$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft File: _thOn-AVmpk3ohk6C326I7bCZbg.mft (raw, json) Hash identifier: 5py9irNO//a57YTNVcszu1YC1/bxBRKCTLz0fId4rkI= Subject key identifier: A1:37:E6:53:9A:B5:1F:0A:3C:6E:0C:FE:59:BD:14:38:C4:41:02:67 Authority key identifier: FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 Certificate issuer: /CN=A91EDBB0/serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft Manifest number: 50 Signing time: Sat 23 Aug 2025 07:32:49 +0000 Manifest this update: Sat 23 Aug 2025 07:32:48 +0000 Manifest next update: Sat 30 Aug 2025 07:32:48 +0000 Files and hashes: 1: _thOn-AVmpk3ohk6C326I7bCZbg.crl (hash: hAEiol6OXIh2US+V9aeBZ26O71ZQ7Jj7tVgV5HucUqA=) 2: 18317928083911F0A2909A72C4F9AE02.roa (hash: fPnd9TCItmXimGuCENGl/4MsqPzHHL+sjFkQjjF93Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDBB0, serialNumber=FED84E9FE0159A9937A2193A0B7DBA23B6C265B8 Validity Not Before: Aug 23 07:32:48 2025 GMT Not After : Aug 30 07:32:48 2025 GMT Subject: CN=68a96ea1-e6f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e0:52:d7:6b:0e:ad:d6:96:f4:e0:71:51:85: a0:06:c4:e6:35:12:88:22:76:37:af:e8:06:68:48: 84:0f:3b:ff:10:7b:1a:f1:2c:3f:e6:0e:8c:4d:a8: d8:5c:d4:f1:57:2c:78:58:45:a8:f1:13:c5:03:eb: 1d:ac:1b:03:d6:9f:81:81:8b:7d:bf:67:4e:72:1c: d7:fa:6c:9c:f8:85:60:08:be:34:97:3f:dc:fe:16: 77:45:54:2b:2c:80:76:c3:dc:8e:42:70:7c:ef:65: c2:19:40:a0:b8:80:bd:ed:b6:80:b6:d8:0c:82:cb: f2:89:3a:da:be:66:8a:e6:45:72:d7:35:84:ad:bf: b0:99:43:17:bf:3e:73:0b:09:ac:53:72:4b:ef:78: 02:5b:b5:fd:0c:06:68:ea:1c:a0:77:2e:eb:ee:77: 61:4a:f2:10:a7:1e:f6:b8:36:34:8f:98:cc:28:20: 60:de:e6:14:ea:a2:67:7b:1e:a0:1d:dd:6d:65:85: b2:1d:1b:8a:b9:27:14:88:3e:1a:a1:77:5e:85:23: b4:a6:44:a6:3f:0f:bd:10:0b:a1:6e:f3:44:1c:c0: 40:e5:5e:cd:d6:34:24:ce:16:87:0d:37:9d:93:0e: 31:3c:77:23:d8:22:19:b5:83:b1:26:6f:fd:c8:5d: 90:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:37:E6:53:9A:B5:1F:0A:3C:6E:0C:FE:59:BD:14:38:C4:41:02:67 X509v3 Authority Key Identifier: keyid:FE:D8:4E:9F:E0:15:9A:99:37:A2:19:3A:0B:7D:BA:23:B6:C2:65:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_thOn-AVmpk3ohk6C326I7bCZbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDBB0/E653E51207ED11F0B0A68764C4F9AE02/_thOn-AVmpk3ohk6C326I7bCZbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:23:14:33:de:cb:9a:06:17:69:f2:10:9b:ad:77:24:6a:c6: ea:cb:29:ea:c4:1d:37:6c:36:9d:21:f1:cc:eb:0c:0c:53:78: cf:00:fa:d6:fb:ad:a9:72:ae:34:74:ec:ed:8c:18:4d:81:e1: 5f:a1:91:de:de:eb:89:85:b2:95:cc:6f:d5:32:1b:e5:6b:42: 29:3e:a2:e1:6a:0b:88:9e:b6:fa:ba:f2:65:ca:62:49:db:14: d4:23:c6:2c:7a:e8:2f:04:23:b0:2b:0c:66:7e:de:84:2f:f1: 1f:32:63:67:50:69:0e:41:fc:10:b2:ad:f6:00:08:71:ae:36: 9b:cd:2f:9d:4f:dc:e2:ea:8b:45:6f:2c:68:9d:0a:24:9f:ce: 38:e7:52:39:de:8b:da:39:31:f1:7d:5f:fc:69:b1:7b:86:a6: fe:6b:47:51:92:69:a1:a9:34:4d:b1:27:a2:29:be:b5:67:55: c1:b9:6b:48:b1:59:25:04:88:ac:d0:12:54:f3:58:f7:3b:b2: 3f:7a:14:9a:93:5b:88:2b:e6:c8:bf:12:9f:c6:44:07:74:5d: a6:58:23:31:98:2d:ea:44:2f:b0:be:c0:9d:11:21:bf:ea:6f: 3d:12:e3:34:83:14:15:1c:62:6a:bd:92:46:d5:da:75:06:f9: fb:66:ad:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REJCMDExMC8GA1UEBRMoRkVEODRFOUZFMDE1OUE5OTM3QTIxOTNBMEI3REJBMjNC NkMyNjVCODAeFw0yNTA4MjMwNzMyNDhaFw0yNTA4MzAwNzMyNDhaMBgxFjAUBgNV BAMTDTY4YTk2ZWExLWU2ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp4FLXaw6t1pb04HFRhaAGxOY1Eogidjev6AZoSIQPO/8QexrxLD/mDoxNqNhc 1PFXLHhYRajxE8UD6x2sGwPWn4GBi32/Z05yHNf6bJz4hWAIvjSXP9z+FndFVCss gHbD3I5CcHzvZcIZQKC4gL3ttoC22AyCy/KJOtq+ZormRXLXNYStv7CZQxe/PnML CaxTckvveAJbtf0MBmjqHKB3Luvud2FK8hCnHva4NjSPmMwoIGDe5hTqomd7HqAd 3W1lhbIdG4q5JxSIPhqhd16FI7SmRKY/D70QC6Fu80QcwEDlXs3WNCTOFocNN52T DjE8dyPYIhm1g7Emb/3IXZBNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoTfmU5q1 Hwo8bgz+Wb0UOMRBAmcwHwYDVR0jBBgwFoAU/thOn+AVmpk3ohk6C326I7bCZbgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEQkIwL0U2NTNFNTEyMDdF RDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBrM29oazZDMzI2STdiQ1pi Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX3RoT24tQVZtcGszb2hrNkMzMjZJN2JDWmJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE QkIwL0U2NTNFNTEyMDdFRDExRjBCMEE2ODc2NEM0RjlBRTAyL190aE9uLUFWbXBr M29oazZDMzI2STdiQ1piZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA4jFDPey5oGF2nyEJutdyRqxurLKerEHTdsNp0h8czrDAxTeM8A+tb7 ralyrjR07O2MGE2B4V+hkd7e64mFspXMb9UyG+VrQik+ouFqC4ietvq68mXKYknb FNQjxix66C8EI7ArDGZ+3oQv8R8yY2dQaQ5B/BCyrfYACHGuNpvNL51P3OLqi0Vv LGidCiSfzjjnUjnei9o5MfF9X/xpsXuGpv5rR1GSaaGpNE2xJ6IpvrVnVcG5a0ix WSUEiKzQElTzWPc7sj96FJqTW4gr5si/Ep/GRAd0XaZYIzGYLepEL7C+wJ0RIb/q bz0S4zSDFBUcYmq9kkbV2nUG+ftmrUY= -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:50 2025 by rpki-client