$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft File: peado7v7jl3TlkjmpD4A-nI95lg.mft (raw, json) Hash identifier: XZQilyDowWb6x3lHutGTBVF6QF1JN1m371sCw2+gaGo= Subject key identifier: 21:34:E7:B5:09:37:AB:81:A6:F8:3A:DD:4D:73:01:A9:1B:4E:4C:64 Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 0ADC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft Manifest number: 0AD4 Signing time: Thu 04 Sep 2025 19:40:16 +0000 Manifest this update: Thu 04 Sep 2025 19:40:15 +0000 Manifest next update: Thu 11 Sep 2025 19:40:15 +0000 Files and hashes: 1: peado7v7jl3TlkjmpD4A-nI95lg.crl (hash: U3CMqx/m/72wpoq3SivvDpfv6RPBEW5aHi08eXXqH80=) 2: 55BC5674573F11EAA8901D3EC4F9AE02.roa (hash: GpKaeFCXgLqKWUd4/mw0J3pe4Cuty7kr/IEGoWg6an0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4, serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Validity Not Before: Sep 4 19:40:15 2025 GMT Not After : Sep 11 19:40:15 2025 GMT Subject: CN=68b9eb1f-e8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cd:e6:86:30:46:3d:64:51:86:af:cb:16:54: fc:14:90:2f:9c:6c:00:68:47:37:b0:0b:5e:64:1c: 89:a4:05:5d:b1:44:8d:57:f6:f1:00:1b:2b:d5:c2: 71:16:9a:89:9d:28:a3:eb:21:3b:59:b9:a8:94:fa: 37:de:0f:30:53:6a:93:ca:83:1b:80:c3:32:80:7d: 1f:c9:b2:d0:5c:d9:35:24:11:2a:50:cd:09:fb:58: 8c:1e:d5:77:c2:e6:94:af:8b:2a:6a:d1:36:f0:3f: 1f:e5:bd:1d:21:48:a0:ee:52:6b:f2:53:d1:08:11: e2:20:45:8f:ff:77:f5:d6:d7:bb:09:a6:5e:07:83: 64:58:e1:10:d6:be:df:84:77:ed:24:f6:ca:c9:19: f2:9e:7f:24:98:5c:f4:f7:54:56:d4:bb:c0:69:80: bf:db:74:e2:46:0d:8d:64:ae:7f:7d:c3:97:8b:f5: 9d:27:3b:5a:a2:95:d2:f1:57:df:3a:25:89:a2:84: 34:25:34:09:bb:d9:c0:82:7d:cf:77:6a:80:a7:3d: bc:2e:75:b8:23:67:ee:c2:a8:69:5f:31:c3:08:6c: 99:06:19:20:2d:b3:79:66:36:22:09:8e:08:94:11: 38:ca:57:6b:12:16:a6:e3:e0:f4:34:c7:b2:86:a1: bb:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:34:E7:B5:09:37:AB:81:A6:F8:3A:DD:4D:73:01:A9:1B:4E:4C:64 X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b8:db:43:ed:ba:26:6c:20:ee:61:3b:e8:b7:43:16:46:7e: 06:34:15:60:76:09:2b:11:11:af:2b:0c:fa:70:ef:d3:ff:fd: 97:90:47:66:a4:c8:55:d4:04:a2:6e:fc:e1:91:16:f8:ff:dd: e1:3f:1b:3a:a4:43:59:36:4b:d0:01:12:da:66:d9:d8:49:3d: 9a:fd:3a:7b:8a:4d:2d:0f:21:b4:ed:a6:63:32:bc:aa:9a:7a: f9:11:a1:8f:a6:34:db:7d:e6:b1:43:8c:2d:d2:b7:6f:c0:dd: e9:54:91:64:c6:4f:ec:c7:23:bd:5a:c1:4c:07:58:e7:ae:ef: df:73:86:08:c3:cd:b3:ed:b4:b5:e2:d0:0e:89:96:a4:d6:fb: e8:f6:61:2f:8c:7b:c3:b3:45:55:a9:d9:73:de:59:6b:43:01: e9:c2:02:d6:f9:ba:cd:f3:d1:87:92:eb:94:97:7c:7f:29:91: 4d:2e:ea:55:76:9e:75:fd:6c:47:b0:cf:41:d9:54:79:22:92: 19:91:b5:6d:7f:2f:cf:99:ca:0a:73:ab:4f:ad:20:32:c1:34: 88:4d:42:69:82:b1:a1:0f:74:17:22:ff:35:ea:51:52:1f:5e: a8:31:21:66:6a:01:fd:47:43:cb:59:f3:f8:19:ed:d3:cb:01: c2:36:a0:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjUwOTA0MTk0MDE1WhcNMjUwOTExMTk0MDE1WjAYMRYwFAYD VQQDEw02OGI5ZWIxZi1lOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0M3mhjBGPWRRhq/LFlT8FJAvnGwAaEc3sAteZByJpAVdsUSNV/bxABsr1cJx FpqJnSij6yE7WbmolPo33g8wU2qTyoMbgMMygH0fybLQXNk1JBEqUM0J+1iMHtV3 wuaUr4sqatE28D8f5b0dIUig7lJr8lPRCBHiIEWP/3f11te7CaZeB4NkWOEQ1r7f hHftJPbKyRnynn8kmFz091RW1LvAaYC/23TiRg2NZK5/fcOXi/WdJztaopXS8Vff OiWJooQ0JTQJu9nAgn3Pd2qApz28LnW4I2fuwqhpXzHDCGyZBhkgLbN5ZjYiCY4I lBE4yldrEham4+D0NMeyhqG7hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCE057UJ N6uBpvg63U1zAakbTkxkMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBCNC9CQzhDMTBBRTU3M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2ps M1Rsa2ptcEQ0QS1uSTk1bGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHuNtD7bombCDuYTvot0MWRn4GNBVgdgkrERGvKwz6cO/T//2XkEdm pMhV1ASibvzhkRb4/93hPxs6pENZNkvQARLaZtnYST2a/Tp7ik0tDyG07aZjMryq mnr5EaGPpjTbfeaxQ4wt0rdvwN3pVJFkxk/sxyO9WsFMB1jnru/fc4YIw82z7bS1 4tAOiZak1vvo9mEvjHvDs0VVqdlz3llrQwHpwgLW+brN89GHkuuUl3x/KZFNLupV dp51/WxHsM9B2VR5IpIZkbVtfy/PmcoKc6tPrSAywTSITUJpgrGhD3QXIv816lFS H16oMSFmagH9R0PLWfP4Ge3TywHCNqDa -----END CERTIFICATE-----Generated at Sat Sep 6 15:24:06 2025 by rpki-client