06:4c:69:90:b6:17:fd:6b:bc:a4:78: 7b:15:df:07:0f:ba:0b:6a:d3:26:7c:ab:5c:8e:43: cd:cf:b0:e1:49:f5:7f:ab:a9:49:1e:05:3e:53:00: 43:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A9:9D:BC:CD:22:AC:71:1F:74:65:2E:7D:E1:3E:DE:94:74:02:8A X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:25:7f:7f:ba:82:cd:9d:85:e3:ce:dd:f6:26:1e:4c:a4:df: d7:57:cb:27:37:54:28:40:20:28:c1:66:f4:cf:6a:dc:c6:8e: 80:2b:3a:ac:ce:ae:d3:4a:61:ed:d1:a6:99:c1:70:5d:01:ad: d9:1f:df:90:53:ff:53:26:5e:b2:a0:72:b1:a8:45:f1:ed:aa: 5c:dc:20:7d:77:02:0a:36:da:48:91:d8:66:39:f7:be:27:ca: 7b:e0:0a:dd:7b:56:97:3f:0c:89:95:ce:82:97:45:6c:e8:08: 57:51:64:e4:b2:78:a6:bd:c6:03:6a:24:bc:8c:d0:3f:52:dd: b7:bd:80:5c:a6:5f:dd:df:58:8f:09:16:7f:e9:f6:4c:4d:12: df:fb:f7:be:ff:2a:aa:38:39:48:94:4b:98:d9:08:c8:03:54: 76:27:ce:9f:21:7e:f7:e8:4c:4a:32:29:c9:aa:c9:27:5a:b4: 48:69:00:f3:1e:38:41:d3:a5:43:fa:7a:06:79:f9:f2:00:d8: 08:8b:e6:c7:23:d1:97:64:0e:a2:e1:2d:d8:5c:e9:3f:75:1e: ba:1e:21:d8:6d:e3:7b:fa:56:be:ec:03:ca:70:f1:7f:ab:ad: d2:0b:b2:c5:51:5b:90:74:6f:60:83:c1:90:8c:e7:b4:39:20: c9:af:fc:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjUwODIzMDExMzA3WhcNMjUwODMwMDExMzA3WjAYMRYwFAYD VQQDEw02OGE5MTVhMy03NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWKvvuFYwzfi2hVS41w8x95t+fhGJWYan8de9A8pI8EVRQOwAT44G9K3il4+ kQad7KkdYe7BUwGLYX9EjmGH9LOSd2OXxZQOE/1OAbrB530V7cdecDuIUSnOYhJp KVZqhy9rSPIw6xURu2b03+snYgDA1cBPuNjKvSy2qeF36IPS1LZcSi6dipfNx04F zCiO5dq4nevKtkG1D9D/2dd5etfeGWut4kzjrlI/uYutHhUo9ikeYVj3lEFvcNua 3Ymbu2CUYJ8lh1xyQX+jiw8DPMiIlVBSBkxpkLYX/Wu8pHh7Fd8HD7oLatMmfKtc jkPNz7DhSfV/q6lJHgU+UwBDZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCipnbzN IqxxH3RlLn3hPt6UdAKKMB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODczQi80QTE2QkJEQUM2MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBG QTktdFdVdzhiZW01UmdUbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0JX9/uoLNnYXjzt32Jh5MpN/XV8snN1QoQCAowWb0z2rcxo6AKzqs zq7TSmHt0aaZwXBdAa3ZH9+QU/9TJl6yoHKxqEXx7apc3CB9dwIKNtpIkdhmOfe+ J8p74Arde1aXPwyJlc6Cl0Vs6AhXUWTksnimvcYDaiS8jNA/Ut23vYBcpl/d31iP CRZ/6fZMTRLf+/e+/yqqODlIlEuY2QjIA1R2J86fIX736ExKMinJqsknWrRIaQDz HjhB06VD+noGefnyANgIi+bHI9GXZA6i4S3YXOk/dR66HiHYbeN7+la+7APKcPF/ q63SC7LFUVuQdG9gg8GQjOe0OSDJr/zF -----END CERTIFICATE-----Generated at Sun Aug 24 00:08:38 2025 by rpki-client