$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft File: Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft (raw, json) Hash identifier: B771rNuLe18D6M9gbxzBDDr8m2XkOebfA23ddjQ7iCQ= Subject key identifier: DF:7D:E2:64:2F:52:78:D2:44:B0:3C:67:0A:B8:9E:36:17:D0:5E:BD Authority key identifier: 32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 Certificate issuer: /CN=A91F7AC9/serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Certificate serial: 0538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft Manifest number: 0532 Signing time: Fri 22 Aug 2025 23:43:39 +0000 Manifest this update: Fri 22 Aug 2025 23:43:38 +0000 Manifest next update: Fri 29 Aug 2025 23:43:38 +0000 Files and hashes: 1: Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl (hash: jX9S69laQwLNExerqfxRQHVbcXfZTEgYCTplWV2uBuc=) 2: 66CA9E0C0C5C11ECBD37E846C4F9AE02.roa (hash: OdV4BW1AypHn4SWRXVNRSTTOuuILOVr+n5WSk2uAXqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7AC9, serialNumber=326E55E74B06CD83F994CC1DA66565421CC9E219 Validity Not Before: Aug 22 23:43:38 2025 GMT Not After : Aug 29 23:43:38 2025 GMT Subject: CN=68a900ab-3135 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a3:60:a8:3d:ab:ea:be:73:cf:9b:3f:30:c0: 6d:2a:42:97:47:69:4b:47:f6:19:78:f1:ba:af:fc: 1c:9d:5d:84:e3:9f:e0:b6:da:d0:79:3d:3d:0a:fc: 2c:61:c6:b9:59:9a:d5:ca:24:10:1f:f9:e5:f0:a8: f1:9d:ab:e6:28:8b:4e:36:78:8c:81:72:9b:53:f8: 4d:09:1f:e2:59:01:7b:a2:98:9e:25:9c:ed:ec:3e: ea:9f:49:80:41:01:29:81:4a:7f:3c:d2:fd:33:55: a7:1b:e9:fc:24:2e:5e:73:6c:28:73:b5:f8:2c:87: 24:ca:76:86:ee:c6:2d:ab:32:46:c4:cb:26:07:20: 90:0b:34:d8:2f:15:0b:a9:27:3e:42:23:7a:bd:ec: b1:0e:a1:3c:97:a1:2a:aa:e3:8d:04:99:73:7a:7c: 1f:e1:ea:82:7c:d8:64:e9:94:56:cd:40:12:ee:fc: e5:5c:68:07:af:03:d4:d1:06:0e:60:36:2e:c5:6a: ed:d8:59:15:d0:1b:12:ad:87:5f:db:15:e0:ab:83: fd:04:98:79:08:ab:67:f1:06:cc:12:9a:2c:33:39: e3:21:97:0c:7d:03:d9:c9:c5:69:de:fd:b5:e2:f9: c1:5f:12:32:8c:6f:1a:b4:ba:e4:a0:44:2d:2e:de: 8e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7D:E2:64:2F:52:78:D2:44:B0:3C:67:0A:B8:9E:36:17:D0:5E:BD X509v3 Authority Key Identifier: keyid:32:6E:55:E7:4B:06:CD:83:F9:94:CC:1D:A6:65:65:42:1C:C9:E2:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7AC9/0D9F40E60C5A11EC9F415345C4F9AE02/Mm5V50sGzYP5lMwdpmVlQhzJ4hk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:6d:76:22:16:84:90:d0:28:11:6a:90:78:74:88:82:47:51: a2:39:28:7d:ff:0e:52:f9:1e:c0:88:b7:37:2e:67:94:20:ac: d8:6e:44:de:ab:0e:38:69:b4:73:0e:7d:f1:4c:b5:be:45:97: d4:0a:94:27:9e:e4:f9:49:64:22:0d:9b:27:8e:be:b1:d4:56: 43:a4:f5:a7:80:9b:a9:12:fc:e6:1a:fd:d5:e2:82:1d:5b:d5: 18:33:6a:42:3c:17:e9:c3:9f:b6:75:28:f0:80:2c:dd:46:d5: 2a:53:8b:ff:a6:1d:13:2a:72:85:21:c2:40:20:7d:0f:37:06: 2d:9c:d4:70:5a:6b:3a:17:1d:e2:7d:a9:89:7a:50:95:56:6a: b3:7f:af:0a:0d:5d:ab:5a:8b:e7:26:87:6d:b3:68:bb:18:4d: ce:5f:6e:a9:2e:d8:16:a6:a4:c2:94:dc:f2:72:b3:69:3b:d9: 1f:9f:7f:3d:38:5d:47:aa:29:86:96:b3:b0:a8:13:39:aa:ae: ce:8e:e0:a1:53:bb:bd:a5:ac:6a:b7:94:c4:c2:07:7d:8e:08: 01:0c:4e:9c:d6:f4:51:a7:66:b9:ad:50:3c:c3:8a:41:ce:22: f6:7e:66:5a:95:b8:bf:c6:85:a7:a9:c3:4f:9c:40:ab:b6:ce: 61:d7:32:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdBQzkxMTAvBgNVBAUTKDMyNkU1NUU3NEIwNkNEODNGOTk0Q0MxREE2NjU2NTQy MUNDOUUyMTkwHhcNMjUwODIyMjM0MzM4WhcNMjUwODI5MjM0MzM4WjAYMRYwFAYD VQQDEw02OGE5MDBhYi0zMTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26NgqD2r6r5zz5s/MMBtKkKXR2lLR/YZePG6r/wcnV2E45/gttrQeT09Cvws Yca5WZrVyiQQH/nl8KjxnavmKItONniMgXKbU/hNCR/iWQF7opieJZzt7D7qn0mA QQEpgUp/PNL9M1WnG+n8JC5ec2woc7X4LIckynaG7sYtqzJGxMsmByCQCzTYLxUL qSc+QiN6veyxDqE8l6EqquONBJlzenwf4eqCfNhk6ZRWzUAS7vzlXGgHrwPU0QYO YDYuxWrt2FkV0BsSrYdf2xXgq4P9BJh5CKtn8QbMEposMznjIZcMfQPZycVp3v21 4vnBXxIyjG8atLrkoEQtLt6OEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN994mQv UnjSRLA8Zwq4njYX0F69MB8GA1UdIwQYMBaAFDJuVedLBs2D+ZTMHaZlZUIcyeIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0FDOS8wRDlGNDBFNjBD NUExMUVDOUY0MTUzNDVDNEY5QUUwMi9NbTVWNTBzR3pZUDVsTXdkcG1WbFFoeko0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tNVY1MHNHellQNWxNd2RwbVZsUWh6SjRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0FDOS8wRDlGNDBFNjBDNUExMUVDOUY0MTUzNDVDNEY5QUUwMi9NbTVWNTBzR3pZ UDVsTXdkcG1WbFFoeko0aGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4bXYiFoSQ0CgRapB4dIiCR1GiOSh9/w5S+R7AiLc3LmeUIKzYbkTe qw44abRzDn3xTLW+RZfUCpQnnuT5SWQiDZsnjr6x1FZDpPWngJupEvzmGv3V4oId W9UYM2pCPBfpw5+2dSjwgCzdRtUqU4v/ph0TKnKFIcJAIH0PNwYtnNRwWms6Fx3i famJelCVVmqzf68KDV2rWovnJodts2i7GE3OX26pLtgWpqTClNzycrNpO9kfn389 OF1HqimGlrOwqBM5qq7OjuChU7u9paxqt5TEwgd9jggBDE6c1vRRp2a5rVA8w4pB ziL2fmZalbi/xoWnqcNPnECrts5h1zIY -----END CERTIFICATE-----Generated at Sat Aug 23 17:16:40 2025 by rpki-client