$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: ZvHOGZP7owjJDS7SkxntdVaQU/Yq3E/jBp6rJGOElPc= Subject key identifier: 68:24:D2:07:ED:D9:2B:48:F7:13:D1:CB:35:85:CB:FA:9A:1A:3F:70 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BFA Signing time: Sat 06 Sep 2025 19:04:57 +0000 Manifest this update: Sat 06 Sep 2025 19:04:56 +0000 Manifest next update: Sat 13 Sep 2025 19:04:56 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: kBYBgkv+/bOoxy4y1R5ZCWvtFLRzJoviHAhc6g6Zj9Y=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 4: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: edBs+LqPeq6VId1edbW8z5stcuCPjdTspdZcbHXD4ms=) 5: C5639A105E3B11F09FAC9B6DC4F9AE02.roa (hash: +jkx8ForKRaNqf1DBVMg/S9cIOq8CLcZaNyeQAklIwQ=) 6: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: bYDuNI3W6+4EZSV4cW7DNvBB9NpXjXY4h4lfRb3nwhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Sep 6 19:04:56 2025 GMT Not After : Sep 13 19:04:56 2025 GMT Subject: CN=68bc85d8-3d4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:22:38:39:14:b2:1b:db:1e:0d:54:a8:f2:cc: 73:3a:55:18:c0:78:b2:60:ec:29:d9:f8:51:c2:11: 13:a5:8d:a1:78:5f:ed:ac:db:a1:87:90:5a:9a:7a: 9b:29:4a:c9:e3:a5:de:c0:25:fb:d7:49:69:bf:2f: df:ce:c7:a8:12:38:82:6c:48:8d:64:4e:38:fa:80: f2:ea:34:ff:c0:59:5b:5f:27:f8:69:f5:2d:21:fa: 41:fa:65:8f:d0:c0:5c:45:78:78:39:f2:05:0d:05: 16:f0:27:83:94:aa:8b:27:23:98:a9:85:23:c3:e9: 11:9d:da:d5:59:a3:f6:91:d1:2c:39:a0:96:64:bc: 3c:ac:47:71:6d:04:64:42:d4:98:5a:e0:9e:8e:7d: 9f:71:1b:3a:52:b0:87:fb:45:bb:51:33:e9:5d:ef: 34:b3:24:eb:23:1f:b5:f0:3f:e4:c2:de:0f:d2:24: a7:c4:96:58:3c:94:9f:c0:eb:83:f1:bc:f8:05:5b: f1:3e:e0:ee:ed:28:3b:e0:35:c5:e7:fd:ad:82:06: 5a:01:db:f3:e4:b1:ff:54:28:7b:d1:4f:d0:fe:9d: fe:08:f3:73:1a:92:cb:2b:1c:3e:3c:d1:64:d1:5a: 13:12:26:08:35:79:0f:6d:b2:56:0d:7b:00:12:24: f4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:24:D2:07:ED:D9:2B:48:F7:13:D1:CB:35:85:CB:FA:9A:1A:3F:70 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2f:ba:ab:f6:58:eb:24:0f:1d:71:ca:08:52:c9:a9:ea:7e: da:77:ee:80:2e:33:a6:48:ad:8f:4d:1e:e6:94:27:f6:d5:8b: 93:52:40:62:63:bd:c7:a6:b7:b7:61:94:b1:f5:93:95:5e:d6: 60:2e:eb:2c:d0:b1:0a:38:05:38:69:36:84:d7:33:bf:1c:41: 9c:54:fc:f5:87:32:4c:dd:ac:df:c8:5f:43:af:71:5e:7d:99: 80:3e:8d:1b:70:65:a4:cd:6e:b0:2d:bb:2a:33:0f:76:35:f8: d5:ae:0b:af:ad:00:7b:31:41:cb:7e:82:16:12:67:62:d8:69: 6a:65:1f:b4:3c:2c:17:4f:6e:8d:ef:f1:86:94:53:f1:43:41: b7:2b:64:ed:59:92:c1:07:07:8f:27:b4:ad:2a:94:9d:58:3b: 8e:3b:7e:e8:35:34:65:f9:bb:11:45:87:87:90:d4:1d:02:2a: 76:c7:cc:fb:01:03:a4:d0:22:a1:d9:0c:f9:c4:92:d2:34:4f: 61:9b:5f:22:39:cb:7f:41:03:69:bd:81:cd:52:dc:68:c9:6b: e5:cc:28:77:aa:e0:b8:46:1b:75:03:2a:4e:00:d6:49:f9:45: ed:bd:77:91:cb:19:9c:fa:96:73:fa:45:2e:82:6a:f5:d1:aa: fe:d8:1b:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwOTA2MTkwNDU2WhcNMjUwOTEzMTkwNDU2WjAYMRYwFAYD VQQDEw02OGJjODVkOC0zZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziI4ORSyG9seDVSo8sxzOlUYwHiyYOwp2fhRwhETpY2heF/trNuhh5Bamnqb KUrJ46XewCX710lpvy/fzseoEjiCbEiNZE44+oDy6jT/wFlbXyf4afUtIfpB+mWP 0MBcRXh4OfIFDQUW8CeDlKqLJyOYqYUjw+kRndrVWaP2kdEsOaCWZLw8rEdxbQRk QtSYWuCejn2fcRs6UrCH+0W7UTPpXe80syTrIx+18D/kwt4P0iSnxJZYPJSfwOuD 8bz4BVvxPuDu7Sg74DXF5/2tggZaAdvz5LH/VCh70U/Q/p3+CPNzGpLLKxw+PNFk 0VoTEiYINXkPbbJWDXsAEiT08QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgk0gft 2StI9xPRyzWFy/qaGj9wMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOL7qr9ljrJA8dccoIUsmp6n7ad+6ALjOmSK2PTR7mlCf21YuTUkBi Y73Hpre3YZSx9ZOVXtZgLuss0LEKOAU4aTaE1zO/HEGcVPz1hzJM3azfyF9Dr3Fe fZmAPo0bcGWkzW6wLbsqMw92NfjVrguvrQB7MUHLfoIWEmdi2GlqZR+0PCwXT26N 7/GGlFPxQ0G3K2TtWZLBBwePJ7StKpSdWDuOO37oNTRl+bsRRYeHkNQdAip2x8z7 AQOk0CKh2Qz5xJLSNE9hm18iOct/QQNpvYHNUtxoyWvlzCh3quC4Rht1AypOANZJ +UXtvXeRyxmc+pZz+kUugmr10ar+2BvR -----END CERTIFICATE-----Generated at Mon Sep 8 03:58:53 2025 by rpki-client