$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: SP33UU/fHRsTXRdE1O8SFBpcVE8OXPzRWobe+r28+gw= Subject key identifier: 0B:4E:38:F2:69:73:2F:7D:D8:56:C3:39:3F:2F:00:34:82:CE:DF:B7 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0BAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0BA8 Signing time: Fri 22 Aug 2025 19:05:49 +0000 Manifest this update: Fri 22 Aug 2025 19:05:48 +0000 Manifest next update: Fri 29 Aug 2025 19:05:48 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: FrCCxWKCjGIKovdsB0oOEfbAOe9NZH7kXO7wu9WllnE=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: VUxxRKza4YtkY3CW36/yWhqdjkRvkusFphcVpxC9+Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89, serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Aug 22 19:05:48 2025 GMT Not After : Aug 29 19:05:48 2025 GMT Subject: CN=68a8bf8d-f1db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3a:ac:c2:82:31:9e:8d:c9:e1:e6:e5:e6:40: e3:19:39:80:21:03:10:b8:95:f6:a7:bb:54:8a:63: fb:2d:53:cd:8f:b3:b2:eb:b5:57:cf:66:8b:0c:fc: bc:d0:ae:a1:3d:00:80:ce:9e:5e:b1:1d:cc:48:90: 68:75:e8:a9:a6:0a:19:2d:df:cc:22:b9:8a:f5:b6: 2b:b3:eb:77:6f:76:c0:50:75:46:88:b6:c7:ac:a6: b8:b2:3e:ae:f0:af:d1:19:1e:ee:2c:59:4f:56:24: f2:6a:c6:12:8a:02:d7:29:c3:c8:97:d0:c6:11:79: 1d:2f:04:b2:08:a4:a2:b6:f4:1d:1a:c3:45:7e:bf: f7:be:bd:20:61:a9:c6:1e:ac:02:6a:13:d3:bc:8d: 93:da:c6:19:10:fb:55:a1:ba:a9:77:1c:76:c8:57: 36:82:bc:ab:51:fd:f4:2b:71:8f:eb:a3:4b:c3:d6: 8a:f3:dd:96:7a:ec:39:bf:70:9d:81:3d:7c:0d:18: 71:97:00:9e:70:d2:cf:5f:1d:19:0d:cc:2c:ae:9d: fe:50:23:78:19:21:3d:79:c8:9d:49:2e:f2:ed:7f: 75:60:a4:1a:98:ba:d3:63:0f:ea:cc:aa:70:6a:c0: 6d:bb:da:65:83:98:89:2c:ea:89:18:e2:cd:ee:b3: 8f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:4E:38:F2:69:73:2F:7D:D8:56:C3:39:3F:2F:00:34:82:CE:DF:B7 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0d:25:80:58:44:e4:ca:b9:c4:c4:57:5b:20:e7:ee:15:91: 21:48:60:74:18:90:ec:ee:dd:f8:ac:c2:7e:dc:cc:ff:99:f0: bb:c0:7e:d0:6b:27:74:02:2c:31:c6:fc:79:5e:af:f1:e2:11: b8:b7:5a:fb:cd:1a:5b:38:83:c1:21:fc:4f:25:b2:74:26:12: 48:14:38:db:42:30:41:e7:aa:88:51:1d:23:fb:8e:ac:2c:04: e1:1e:b6:1b:38:2f:b8:32:ab:0b:1d:a9:a2:2e:84:5c:be:f1: 0d:e4:ce:9d:f5:9d:cb:fe:63:04:d2:8b:0f:74:e3:e9:ad:29: 4b:c8:48:6f:c1:75:d2:bd:3f:3d:3f:d9:88:95:66:f5:c6:a5: 19:f6:8b:e0:ee:4b:d0:1e:80:77:c6:3f:89:c3:50:05:5f:fb: 90:7d:4f:b1:0b:ca:d7:5b:eb:e6:42:f0:b9:94:82:95:00:94: f0:e4:60:46:9b:cd:cf:3e:4e:f9:b0:19:0d:56:ef:f1:88:c9: a5:bd:35:3f:6f:da:a1:b0:6a:59:f0:d3:9c:31:b6:d1:1e:79: 51:7b:63:d3:f8:a1:54:07:9f:9f:fa:40:27:b0:1b:70:73:dd: 48:88:d8:db:61:30:2d:c5:94:50:26:4f:f7:e4:85:42:71:8e: aa:28:31:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjUwODIyMTkwNTQ4WhcNMjUwODI5MTkwNTQ4WjAYMRYwFAYD VQQDEw02OGE4YmY4ZC1mMWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zqswoIxno3J4ebl5kDjGTmAIQMQuJX2p7tUimP7LVPNj7Oy67VXz2aLDPy8 0K6hPQCAzp5esR3MSJBodeippgoZLd/MIrmK9bYrs+t3b3bAUHVGiLbHrKa4sj6u 8K/RGR7uLFlPViTyasYSigLXKcPIl9DGEXkdLwSyCKSitvQdGsNFfr/3vr0gYanG HqwCahPTvI2T2sYZEPtVobqpdxx2yFc2gryrUf30K3GP66NLw9aK892Weuw5v3Cd gT18DRhxlwCecNLPXx0ZDcwsrp3+UCN4GSE9ecidSS7y7X91YKQamLrTYw/qzKpw asBtu9plg5iJLOqJGOLN7rOPWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtOOPJp cy992FbDOT8vADSCzt+3MB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6DSWAWETkyrnExFdbIOfuFZEhSGB0GJDs7t34rMJ+3Mz/mfC7wH7Q ayd0Aiwxxvx5Xq/x4hG4t1r7zRpbOIPBIfxPJbJ0JhJIFDjbQjBB56qIUR0j+46s LAThHrYbOC+4MqsLHamiLoRcvvEN5M6d9Z3L/mME0osPdOPprSlLyEhvwXXSvT89 P9mIlWb1xqUZ9ovg7kvQHoB3xj+Jw1AFX/uQfU+xC8rXW+vmQvC5lIKVAJTw5GBG m83PPk75sBkNVu/xiMmlvTU/b9qhsGpZ8NOcMbbRHnlRe2PT+KFUB5+f+kAnsBtw c91IiNjbYTAtxZRQJk/35IVCcY6qKDEt -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:57 2025 by rpki-client