$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: PzLq89D6ga7/CWbeIUEjhZXqjx+J0I5WQBMuY6xR55o= Subject key identifier: 86:9A:B4:41:C5:56:F8:DA:6E:A1:7D:A7:BB:37:C0:DB:10:9A:B4:E6 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0871 Signing time: Fri 22 Aug 2025 20:46:13 +0000 Manifest this update: Fri 22 Aug 2025 20:46:12 +0000 Manifest next update: Fri 29 Aug 2025 20:46:12 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: y0wm0YkTDiGbqBPxtlQ15OdE9CgZXY5FsOXjowoHr1o=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: zvHITej7x6G5n4QCQAElY7CsJ+bvYQTRcFwTwkacxFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Aug 22 20:46:12 2025 GMT Not After : Aug 29 20:46:12 2025 GMT Subject: CN=68a8d715-f1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:65:ce:e6:69:ef:11:24:95:14:d1:df:20: 3a:84:6b:d9:ff:0c:7a:65:06:f0:6e:00:37:60:92: 51:f9:7d:c6:9c:7f:f4:eb:11:a9:a6:cc:dd:e2:5f: c9:fc:12:1a:2f:df:e1:8c:b7:60:8a:62:2b:82:3e: e3:6d:bb:c2:f0:9d:64:a0:ff:c8:4b:72:cf:d4:64: 9a:ec:27:b8:04:0d:5c:55:b8:9d:5b:18:7e:76:39: bf:9c:6f:5d:7c:85:f7:29:42:74:16:07:e9:e6:44: d3:48:17:85:fa:f0:dc:b6:3c:e6:32:c8:37:d5:24: 9f:d3:f3:ce:65:a6:0b:b6:65:c9:fd:bc:da:e4:54: ea:86:8c:b8:d3:dc:ef:7f:cd:a1:91:b1:56:72:cb: 0e:be:df:84:03:f3:06:f8:41:50:50:c5:4c:70:c9: 25:d6:b3:76:05:76:01:3b:07:ac:9c:09:9f:c3:77: ed:1d:f3:b2:52:97:43:75:e5:21:be:6a:f0:21:a0: bb:54:7e:f6:5d:1b:ab:87:3b:12:d2:52:2d:3e:df: 91:33:93:c6:09:8d:38:b2:72:61:76:9f:6a:cb:a0: a4:07:c7:33:46:22:e3:39:ad:f6:be:66:2a:85:29: 4f:f7:74:28:48:59:ad:42:be:24:b8:50:0f:71:4f: 41:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:9A:B4:41:C5:56:F8:DA:6E:A1:7D:A7:BB:37:C0:DB:10:9A:B4:E6 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:5c:51:31:e7:7f:d7:a4:ed:96:64:f1:40:94:a2:1c:99:fe: 09:a7:75:f3:61:52:c4:d3:7f:e4:dc:36:b3:4c:f8:95:e9:a6: fa:7c:33:2d:06:65:43:e3:84:09:83:60:20:22:24:dd:f6:09: 1d:25:90:38:0b:29:db:b1:7b:d2:e4:12:08:3f:b2:a0:33:09: 05:ec:8b:57:5b:57:19:2e:eb:a5:17:78:93:18:89:55:64:d7: d5:bb:a5:94:8a:7b:9e:e0:4c:4c:88:4a:c1:fe:67:fd:6e:51: d7:9d:32:d0:e6:26:eb:29:22:af:30:4e:c5:de:15:85:60:ee: d7:f3:02:d8:98:40:89:61:b6:92:0f:ea:7c:23:8a:a1:da:3d: cc:e5:e3:4c:78:ec:44:0b:5b:36:17:22:ff:11:9b:7b:45:b7: 8d:b5:83:06:82:d8:fa:85:51:f9:37:90:bc:de:b1:49:09:36: 42:84:b5:c1:ae:12:69:41:95:32:e9:32:ef:b7:cd:c2:99:e4: 43:3f:82:96:42:e1:7f:d2:b9:c8:9b:17:a8:67:40:a1:ab:ce: 1b:a9:59:71:e6:fe:01:46:12:e9:20:e8:51:d2:b6:a3:c2:48: 9a:48:c0:c9:79:39:f5:b7:78:b9:b8:ca:2d:52:59:bd:1c:ab: 2c:fd:33:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUwODIyMjA0NjEyWhcNMjUwODI5MjA0NjEyWjAYMRYwFAYD VQQDEw02OGE4ZDcxNS1mMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu75lzuZp7xEklRTR3yA6hGvZ/wx6ZQbwbgA3YJJR+X3GnH/06xGppszd4l/J /BIaL9/hjLdgimIrgj7jbbvC8J1koP/IS3LP1GSa7Ce4BA1cVbidWxh+djm/nG9d fIX3KUJ0Fgfp5kTTSBeF+vDctjzmMsg31SSf0/POZaYLtmXJ/bza5FTqhoy409zv f82hkbFWcssOvt+EA/MG+EFQUMVMcMkl1rN2BXYBOwesnAmfw3ftHfOyUpdDdeUh vmrwIaC7VH72XRurhzsS0lItPt+RM5PGCY04snJhdp9qy6CkB8czRiLjOa32vmYq hSlP93QoSFmtQr4kuFAPcU9BTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaatEHF VvjabqF9p7s3wNsQmrTmMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAXFEx53/XpO2WZPFAlKIcmf4Jp3XzYVLE03/k3DazTPiV6ab6fDMt BmVD44QJg2AgIiTd9gkdJZA4CynbsXvS5BIIP7KgMwkF7ItXW1cZLuulF3iTGIlV ZNfVu6WUinue4ExMiErB/mf9blHXnTLQ5ibrKSKvME7F3hWFYO7X8wLYmECJYbaS D+p8I4qh2j3M5eNMeOxEC1s2FyL/EZt7RbeNtYMGgtj6hVH5N5C83rFJCTZChLXB rhJpQZUy6TLvt83CmeRDP4KWQuF/0rnImxeoZ0Chq84bqVlx5v4BRhLpIOhR0raj wkiaSMDJeTn1t3i5uMotUlm9HKss/TNQ -----END CERTIFICATE-----Generated at Sat Aug 23 20:37:57 2025 by rpki-client