$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft File: ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft (raw, json) Hash identifier: 2kKanIKnyksrLi518ZePeggJRgjiGTdrjnAWqp0NjJo= Subject key identifier: 6D:BD:3B:32:72:2E:EE:87:9D:08:C3:D8:D9:3A:7E:3B:EC:0E:ED:DA Authority key identifier: 13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 Certificate issuer: /CN=A91F89D9/serialNumber=131570B4535F840302530DD1317442316309C177 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft Manifest number: B3 Signing time: Sat 23 Aug 2025 06:15:59 +0000 Manifest this update: Sat 23 Aug 2025 06:15:59 +0000 Manifest next update: Sat 30 Aug 2025 06:15:59 +0000 Files and hashes: 1: ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl (hash: zSQTA6GPwcwNHOiEu06bzw+W1VYJL00rZdoUuhp4PsU=) 2: CDD43C182FFB11F099B57A7CC4F9AE02.roa (hash: oPt/hUSuzgl3vf6IekNSVwLM4HNHGT76iBnF/i7Fi6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=131570B4535F840302530DD1317442316309C177 Validity Not Before: Aug 23 06:15:59 2025 GMT Not After : Aug 30 06:15:59 2025 GMT Subject: CN=68a95c9f-115e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:83:e1:94:e6:58:2e:e5:84:9f:69:a3:1f:e6: b6:ee:b0:36:ff:0e:e2:09:da:d7:0c:2b:59:b6:62: 40:cc:63:97:2b:af:ce:28:e7:49:85:6a:d1:84:85: fb:c9:b5:a6:36:fb:f2:41:87:01:f6:3d:2b:a8:79: 79:4b:19:70:4a:a9:58:9c:a1:30:19:03:75:94:c0: 04:f8:b8:87:2d:cc:dc:4f:64:07:db:41:e2:0b:1b: 85:e1:ba:17:21:f9:01:b9:e1:af:82:3e:55:10:f1: 88:53:69:99:7e:b5:a5:ec:cd:72:0c:1b:87:92:eb: 89:de:b9:df:c3:4b:dd:8f:b7:03:71:0d:a7:0c:2e: c6:17:84:32:d9:62:e3:77:f0:b2:9b:b4:47:14:a7: 8a:20:39:86:1c:a3:1f:4f:ac:7f:6d:8d:67:56:ee: 75:9f:c0:8e:3a:da:08:b6:63:1c:43:c2:15:0f:9c: 3c:7d:97:67:44:f6:a4:38:13:ff:5e:18:1e:06:b9: f5:95:7d:19:4a:35:b5:31:a1:d7:ca:96:96:9d:0a: 0d:c1:f1:31:15:4d:4b:28:98:35:37:6b:18:47:94: fd:cb:15:24:7b:a3:3d:d3:30:33:e7:15:9c:df:fb: 9e:00:34:e3:4a:09:7c:ee:a8:c6:be:ed:52:58:77: ae:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:BD:3B:32:72:2E:EE:87:9D:08:C3:D8:D9:3A:7E:3B:EC:0E:ED:DA X509v3 Authority Key Identifier: keyid:13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:20:c9:0b:0f:c9:cf:e9:42:f4:e8:2f:39:fe:5c:b2:b0:f4: 48:d2:50:67:4e:e8:2a:f6:55:ef:33:7e:df:16:a9:ed:82:08: ed:74:b6:68:bf:6a:94:6b:76:f5:0f:86:e4:88:07:b8:7c:68: bb:48:1b:9d:75:ea:38:51:e4:ec:1d:e9:d2:8c:f0:e0:51:49: 2f:04:56:7f:9a:ee:11:ea:d3:72:c8:0e:fc:48:46:29:b5:8b: 1e:7b:5b:d9:dd:59:cd:ad:8b:17:90:de:db:80:2d:ad:5e:07: 93:f1:d4:1f:1e:a5:ed:79:b1:6a:87:f9:33:32:ca:62:f5:71: 2a:89:14:f9:bb:a6:af:8f:ff:b7:fb:74:ee:fd:05:1e:3e:05: 07:7d:da:66:62:00:d4:b0:71:56:20:3a:6f:b5:89:9a:4d:9f: 04:bd:ad:29:6b:61:8a:0f:22:5c:cd:1e:8f:07:e7:26:6c:c1: d8:12:4b:aa:c6:83:8f:ee:74:31:7c:d8:14:fe:de:64:17:f3: 9d:73:5c:56:d6:d9:39:8b:86:4c:9e:cf:aa:86:5b:53:17:c7: 2b:44:81:7f:db:9b:69:b9:2f:d5:8f:f7:2f:b2:a0:55:d8:d5: c2:96:6a:99:3b:9b:7a:be:7f:06:6e:dc:3d:98:a5:cc:43:4b: ba:b0:b5:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5RDkxMTAvBgNVBAUTKDEzMTU3MEI0NTM1Rjg0MDMwMjUzMEREMTMxNzQ0MjMx NjMwOUMxNzcwHhcNMjUwODIzMDYxNTU5WhcNMjUwODMwMDYxNTU5WjAYMRYwFAYD VQQDEw02OGE5NWM5Zi0xMTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYPhlOZYLuWEn2mjH+a27rA2/w7iCdrXDCtZtmJAzGOXK6/OKOdJhWrRhIX7 ybWmNvvyQYcB9j0rqHl5SxlwSqlYnKEwGQN1lMAE+LiHLczcT2QH20HiCxuF4boX IfkBueGvgj5VEPGIU2mZfrWl7M1yDBuHkuuJ3rnfw0vdj7cDcQ2nDC7GF4Qy2WLj d/Cym7RHFKeKIDmGHKMfT6x/bY1nVu51n8COOtoItmMcQ8IVD5w8fZdnRPakOBP/ XhgeBrn1lX0ZSjW1MaHXypaWnQoNwfExFU1LKJg1N2sYR5T9yxUke6M90zAz5xWc 3/ueADTjSgl87qjGvu1SWHeubwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG29OzJy Lu6HnQjD2Nk6fjvsDu3aMB8GA1UdIwQYMBaAFBMVcLRTX4QDAlMN0TF0QjFjCcF3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlEOS9GNTYwMzdBNjZG NUMxMUVGODM1QTdCNjZDNEY5QUUwMi9FeFZ3dEZOZmhBTUNVdzNSTVhSQ01XTUp3 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V4Vnd0Rk5maEFNQ1V3M1JNWFJDTVdNSndYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlEOS9GNTYwMzdBNjZGNUMxMUVGODM1QTdCNjZDNEY5QUUwMi9FeFZ3dEZOZmhB TUNVdzNSTVhSQ01XTUp3WGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiIMkLD8nP6UL06C85/lyysPRI0lBnTugq9lXvM37fFqntggjtdLZo v2qUa3b1D4bkiAe4fGi7SBuddeo4UeTsHenSjPDgUUkvBFZ/mu4R6tNyyA78SEYp tYsee1vZ3VnNrYsXkN7bgC2tXgeT8dQfHqXtebFqh/kzMspi9XEqiRT5u6avj/+3 +3Tu/QUePgUHfdpmYgDUsHFWIDpvtYmaTZ8Eva0pa2GKDyJczR6PB+cmbMHYEkuq xoOP7nQxfNgU/t5kF/Odc1xW1tk5i4ZMns+qhltTF8crRIF/25tpuS/Vj/cvsqBV 2NXClmqZO5t6vn8Gbtw9mKXMQ0u6sLWQ -----END CERTIFICATE-----Generated at Sat Aug 23 15:36:43 2025 by rpki-client