$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft File: Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft (raw, json) Hash identifier: EPgng5JmSZE8LAVF2fQUtHEUL8Ui11KeeVWpfL5RLDw= Subject key identifier: 1C:A7:A5:C8:28:09:B0:62:F4:87:59:FE:FF:EE:FD:57:AE:16:50:71 Authority key identifier: 49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 Certificate issuer: /CN=A91FDE13/serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft Manifest number: 41 Signing time: Thu 21 Aug 2025 07:47:06 +0000 Manifest this update: Thu 21 Aug 2025 07:47:06 +0000 Manifest next update: Thu 28 Aug 2025 07:47:06 +0000 Files and hashes: 1: Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl (hash: fJj3RH+Yz/kvPR4zMamdO6lx2tjca1EhoCYJ+YOmKKw=) 2: 189D8FCE565D11F0B381417EC4F9AE02.roa (hash: cj52P7EVA7EzNB+cRXY75TfIttWbZ7w7qirjXKEDn/Y=) 3: 5B45D97C2A5611F0B7C8BB20C4F9AE02.roa (hash: UkjJv6j01kk67tAR7WvPOWkiQImQuY607Dwbp++ebI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDE13, serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Validity Not Before: Aug 21 07:47:06 2025 GMT Not After : Aug 28 07:47:06 2025 GMT Subject: CN=68a6cefa-b72f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fa:40:ad:cb:f6:04:7e:97:ab:49:dd:4a:bc: f8:56:cb:5e:66:2e:8d:59:d5:3f:7a:a5:bb:4e:0b: 6c:c3:eb:68:1f:ef:d5:6e:9d:5d:32:a7:e3:72:15: 7c:f2:d7:14:53:3b:3b:4f:ff:21:12:00:9d:3f:ef: 83:64:a1:24:e4:d6:f6:81:e1:2b:43:ff:51:72:18: de:b1:50:c2:f2:df:98:d7:fd:c8:71:a4:b9:0f:ea: 81:d5:59:17:75:6f:44:b2:9b:6e:7d:a5:c8:2e:ed: a0:7f:28:e4:a8:c7:ff:f9:57:d2:32:a7:df:8e:f7: ef:02:16:6b:f0:47:ed:dd:da:ef:9d:67:e4:bb:57: fd:20:bc:58:90:56:38:b6:8b:40:86:9e:95:9d:fb: 0f:8b:fd:e4:4c:8c:b2:ec:94:90:f4:f8:ea:9e:8c: f0:9c:72:c4:c4:06:49:16:94:c1:1c:10:65:f7:aa: 71:c0:19:b5:dd:27:fc:21:b5:47:14:a5:7c:c1:dc: 11:d6:37:18:3b:2a:e8:39:58:42:48:fc:1f:dd:ac: 9e:6b:82:42:ea:f9:c3:14:38:52:0f:3d:68:82:7a: 77:bf:0a:8e:b1:c8:04:01:b7:de:5c:9e:62:87:d6: cb:c1:df:d9:93:27:fd:ea:08:23:a2:c4:10:99:d2: 48:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A7:A5:C8:28:09:B0:62:F4:87:59:FE:FF:EE:FD:57:AE:16:50:71 X509v3 Authority Key Identifier: keyid:49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4d:b6:84:3b:9b:4b:8d:8f:0e:f9:1b:34:ae:c6:aa:77:52: 32:c9:f3:ec:58:10:d5:47:07:56:70:75:f0:26:79:05:f1:de: f2:55:33:80:b9:38:9d:5c:a0:ea:dd:0d:1f:40:09:77:eb:46: c9:10:ba:d9:f8:6a:b5:82:16:81:08:f7:71:2f:b2:5f:23:d1: b0:91:d0:c0:73:97:d4:bc:74:07:f7:ac:2f:02:d0:70:72:62: b3:0a:6b:58:02:c7:f4:0d:98:70:ea:3b:03:b7:65:8c:f9:97: 59:1a:38:bd:37:49:3b:51:14:25:e1:6b:24:83:91:60:c1:f5: 0f:b8:80:2d:b2:4d:18:19:2c:d9:23:49:5d:98:6c:35:50:42: 01:d8:bc:8d:cd:d4:ee:85:b5:4b:96:19:d1:00:9f:31:ea:39: 6f:b4:35:1b:27:da:e8:cb:b8:a6:34:e8:35:82:d5:44:56:82: 91:20:c2:15:86:d9:b8:3d:ba:f3:84:3d:11:2e:6c:14:41:1a: e0:a7:ed:91:2f:af:ef:63:10:fc:43:13:b4:21:a5:7c:e6:f1: c6:28:da:3c:1c:bb:9c:e1:16:74:1e:c6:86:0f:a6:2c:47:9c: 44:cd:68:10:9a:3b:76:48:7f:b6:42:f4:91:4c:50:93:67:08: 6f:2a:68:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REUxMzExMC8GA1UEBRMoNDlGRDMzRDZGNTFBRDZBNDk4ODQ0NjlGQTM5RkVGMDQz MjMzNkY4MTAeFw0yNTA4MjEwNzQ3MDZaFw0yNTA4MjgwNzQ3MDZaMBgxFjAUBgNV BAMTDTY4YTZjZWZhLWI3MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT+kCty/YEfperSd1KvPhWy15mLo1Z1T96pbtOC2zD62gf79VunV0yp+NyFXzy 1xRTOztP/yESAJ0/74NkoSTk1vaB4StD/1FyGN6xUMLy35jX/chxpLkP6oHVWRd1 b0Sym259pcgu7aB/KOSox//5V9Iyp9+O9+8CFmvwR+3d2u+dZ+S7V/0gvFiQVji2 i0CGnpWd+w+L/eRMjLLslJD0+OqejPCccsTEBkkWlMEcEGX3qnHAGbXdJ/whtUcU pXzB3BHWNxg7Kug5WEJI/B/drJ5rgkLq+cMUOFIPPWiCene/Co6xyAQBt95cnmKH 1svB39mTJ/3qCCOixBCZ0kgzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHKelyCgJ sGL0h1n+/+79V64WUHEwHwYDVR0jBBgwFoAUSf0z1vUa1qSYhEafo5/vBDIzb4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERTEzLzE1MUZFNDdFMkE1 NjExRjBCODRGNTIyMEM0RjlBRTAyL1NmMHoxdlVhMXFTWWhFYWZvNV92QkRJemI0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2YwejF2VWExcVNZaEVhZm81X3ZCREl6YjRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RTEzLzE1MUZFNDdFMkE1NjExRjBCODRGNTIyMEM0RjlBRTAyL1NmMHoxdlVhMXFT WWhFYWZvNV92QkRJemI0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIVNtoQ7m0uNjw75GzSuxqp3UjLJ8+xYENVHB1ZwdfAmeQXx3vJVM4C5 OJ1coOrdDR9ACXfrRskQutn4arWCFoEI93Evsl8j0bCR0MBzl9S8dAf3rC8C0HBy YrMKa1gCx/QNmHDqOwO3ZYz5l1kaOL03STtRFCXhaySDkWDB9Q+4gC2yTRgZLNkj SV2YbDVQQgHYvI3N1O6FtUuWGdEAnzHqOW+0NRsn2ujLuKY06DWC1URWgpEgwhWG 2bg9uvOEPREubBRBGuCn7ZEvr+9jEPxDE7QhpXzm8cYo2jwcu5zhFnQexoYPpixH nETNaBCaO3ZIf7ZC9JFMUJNnCG8qaB8= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:25 2025 by rpki-client