$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: AjHh+O8spVfd24b9k5TiEr5XIaAe2LpZ0B9iiA2QsGc= Subject key identifier: 76:9A:98:72:8B:4D:2E:5E:49:A2:19:95:7B:10:D1:50:25:63:40:57 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 0A00 Signing time: Fri 22 Aug 2025 20:03:19 +0000 Manifest this update: Fri 22 Aug 2025 20:03:19 +0000 Manifest next update: Fri 29 Aug 2025 20:03:19 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: ZJLQecs4nWNMlzECB/jW9A5eVgB7hh1tZMbNyUazef0=) 2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=) 3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=) 4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=) 5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=) 6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2614 (0xa36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Aug 22 20:03:19 2025 GMT Not After : Aug 29 20:03:19 2025 GMT Subject: CN=68a8cd07-7650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:8d:1d:15:20:fc:9a:a9:09:c4:93:38:a5: e6:7f:e7:65:16:93:ce:a3:54:a6:e6:0f:6e:4a:e1: 5d:e6:9a:21:7f:b1:72:03:06:4f:2a:1c:1f:f2:61: f0:36:ac:69:ef:7a:23:86:8c:99:3a:b6:46:4e:27: 98:f2:00:f6:a7:e1:4d:7c:c8:59:8b:ff:2a:a9:43: a9:99:b9:7a:75:40:f2:8e:b0:47:c3:0f:70:a1:f1: 06:20:78:8e:aa:e7:01:70:40:92:e9:0a:b2:13:81: 22:e8:e4:e3:2a:d0:5a:d4:60:1e:ec:34:0c:1b:ac: ca:ef:93:f1:54:6c:de:38:fb:a3:0e:02:98:3d:02: 21:11:43:b3:d1:e1:da:fd:fe:3b:89:4e:7e:34:d8: 31:98:57:4a:65:a4:72:14:5a:20:3f:9c:5a:58:01: 05:53:b5:04:c1:ef:71:b2:b1:41:d1:21:89:5d:5e: 71:f8:5d:a4:54:c5:7e:74:b6:3e:36:f6:3c:c5:e3: 0d:c4:3d:82:1c:05:dd:1c:e6:52:2b:65:cd:bc:6e: 0b:4d:4a:8d:fd:66:bf:2f:26:22:89:9f:51:44:3e: 87:cc:0f:57:97:7c:74:7f:fd:31:ac:62:ac:cc:59: 1c:ae:c2:ab:2b:44:1f:88:c3:bc:68:cc:d5:2f:3a: a9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9A:98:72:8B:4D:2E:5E:49:A2:19:95:7B:10:D1:50:25:63:40:57 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:84:76:bf:2d:cf:a5:a4:68:d1:2d:89:a2:29:61:e2:aa:43: f0:46:cb:c8:8e:dc:4e:b5:1d:34:ae:39:72:5e:e5:09:ff:a8: b3:89:9e:44:cf:77:d8:51:22:d9:64:73:46:de:83:9d:07:c0: 49:e5:ad:7c:51:5f:b0:99:ad:c7:7b:af:4a:bd:d6:15:45:cc: 76:84:0d:12:15:f3:a2:dc:a6:14:bc:3a:d9:4d:e1:99:19:4b: d5:7f:c1:ea:ab:60:5b:7e:4a:5d:6a:b4:c3:4e:8f:2f:bc:45: eb:d1:bb:d8:0b:55:6f:a0:ec:f3:83:fb:2d:18:ab:42:03:6b: 3d:62:aa:3d:cc:9e:c3:f1:9b:d5:61:fd:c6:0b:22:80:73:52: 26:c8:37:bd:d1:1e:a2:f4:41:04:98:ea:54:e4:f1:64:7e:75: 01:47:1e:30:5b:fb:72:45:a3:d9:07:66:3f:1a:8d:d2:5b:dc: 43:e7:e7:24:98:7e:47:bc:a0:49:0d:30:25:f3:7c:2c:a0:db: 13:b8:ac:33:49:45:42:11:e9:55:bc:ed:da:44:0e:11:fc:ba: e8:e4:22:7d:e2:a8:c5:65:43:48:d1:76:08:8b:6d:a4:50:a6: 51:f7:07:c3:f9:bc:3c:8c:e0:62:68:fc:a2:4f:0d:0a:35:82: 51:6d:ac:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUwODIyMjAwMzE5WhcNMjUwODI5MjAwMzE5WjAYMRYwFAYD VQQDEw02OGE4Y2QwNy03NjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu82NHRUg/JqpCcSTOKXmf+dlFpPOo1Sm5g9uSuFd5pohf7FyAwZPKhwf8mHw Nqxp73ojhoyZOrZGTieY8gD2p+FNfMhZi/8qqUOpmbl6dUDyjrBHww9wofEGIHiO qucBcECS6QqyE4Ei6OTjKtBa1GAe7DQMG6zK75PxVGzeOPujDgKYPQIhEUOz0eHa /f47iU5+NNgxmFdKZaRyFFogP5xaWAEFU7UEwe9xsrFB0SGJXV5x+F2kVMV+dLY+ NvY8xeMNxD2CHAXdHOZSK2XNvG4LTUqN/Wa/LyYiiZ9RRD6HzA9Xl3x0f/0xrGKs zFkcrsKrK0QfiMO8aMzVLzqp4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaamHKL TS5eSaIZlXsQ0VAlY0BXMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFhHa/Lc+lpGjRLYmiKWHiqkPwRsvIjtxOtR00rjlyXuUJ/6iziZ5E z3fYUSLZZHNG3oOdB8BJ5a18UV+wma3He69KvdYVRcx2hA0SFfOi3KYUvDrZTeGZ GUvVf8Hqq2BbfkpdarTDTo8vvEXr0bvYC1VvoOzzg/stGKtCA2s9Yqo9zJ7D8ZvV Yf3GCyKAc1ImyDe90R6i9EEEmOpU5PFkfnUBRx4wW/tyRaPZB2Y/Go3SW9xD5+ck mH5HvKBJDTAl83wsoNsTuKwzSUVCEelVvO3aRA4R/Lro5CJ94qjFZUNI0XYIi22k UKZR9wfD+bw8jOBiaPyiTw0KNYJRbayr -----END CERTIFICATE-----Generated at Sun Aug 24 04:35:25 2025 by rpki-client