$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft File: _edM0WVtTsrysOa7wxNdTrhAeCs.mft (raw, json) Hash identifier: Pa8B3Ge5Q7i1bpDSZnsqt7Q4dqzXbvWmSrYx5Rlrxbk= Subject key identifier: 3C:1B:2C:57:28:5C:14:28:79:14:46:0F:96:31:7B:DC:F9:DD:41:7A Authority key identifier: FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B Certificate issuer: /CN=A91DA898/serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft Manifest number: 71 Signing time: Fri 22 Aug 2025 14:36:10 +0000 Manifest this update: Fri 22 Aug 2025 14:36:09 +0000 Manifest next update: Fri 29 Aug 2025 14:36:09 +0000 Files and hashes: 1: _edM0WVtTsrysOa7wxNdTrhAeCs.crl (hash: cOLDXnqsaSkNlRc+3/ahAbRFufTk6qCx1BgrFvBXqwE=) 2: 22B4D1705AF911F09FF3D30BC4F9AE02.roa (hash: HitZiMXiwNMvF13mhcDQf6XM4HwHI8hyTa9V9MVcrDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA898, serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Validity Not Before: Aug 22 14:36:09 2025 GMT Not After : Aug 29 14:36:09 2025 GMT Subject: CN=68a8805a-a86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fd:c8:54:6f:2d:d5:9b:8c:3c:fd:65:bd:d1: 78:51:cc:5a:5b:09:bc:d9:9b:70:53:cf:00:85:1e: ea:5c:db:08:a2:e3:c4:a8:1f:ad:02:45:01:71:cb: 1e:9b:ba:39:ac:73:a9:03:a0:c1:de:5d:3c:99:7f: 37:59:e7:13:9a:60:9a:5b:5d:b5:48:ff:c5:4a:17: 5f:98:a1:07:20:6a:a1:21:75:36:47:1d:ec:39:79: 18:e7:89:8b:93:dc:83:ee:b6:e3:bb:91:7f:8c:8b: 69:47:bc:ca:40:35:21:38:2c:ee:12:fe:f7:9b:13: a3:b3:b9:97:2f:e9:bf:53:2c:fe:94:d6:51:b1:1f: 13:88:29:01:4b:42:c1:82:aa:b6:40:41:67:3a:9d: 95:55:b3:6f:38:42:34:b8:b4:f7:0b:35:2f:26:29: fe:ed:e2:ad:af:28:d0:bf:25:1a:08:40:18:51:a0: 47:26:e1:bf:34:3c:b9:7f:66:02:51:05:a4:57:e7: 41:cc:83:b9:6e:59:6a:8f:fb:98:4b:e8:84:61:be: 58:6e:d3:d9:ce:2c:b0:5c:cb:88:51:b4:5d:0e:20: 7c:3d:c0:35:ba:38:46:88:8c:88:73:3e:5b:39:05: 47:25:76:27:bf:57:60:c3:27:84:25:12:ec:c3:e4: 94:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1B:2C:57:28:5C:14:28:79:14:46:0F:96:31:7B:DC:F9:DD:41:7A X509v3 Authority Key Identifier: keyid:FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:06:2f:a3:5c:86:1f:73:0f:8f:90:34:e5:99:3f:b2:62:cd: 79:ac:6d:75:b0:32:18:c5:a4:85:5c:1d:bf:db:e7:e7:aa:47: df:19:85:dd:e8:6c:fc:50:63:a6:54:24:60:58:43:0e:3f:ac: 78:23:a0:42:e3:ca:5e:45:a8:a7:6c:e2:0d:f3:19:a3:b7:0a: 96:81:ba:77:84:2e:73:55:51:3b:aa:c1:48:fe:b8:10:95:96: 97:5f:ff:0b:66:51:3d:82:8b:a0:7f:34:77:4c:4a:f7:6e:41: 51:9a:81:5a:5e:38:f2:c7:fa:b0:dd:10:91:24:6a:77:65:97: 81:84:b4:a9:0a:0c:db:71:9c:93:de:f4:ad:06:09:28:f9:10: f1:d4:f6:ce:84:f5:ad:c5:fd:77:51:ec:f0:77:ee:46:c3:cd: ce:4c:82:66:ca:07:35:c7:f1:3a:4f:7d:d6:b2:23:db:8d:37: 72:0e:41:b1:c4:6b:c4:cb:eb:0f:24:32:5a:87:65:b0:36:52: fa:4b:af:cc:ef:fb:80:0f:e2:8e:79:4d:05:6b:1c:95:3e:d3: 14:a3:2a:d6:fe:74:3f:00:e8:61:0d:ff:ea:ed:e9:5b:b1:f3: 49:a0:a6:92:5a:65:81:76:58:a6:31:e8:7d:ad:de:46:2b:ab: cb:23:1a:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTg5ODExMC8GA1UEBRMoRkRFNzRDRDE2NTZENEVDQUYyQjBFNkJCQzMxMzVENEVC ODQwNzgyQjAeFw0yNTA4MjIxNDM2MDlaFw0yNTA4MjkxNDM2MDlaMBgxFjAUBgNV BAMTDTY4YTg4MDVhLWE4NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7/chUby3Vm4w8/WW90XhRzFpbCbzZm3BTzwCFHupc2wii48SoH60CRQFxyx6b ujmsc6kDoMHeXTyZfzdZ5xOaYJpbXbVI/8VKF1+YoQcgaqEhdTZHHew5eRjniYuT 3IPutuO7kX+Mi2lHvMpANSE4LO4S/vebE6OzuZcv6b9TLP6U1lGxHxOIKQFLQsGC qrZAQWc6nZVVs284QjS4tPcLNS8mKf7t4q2vKNC/JRoIQBhRoEcm4b80PLl/ZgJR BaRX50HMg7luWWqP+5hL6IRhvlhu09nOLLBcy4hRtF0OIHw9wDW6OEaIjIhzPls5 BUcldie/V2DDJ4QlEuzD5JQjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPBssVyhc FCh5FEYPljF73PndQXowHwYDVR0jBBgwFoAU/edM0WVtTsrysOa7wxNdTrhAeCsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBODk4LzQwN0EyNUVBRDg3 RjExRUY5MUNDNTM0NkM0RjlBRTAyL19lZE0wV1Z0VHNyeXNPYTd3eE5kVHJoQWVD cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX2VkTTBXVnRUc3J5c09hN3d4TmRUcmhBZUNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB ODk4LzQwN0EyNUVBRDg3RjExRUY5MUNDNTM0NkM0RjlBRTAyL19lZE0wV1Z0VHNy eXNPYTd3eE5kVHJoQWVDcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG8GL6Nchh9zD4+QNOWZP7JizXmsbXWwMhjFpIVcHb/b5+eqR98Zhd3o bPxQY6ZUJGBYQw4/rHgjoELjyl5FqKds4g3zGaO3CpaBuneELnNVUTuqwUj+uBCV lpdf/wtmUT2Ci6B/NHdMSvduQVGagVpeOPLH+rDdEJEkandll4GEtKkKDNtxnJPe 9K0GCSj5EPHU9s6E9a3F/XdR7PB37kbDzc5MgmbKBzXH8TpPfdayI9uNN3IOQbHE a8TL6w8kMlqHZbA2UvpLr8zv+4AP4o55TQVrHJU+0xSjKtb+dD8A6GEN/+rt6Vux 80mgppJaZYF2WKYx6H2t3kYrq8sjGq0= -----END CERTIFICATE-----Generated at Sat Aug 23 10:25:56 2025 by rpki-client