$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: taXbBJk8cfQ0t8SKi/kAKmqzkQyO/ZqLy0AdMagSAJ0= Subject key identifier: 27:D2:50:D0:B2:02:CF:6B:57:0C:5A:E0:3C:F8:65:75:9B:DC:B6:44 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0992 Signing time: Fri 22 Aug 2025 20:13:36 +0000 Manifest this update: Fri 22 Aug 2025 20:13:36 +0000 Manifest next update: Fri 29 Aug 2025 20:13:36 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: req7inTEqHCxPTmBXZT0HvqKgMwgQA8kNyRuNXUIcSw=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:13:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2465 (0x9a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Aug 22 20:13:36 2025 GMT Not After : Aug 29 20:13:36 2025 GMT Subject: CN=68a8cf70-460c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:cf:f4:40:a2:71:de:b1:50:cf:d8:bd:aa: c4:95:42:04:c9:7a:b6:27:21:92:cd:e6:c5:32:cc: 9f:52:f9:e0:36:f2:45:c7:50:dc:ef:2b:7f:47:75: 5a:b0:e9:67:3a:5b:30:b7:07:6d:e2:e8:5f:35:50: 9b:61:91:bc:7a:29:55:c6:70:b6:67:5c:50:2f:9c: bf:45:f2:a7:01:a1:6c:07:b1:39:75:aa:58:ef:b5: 4e:a9:b5:bc:c9:f7:cb:b5:be:52:cc:73:ca:77:36: b5:bf:84:02:2f:c1:c3:47:d2:46:0b:99:6a:28:36: c9:19:21:57:11:8b:f1:bf:fd:7c:76:64:8b:23:bf: 6d:52:35:07:65:ee:19:c0:bf:f8:de:f3:6d:ed:be: a6:87:0d:cb:d3:1d:a7:a7:37:e7:9a:4e:49:c3:39: 6c:5a:d1:38:50:ea:c3:b0:cb:f5:c6:fe:60:f8:04: b3:5c:ab:78:85:fb:6d:ba:64:4b:24:d6:22:dd:da: 03:41:a4:49:54:95:3e:9a:f9:dd:39:1e:d2:21:ba: 2d:df:62:b1:5f:e3:2a:0b:50:c9:4a:29:47:6e:d0: d0:72:bd:e5:b1:dc:51:c9:c5:7e:81:48:f6:b3:5f: 76:fb:75:04:a4:19:cd:4c:fc:51:c5:65:1b:89:e4: 97:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D2:50:D0:B2:02:CF:6B:57:0C:5A:E0:3C:F8:65:75:9B:DC:B6:44 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:52:f8:2e:b1:12:e7:de:65:6f:88:88:da:17:a5:2d:d7:c5: ae:43:12:4f:4d:cc:ea:d2:f2:30:45:ce:b9:68:cc:18:e6:81: 71:eb:69:75:e8:e0:58:3d:3f:38:3a:68:6c:26:39:26:2a:ad: 7b:29:45:cd:3e:54:85:f8:03:da:96:ad:09:08:fd:ec:a1:eb: b6:a2:98:5f:00:af:70:ef:86:a5:fe:14:fa:72:d4:22:ce:3e: 34:86:9d:2d:50:0c:61:d0:27:f0:9d:7a:67:f4:d8:32:a6:59: 51:f7:b6:01:d2:98:1f:ab:99:d9:ff:58:f2:d2:0b:9e:f0:9a: 7b:0a:8a:a9:d5:2b:b8:21:f7:ac:f3:63:e3:5b:e4:67:8b:1c: 32:c1:43:5e:ea:56:f8:06:51:4a:d8:8f:df:ec:8c:f1:af:39: 96:56:4b:37:cc:61:5e:56:10:dc:71:56:dd:c7:3c:53:0b:3c: 81:e7:f7:d3:85:1f:98:a5:42:9b:1f:99:ce:1b:aa:7b:bc:b5: e2:a9:b7:7b:2e:42:c0:c2:37:35:74:d2:03:f7:74:6d:cd:f4: c7:bc:da:43:ca:57:1b:d8:37:50:31:04:cb:7c:59:11:ce:7e: e5:ab:60:f5:30:c7:0a:4b:ef:6d:82:5b:b1:9d:78:13:c2:89: 89:32:f0:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUwODIyMjAxMzM2WhcNMjUwODI5MjAxMzM2WjAYMRYwFAYD VQQDEw02OGE4Y2Y3MC00NjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSTP9ECicd6xUM/YvarElUIEyXq2JyGSzebFMsyfUvngNvJFx1Dc7yt/R3Va sOlnOlswtwdt4uhfNVCbYZG8eilVxnC2Z1xQL5y/RfKnAaFsB7E5dapY77VOqbW8 yffLtb5SzHPKdza1v4QCL8HDR9JGC5lqKDbJGSFXEYvxv/18dmSLI79tUjUHZe4Z wL/43vNt7b6mhw3L0x2npzfnmk5JwzlsWtE4UOrDsMv1xv5g+ASzXKt4hfttumRL JNYi3doDQaRJVJU+mvndOR7SIbot32KxX+MqC1DJSilHbtDQcr3lsdxRycV+gUj2 s192+3UEpBnNTPxRxWUbieSXHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfSUNCy As9rVwxa4Dz4ZXWb3LZEMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaUvgusRLn3mVviIjaF6Ut18WuQxJPTczq0vIwRc65aMwY5oFx62l1 6OBYPT84OmhsJjkmKq17KUXNPlSF+APalq0JCP3soeu2ophfAK9w74al/hT6ctQi zj40hp0tUAxh0CfwnXpn9NgypllR97YB0pgfq5nZ/1jy0gue8Jp7Coqp1Su4Ifes 82PjW+RnixwywUNe6lb4BlFK2I/f7IzxrzmWVks3zGFeVhDccVbdxzxTCzyB5/fT hR+YpUKbH5nOG6p7vLXiqbd7LkLAwjc1dNID93RtzfTHvNpDylcb2DdQMQTLfFkR zn7lq2D1MMcKS+9tgluxnXgTwomJMvBE -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:23 2025 by rpki-client