$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: s+zbVMWF4qAmrJq0v7yqV2Bhdp4TEgNjA9Wedx6FojQ= Subject key identifier: 3E:75:65:E0:B8:2D:18:D5:EC:75:ED:CD:02:79:34:E3:13:9D:15:43 Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 021F Signing time: Sat 23 Aug 2025 00:34:10 +0000 Manifest this update: Sat 23 Aug 2025 00:34:09 +0000 Manifest next update: Sat 30 Aug 2025 00:34:09 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: FHAsw9T4nxsz8yyihxzBKIFiq3imwvNJyVglsi6VqPM=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Aug 23 00:34:09 2025 GMT Not After : Aug 30 00:34:09 2025 GMT Subject: CN=68a90c81-15f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ce:8d:15:21:17:74:62:4f:43:99:01:a0:37: 29:10:5a:9b:d4:bc:17:bc:1f:08:fa:0b:1d:d1:aa: 76:92:34:5c:49:d6:c6:e2:90:a3:f6:45:62:90:21: f0:a2:1b:e4:28:e6:d8:9a:a2:d5:dd:56:ec:e9:11: 0e:ba:ee:b1:80:35:7c:4b:b3:f1:72:00:a5:1c:71: 58:e5:94:01:6f:63:06:01:23:4a:ea:03:34:da:cc: b0:83:6d:0f:35:39:50:d8:da:2f:75:eb:22:8e:4a: b8:00:91:8c:60:9d:3e:87:00:0d:14:bb:d7:d1:05: 78:07:e4:f3:1b:d8:f3:80:4e:68:b3:82:c2:0f:91: 3c:59:25:70:0e:14:c0:8e:3e:65:93:88:1f:52:38: e8:d1:9f:df:40:41:6b:53:2c:f2:3d:77:84:a2:d1: 4e:54:8c:58:4b:c8:3d:b0:e9:d1:d5:b5:e5:78:d2: fe:26:cc:64:fe:4c:72:e2:b3:4e:d0:47:db:98:a9: 49:d2:36:1b:24:42:c2:b4:16:90:27:49:b3:a6:67: e6:eb:4f:4a:4e:e5:0d:e6:48:28:fb:c6:7e:dd:a6: ca:f9:02:d2:0a:bf:98:e0:cc:bc:7f:e3:38:0f:bd: 77:54:7c:a1:a2:ac:02:b8:dc:1b:ed:97:91:e7:55: 32:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:75:65:E0:B8:2D:18:D5:EC:75:ED:CD:02:79:34:E3:13:9D:15:43 X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:cf:79:b1:d8:cf:bd:ea:8f:87:fe:29:05:65:4a:83:67:6b: 2d:1d:52:18:64:0d:ba:c0:f2:96:25:57:aa:12:cf:4a:65:7e: aa:f8:13:5b:48:bc:fc:62:b8:a8:dd:b2:ad:06:64:1e:cd:97: 64:61:d6:5a:6e:7e:1c:7d:ed:85:73:de:ad:2d:cb:39:3d:7a: 16:32:f8:10:38:25:c1:1d:3c:0f:5e:88:e6:72:53:df:aa:06: 5d:00:72:f9:c8:16:d2:28:02:2e:39:9f:ab:0e:a2:fd:15:ee: d7:1a:e4:69:ec:d2:6c:b8:93:db:af:bd:6e:2c:fa:19:2b:d4: 82:e6:a2:94:3e:a6:35:a7:78:3d:fc:e1:d7:5d:d6:43:c5:a2: b3:80:56:33:7a:8b:60:29:6f:e7:49:e9:99:bd:95:cc:dd:27: 4b:64:03:91:68:19:7c:ab:c0:9b:95:5e:58:55:64:6b:73:48: b8:6c:5e:23:f3:af:ef:04:e9:5c:2a:fb:6b:5b:8e:0f:ce:28: 76:94:79:1c:3f:d3:4b:be:b8:05:7e:f5:de:f4:e5:24:32:12: 50:1c:5d:00:40:60:01:58:44:45:b8:c6:fb:de:bd:03:97:bb: 9a:4b:f8:8f:8b:e1:88:d2:1e:1e:02:cf:80:7a:07:5a:3f:96: b4:9e:15:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUwODIzMDAzNDA5WhcNMjUwODMwMDAzNDA5WjAYMRYwFAYD VQQDEw02OGE5MGM4MS0xNWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c6NFSEXdGJPQ5kBoDcpEFqb1LwXvB8I+gsd0ap2kjRcSdbG4pCj9kVikCHw ohvkKObYmqLV3Vbs6REOuu6xgDV8S7PxcgClHHFY5ZQBb2MGASNK6gM02sywg20P NTlQ2Novdesijkq4AJGMYJ0+hwANFLvX0QV4B+TzG9jzgE5os4LCD5E8WSVwDhTA jj5lk4gfUjjo0Z/fQEFrUyzyPXeEotFOVIxYS8g9sOnR1bXleNL+Jsxk/kxy4rNO 0EfbmKlJ0jYbJELCtBaQJ0mzpmfm609KTuUN5kgo+8Z+3abK+QLSCr+Y4My8f+M4 D713VHyhoqwCuNwb7ZeR51UyVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD51ZeC4 LRjV7HXtzQJ5NOMTnRVDMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPz3mx2M+96o+H/ikFZUqDZ2stHVIYZA26wPKWJVeqEs9KZX6q+BNb SLz8Yrio3bKtBmQezZdkYdZabn4cfe2Fc96tLcs5PXoWMvgQOCXBHTwPXojmclPf qgZdAHL5yBbSKAIuOZ+rDqL9Fe7XGuRp7NJsuJPbr71uLPoZK9SC5qKUPqY1p3g9 /OHXXdZDxaKzgFYzeotgKW/nSemZvZXM3SdLZAORaBl8q8CblV5YVWRrc0i4bF4j 86/vBOlcKvtrW44Pzih2lHkcP9NLvrgFfvXe9OUkMhJQHF0AQGABWERFuMb73r0D l7uaS/iPi+GI0h4eAs+AegdaP5a0nhWC -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:27 2025 by rpki-client