$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft File: _lDDhdnrGeLvoU-jWtpb3qW0VtM.mft (raw, json) Hash identifier: M9vXV348caOR4EzTLtmoEHgIYxsgLqOVWZqWLMFNeUo= Subject key identifier: 57:3F:1A:03:35:F4:64:B4:55:4A:C2:6A:D2:B5:98:53:62:E5:F0:26 Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft Manifest number: 0590 Signing time: Fri 22 Aug 2025 23:34:22 +0000 Manifest this update: Fri 22 Aug 2025 23:34:21 +0000 Manifest next update: Fri 29 Aug 2025 23:34:21 +0000 Files and hashes: 1: _lDDhdnrGeLvoU-jWtpb3qW0VtM.crl (hash: 4xHyTeSxeJ3DDBmsAX7LTZK3si7UDdego2li/WrFT7c=) 2: 65DFCD4A884D11EE8423C486C4F9AE02.roa (hash: Ji5QHhKyC9d/xw16UVd29SWOnnXI9pwAI1DiN2SnuG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Validity Not Before: Aug 22 23:34:21 2025 GMT Not After : Aug 29 23:34:21 2025 GMT Subject: CN=68a8fe7e-a57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:65:75:ae:45:c5:2f:24:af:d8:1d:a8:1c: 16:bc:d1:30:98:a1:5c:a0:42:33:c6:47:94:1b:93: f3:ec:74:33:c3:04:ed:bf:aa:df:b1:3d:ee:e6:3c: 19:7a:e5:1b:c1:11:c1:e1:91:a1:82:c1:56:17:79: 27:46:44:e4:dd:f9:bb:96:b5:f8:9c:0b:aa:51:39: ed:8d:60:f9:2a:2f:d3:9e:3e:e1:ae:47:d7:73:8b: 70:0c:46:37:19:22:c6:93:32:12:ad:df:20:c7:c4: 45:71:6c:dd:8f:1a:1e:32:8a:2f:ee:ef:68:c9:f2: bd:a0:cd:97:e2:aa:f6:a3:68:8a:48:8a:6e:37:c9: b5:bb:a9:a9:62:cb:7f:b3:ac:79:a1:64:9e:1b:63: d9:e2:1f:9b:0b:f0:b8:5b:3b:db:09:d4:31:50:29: 44:6c:b9:10:df:76:48:00:3b:b9:8f:57:1f:8d:b3: cb:5d:a4:e3:4e:fc:3a:66:fb:68:e6:9e:6c:e9:fc: 01:85:16:97:c2:bb:f0:68:61:59:ef:61:fb:40:fb: 50:d1:51:92:22:53:ee:ab:39:bc:c0:d0:81:b4:2b: 58:a9:56:83:17:2e:94:1c:ae:23:76:bf:e9:92:d1: d2:7e:d7:37:d1:d9:4b:24:c2:69:e1:bc:99:50:06: 48:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3F:1A:03:35:F4:64:B4:55:4A:C2:6A:D2:B5:98:53:62:E5:F0:26 X509v3 Authority Key Identifier: keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:a2:92:d0:f5:7d:5c:c9:cd:db:70:36:1e:7d:0d:ee:53:60: 33:d1:3d:44:f9:b5:51:dd:c4:dc:29:87:d7:4d:c6:f0:a3:38: b5:87:27:be:39:a8:10:0a:f0:3f:00:f8:a7:d4:51:9a:ee:e1: 69:db:98:20:cf:68:ad:3d:16:49:b1:b6:f5:e0:68:03:81:16: 4f:81:dd:74:ef:83:82:c1:08:a5:49:56:34:5f:5f:2c:d8:4b: 85:e8:4b:07:df:0e:67:e0:f4:2c:9d:36:0b:d9:e4:c3:3f:6b: 02:57:8f:b7:ab:66:53:75:df:0f:96:24:4d:a5:87:9a:19:e1: 4f:5a:01:f4:cc:75:e2:f7:d3:0b:2f:92:08:2c:96:a0:41:86: bb:c7:bf:a6:86:94:26:e2:9e:8f:d6:e5:7d:04:01:c9:0d:5c: 39:02:2c:67:f9:48:29:17:a8:11:ce:79:21:b3:8d:13:20:08: 38:4e:0b:16:12:fb:ee:37:19:3a:67:05:70:3b:cb:3d:8e:e7: 86:84:84:07:f8:6c:c4:15:e3:b0:4f:d7:54:44:c4:c2:a3:e2: 99:af:fd:10:ef:56:4b:f6:86:55:b7:87:ad:6d:2c:8f:c9:3f: 43:c9:b0:1e:e1:8b:70:7f:f8:28:f0:31:cb:dc:b7:50:5a:a3: 69:63:8a:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjExMTAvBgNVBAUTKEZFNTBDMzg1RDlFQjE5RTJFRkExNEZBMzVBREE1QkRF QTVCNDU2RDMwHhcNMjUwODIyMjMzNDIxWhcNMjUwODI5MjMzNDIxWjAYMRYwFAYD VQQDEw02OGE4ZmU3ZS1hNTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2xlda5FxS8kr9gdqBwWvNEwmKFcoEIzxkeUG5Pz7HQzwwTtv6rfsT3u5jwZ euUbwRHB4ZGhgsFWF3knRkTk3fm7lrX4nAuqUTntjWD5Ki/Tnj7hrkfXc4twDEY3 GSLGkzISrd8gx8RFcWzdjxoeMoov7u9oyfK9oM2X4qr2o2iKSIpuN8m1u6mpYst/ s6x5oWSeG2PZ4h+bC/C4WzvbCdQxUClEbLkQ33ZIADu5j1cfjbPLXaTjTvw6Zvto 5p5s6fwBhRaXwrvwaGFZ72H7QPtQ0VGSIlPuqzm8wNCBtCtYqVaDFy6UHK4jdr/p ktHSftc30dlLJMJp4byZUAZIHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFc/GgM1 9GS0VUrCatK1mFNi5fAmMB8GA1UdIwQYMBaAFP5Qw4XZ6xni76FPo1raW96ltFbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMS82NkU0RTRGNkZC NDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdlTHZvVS1qV3RwYjNxVzBW dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sRERoZG5yR2VMdm9VLWpXdHBiM3FXMFZ0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMS82NkU0RTRGNkZCNDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdl THZvVS1qV3RwYjNxVzBWdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/opLQ9X1cyc3bcDYefQ3uU2Az0T1E+bVR3cTcKYfXTcbwozi1hye+ OagQCvA/APin1FGa7uFp25ggz2itPRZJsbb14GgDgRZPgd1074OCwQilSVY0X18s 2EuF6EsH3w5n4PQsnTYL2eTDP2sCV4+3q2ZTdd8PliRNpYeaGeFPWgH0zHXi99ML L5IILJagQYa7x7+mhpQm4p6P1uV9BAHJDVw5Aixn+UgpF6gRznkhs40TIAg4TgsW EvvuNxk6ZwVwO8s9jueGhIQH+GzEFeOwT9dURMTCo+KZr/0Q71ZL9oZVt4etbSyP yT9DybAe4Ytwf/go8DHL3LdQWqNpY4rC -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:24 2025 by rpki-client