$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: wX6vBq9qnu2IoqZAl0q2hxGr78kWlJrg4nicRPmDgn4= Subject key identifier: 7C:11:2D:2D:77:A1:BA:39:CE:18:CA:01:5A:AE:9E:D0:D7:16:F0:F3 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: D8 Signing time: Sat 23 Aug 2025 05:46:59 +0000 Manifest this update: Sat 23 Aug 2025 05:46:59 +0000 Manifest next update: Sat 30 Aug 2025 05:46:59 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: eCYOJEHr6LVucFGxwTEx+owyxgcmHY23hBQ1OFvFa5A=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Aug 23 05:46:59 2025 GMT Not After : Aug 30 05:46:59 2025 GMT Subject: CN=68a955d3-1eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:cc:0d:1a:c6:fe:f1:3b:93:9d:18:e9:51:72: bc:0f:80:5e:04:5c:47:b1:dc:82:bb:8d:c1:b9:68: 39:65:dc:21:33:d9:c4:18:44:68:ff:93:8c:d7:5b: 15:28:eb:01:1b:c9:ba:a1:e5:de:48:b2:3e:71:de: f9:75:95:75:7c:0a:8d:7b:36:ea:eb:72:8f:0d:5f: a8:15:f2:5d:a0:9f:6b:fc:5f:e8:e5:42:c4:98:63: de:81:69:d6:7d:47:42:ca:66:40:b5:92:74:d6:9e: fa:c0:d9:86:7c:52:a7:d5:ba:86:c1:9c:b8:2f:da: 34:93:3e:9b:88:64:fd:78:76:f2:cd:2e:3b:5e:b3: 83:2e:fc:89:0d:21:07:14:08:f1:91:86:45:79:4a: 19:44:f4:24:52:e6:2a:9c:aa:b3:2e:77:9c:df:3b: 45:d9:c7:7d:f6:da:5c:9c:ce:fb:21:6f:02:39:a6: 84:13:42:5c:c0:2e:c6:57:02:16:00:b1:ff:99:03: 2d:65:c3:39:ea:14:db:9b:a8:e9:d8:8e:a3:f0:67: 1d:ec:21:7d:ef:13:4f:f4:32:03:24:16:f5:7d:a2: f0:47:2a:d7:88:5f:f1:19:26:fc:d6:00:aa:9d:5c: e8:fc:50:63:20:de:ad:f3:98:79:66:f9:e8:67:ba: 10:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:11:2D:2D:77:A1:BA:39:CE:18:CA:01:5A:AE:9E:D0:D7:16:F0:F3 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:58:9f:0e:df:ca:87:cd:7f:6e:d2:db:a6:88:55:69:d2:7e: 15:e3:da:c7:87:3f:90:51:e2:94:1e:50:45:50:22:ad:9f:70: 48:ea:cf:23:ea:91:56:0a:31:b6:81:14:23:12:4e:8f:73:19: e2:66:68:f1:84:b4:b1:82:c0:33:0a:dd:ae:9f:d4:5e:8a:44: 09:00:30:54:76:e4:6a:8d:6f:27:33:30:b2:ff:31:cd:64:ad: aa:cd:a7:a3:37:27:3a:eb:34:f3:e8:b1:d6:70:13:e7:aa:fa: dc:05:65:0b:77:0f:e1:f9:15:a7:5a:81:d6:5f:38:96:76:77: 13:30:95:4f:fc:20:3d:25:43:76:c1:fc:8c:61:7e:f1:39:7e: c5:f0:83:0a:97:5d:7d:14:ed:5a:e4:8e:ef:ce:56:5c:97:59: a0:dc:5f:d6:d3:fb:74:66:bb:76:4e:0b:d1:ba:dd:a4:d8:d0: 7e:9f:b3:a7:1e:a8:c7:54:98:17:19:c0:ad:c7:bb:3e:0d:ba: 4d:c5:c2:ea:94:d3:cb:96:02:04:6a:9e:2d:a2:64:fc:9b:fb: 0e:bb:81:62:dc:2d:93:7d:16:42:56:60:45:0c:02:9f:fc:25: 01:68:58:8c:62:dd:bd:ca:a0:fd:8e:77:f4:e3:3b:18:32:b8: 97:d6:b5:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwODIzMDU0NjU5WhcNMjUwODMwMDU0NjU5WjAYMRYwFAYD VQQDEw02OGE5NTVkMy0xZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA98wNGsb+8TuTnRjpUXK8D4BeBFxHsdyCu43BuWg5ZdwhM9nEGERo/5OM11sV KOsBG8m6oeXeSLI+cd75dZV1fAqNezbq63KPDV+oFfJdoJ9r/F/o5ULEmGPegWnW fUdCymZAtZJ01p76wNmGfFKn1bqGwZy4L9o0kz6biGT9eHbyzS47XrODLvyJDSEH FAjxkYZFeUoZRPQkUuYqnKqzLnec3ztF2cd99tpcnM77IW8COaaEE0JcwC7GVwIW ALH/mQMtZcM56hTbm6jp2I6j8Gcd7CF97xNP9DIDJBb1faLwRyrXiF/xGSb81gCq nVzo/FBjIN6t85h5ZvnoZ7oQjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwRLS13 obo5zhjKAVquntDXFvDzMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANWJ8O38qHzX9u0tumiFVp0n4V49rHhz+QUeKUHlBFUCKtn3BI6s8j 6pFWCjG2gRQjEk6PcxniZmjxhLSxgsAzCt2un9ReikQJADBUduRqjW8nMzCy/zHN ZK2qzaejNyc66zTz6LHWcBPnqvrcBWULdw/h+RWnWoHWXziWdncTMJVP/CA9JUN2 wfyMYX7xOX7F8IMKl119FO1a5I7vzlZcl1mg3F/W0/t0Zrt2TgvRut2k2NB+n7On HqjHVJgXGcCtx7s+DbpNxcLqlNPLlgIEap4tomT8m/sOu4Fi3C2TfRZCVmBFDAKf /CUBaFiMYt29yqD9jnf04zsYMriX1rU3 -----END CERTIFICATE-----Generated at Sat Aug 23 20:31:20 2025 by rpki-client