$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft File: _k_aOWcBbBE6yAe4STQKxlIPCAI.mft (raw, json) Hash identifier: J3LsqYLbZs+g3loyrA3wetyQkUH5dEZKAQOEpRnoMeM= Subject key identifier: E5:A1:47:23:F6:B5:23:7D:F2:EE:72:CB:31:53:CA:FA:6F:4E:FA:83 Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft Manifest number: 0A03 Signing time: Fri 22 Aug 2025 19:59:20 +0000 Manifest this update: Fri 22 Aug 2025 19:59:19 +0000 Manifest next update: Fri 29 Aug 2025 19:59:19 +0000 Files and hashes: 1: _k_aOWcBbBE6yAe4STQKxlIPCAI.crl (hash: E3TFNKIXruBLoldXJpZyy6odFHtvyKxVdpuHsB5rDu8=) 2: 699CD772C2B911EBBB4C8928C4F9AE02.roa (hash: yfdf5Mv/GJ9tUDZNlDnmM6hHiINUq2OvlkNbS0rVles=) 3: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (hash: qU5SgxuYfj9EbloGsgp5NlU+LGZow7QsAYGZSye/EIM=) 4: 91F5867070B811EDB6E1F81BC4F9AE02.roa (hash: PgZPVHxtNUmnyrhnnwVcg3kijll4dZA2GpurrS7x078=) 5: 1E9514207F9311EA8177A82DC4F9AE02.roa (hash: mCrr4AsBoN0UqBzrLZ/+kB+0BpCUxnU7wJAUdq4LZdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Aug 22 19:59:19 2025 GMT Not After : Aug 29 19:59:19 2025 GMT Subject: CN=68a8cc18-6c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:27:c0:6e:e9:88:9f:c3:a1:09:ea:72:76:fd: 7b:b7:41:dd:5f:e2:3f:c7:a2:96:2c:b7:29:5c:b0: ce:e6:87:6c:5d:2c:cf:72:2e:09:98:33:8a:8d:5c: 31:03:1c:e0:8f:12:0c:3b:b3:60:4f:be:37:f0:d6: f3:67:62:f0:b0:ac:bc:38:08:07:af:49:a7:c0:f1: b1:9e:42:09:46:a8:cd:d3:4c:d4:ad:d2:f5:cb:be: 7d:1e:fa:75:76:1b:a7:ab:71:c8:1a:2b:53:49:fd: 88:b5:26:1f:3e:23:09:93:19:57:ad:cb:bc:a6:fa: 96:f4:f7:c6:65:38:cb:30:9b:64:61:1c:d7:2b:d6: fd:8c:6f:77:bf:1f:88:65:ad:ef:c5:2e:e1:f0:74: ff:6e:b0:45:48:3a:a5:de:55:b7:87:43:87:d6:ce: e0:6e:e7:44:04:93:74:58:f9:82:d2:7f:04:2d:87: 73:d4:5a:47:bb:42:8c:8f:c4:d0:c9:27:9c:2f:88: 9c:a0:32:cd:40:dc:7a:9b:ce:36:68:29:cd:d3:4c: dd:22:bf:dd:cf:fc:ee:aa:74:60:97:25:c0:b2:17: a7:16:44:67:b2:16:d4:3a:0c:5d:d5:e9:e6:c9:a9: 34:b0:40:f8:0e:5e:87:76:7d:55:1b:a4:12:5f:20: e8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A1:47:23:F6:B5:23:7D:F2:EE:72:CB:31:53:CA:FA:6F:4E:FA:83 X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:75:17:8a:5e:64:e6:c0:a0:9a:b3:99:1b:56:fa:c6:ce:40: 70:04:74:06:0f:eb:01:3f:dd:a9:88:63:63:a2:70:34:d1:5e: 62:59:7d:cd:5d:79:62:33:7e:ca:67:6b:cf:5e:03:91:38:2b: 32:9b:71:54:60:36:e5:6f:50:d1:c2:ae:78:b9:47:00:cb:5c: f1:9e:af:a5:80:dd:34:97:97:d6:ae:a6:31:1c:5e:f4:ab:35: 5d:a7:51:9b:fd:85:42:6f:43:06:bb:ac:bd:5b:05:bb:10:ef: 62:b3:47:05:23:3b:7a:6f:8d:fe:c1:f9:cc:59:98:5e:3e:43: 93:ce:6e:62:3b:ab:cb:9a:2c:a1:fc:25:a3:f9:73:b5:d5:a5: 04:f7:3d:d9:51:67:04:04:36:ae:0c:69:9e:93:bb:57:72:92: 9f:bb:f1:03:8a:7d:6c:db:4a:8a:2f:89:67:89:ca:4f:db:9b: 9b:09:47:3c:8b:ca:d2:4c:59:fe:e8:4a:9a:16:03:42:f4:87: ec:f8:c4:ba:1a:67:e4:a3:f1:eb:cf:88:35:3c:a5:95:dc:e1: c6:f0:0f:5c:c5:67:91:fc:e6:44:66:44:3e:5e:67:7a:c5:90: 17:41:1f:dd:fa:1c:37:15:7f:d1:41:e6:19:bc:48:89:6d:89: 22:f4:4d:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjUwODIyMTk1OTE5WhcNMjUwODI5MTk1OTE5WjAYMRYwFAYD VQQDEw02OGE4Y2MxOC02YzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApifAbumIn8OhCepydv17t0HdX+I/x6KWLLcpXLDO5odsXSzPci4JmDOKjVwx AxzgjxIMO7NgT7438NbzZ2LwsKy8OAgHr0mnwPGxnkIJRqjN00zUrdL1y759Hvp1 dhunq3HIGitTSf2ItSYfPiMJkxlXrcu8pvqW9PfGZTjLMJtkYRzXK9b9jG93vx+I Za3vxS7h8HT/brBFSDql3lW3h0OH1s7gbudEBJN0WPmC0n8ELYdz1FpHu0KMj8TQ ySecL4icoDLNQNx6m842aCnN00zdIr/dz/zuqnRglyXAshenFkRnshbUOgxd1enm yak0sED4Dl6Hdn1VG6QSXyDoEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWhRyP2 tSN98u5yyzFTyvpvTvqDMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTU4MC9DN0NFMkUxMDdGOEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJC RTZ5QWU0U1RRS3hsSVBDQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCldReKXmTmwKCas5kbVvrGzkBwBHQGD+sBP92piGNjonA00V5iWX3N XXliM37KZ2vPXgOROCsym3FUYDblb1DRwq54uUcAy1zxnq+lgN00l5fWrqYxHF70 qzVdp1Gb/YVCb0MGu6y9WwW7EO9is0cFIzt6b43+wfnMWZhePkOTzm5iO6vLmiyh /CWj+XO11aUE9z3ZUWcEBDauDGmek7tXcpKfu/EDin1s20qKL4lnicpP25ubCUc8 i8rSTFn+6EqaFgNC9Ifs+MS6Gmfko/Hrz4g1PKWV3OHG8A9cxWeR/OZEZkQ+Xmd6 xZAXQR/d+hw3FX/RQeYZvEiJbYki9E3n -----END CERTIFICATE-----Generated at Sat Aug 23 19:30:15 2025 by rpki-client