$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: v1bWbeYGUbhFpmr0bXqXT4gbVqOum+xyvid3Z137Uzs= Subject key identifier: 64:20:A5:4C:D5:38:0A:DF:0D:25:EF:01:A7:7C:7F:1B:D4:A2:D4:B7 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 01D4 Signing time: Sat 23 Aug 2025 02:56:42 +0000 Manifest this update: Sat 23 Aug 2025 02:56:42 +0000 Manifest next update: Sat 30 Aug 2025 02:56:42 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: x2nsWSgyZS9zXic3u9VZIZDBwP5pCluddqEa9RBr6mo=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: Aug 23 02:56:42 2025 GMT Not After : Aug 30 02:56:42 2025 GMT Subject: CN=68a92dea-5ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:67:35:41:a4:0f:98:27:7e:02:65:49:54:d2: a0:02:b3:b6:94:dd:da:63:d9:2a:f9:86:6e:a7:51: 41:c9:d5:60:26:9c:e4:2f:9a:79:e0:b5:ee:75:65: 52:95:07:25:fa:a8:db:d6:a6:34:77:28:50:26:4f: 98:c1:e6:70:8a:4f:ca:cd:0b:38:b1:06:d8:5b:ae: 1b:97:7e:a3:1e:73:4c:2d:7d:a2:08:54:f9:d0:bf: 95:80:3d:14:92:c5:c9:46:7c:59:08:9a:f2:bf:03: a4:9b:5f:95:f8:b5:0a:8d:c4:a3:a8:25:5d:87:1a: b1:9f:76:f0:f6:93:d0:52:d6:80:3f:a7:8d:8e:5f: 3c:de:df:8c:3e:92:ed:64:dc:03:a9:2a:0a:8f:f0: f3:e4:bc:a8:02:4f:70:2b:e3:1b:b1:d4:e8:c1:48: c9:3b:63:1c:19:01:37:83:66:83:3c:1b:a6:6b:39: 50:e2:b0:55:ba:43:35:10:e0:f4:8a:ad:a0:19:f5: ac:ef:4c:7e:f9:eb:91:28:9e:ad:98:a5:c1:e7:0a: 5a:0e:ca:bb:e6:8b:04:df:a6:ca:10:19:3d:50:63: de:66:52:a0:86:ee:f4:3d:21:e9:14:50:d9:53:b2: e3:26:61:56:a3:fd:e3:28:d2:36:38:f7:1d:a9:e3: 10:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:20:A5:4C:D5:38:0A:DF:0D:25:EF:01:A7:7C:7F:1B:D4:A2:D4:B7 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:c0:0f:21:94:22:83:07:d6:c8:52:a2:99:9f:9b:2b:b0:cf: 1d:b0:3e:55:57:fa:30:3c:c3:29:70:79:ed:e5:41:ff:75:08: 8d:a0:a3:a2:35:38:a2:13:34:f9:d0:1b:06:54:a6:38:2a:ff: fa:22:90:89:70:61:ac:b4:75:b5:aa:b6:89:e4:69:ec:7e:a8: 8f:9e:d0:c9:07:58:2e:53:95:66:a5:f8:75:1a:87:75:ff:df: 84:24:5c:05:b4:59:f6:0f:e1:13:93:34:62:79:e1:98:3a:9f: d5:28:98:49:12:81:35:f6:c6:d6:a8:6f:a9:39:e8:46:0f:09: 31:43:9f:37:77:84:39:9b:ad:d5:5c:71:61:4e:b3:b4:44:bb: e2:dd:93:14:48:81:e4:80:81:e8:6f:ce:8a:38:26:92:cb:c6: 92:64:6b:69:f3:0f:d5:0b:fd:92:db:95:39:8f:27:19:41:26: 30:a8:5a:1f:d2:db:37:56:de:3a:72:18:08:ed:ec:88:0c:00: 71:00:6c:10:a2:d9:85:75:59:4a:fa:8e:5e:21:cb:b6:bc:bf: 00:60:f3:12:07:65:dd:37:aa:55:22:f6:8a:ce:16:6a:6a:21: 73:de:32:5a:df:b6:8f:93:f7:28:00:2b:61:fe:30:cc:30:fa: 0e:c8:c4:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwODIzMDI1NjQyWhcNMjUwODMwMDI1NjQyWjAYMRYwFAYD VQQDEw02OGE5MmRlYS01YWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomc1QaQPmCd+AmVJVNKgArO2lN3aY9kq+YZup1FBydVgJpzkL5p54LXudWVS lQcl+qjb1qY0dyhQJk+YweZwik/KzQs4sQbYW64bl36jHnNMLX2iCFT50L+VgD0U ksXJRnxZCJryvwOkm1+V+LUKjcSjqCVdhxqxn3bw9pPQUtaAP6eNjl883t+MPpLt ZNwDqSoKj/Dz5LyoAk9wK+MbsdTowUjJO2McGQE3g2aDPBumazlQ4rBVukM1EOD0 iq2gGfWs70x++euRKJ6tmKXB5wpaDsq75osE36bKEBk9UGPeZlKghu70PSHpFFDZ U7LjJmFWo/3jKNI2OPcdqeMQQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQgpUzV OArfDSXvAad8fxvUotS3MB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXwA8hlCKDB9bIUqKZn5srsM8dsD5VV/owPMMpcHnt5UH/dQiNoKOi NTiiEzT50BsGVKY4Kv/6IpCJcGGstHW1qraJ5GnsfqiPntDJB1guU5Vmpfh1God1 /9+EJFwFtFn2D+ETkzRieeGYOp/VKJhJEoE19sbWqG+pOehGDwkxQ583d4Q5m63V XHFhTrO0RLvi3ZMUSIHkgIHob86KOCaSy8aSZGtp8w/VC/2S25U5jycZQSYwqFof 0ts3Vt46chgI7eyIDABxAGwQotmFdVlK+o5eIcu2vL8AYPMSB2XdN6pVIvaKzhZq aiFz3jJa37aPk/coACth/jDMMPoOyMRP -----END CERTIFICATE-----Generated at Sat Aug 23 18:13:36 2025 by rpki-client