$ rpki-client -vvf rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft File: x8MjS9JtrWKeLX70REhP5UHYFI4.mft (raw, json) Hash identifier: hqqz0DKnEENzGREI3SDj99oQaG7S3+INRq0ID9zei2c= Subject key identifier: 94:EC:74:DD:F2:B1:A1:CB:A6:BB:46:0D:23:F5:13:8D:50:AE:DD:66 Authority key identifier: C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E Certificate issuer: /CN=A91E36C4/serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft Manifest number: 57 Signing time: Sat 23 Aug 2025 07:28:44 +0000 Manifest this update: Sat 23 Aug 2025 07:28:43 +0000 Manifest next update: Sat 30 Aug 2025 07:28:43 +0000 Files and hashes: 1: x8MjS9JtrWKeLX70REhP5UHYFI4.crl (hash: 4QZRWwD7GE5ZydPJh/IxAlWm5+heiXzS+rq49KHs4xU=) 2: FA429FD6FEED11EF826A3F81C4F9AE02.roa (hash: 39w+18fUPSiKVB8OhUL0ki9Bi8qUl1J3wP6kCBvBYqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E36C4, serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Validity Not Before: Aug 23 07:28:43 2025 GMT Not After : Aug 30 07:28:43 2025 GMT Subject: CN=68a96dab-c112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2c:e0:65:45:08:12:44:68:a2:36:63:a2:09: be:0e:2f:ee:3c:cc:7c:a4:72:e6:86:61:ff:70:d4: 22:e7:c8:10:9f:29:15:ea:f8:a2:0f:e7:39:45:dd: e0:00:5d:cb:ce:d1:d5:e2:9d:10:53:d5:f6:a0:a9: 24:18:ed:c8:0d:64:cd:51:31:fb:8b:e5:8b:9f:71: a1:f4:7c:b1:83:0a:de:b1:ee:91:e4:7a:1f:fc:4c: 3d:66:95:2a:a8:8e:b5:ed:b6:8a:a0:a8:65:97:f2: 2f:dd:95:36:d6:ce:7d:55:7e:cc:aa:4a:44:30:31: 30:8e:fd:3a:f2:d9:39:4b:5d:d1:b6:88:59:9c:b8: ea:07:a5:7f:84:31:6e:f2:5d:3a:1e:63:fb:ba:17: 09:5e:49:8f:1c:4d:0f:be:53:19:39:5f:b8:a5:27: 62:c1:8c:38:ec:bd:f7:f4:fd:45:1c:cb:78:c6:11: 46:ad:7d:bf:32:15:f4:89:eb:25:e6:57:b8:71:d4: 79:7c:39:a8:7a:b4:fa:6f:f7:31:ac:2e:5e:c7:a8: 11:5a:3c:c8:5d:5c:81:b1:7e:f6:da:9c:17:ad:a5: ed:da:90:04:ba:03:28:d2:6a:22:0d:a6:83:55:f2: c9:01:56:d8:06:4f:30:d6:5d:93:ab:19:35:d0:02: 59:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:EC:74:DD:F2:B1:A1:CB:A6:BB:46:0D:23:F5:13:8D:50:AE:DD:66 X509v3 Authority Key Identifier: keyid:C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:46:bf:c5:90:22:79:3c:06:8f:5b:35:f6:46:2f:1f:53:06: 60:bd:52:72:61:b4:b2:4a:10:75:43:7c:ab:fd:70:95:e1:c3: a7:78:64:90:a3:9f:74:ab:82:5d:0e:7e:47:ac:0f:f5:4b:68: 82:b9:f4:51:d4:35:7a:01:59:43:d5:ed:5d:55:68:60:1f:0a: 8c:73:c5:45:2e:66:ef:ca:75:f1:33:e0:63:29:5f:9b:b8:d3: fa:4a:4e:18:95:89:bf:90:f6:17:1e:a4:fb:f9:0e:33:01:60: a6:50:83:2e:b3:e7:db:a9:bb:6d:da:dd:5d:1e:5b:77:93:59: 0e:2d:e6:b8:6d:fc:98:08:5c:80:30:41:7a:ed:4c:01:76:12: 59:30:64:b0:85:10:d6:2a:bc:9a:d5:87:9b:cf:6b:26:9d:53: 3c:62:d5:44:73:cb:4c:5b:c6:5f:b4:6f:c0:e0:87:6b:31:fb: a8:09:04:bd:bc:69:06:82:9d:2e:cb:88:2b:9b:a6:bc:29:95: af:f5:9e:da:ab:f0:49:c8:b3:09:86:2a:6b:f8:c1:35:cb:44: ec:df:d6:e2:7a:ad:cf:ed:40:1b:68:86:74:8a:86:74:65:48: a8:9e:39:96:92:64:34:39:c0:44:fa:17:02:9c:44:84:db:48: 15:9e:e2:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzZDNDExMC8GA1UEBRMoQzdDMzIzNEJEMjZEQUQ2MjlFMkQ3RUY0NDQ0ODRGRTU0 MUQ4MTQ4RTAeFw0yNTA4MjMwNzI4NDNaFw0yNTA4MzAwNzI4NDNaMBgxFjAUBgNV BAMTDTY4YTk2ZGFiLWMxMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2LOBlRQgSRGiiNmOiCb4OL+48zHykcuaGYf9w1CLnyBCfKRXq+KIP5zlF3eAA XcvO0dXinRBT1fagqSQY7cgNZM1RMfuL5YufcaH0fLGDCt6x7pHkeh/8TD1mlSqo jrXttoqgqGWX8i/dlTbWzn1VfsyqSkQwMTCO/Try2TlLXdG2iFmcuOoHpX+EMW7y XToeY/u6FwleSY8cTQ++Uxk5X7ilJ2LBjDjsvff0/UUcy3jGEUatfb8yFfSJ6yXm V7hx1Hl8Oah6tPpv9zGsLl7HqBFaPMhdXIGxfvbanBetpe3akAS6AyjSaiINpoNV 8skBVtgGTzDWXZOrGTXQAlnVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlOx03fKx ocumu0YNI/UTjVCu3WYwHwYDVR0jBBgwFoAUx8MjS9JtrWKeLX70REhP5UHYFI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNkM0L0MxNjA1ODUyRkVF RDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldLZUxYNzBSRWhQNVVIWUZJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDhNalM5SnRyV0tlTFg3MFJFaFA1VUhZRkk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz NkM0L0MxNjA1ODUyRkVFRDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldL ZUxYNzBSRWhQNVVIWUZJNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJpGv8WQInk8Bo9bNfZGLx9TBmC9UnJhtLJKEHVDfKv9cJXhw6d4ZJCj n3Srgl0OfkesD/VLaIK59FHUNXoBWUPV7V1VaGAfCoxzxUUuZu/KdfEz4GMpX5u4 0/pKThiVib+Q9hcepPv5DjMBYKZQgy6z59upu23a3V0eW3eTWQ4t5rht/JgIXIAw QXrtTAF2ElkwZLCFENYqvJrVh5vPayadUzxi1URzy0xbxl+0b8Dgh2sx+6gJBL28 aQaCnS7LiCubprwpla/1ntqr8EnIswmGKmv4wTXLROzf1uJ6rc/tQBtohnSKhnRl SKieOZaSZDQ5wET6FwKcRITbSBWe4v4= -----END CERTIFICATE-----Generated at Sun Aug 24 03:08:38 2025 by rpki-client