$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft File: RIvZcaMGqwNjmecW3CIcozj1i1k.mft (raw, json) Hash identifier: olcJdJbTGh9lAhKgZOgOcxw8OkjVkuGqEmMGeX+iLAI= Subject key identifier: 4B:5F:1E:F8:F8:A0:80:2A:EA:E8:92:C9:23:3D:E3:C6:70:AB:E6:D7 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 154A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft Manifest number: 1500 Signing time: Sat 06 Sep 2025 16:57:09 +0000 Manifest this update: Sat 06 Sep 2025 16:57:08 +0000 Manifest next update: Sat 13 Sep 2025 16:57:08 +0000 Files and hashes: 1: RIvZcaMGqwNjmecW3CIcozj1i1k.crl (hash: QXvsIJy0CBs1HtnQLScLJX0dIIEMbao37rT0NT/Ai54=) 2: 7338235CC06011EE882BC34AC4F9AE02.roa (hash: 8U3x6H5bY+5B5oCv6vYfZszgq6gpJHZUkBbn2fzX+3M=) 3: 743770A0C06011EE882BC34AC4F9AE02.roa (hash: m0ywv3h/BJrsw2LOsXx/0+PQM3NArl9eNZt1OPifoLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5450 (0x154a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Sep 6 16:57:08 2025 GMT Not After : Sep 13 16:57:08 2025 GMT Subject: CN=68bc67e4-14be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:df:28:94:c3:21:63:ac:75:ee:0f:14:3b:ee: 5c:dd:5b:2a:29:e8:2e:17:90:5d:f7:05:66:c2:e2: 17:de:ee:cf:24:38:32:70:3d:e0:4b:f1:ff:ee:f1: ca:b2:f8:72:a5:47:5e:bc:40:85:41:7e:38:20:29: 3c:39:2b:5d:eb:23:88:e5:1f:16:d0:01:ae:5f:6d: f6:0b:c8:b7:f6:01:57:b2:02:c7:e9:f5:e4:24:68: af:54:68:37:42:a0:80:7d:c0:98:88:4e:0c:4d:ff: 99:20:ba:24:44:7e:74:5d:09:aa:d3:0d:42:5d:70: 0f:df:a4:4e:cc:70:c4:f5:90:c6:c7:00:1a:23:2e: 44:90:cd:32:32:95:1a:c2:65:b4:c3:fd:f6:8f:3a: 51:40:41:10:f1:30:ab:2f:e2:45:6f:3d:d6:43:45: b7:a3:f6:74:ff:1a:21:93:a5:b0:1e:53:4e:a7:95: 54:bb:92:2f:56:65:59:73:30:01:a6:d0:ee:61:c0: 8a:e0:42:b8:12:c9:30:0a:5b:9a:e9:1d:7c:be:fb: 04:09:64:f0:8d:df:d0:74:8a:a2:e8:65:fc:5b:03: 50:3b:61:5a:88:c5:ec:a4:3a:a3:2c:59:d4:01:f8: 70:83:37:c7:7e:24:7e:07:44:ce:04:61:8c:25:04: 85:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5F:1E:F8:F8:A0:80:2A:EA:E8:92:C9:23:3D:E3:C6:70:AB:E6:D7 X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:e3:20:38:45:d0:70:33:bc:0e:27:a6:52:e7:d1:58:02:da: 76:ae:e8:f5:ed:93:7b:15:4e:0f:a6:5b:ef:5f:c9:f3:54:a5: 74:1b:4b:33:e9:a4:a7:fa:28:5a:42:9a:dd:b0:de:72:ab:d7: d1:b0:fc:d1:ce:06:3a:8b:4b:39:dc:6b:db:bd:78:d4:3a:34: 18:90:12:05:81:b8:06:91:22:43:a4:06:c0:b1:67:01:d7:41: a0:37:eb:12:5a:57:a0:be:ba:53:57:cf:51:d9:67:09:4f:fe: 10:a1:4f:f0:63:37:3f:a5:2a:bd:21:76:3c:02:cf:78:ed:1c: 5e:08:60:6a:bd:73:8e:03:37:b6:bc:76:5d:49:cc:46:61:38: 99:47:fe:ea:ff:23:5a:a6:82:b0:17:3e:f1:9d:e0:87:85:e3: 01:bf:2c:16:29:74:c8:80:bb:80:62:44:1c:3b:d5:a6:f6:e0: de:b8:47:21:14:49:05:49:b1:50:59:02:61:19:79:d9:4c:e6: 3e:c4:8c:7b:93:20:99:03:d6:10:cf:8e:90:a3:0b:99:4b:00: 12:a5:ff:ad:3b:a6:6b:ea:bd:df:83:4c:87:18:cf:d9:ba:9d: ca:c9:b5:76:a7:a0:c5:b9:ac:14:60:e6:9b:69:50:9f:c8:93: 96:09:42:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUwOTA2MTY1NzA4WhcNMjUwOTEzMTY1NzA4WjAYMRYwFAYD VQQDEw02OGJjNjdlNC0xNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt8olMMhY6x17g8UO+5c3VsqKeguF5Bd9wVmwuIX3u7PJDgycD3gS/H/7vHK svhypUdevECFQX44ICk8OStd6yOI5R8W0AGuX232C8i39gFXsgLH6fXkJGivVGg3 QqCAfcCYiE4MTf+ZILokRH50XQmq0w1CXXAP36ROzHDE9ZDGxwAaIy5EkM0yMpUa wmW0w/32jzpRQEEQ8TCrL+JFbz3WQ0W3o/Z0/xohk6WwHlNOp5VUu5IvVmVZczAB ptDuYcCK4EK4EskwClua6R18vvsECWTwjd/QdIqi6GX8WwNQO2FaiMXspDqjLFnU AfhwgzfHfiR+B0TOBGGMJQSFxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtfHvj4 oIAq6uiSySM948Zwq+bXMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDFENS9ENEJFMDBENDYzRTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3 TmptZWNXM0NJY296ajFpMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY4yA4RdBwM7wOJ6ZS59FYAtp2ruj17ZN7FU4PplvvX8nzVKV0G0sz 6aSn+ihaQprdsN5yq9fRsPzRzgY6i0s53GvbvXjUOjQYkBIFgbgGkSJDpAbAsWcB 10GgN+sSWlegvrpTV89R2WcJT/4QoU/wYzc/pSq9IXY8As947RxeCGBqvXOOAze2 vHZdScxGYTiZR/7q/yNapoKwFz7xneCHheMBvywWKXTIgLuAYkQcO9Wm9uDeuEch FEkFSbFQWQJhGXnZTOY+xIx7kyCZA9YQz46QowuZSwASpf+tO6Zr6r3fg0yHGM/Z up3KybV2p6DFuawUYOabaVCfyJOWCUKk -----END CERTIFICATE-----Generated at Mon Sep 8 03:31:47 2025 by rpki-client