$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: gUS7Joy5oSKAmokp8rnM31/A/8RmqGYPjJWZWOeMArk= Subject key identifier: CE:9B:5C:7C:F1:62:92:32:09:33:C8:B3:1F:6E:DA:31:41:1A:1D:E7 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0CBA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0CB4 Signing time: Fri 22 Aug 2025 18:18:20 +0000 Manifest this update: Fri 22 Aug 2025 18:18:20 +0000 Manifest next update: Fri 29 Aug 2025 18:18:20 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: kh4E0F0oVcE+/VlZZY0BflMVQxRpzs8Tcu92CMYteXU=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: ZlxWP9id3BOwgT849Ql20JmEjoi9oTlH+F8ceOZ0tcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3258 (0xcba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB, serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Aug 22 18:18:20 2025 GMT Not After : Aug 29 18:18:20 2025 GMT Subject: CN=68a8b46c-37ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:8c:8f:65:31:2e:13:78:4a:b2:fd:74:42:92: 05:54:d5:b3:f7:23:d7:84:50:71:2c:06:2d:4f:e9: e8:a1:38:88:14:7d:e5:b6:fc:fd:58:25:a0:19:59: 91:e2:eb:ad:00:81:00:fe:9a:16:ce:43:53:bb:13: ec:f3:db:2a:64:21:f7:09:77:e7:c7:14:b8:ab:8a: f8:6b:32:35:bb:3e:60:df:3b:04:ce:1c:d8:0b:aa: 6d:4a:63:61:fc:a7:0f:38:c6:c3:50:74:f8:72:fc: ae:3c:53:a6:cc:7d:b5:32:80:1c:d9:a4:b5:b3:50: b0:ac:b9:f0:c8:21:c4:bb:ad:c0:8b:6e:b2:4a:7d: 0a:a2:9b:56:6d:4e:70:7e:43:f6:d9:51:3d:6c:df: e1:a6:9c:be:7d:43:1a:c7:06:9f:52:03:29:9a:e6: fd:97:6b:ee:36:15:d0:8e:01:01:65:d9:34:87:3f: ca:d9:f6:3c:fc:32:94:d2:15:6f:2b:0a:05:18:ee: ed:9e:69:bd:57:bf:0f:8b:0c:0f:73:b1:1d:93:2b: 79:aa:48:23:a4:87:84:0e:78:49:02:98:95:91:d3: 00:53:d8:47:2f:0c:8a:b5:ff:4a:06:33:ae:59:cc: 75:56:e0:28:b1:80:6e:17:ff:db:5c:f1:ad:61:4f: c7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9B:5C:7C:F1:62:92:32:09:33:C8:B3:1F:6E:DA:31:41:1A:1D:E7 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:be:16:83:bb:b0:a9:da:2a:fd:a9:3d:2a:56:a6:2b:9a:7a: 82:de:54:5c:81:2e:a8:57:5b:ad:1e:e7:1e:a1:5e:bd:eb:31: 21:cd:9e:36:c1:64:67:fb:2d:7f:8c:e8:02:70:4a:db:44:12: bc:02:6b:88:47:80:58:8d:fe:c4:2a:26:35:63:3f:ae:9c:7a: a1:a2:e8:62:d3:d3:42:60:cd:5c:b4:50:b2:24:f9:38:69:76: 1c:f1:7f:ac:57:9b:55:cf:7a:4c:f2:e6:60:86:f6:79:e6:1c: 55:10:95:8d:47:b6:7c:4a:a5:b5:59:3f:31:77:1e:fb:61:8f: 27:eb:1f:16:7e:3f:d1:02:37:5b:8c:1e:71:de:e3:fb:01:65: bf:61:11:0b:f4:6e:81:65:ad:ab:83:d2:32:85:0d:38:3b:d4: ee:fd:00:94:0a:4d:be:59:fb:5a:6e:55:63:16:98:44:6f:44: 3f:00:d4:6f:66:2b:67:34:64:94:2f:ca:41:b1:a8:f3:6f:49: 63:c7:a0:d9:d3:14:82:d9:6e:92:d5:53:84:78:da:66:8b:a4: 0a:81:63:1e:4c:bc:e1:0c:33:e2:0f:0c:ec:c8:39:61:2f:5e: cd:ad:28:29:27:43:92:e2:c9:eb:c5:99:d7:2b:86:a6:94:40: a6:5a:12:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjUwODIyMTgxODIwWhcNMjUwODI5MTgxODIwWjAYMRYwFAYD VQQDEw02OGE4YjQ2Yy0zN2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7oyPZTEuE3hKsv10QpIFVNWz9yPXhFBxLAYtT+nooTiIFH3ltvz9WCWgGVmR 4uutAIEA/poWzkNTuxPs89sqZCH3CXfnxxS4q4r4azI1uz5g3zsEzhzYC6ptSmNh /KcPOMbDUHT4cvyuPFOmzH21MoAc2aS1s1CwrLnwyCHEu63Ai26ySn0KoptWbU5w fkP22VE9bN/hppy+fUMaxwafUgMpmub9l2vuNhXQjgEBZdk0hz/K2fY8/DKU0hVv KwoFGO7tnmm9V78PiwwPc7Edkyt5qkgjpIeEDnhJApiVkdMAU9hHLwyKtf9KBjOu Wcx1VuAosYBuF//bXPGtYU/HDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6bXHzx YpIyCTPIsx9u2jFBGh3nMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxvhaDu7Cp2ir9qT0qVqYrmnqC3lRcgS6oV1utHuceoV696zEhzZ42 wWRn+y1/jOgCcErbRBK8AmuIR4BYjf7EKiY1Yz+unHqhouhi09NCYM1ctFCyJPk4 aXYc8X+sV5tVz3pM8uZghvZ55hxVEJWNR7Z8SqW1WT8xdx77YY8n6x8Wfj/RAjdb jB5x3uP7AWW/YREL9G6BZa2rg9IyhQ04O9Tu/QCUCk2+WftablVjFphEb0Q/ANRv ZitnNGSUL8pBsajzb0ljx6DZ0xSC2W6S1VOEeNpmi6QKgWMeTLzhDDPiDwzsyDlh L17NrSgpJ0OS4snrxZnXK4amlECmWhIl -----END CERTIFICATE-----Generated at Sat Aug 23 15:45:19 2025 by rpki-client