$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: RLAf6yunWmkhopOMT4XacCfYFQt16zUCyhZvspdwYMk= Subject key identifier: DE:0B:8B:7B:D9:0B:EE:C2:CE:5E:EB:31:9D:7F:22:3C:87:94:EA:9A Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 359F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 351B Signing time: Fri 22 Aug 2025 14:16:26 +0000 Manifest this update: Fri 22 Aug 2025 14:16:25 +0000 Manifest next update: Fri 29 Aug 2025 14:16:25 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: FCB7QmBJvaEbz4Ukr2bVAvd1zZ0j/dDU5ub1tDm4zYI=) 2: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 3: AF560BA2B1CC11EF80C4BE44C4F9AE02.roa (hash: JKOX2Bnk1obdJWD/11GK8Zj49w+PdYErgulVkpa2rdU=) 4: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) 5: 539CC922366C11EEBEBBBE1DC4F9AE02.roa (hash: TrayTHMiKb+Dm5posHRv3ZfOvi01WiwhoUD8use0rkY=) 6: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) 7: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 8: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13727 (0x359f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE, serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Aug 22 14:16:25 2025 GMT Not After : Aug 29 14:16:25 2025 GMT Subject: CN=68a87bb9-6118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e8:9f:62:27:ff:49:b8:88:d9:22:9a:a0:a7: 21:e6:c3:bd:72:fc:e3:42:98:ca:d4:cc:02:54:56: 3c:d5:e0:d2:88:12:c0:48:12:5b:6b:0d:54:a1:e5: 49:ac:1e:30:6e:5f:b5:90:2b:13:cf:26:ea:84:cb: 36:53:3b:4f:49:47:1c:3d:0a:ed:7d:89:5d:9c:36: 63:3e:9a:07:69:18:17:51:d1:ec:31:64:ec:51:2e: cb:91:6d:e4:fb:56:b6:d2:a2:df:f9:98:ab:ec:b6: b4:ea:8e:db:c4:d2:58:03:a0:f3:e3:2c:a0:0e:e3: 35:36:fb:3c:d1:c6:43:93:4b:fa:96:f8:4b:72:96: 91:33:f7:79:90:9f:85:09:85:eb:d8:cf:fc:f2:d4: 65:7f:3c:ac:03:0f:83:21:5b:fd:e0:2e:6c:25:a9: c1:10:9b:94:70:4a:c1:05:97:3e:03:24:e1:a1:db: f0:73:16:6d:ee:cb:20:2d:2f:2a:19:cd:1d:ec:c7: 07:aa:a6:6e:53:6b:e2:b6:fb:f4:42:87:27:c2:3e: b3:1c:30:8c:5d:a6:a1:c6:9b:1e:c2:24:58:9a:68: 29:67:ac:2c:ae:18:cf:66:5f:bb:95:d5:ac:6f:4e: 80:80:1c:5d:5e:c0:69:84:8b:b5:7d:75:13:f8:75: fe:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:0B:8B:7B:D9:0B:EE:C2:CE:5E:EB:31:9D:7F:22:3C:87:94:EA:9A X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:7f:cd:ca:10:a4:27:f4:16:96:28:e2:41:93:d1:ec:e1:32: 5e:c5:73:e7:29:95:f9:d7:80:b0:65:66:99:70:4d:50:83:5a: b6:95:99:7e:56:b8:01:04:4f:d5:e7:8f:ab:35:69:b4:cb:bd: 66:fa:f7:1e:e6:63:5e:26:ad:30:08:75:3d:b7:69:a9:c1:70: 2e:31:9f:1c:9d:58:a0:0f:ce:6c:2c:ee:a8:40:97:71:72:08: db:16:bd:78:67:a4:21:46:83:f7:a5:07:a9:83:bd:8c:10:b0: 9b:76:1f:22:fe:bf:10:28:a4:84:64:50:45:14:e5:ec:d1:91: 2b:7f:e8:5e:3d:09:6c:46:05:4d:84:0a:b6:cb:87:aa:5c:69: ef:3d:2f:c6:ad:e5:d9:11:1e:12:b9:4d:0d:e1:cf:34:41:30: f6:36:6a:2d:cb:c9:8d:d4:0c:c2:75:ea:f4:6f:92:c4:cd:87: a9:a1:f2:85:82:56:cb:71:68:82:17:b4:d2:9e:5a:5c:dc:54: a9:46:71:9f:b1:be:ff:98:c1:33:46:fd:cb:a5:c4:6c:5f:e9: 0d:49:a0:34:35:56:a4:61:0a:f0:a3:1c:ef:58:c9:86:4a:73: 69:a6:2d:7c:a0:d6:e8:dd:dd:bb:46:55:4b:91:b4:de:af:40: b5:14:84:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjUwODIyMTQxNjI1WhcNMjUwODI5MTQxNjI1WjAYMRYwFAYD VQQDEw02OGE4N2JiOS02MTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOifYif/SbiI2SKaoKch5sO9cvzjQpjK1MwCVFY81eDSiBLASBJbaw1UoeVJ rB4wbl+1kCsTzybqhMs2UztPSUccPQrtfYldnDZjPpoHaRgXUdHsMWTsUS7LkW3k +1a20qLf+Zir7La06o7bxNJYA6Dz4yygDuM1Nvs80cZDk0v6lvhLcpaRM/d5kJ+F CYXr2M/88tRlfzysAw+DIVv94C5sJanBEJuUcErBBZc+AyThodvwcxZt7ssgLS8q Gc0d7McHqqZuU2vitvv0Qocnwj6zHDCMXaahxpsewiRYmmgpZ6wsrhjPZl+7ldWs b06AgBxdXsBphIu1fXUT+HX+5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4Li3vZ C+7Czl7rMZ1/IjyHlOqaMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAof83KEKQn9BaWKOJBk9Hs4TJexXPnKZX514CwZWaZcE1Qg1q2lZl+ VrgBBE/V54+rNWm0y71m+vce5mNeJq0wCHU9t2mpwXAuMZ8cnVigD85sLO6oQJdx cgjbFr14Z6QhRoP3pQepg72MELCbdh8i/r8QKKSEZFBFFOXs0ZErf+hePQlsRgVN hAq2y4eqXGnvPS/GreXZER4SuU0N4c80QTD2Nmoty8mN1AzCder0b5LEzYepofKF glbLcWiCF7TSnlpc3FSpRnGfsb7/mMEzRv3LpcRsX+kNSaA0NVakYQrwoxzvWMmG SnNppi18oNbo3d27RlVLkbTer0C1FIS5 -----END CERTIFICATE-----Generated at Sat Aug 23 21:22:43 2025 by rpki-client