$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft File: 45B7SOaYfi_fztAe0B1As_Y9sRg.mft (raw, json) Hash identifier: HuNlmEi3EnCQ7acXGIdb2mP6r2qzr0zY2Xy4zcyqsgQ= Subject key identifier: 31:EC:A5:75:16:2D:32:B2:C8:DE:94:98:7B:50:CD:58:BB:D3:A9:ED Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft Manifest number: 016A Signing time: Sun 07 Sep 2025 04:21:49 +0000 Manifest this update: Sun 07 Sep 2025 04:21:48 +0000 Manifest next update: Sun 14 Sep 2025 04:21:48 +0000 Files and hashes: 1: 45B7SOaYfi_fztAe0B1As_Y9sRg.crl (hash: 0Tebj6YEbLWzvxpK64abJPOaiXsbWMRhUwuc8AoGv6M=) 2: 624C3E865DB011F0875D570FC4F9AE02.roa (hash: JGVNpZteQ5T3+mgqyzy1RfZ+6XHn9hRsWK2EBifvsJ8=) 3: B08503D8F8AA11EE91684140C4F9AE02.roa (hash: /SYnf8xCqV4M9ZyljYxcqSyU1MxH8Hs1CHdh62/lPpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 04:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Sep 7 04:21:48 2025 GMT Not After : Sep 14 04:21:48 2025 GMT Subject: CN=68bd085d-a78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b8:c1:0c:6f:7e:14:ae:7b:d6:9d:ae:d5:1b: bb:71:3f:70:41:65:8c:2a:b3:d5:eb:3a:81:ab:e4: 72:4e:1e:2d:0a:ce:87:21:a7:cb:c1:d4:a2:ea:82: ab:a9:7e:8a:ea:68:07:01:41:60:80:bb:33:ca:08: 6d:41:60:d9:2d:10:dc:20:65:77:03:bc:8d:54:55: ff:98:4f:90:39:61:58:61:2f:c6:eb:3f:0b:7d:92: f0:59:cf:ef:bc:18:02:a0:c8:87:5a:20:4f:53:66: 56:fd:13:13:5f:67:69:d2:33:93:f4:f4:88:58:92: 2f:cb:7f:8a:ec:71:6b:7b:c5:d5:c9:42:87:b1:46: 2c:67:20:e5:c8:a7:f4:7c:e7:53:52:d5:54:54:a2: 0a:46:9d:d7:05:ff:29:d8:00:86:02:86:d9:4c:12: d8:28:52:4f:a2:eb:0d:88:28:0d:3f:4c:55:f8:6d: 31:25:ca:b8:b8:d0:3d:21:15:68:ec:1b:27:95:dc: 5a:b8:7c:46:9e:4f:cf:e5:2b:a4:4d:bb:0d:13:5b: b1:b2:11:c4:2d:77:8b:be:52:7f:1e:36:36:df:92: 68:32:97:53:be:76:34:cb:6e:92:2b:35:76:40:b7: 02:07:f5:2f:63:0a:a9:28:66:15:0a:cd:66:74:8b: b9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EC:A5:75:16:2D:32:B2:C8:DE:94:98:7B:50:CD:58:BB:D3:A9:ED X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:b8:e5:6f:5a:51:3a:b2:ec:0d:bf:1f:d7:e2:54:32:12:45: f5:ad:56:9a:35:cf:ee:75:3f:3d:e8:62:a6:86:af:52:1c:ff: 52:3e:7e:cd:6b:ea:a5:7b:01:07:db:71:7b:3b:9f:1d:fa:dc: 8d:0a:36:88:21:27:49:92:03:a5:69:7a:59:2a:4a:f2:1f:7f: 0f:4b:db:21:bc:22:5e:08:b1:ee:e1:1e:d9:de:36:ab:d6:e9: 25:16:84:c9:8e:10:2c:3b:ac:0c:37:c6:7d:98:05:71:52:3c: 12:a1:38:0a:3a:cf:65:28:aa:59:7a:a2:b9:36:fa:8a:5d:7c: 25:ad:b5:e6:fd:ba:67:27:a1:37:3a:47:48:f7:03:7d:99:09: 55:94:83:68:35:ec:66:38:b0:4c:9f:be:fc:02:be:be:e8:41: e1:36:f7:77:f0:74:50:c8:08:eb:d0:27:54:65:cb:fe:0d:64: d5:85:3c:10:d9:c2:ab:0c:a6:41:f2:4e:7c:13:06:33:96:04: f1:39:f3:ef:ac:62:e4:06:42:b5:fb:1a:d1:eb:06:b7:6d:72: 35:cb:12:0a:4f:d0:17:b3:a1:58:92:c3:de:f4:dd:20:8a:a4: ef:33:8a:fd:ba:5d:c0:2e:5f:22:bb:6a:43:0c:7b:f4:cb:85: 1c:58:08:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUwOTA3MDQyMTQ4WhcNMjUwOTE0MDQyMTQ4WjAYMRYwFAYD VQQDEw02OGJkMDg1ZC1hNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLjBDG9+FK571p2u1Ru7cT9wQWWMKrPV6zqBq+RyTh4tCs6HIafLwdSi6oKr qX6K6mgHAUFggLszyghtQWDZLRDcIGV3A7yNVFX/mE+QOWFYYS/G6z8LfZLwWc/v vBgCoMiHWiBPU2ZW/RMTX2dp0jOT9PSIWJIvy3+K7HFre8XVyUKHsUYsZyDlyKf0 fOdTUtVUVKIKRp3XBf8p2ACGAobZTBLYKFJPousNiCgNP0xV+G0xJcq4uNA9IRVo 7BsnldxauHxGnk/P5SukTbsNE1uxshHELXeLvlJ/HjY235JoMpdTvnY0y26SKzV2 QLcCB/UvYwqpKGYVCs1mdIu5+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHspXUW LTKyyN6UmHtQzVi706ntMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZp X2Z6dEFlMEIxQXNfWTlzUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsuOVvWlE6suwNvx/X4lQyEkX1rVaaNc/udT896GKmhq9SHP9SPn7N a+qlewEH23F7O58d+tyNCjaIISdJkgOlaXpZKkryH38PS9shvCJeCLHu4R7Z3jar 1uklFoTJjhAsO6wMN8Z9mAVxUjwSoTgKOs9lKKpZeqK5NvqKXXwlrbXm/bpnJ6E3 OkdI9wN9mQlVlINoNexmOLBMn778Ar6+6EHhNvd38HRQyAjr0CdUZcv+DWTVhTwQ 2cKrDKZB8k58EwYzlgTxOfPvrGLkBkK1+xrR6wa3bXI1yxIKT9AXs6FYksPe9N0g iqTvM4r9ul3ALl8iu2pDDHv0y4UcWAjt -----END CERTIFICATE-----Generated at Mon Sep 8 00:03:01 2025 by rpki-client