$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: Vsu2d7GgAV9oY44gamiRq5V5VxyiHgKyTIV4Fx6F++0= Subject key identifier: 60:FD:B6:10:20:11:2A:57:11:E9:BF:05:05:94:E6:0B:6B:8B:F3:B7 Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 05ED Signing time: Fri 22 Aug 2025 23:08:37 +0000 Manifest this update: Fri 22 Aug 2025 23:08:37 +0000 Manifest next update: Fri 29 Aug 2025 23:08:37 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: EUsO0vHldQ5nVEvsPKZ3UQqu+0Y5vd0X+Mh+WvD+ncA=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: KmV3A66uHX2ovCCHWTgN+6Kx1zjXxXnhW11qwJ7+Kek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:08:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA, serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Aug 22 23:08:37 2025 GMT Not After : Aug 29 23:08:37 2025 GMT Subject: CN=68a8f875-3c2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6b:e7:e7:64:3b:4c:f4:c0:57:44:4a:81:52: 20:ff:fa:ff:2f:6b:fb:c3:f7:f2:40:7c:28:36:66: 53:ee:d6:db:85:b1:c3:1a:89:0f:6e:b1:b9:09:38: bf:83:83:39:97:cc:06:ea:00:9f:d0:96:9a:63:bd: 64:65:9f:5a:10:25:4c:70:91:d3:df:26:12:8c:6c: 56:d6:2c:18:66:e3:ce:ba:51:25:da:8b:e9:1b:73: 4a:75:b5:3c:47:57:fb:20:f2:5e:f0:64:e2:fe:5c: 7d:5a:83:d8:25:85:9b:7f:0c:be:95:c8:09:49:e7: 84:d8:13:fd:d1:3a:a7:b0:48:55:3d:e9:4f:06:84: 25:3b:b5:55:8b:90:9d:03:ce:10:87:15:ef:df:20: 9a:bd:6a:00:c6:b8:6e:46:2b:42:9e:25:64:d2:a9: 3d:df:cf:40:eb:87:1e:4f:11:47:66:79:e9:48:31: 1b:2b:e6:4b:97:57:b6:1a:63:f4:13:e0:ac:24:5d: f5:15:1c:39:c2:76:8f:c8:ca:fa:b9:0c:7d:4b:ce: 25:a2:81:ba:5b:22:12:ea:f8:7d:f6:d3:b5:8b:bf: cb:3f:71:41:7a:f7:ed:3d:05:9b:b9:12:20:1f:b1: e3:1d:27:86:87:48:3a:d5:7f:37:70:e7:b8:fb:14: 1e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:FD:B6:10:20:11:2A:57:11:E9:BF:05:05:94:E6:0B:6B:8B:F3:B7 X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:31:de:50:3d:db:07:83:c0:88:be:1f:6a:14:4c:58:6c:36: 52:e0:19:34:1e:23:b6:ee:be:22:96:af:5c:44:43:eb:d3:b0: 37:11:6e:94:a1:9e:73:8b:43:4f:ac:75:47:43:92:f6:08:c5: 88:e3:e7:af:16:12:0b:8d:10:9d:6b:c6:3a:c1:c0:ba:e3:b2: 35:64:98:01:3a:90:a8:b4:d2:eb:25:29:da:cd:69:d5:88:1b: a0:a3:56:ee:0a:24:06:9b:6f:d4:f7:21:9f:ae:61:3e:85:d5: 4c:48:df:5d:32:7f:c0:a9:4f:fb:dc:82:93:83:d4:d2:6a:82: cc:35:ad:d4:b7:6d:9e:c0:80:ba:dd:cf:0d:40:cb:9a:80:93: ab:65:09:f7:57:e8:a5:1f:17:9a:7b:95:8b:fa:6e:25:cc:64: b3:1c:28:d6:1d:69:15:86:0f:b3:22:cc:8e:f2:1f:d0:13:0f: 89:ff:c3:3b:12:64:fa:43:19:68:a2:87:71:ea:d0:3d:55:3d: 55:ac:10:5d:8c:e3:dd:88:de:0c:08:ab:2a:7c:07:7f:c4:79: 03:cb:55:50:10:04:5c:06:89:0a:ab:0f:8c:5c:7b:9a:0c:c3: af:de:4f:7f:5e:77:ad:41:3a:f1:6a:fc:34:93:8f:a6:0d:d6: 5b:66:22:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjUwODIyMjMwODM3WhcNMjUwODI5MjMwODM3WjAYMRYwFAYD VQQDEw02OGE4Zjg3NS0zYzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mvn52Q7TPTAV0RKgVIg//r/L2v7w/fyQHwoNmZT7tbbhbHDGokPbrG5CTi/ g4M5l8wG6gCf0JaaY71kZZ9aECVMcJHT3yYSjGxW1iwYZuPOulEl2ovpG3NKdbU8 R1f7IPJe8GTi/lx9WoPYJYWbfwy+lcgJSeeE2BP90TqnsEhVPelPBoQlO7VVi5Cd A84QhxXv3yCavWoAxrhuRitCniVk0qk9389A64ceTxFHZnnpSDEbK+ZLl1e2GmP0 E+CsJF31FRw5wnaPyMr6uQx9S84looG6WyIS6vh99tO1i7/LP3FBevftPQWbuRIg H7HjHSeGh0g61X83cOe4+xQegwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGD9thAg ESpXEem/BQWU5gtri/O3MB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLMd5QPdsHg8CIvh9qFExYbDZS4Bk0HiO27r4ilq9cREPr07A3EW6U oZ5zi0NPrHVHQ5L2CMWI4+evFhILjRCda8Y6wcC647I1ZJgBOpCotNLrJSnazWnV iBugo1buCiQGm2/U9yGfrmE+hdVMSN9dMn/AqU/73IKTg9TSaoLMNa3Ut22ewIC6 3c8NQMuagJOrZQn3V+ilHxeae5WL+m4lzGSzHCjWHWkVhg+zIsyO8h/QEw+J/8M7 EmT6Qxlooodx6tA9VT1VrBBdjOPdiN4MCKsqfAd/xHkDy1VQEARcBokKqw+MXHua DMOv3k9/XnetQTrxavw0k4+mDdZbZiKb -----END CERTIFICATE-----Generated at Sat Aug 23 20:32:31 2025 by rpki-client