$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: 2E5BTknT0Cm7TGQUB0ehpob2RYzrrdoSPwfWddu97EY= Subject key identifier: D3:8D:0E:68:71:73:06:B7:FB:EA:1C:28:1B:0B:0B:DB:8A:2F:99:3C Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 089B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 140A Signing time: Fri 22 Aug 2025 19:09:59 +0000 Manifest this update: Fri 22 Aug 2025 19:09:58 +0000 Manifest next update: Fri 29 Aug 2025 19:09:58 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: 8YZPPhSwhRCJjltomA0N+cBRyjDZirF9mUfeVNO5IGY=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Aug 22 19:09:58 2025 GMT Not After : Aug 29 19:09:58 2025 GMT Subject: CN=68a8c086-c8bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:d6:9d:2d:bb:c9:da:91:01:d1:c2:83:cb:34: c5:91:c2:51:df:12:7f:e4:3b:f7:21:35:a1:27:84: 7c:69:43:ee:37:a2:5b:24:8b:ea:db:dd:d0:a6:ec: 83:0a:14:37:04:7a:c5:22:db:38:58:89:65:4c:da: 3c:58:1b:4d:a5:c1:7e:51:e2:fe:92:85:ed:c5:55: 63:6c:b9:9d:25:16:00:cf:5d:85:35:e4:43:c2:76: 5e:cf:a1:1e:d9:8d:fa:cd:cd:d0:17:4b:be:b2:76: 06:89:db:d8:54:f1:8b:c3:52:f1:03:90:69:d7:d1: 13:ce:d9:5f:9d:e0:dc:44:49:8f:44:e9:dd:11:8c: 37:62:94:8f:d2:5e:e7:af:75:e3:79:38:33:16:46: b3:72:b5:7c:aa:c9:f5:91:62:7b:e0:c9:df:b5:4a: 7c:84:9a:42:a2:2c:a6:f6:21:d2:7b:df:3e:24:46: 14:ce:0c:26:09:ba:ff:84:d9:92:56:07:84:25:26: d6:69:ea:ca:1e:4a:ff:8a:66:46:bf:02:3a:4c:1c: e9:f1:0b:14:c9:c7:1f:3f:e2:2d:e5:66:b5:ee:94: 7b:42:77:9e:1a:26:2d:bd:92:cc:1c:d5:2a:f0:bf: b2:82:0f:0d:ba:0e:99:84:80:dd:f7:57:23:2b:ed: e6:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8D:0E:68:71:73:06:B7:FB:EA:1C:28:1B:0B:0B:DB:8A:2F:99:3C X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f2:88:7f:61:12:2c:ac:93:dd:42:2c:7b:0b:0a:58:a3:b7: 85:dc:15:c6:99:9e:18:46:7b:e4:56:3b:87:d3:bd:1c:07:74: 32:0a:24:8c:84:56:f8:df:eb:c4:ea:60:07:2e:c9:3f:57:7f: 97:36:a0:db:9b:7b:c5:cb:e0:1a:2c:a3:e7:0d:e6:d3:bd:91: 7d:f8:02:a3:58:0e:0c:d4:25:ca:34:b1:64:fc:6b:4e:e2:63: 61:bb:b6:a6:f4:d4:d4:44:2b:44:c4:95:75:c7:eb:48:c8:56: e2:23:e7:e0:11:ec:79:2b:cd:26:e4:ae:0f:e1:63:98:60:70: ac:b7:e3:d1:f0:d6:80:41:28:67:52:08:25:1c:b3:14:4f:90: 53:6e:89:fc:6c:21:b1:76:d7:13:84:fe:b6:d0:ae:c6:e9:a9: da:41:60:4d:b7:59:d3:34:1f:c8:40:2e:cb:73:43:20:7e:eb: c6:d1:18:c4:0a:08:35:ed:b5:d4:eb:47:bb:79:db:46:71:c9: 22:b2:5f:4a:3a:35:cf:56:2a:cf:aa:e0:5a:0b:56:9e:43:c7: 7c:3b:0b:b0:94:e6:d9:a6:ba:e3:ec:71:a7:dd:08:db:f9:28: 46:cd:5e:bd:94:46:b0:9c:aa:ad:3b:04:f9:0d:14:a2:a4:37: 8c:4a:56:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUwODIyMTkwOTU4WhcNMjUwODI5MTkwOTU4WjAYMRYwFAYD VQQDEw02OGE4YzA4Ni1jOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NadLbvJ2pEB0cKDyzTFkcJR3xJ/5Dv3ITWhJ4R8aUPuN6JbJIvq293QpuyD ChQ3BHrFIts4WIllTNo8WBtNpcF+UeL+koXtxVVjbLmdJRYAz12FNeRDwnZez6Ee 2Y36zc3QF0u+snYGidvYVPGLw1LxA5Bp19ETztlfneDcREmPROndEYw3YpSP0l7n r3XjeTgzFkazcrV8qsn1kWJ74MnftUp8hJpCoiym9iHSe98+JEYUzgwmCbr/hNmS VgeEJSbWaerKHkr/imZGvwI6TBzp8QsUyccfP+It5Wa17pR7QneeGiYtvZLMHNUq 8L+ygg8Nug6ZhIDd91cjK+3mfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNONDmhx cwa3++ocKBsLC9uKL5k8MB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA28oh/YRIsrJPdQix7CwpYo7eF3BXGmZ4YRnvkVjuH070cB3QyCiSM hFb43+vE6mAHLsk/V3+XNqDbm3vFy+AaLKPnDebTvZF9+AKjWA4M1CXKNLFk/GtO 4mNhu7am9NTURCtExJV1x+tIyFbiI+fgEex5K80m5K4P4WOYYHCst+PR8NaAQShn UgglHLMUT5BTbon8bCGxdtcThP620K7G6anaQWBNt1nTNB/IQC7Lc0MgfuvG0RjE Cgg17bXU60e7edtGcckisl9KOjXPVirPquBaC1aeQ8d8OwuwlObZprrj7HGn3Qjb +ShGzV69lEawnKqtOwT5DRSipDeMSlbN -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:49 2025 by rpki-client