$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft File: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft (raw, json) Hash identifier: IclyWAbKruIgFRQgqUhNnrbm7BqX0ari0DQa+dlL3Zg= Subject key identifier: E4:0D:FF:3E:EB:4C:F3:E1:79:52:E9:E7:21:81:E7:A5:9D:BD:E1:3C Authority key identifier: B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 Certificate issuer: /CN=A91EF17A/serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft Manifest number: E0 Signing time: Sat 23 Aug 2025 05:47:27 +0000 Manifest this update: Sat 23 Aug 2025 05:47:26 +0000 Manifest next update: Sat 30 Aug 2025 05:47:26 +0000 Files and hashes: 1: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl (hash: 0xy7E26QN+tVGbPs46z/PNm57yv6TYMB/4YR1T2Sgl0=) 2: B4F165084F1F11EFA3B1F709C4F9AE02.roa (hash: 6g7DJTli/YH5hSeeCwQn1OlBs7GZnC1wNbHw8krPxSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF17A, serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Validity Not Before: Aug 23 05:47:26 2025 GMT Not After : Aug 30 05:47:26 2025 GMT Subject: CN=68a955ee-fc1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:98:69:74:bc:eb:3f:90:32:69:d1:f7:5d:e0: 72:2c:d7:e3:3b:90:44:3b:a7:e1:aa:cf:11:38:a1: 30:2a:03:51:ab:2e:a2:a3:c5:e6:96:c6:d9:11:64: 60:99:c7:34:40:1f:b3:aa:94:1b:6c:22:b1:fe:8c: 2b:8f:f0:0d:e3:8d:85:09:62:c9:e0:a1:20:30:05: 4f:97:02:8b:cf:1a:7f:f9:48:71:95:42:0e:4f:39: 58:b6:72:05:dd:a0:6b:51:d1:5e:8b:9d:d8:bf:d1: e3:3f:b8:05:01:38:d7:a4:12:f9:b8:0b:94:55:87: c4:ca:1d:38:60:37:ae:47:56:d9:29:4e:6e:09:80: d2:59:7a:e5:86:16:35:92:45:42:95:5a:da:69:80: 2a:e2:73:fc:25:32:31:c3:53:96:3a:61:99:4f:e0: 83:af:b6:ec:1e:ff:d2:a4:d8:1e:ec:0c:8d:6a:96: 1c:8d:29:bf:46:46:b3:1c:26:8d:05:3b:2a:10:93: 30:2b:c0:c7:63:19:ae:d1:b6:22:f4:02:f3:41:43: 42:3b:69:6f:90:e4:03:6d:50:a1:ca:24:8f:8d:b5: a2:ae:af:a4:51:35:a0:05:33:93:0f:11:bd:4b:e2: 09:0e:fe:4d:81:4f:03:36:c8:38:bf:6f:06:ae:99: 28:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0D:FF:3E:EB:4C:F3:E1:79:52:E9:E7:21:81:E7:A5:9D:BD:E1:3C X509v3 Authority Key Identifier: keyid:B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:39:5b:1b:8c:17:22:36:4f:d5:61:e2:21:e2:1f:f5:40:ab: 53:08:94:46:3a:84:d1:99:13:16:2f:97:f1:ad:72:50:05:87: f3:8e:40:1a:59:63:f7:ec:e6:6d:a0:91:5f:6d:07:fe:c7:50: 9b:68:d8:02:a2:9e:77:b4:b0:8e:3b:8e:db:75:4a:35:4f:16: f8:fa:b7:cd:a3:36:a9:2b:6d:d2:4b:ab:10:37:aa:c7:62:18: 33:8c:e3:31:3f:c5:56:dc:70:d2:b4:a9:8d:e5:21:f8:32:52: 77:f4:7a:11:8d:bb:2c:52:a4:85:dc:20:ce:5d:c2:51:cc:58: 3d:3f:7d:a5:5c:fb:b2:f1:df:2a:a7:ec:8a:57:86:4f:44:c2: 98:c8:fb:bb:26:83:26:1a:ea:8a:93:ab:b5:df:88:25:8f:aa: 33:b7:bb:3f:e1:dc:6c:05:d6:6f:35:35:67:53:70:ac:ed:44: d0:4d:38:d8:75:95:96:d8:29:c9:00:eb:0b:5c:d1:cd:a9:cf: a6:01:58:66:48:34:7c:05:ca:ec:e2:74:c0:0e:bc:12:6e:c9: 54:40:4d:66:a7:77:8e:e9:fa:41:80:db:dd:ff:f8:c1:f9:18: 1b:b2:53:2b:8d:4e:a3:9b:d9:3a:2e:0f:01:c6:83:ed:02:c1: 43:68:4c:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxN0ExMTAvBgNVBAUTKEIzRUZBN0Q2QUUxOTlEMTQ1ODJERDRFQ0I5MTYzQTND OUQ4NDE3NTkwHhcNMjUwODIzMDU0NzI2WhcNMjUwODMwMDU0NzI2WjAYMRYwFAYD VQQDEw02OGE5NTVlZS1mYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZhpdLzrP5AyadH3XeByLNfjO5BEO6fhqs8ROKEwKgNRqy6io8XmlsbZEWRg mcc0QB+zqpQbbCKx/owrj/AN442FCWLJ4KEgMAVPlwKLzxp/+UhxlUIOTzlYtnIF 3aBrUdFei53Yv9HjP7gFATjXpBL5uAuUVYfEyh04YDeuR1bZKU5uCYDSWXrlhhY1 kkVClVraaYAq4nP8JTIxw1OWOmGZT+CDr7bsHv/SpNge7AyNapYcjSm/RkazHCaN BTsqEJMwK8DHYxmu0bYi9ALzQUNCO2lvkOQDbVChyiSPjbWirq+kUTWgBTOTDxG9 S+IJDv5NgU8DNsg4v28GrpkoDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQN/z7r TPPheVLp5yGB56WdveE8MB8GA1UdIwQYMBaAFLPvp9auGZ0UWC3U7LkWOjydhBdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE3QS83NEJCMjREMjNG NUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5SUllMZFRzdVJZNlBKMkVG MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtLW4xcTRablJSWUxkVHN1Ulk2UEoyRUYxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE3QS83NEJCMjREMjNGNUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5S UllMZFRzdVJZNlBKMkVGMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUOVsbjBciNk/VYeIh4h/1QKtTCJRGOoTRmRMWL5fxrXJQBYfzjkAa WWP37OZtoJFfbQf+x1CbaNgCop53tLCOO47bdUo1Txb4+rfNozapK23SS6sQN6rH YhgzjOMxP8VW3HDStKmN5SH4MlJ39HoRjbssUqSF3CDOXcJRzFg9P32lXPuy8d8q p+yKV4ZPRMKYyPu7JoMmGuqKk6u134glj6ozt7s/4dxsBdZvNTVnU3Cs7UTQTTjY dZWW2CnJAOsLXNHNqc+mAVhmSDR8Bcrs4nTADrwSbslUQE1mp3eO6fpBgNvd//jB +RgbslMrjU6jm9k6Lg8BxoPtAsFDaExN -----END CERTIFICATE-----Generated at Sat Aug 23 21:23:50 2025 by rpki-client