$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: 7P8WLkue4GwwBKELSsfUFcRaS2ysck+g9xNUYv/fd0A= Subject key identifier: A6:DC:76:11:A7:4E:4F:A3:AE:58:20:23:49:F2:1E:EE:E7:36:49:A3 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: 85 Signing time: Sat 23 Aug 2025 06:56:44 +0000 Manifest this update: Sat 23 Aug 2025 06:56:44 +0000 Manifest next update: Sat 30 Aug 2025 06:56:44 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: gO9+8i8KWFrSZVCSrrOHd4W9XkfdIzWfHo3A+5YH6BA=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Aug 23 06:56:44 2025 GMT Not After : Aug 30 06:56:44 2025 GMT Subject: CN=68a9662c-8990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:09:83:9f:99:5a:80:05:a4:fe:b7:f7:c8:0d: 19:ec:a9:a1:74:5b:3f:af:4d:03:06:76:c4:5f:83: 98:80:9b:9f:1b:8b:50:cb:ec:8d:d1:48:1d:bc:86: b5:75:50:ee:ce:e7:b1:92:2f:05:d0:2a:b0:8c:59: 12:a8:72:f4:0d:a4:83:5b:ff:30:dd:df:e8:72:ef: 1d:38:0d:35:94:22:e2:c6:f8:83:a5:1f:4e:d2:b9: 0a:3d:6e:1b:f6:5b:e5:5b:ab:f1:e5:7f:02:44:5a: 59:a0:c3:f7:0e:6c:e3:70:84:8f:a8:41:e4:02:f5: ed:c5:97:5c:d3:22:53:5e:7e:f8:00:50:d3:d3:1c: 2d:64:9a:58:ec:1c:02:eb:23:0d:9e:2e:8e:67:0b: ce:1d:34:0d:00:31:c2:94:33:15:79:a4:c3:d5:af: ba:b7:54:e6:82:5b:ad:11:65:62:e9:01:42:26:74: 0e:e4:d5:0e:ca:73:e4:de:93:b6:a1:d5:17:87:8a: b3:8d:dd:0f:d4:54:2c:76:c8:1e:58:74:56:f6:26: 52:0b:ba:73:31:78:59:7a:aa:b0:81:6c:e6:62:23: 4c:ef:4b:0e:86:e8:2c:94:1f:03:36:52:3f:a7:15: 94:2e:a9:34:93:31:59:59:07:f4:9d:7d:d5:bf:2f: 74:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:DC:76:11:A7:4E:4F:A3:AE:58:20:23:49:F2:1E:EE:E7:36:49:A3 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:82:69:3b:1e:cc:de:83:50:36:c3:5c:ac:ab:06:25:b2:75: f9:9e:b2:22:b9:d3:ca:c3:1c:7c:33:75:5f:13:91:99:ae:32: 47:3c:92:7d:8b:ea:f5:0a:3e:01:64:10:b9:4e:d5:6a:1b:dc: a0:f5:a8:90:9b:db:87:bc:39:d7:84:1b:b4:95:e3:90:90:f7: 94:81:e3:40:ad:42:78:6f:22:83:d4:d8:07:0d:2d:00:1e:0d: 7a:fd:6b:90:71:07:b6:8e:a2:6c:69:28:fe:e2:74:56:43:5e: a4:06:ce:92:b3:62:a4:0b:e3:d6:81:41:e2:f1:13:7c:f4:60: c8:05:16:82:d0:a2:3b:35:06:66:39:ee:cd:3a:ae:f1:9c:fb: 7a:dd:a5:55:11:bd:e3:04:c6:a3:90:5a:85:f7:c3:a6:b5:bc: 2b:b8:ba:0e:37:d8:08:a5:cc:f6:c7:54:51:11:f6:0a:d1:20: eb:f4:2a:93:1b:41:0f:fa:ca:60:c7:e4:17:89:fd:fc:27:a2: cf:6f:f9:1f:ae:bc:83:4e:e4:ce:ee:43:1f:65:0f:36:a8:3b: 9f:b9:48:1a:cc:3f:94:c4:72:f7:e8:98:2d:b1:76:c8:83:fc: 00:f9:27:9c:4c:ac:e4:0e:d3:7f:64:e2:07:6a:ba:85:f6:ac: 2c:71:0c:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjUwODIzMDY1NjQ0WhcNMjUwODMwMDY1NjQ0WjAYMRYwFAYD VQQDEw02OGE5NjYyYy04OTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQmDn5lagAWk/rf3yA0Z7KmhdFs/r00DBnbEX4OYgJufG4tQy+yN0UgdvIa1 dVDuzuexki8F0CqwjFkSqHL0DaSDW/8w3d/ocu8dOA01lCLixviDpR9O0rkKPW4b 9lvlW6vx5X8CRFpZoMP3DmzjcISPqEHkAvXtxZdc0yJTXn74AFDT0xwtZJpY7BwC 6yMNni6OZwvOHTQNADHClDMVeaTD1a+6t1TmglutEWVi6QFCJnQO5NUOynPk3pO2 odUXh4qzjd0P1FQsdsgeWHRW9iZSC7pzMXhZeqqwgWzmYiNM70sOhugslB8DNlI/ pxWULqk0kzFZWQf0nX3Vvy90AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbcdhGn Tk+jrlggI0nyHu7nNkmjMB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8gmk7Hszeg1A2w1ysqwYlsnX5nrIiudPKwxx8M3VfE5GZrjJHPJJ9 i+r1Cj4BZBC5TtVqG9yg9aiQm9uHvDnXhBu0leOQkPeUgeNArUJ4byKD1NgHDS0A Hg16/WuQcQe2jqJsaSj+4nRWQ16kBs6Ss2KkC+PWgUHi8RN89GDIBRaC0KI7NQZm Oe7NOq7xnPt63aVVEb3jBMajkFqF98OmtbwruLoON9gIpcz2x1RREfYK0SDr9CqT G0EP+spgx+QXif38J6LPb/kfrryDTuTO7kMfZQ82qDufuUgazD+UxHL36JgtsXbI g/wA+SecTKzkDtN/ZOIHarqF9qwscQyQ -----END CERTIFICATE-----Generated at Sat Aug 23 15:36:13 2025 by rpki-client