$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: ycnMrxDJqQt7o4Vjni5jidf6Tza4WSQDKiavjoSz1v4= Subject key identifier: A5:72:1F:DD:1A:49:33:08:0F:25:4E:F3:00:81:10:BA:CE:95:4C:2E Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0C3D Signing time: Fri 22 Aug 2025 19:25:56 +0000 Manifest this update: Fri 22 Aug 2025 19:25:55 +0000 Manifest next update: Fri 29 Aug 2025 19:25:55 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: 9btvvLb6g3BI3xaWyUJlf3huH7TC/bOzMxr1iKGpbug=) 2: 6360524E03D311F0A6C64177C4F9AE02.roa (hash: aDdJ1zHHJM2Pp/llY4+TjUByw8VD+3beZi6B31AyTJ8=) 3: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: fNb48r4M+gfLXajaKFGp8VWXxugH32v0si+d8iboCho=) 4: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: EO+r4YCRXrWQGjZoJ/CD1KsxdVzlBHVNlbdYh39PLSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Aug 22 19:25:55 2025 GMT Not After : Aug 29 19:25:55 2025 GMT Subject: CN=68a8c444-6f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b5:fb:08:77:38:f6:d0:4b:57:c7:4f:c0:7e: 78:c9:81:e4:45:e0:66:31:35:c3:a1:83:87:ca:da: 04:55:72:d7:45:e2:9b:12:8c:dd:6a:55:39:9e:ab: 76:03:17:b3:15:71:bd:2f:01:ef:36:92:a3:7f:a8: 75:71:1a:98:dc:45:13:5c:45:40:ba:04:11:7d:39: de:ff:39:62:c5:18:21:07:9f:20:32:e1:1e:8b:73: c3:1a:c0:e3:da:0d:5e:3b:71:59:48:74:56:21:45: 0a:0b:25:31:e9:20:51:47:5b:08:da:9e:1b:98:c7: 84:ba:b0:63:fe:dc:81:ef:fe:ae:d2:99:7a:dd:63: 22:41:f8:2e:10:49:54:2a:21:f6:1d:df:18:bb:93: 17:a3:48:99:74:eb:7f:51:0e:4d:82:21:a5:c1:8d: 0d:b3:79:7a:50:7c:4c:fc:93:b5:d0:97:32:2d:af: d6:4f:7f:0e:0a:e8:9a:15:67:cb:f3:d2:4f:a8:dc: 2e:a0:9b:45:86:bd:b1:78:40:1a:f5:92:93:32:83: 3b:fe:6a:5a:46:57:c4:89:fd:37:bc:a2:00:fb:f9: 18:24:df:26:34:cc:35:97:99:56:4e:66:f1:99:68: 91:ac:1d:b3:cb:34:1e:3f:8d:a2:fb:93:d2:c0:ca: 25:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:72:1F:DD:1A:49:33:08:0F:25:4E:F3:00:81:10:BA:CE:95:4C:2E X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:02:e3:0f:82:be:61:81:13:60:24:3f:07:1c:e3:06:37:ef: 1e:4f:83:e6:ec:39:27:c4:5c:5a:63:7b:bc:a2:5f:c0:e7:5b: 39:d9:80:db:e3:58:4d:38:53:02:d8:4a:7e:63:70:d4:a6:f5: 62:6b:df:49:2a:76:cd:11:03:79:38:4a:41:ba:91:81:6d:09: 90:f8:72:17:73:69:27:35:f1:71:2e:20:d6:e0:c5:48:f4:29: 9a:80:6c:eb:e4:b7:f1:73:75:bf:07:2b:3d:fb:e5:c7:f0:d0: c2:12:46:f0:4f:d2:f9:65:bc:f2:f6:e9:87:95:92:c4:97:34: 3b:60:d8:c8:82:89:a3:a5:70:e2:f9:e4:37:60:d5:00:c6:a4: 4f:89:af:96:72:45:6f:4d:ae:7f:c2:7d:43:f4:9c:01:0b:b0: 77:c5:e0:3a:55:d7:60:d0:f0:30:f5:53:56:fe:28:1f:e4:b4: 9c:ba:bd:84:c5:7d:cd:22:d7:5f:2a:0f:35:c4:74:3e:0c:f1: 20:f9:d3:e7:09:f3:95:b8:08:b8:8e:1e:3d:aa:6a:9c:2f:d7: 1e:5e:a8:6c:97:20:10:0e:58:66:b7:3b:d5:ec:9d:b1:9c:c1: 54:ba:10:f7:18:5a:d9:ee:57:86:d3:ea:29:72:be:4b:49:f3: 78:f5:cf:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUwODIyMTkyNTU1WhcNMjUwODI5MTkyNTU1WjAYMRYwFAYD VQQDEw02OGE4YzQ0NC02ZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLX7CHc49tBLV8dPwH54yYHkReBmMTXDoYOHytoEVXLXReKbEozdalU5nqt2 AxezFXG9LwHvNpKjf6h1cRqY3EUTXEVAugQRfTne/zlixRghB58gMuEei3PDGsDj 2g1eO3FZSHRWIUUKCyUx6SBRR1sI2p4bmMeEurBj/tyB7/6u0pl63WMiQfguEElU KiH2Hd8Yu5MXo0iZdOt/UQ5NgiGlwY0Ns3l6UHxM/JO10JcyLa/WT38OCuiaFWfL 89JPqNwuoJtFhr2xeEAa9ZKTMoM7/mpaRlfEif03vKIA+/kYJN8mNMw1l5lWTmbx mWiRrB2zyzQeP42i+5PSwMolXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVyH90a STMIDyVO8wCBELrOlUwuMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFAuMPgr5hgRNgJD8HHOMGN+8eT4Pm7DknxFxaY3u8ol/A51s52YDb 41hNOFMC2Ep+Y3DUpvVia99JKnbNEQN5OEpBupGBbQmQ+HIXc2knNfFxLiDW4MVI 9CmagGzr5Lfxc3W/Bys9++XH8NDCEkbwT9L5Zbzy9umHlZLElzQ7YNjIgomjpXDi +eQ3YNUAxqRPia+WckVvTa5/wn1D9JwBC7B3xeA6Vddg0PAw9VNW/igf5LScur2E xX3NItdfKg81xHQ+DPEg+dPnCfOVuAi4jh49qmqcL9ceXqhslyAQDlhmtzvV7J2x nMFUuhD3GFrZ7leG0+opcr5LSfN49c/O -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:47 2025 by rpki-client