$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: zmFdJyEuyDMPU8zucM/5IBnn1dmGk6sc8X+KiVD6m1s= Subject key identifier: 5F:C4:5C:E1:6E:E3:42:71:0A:FE:C3:8B:D7:53:39:06:46:EF:A4:81 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C06 Signing time: Fri 22 Aug 2025 16:17:27 +0000 Manifest this update: Fri 22 Aug 2025 16:17:27 +0000 Manifest next update: Fri 29 Aug 2025 16:17:27 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: CVqi1nPmsAeMZ9y3/WhvBUdKfr3QWiPra3ZaWREtfD0=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7191 (0x1c17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Aug 22 16:17:27 2025 GMT Not After : Aug 29 16:17:27 2025 GMT Subject: CN=68a89817-1fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:39:12:69:35:93:0a:4a:91:be:76:2a:a1:1e: 3a:55:25:8d:19:bb:ad:88:13:ed:ae:2d:6d:9f:82: eb:68:3d:f0:6f:b1:8a:04:ce:7d:46:7b:e3:9d:e1: 84:8d:8a:a1:f3:21:c5:38:05:83:bd:99:97:db:c9: 16:b6:0b:9e:8a:bd:92:6c:da:d9:26:8f:1c:e3:2b: ae:8c:e2:11:71:7a:18:38:79:74:f3:ba:93:ae:53: d9:5e:1c:eb:96:7e:f1:7f:85:18:91:4d:d5:4e:ea: 8f:71:dc:ec:65:2e:50:fe:40:14:39:37:f2:b3:ce: 7f:11:01:48:11:e2:5c:1d:e8:aa:8f:a7:fc:20:95: 10:08:6f:a8:4a:0d:17:2c:c8:d8:c1:de:ff:36:8c: 17:2e:16:e5:62:ae:3c:6b:01:30:d9:66:cf:28:6b: 84:80:e2:05:36:47:65:b0:79:6b:77:ed:d0:16:e7: 53:60:3b:77:5a:b3:51:de:26:73:48:a0:3e:e4:75: 2f:5b:aa:3e:0a:3b:73:dc:cc:c3:f5:42:83:14:ac: 1a:b9:04:28:d8:5c:5b:20:32:0c:5f:35:9f:ed:4e: f1:60:80:f8:c6:35:d5:c4:96:5b:3a:1d:04:cf:01: e5:de:d0:c5:42:10:f2:60:54:58:56:ab:7d:80:eb: 4d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C4:5C:E1:6E:E3:42:71:0A:FE:C3:8B:D7:53:39:06:46:EF:A4:81 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ea:04:d7:85:40:b4:3d:42:16:2e:09:2a:8b:1f:44:af:80: ea:11:4f:25:5d:d7:7a:9c:d5:d0:94:5a:de:a7:e1:1f:08:d7: fa:cc:eb:fb:d3:56:0b:77:f9:b0:e4:3e:16:66:3b:5e:55:d1: ac:64:40:17:16:a1:0e:05:4c:18:61:df:3d:d7:dc:d9:32:d3: 53:12:7a:68:2d:37:e4:55:16:fd:7c:e8:8a:68:9a:0c:d0:1f: f0:c1:27:4e:e2:eb:0e:d4:8c:88:1f:07:ff:27:c0:cc:a2:4a: fc:1b:38:24:a5:46:b8:d8:86:e4:82:8a:c8:7f:37:d6:4b:e6: b6:3f:e7:1b:6e:37:37:ff:b0:0f:a3:c8:79:9e:26:f4:ae:78: 52:2b:df:de:b8:cd:4a:9a:90:03:90:e8:7a:55:46:d8:ea:87: 84:64:32:0f:0d:c5:b2:de:c9:84:9a:a7:f2:55:6f:34:b2:82: 80:57:4d:1b:aa:79:cf:0b:62:9a:e9:8b:6e:2d:5f:47:3d:66: 64:f2:74:4a:fd:1f:e8:15:44:38:af:93:a1:7f:fd:59:97:7d: 16:98:46:cb:30:e8:50:eb:7e:94:d6:a5:ad:8d:29:cc:17:e2: 64:b1:8d:d9:53:0a:b9:3a:16:f5:05:6b:6b:de:32:81:a2:0e: e0:02:44:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwODIyMTYxNzI3WhcNMjUwODI5MTYxNzI3WjAYMRYwFAYD VQQDEw02OGE4OTgxNy0xZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDkSaTWTCkqRvnYqoR46VSWNGbutiBPtri1tn4LraD3wb7GKBM59RnvjneGE jYqh8yHFOAWDvZmX28kWtgueir2SbNrZJo8c4yuujOIRcXoYOHl087qTrlPZXhzr ln7xf4UYkU3VTuqPcdzsZS5Q/kAUOTfys85/EQFIEeJcHeiqj6f8IJUQCG+oSg0X LMjYwd7/NowXLhblYq48awEw2WbPKGuEgOIFNkdlsHlrd+3QFudTYDt3WrNR3iZz SKA+5HUvW6o+Cjtz3MzD9UKDFKwauQQo2FxbIDIMXzWf7U7xYID4xjXVxJZbOh0E zwHl3tDFQhDyYFRYVqt9gOtNywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/EXOFu 40JxCv7Di9dTOQZG76SBMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC6gTXhUC0PUIWLgkqix9Er4DqEU8lXdd6nNXQlFrep+EfCNf6zOv7 01YLd/mw5D4WZjteVdGsZEAXFqEOBUwYYd8919zZMtNTEnpoLTfkVRb9fOiKaJoM 0B/wwSdO4usO1IyIHwf/J8DMokr8GzgkpUa42IbkgorIfzfWS+a2P+cbbjc3/7AP o8h5nib0rnhSK9/euM1KmpADkOh6VUbY6oeEZDIPDcWy3smEmqfyVW80soKAV00b qnnPC2Ka6YtuLV9HPWZk8nRK/R/oFUQ4r5Ohf/1Zl30WmEbLMOhQ636U1qWtjSnM F+JksY3ZUwq5Ohb1BWtr3jKBog7gAkTL -----END CERTIFICATE-----Generated at Sun Aug 24 11:04:47 2025 by rpki-client