$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: CcNHBpLcoMgAJyc7c2MByOCHiwWPeacw+eUokcwxJWo= Subject key identifier: CC:85:4D:51:25:90:7B:CD:3A:06:7B:8F:7A:C7:B3:2E:94:B6:BC:2C Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 0101 Signing time: Sat 23 Aug 2025 05:22:26 +0000 Manifest this update: Sat 23 Aug 2025 05:22:25 +0000 Manifest next update: Sat 30 Aug 2025 05:22:25 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: a7BCEnthDMQjE5vLjZQJmxc58h2vcpKKR4jBUTrdU1c=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Aug 23 05:22:25 2025 GMT Not After : Aug 30 05:22:25 2025 GMT Subject: CN=68a95012-2ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ff:c0:98:41:dd:27:e3:f7:83:e4:80:5c:f7: a7:9e:9b:2a:44:3b:62:da:34:10:af:ad:f1:71:cf: 5f:a0:d7:cd:c5:93:5b:05:e8:d0:8f:f5:4a:49:7b: d9:05:4e:ee:06:72:77:76:08:e5:cf:b3:d6:f6:cb: 92:b0:b2:7d:fa:1d:2c:51:bc:22:d4:b2:86:49:46: f4:88:68:d9:69:86:9f:02:cc:85:ee:a5:82:5d:19: 26:1c:c4:70:0d:27:2a:e0:a6:3a:d6:16:7e:a3:8b: 91:e2:1c:d3:50:cc:5a:da:af:c1:76:09:54:84:3f: 1c:44:bf:d7:87:91:5a:a2:31:60:ac:10:1a:a5:9f: 5f:6a:a1:db:f1:0e:ed:4a:73:60:d9:7e:25:7e:c7: 75:e3:d9:cb:8f:ff:7a:dd:63:4f:3b:20:9f:66:a9: 58:db:01:46:cb:31:02:18:6e:03:ab:b0:96:7d:e2: 97:8c:79:31:b0:8c:dd:da:00:29:d2:04:6d:57:85: b6:a9:52:4e:53:c7:06:d3:05:4c:ab:42:98:e3:1b: d9:e2:51:ff:3c:c9:c1:bf:fe:9b:74:53:35:63:d4: 95:fa:e8:ac:8a:3d:50:dc:2a:8f:48:e4:42:d4:44: 16:34:e2:4b:a6:79:fd:1e:8f:f7:ea:80:bc:d5:1e: 95:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:85:4D:51:25:90:7B:CD:3A:06:7B:8F:7A:C7:B3:2E:94:B6:BC:2C X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:e0:11:fe:be:7a:2d:51:07:66:aa:98:e3:d4:d7:35:ec:e6: bc:df:94:c5:e1:95:85:8d:ab:30:78:93:66:f0:c1:50:ed:cf: 86:6a:4d:a9:cc:c6:40:43:65:5e:63:a6:df:b5:54:70:1e:b2: b8:f3:36:fd:70:3d:ac:5a:5b:11:6f:a2:40:76:9e:84:e0:e4: f7:23:12:2e:e7:25:64:10:3f:07:04:64:81:e6:da:cf:8d:dc: 52:c7:cd:4d:26:53:ab:59:bb:11:1b:dd:f3:c0:cf:e0:fa:50: e1:fa:c4:52:d2:0a:96:11:06:9e:f8:56:b2:61:1e:1d:66:b0: 36:96:ba:0d:ac:19:ea:c3:dc:10:e6:b7:3c:93:5e:c1:dd:d8: d4:54:b2:75:bd:91:96:6d:bb:4b:23:3a:2b:d5:54:c9:72:3a: fa:7f:2d:7c:2c:a9:3f:48:d2:3b:ba:25:c9:27:82:de:86:e9: c4:98:05:e2:a9:ef:51:13:e8:09:57:df:45:a4:43:f7:cc:13: fc:bf:6a:49:e1:95:97:02:a4:c9:d4:87:b0:03:0e:7f:ad:17: 99:bd:f8:9d:d2:82:db:fc:65:f7:19:cc:af:75:27:bd:cc:a4: f8:73:1f:7f:f3:ff:3d:26:61:11:2f:71:9c:2c:49:96:be:0d: 34:db:ab:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwODIzMDUyMjI1WhcNMjUwODMwMDUyMjI1WjAYMRYwFAYD VQQDEw02OGE5NTAxMi0yZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmP/AmEHdJ+P3g+SAXPennpsqRDti2jQQr63xcc9foNfNxZNbBejQj/VKSXvZ BU7uBnJ3dgjlz7PW9suSsLJ9+h0sUbwi1LKGSUb0iGjZaYafAsyF7qWCXRkmHMRw DScq4KY61hZ+o4uR4hzTUMxa2q/BdglUhD8cRL/Xh5FaojFgrBAapZ9faqHb8Q7t SnNg2X4lfsd149nLj/963WNPOyCfZqlY2wFGyzECGG4Dq7CWfeKXjHkxsIzd2gAp 0gRtV4W2qVJOU8cG0wVMq0KY4xvZ4lH/PMnBv/6bdFM1Y9SV+uisij1Q3CqPSORC 1EQWNOJLpnn9Ho/36oC81R6VDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyFTVEl kHvNOgZ7j3rHsy6UtrwsMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX4BH+vnotUQdmqpjj1Nc17Oa835TF4ZWFjasweJNm8MFQ7c+Gak2p zMZAQ2VeY6bftVRwHrK48zb9cD2sWlsRb6JAdp6E4OT3IxIu5yVkED8HBGSB5trP jdxSx81NJlOrWbsRG93zwM/g+lDh+sRS0gqWEQae+FayYR4dZrA2lroNrBnqw9wQ 5rc8k17B3djUVLJ1vZGWbbtLIzor1VTJcjr6fy18LKk/SNI7uiXJJ4LehunEmAXi qe9RE+gJV99FpEP3zBP8v2pJ4ZWXAqTJ1IewAw5/rReZvfid0oLb/GX3GcyvdSe9 zKT4cx9/8/89JmERL3GcLEmWvg0026vL -----END CERTIFICATE-----Generated at Sat Aug 23 10:43:11 2025 by rpki-client