$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft File: 66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json) Hash identifier: aLqzsoVoyQN3cX2ZNFvnwe1fgB3DIv2R/Az1Bf6OwCU= Subject key identifier: F0:6B:84:88:68:9D:00:19:A8:3C:24:48:A4:5C:9D:38:CE:37:5B:D5 Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 Certificate issuer: /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft Manifest number: E3 Signing time: Fri 05 Sep 2025 05:49:23 +0000 Manifest this update: Fri 05 Sep 2025 05:49:22 +0000 Manifest next update: Fri 12 Sep 2025 05:49:22 +0000 Files and hashes: 1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: idjiYVB9ptOrHL95+4AtHTnunClBfAS+NOos/nTuBnE=) 2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: 6SVIugHlnaJdlkKtpec/q8AF54HgJPVuchm8bN57MAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91504D6, serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Validity Not Before: Sep 5 05:49:22 2025 GMT Not After : Sep 12 05:49:22 2025 GMT Subject: CN=68ba79e2-77d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a6:2c:da:fa:02:83:f2:61:27:b6:d7:25:30: 6e:18:a2:bd:91:67:3c:c9:06:c5:b1:17:b0:af:b1: 89:3b:26:4f:8e:c9:60:36:e9:ce:07:20:6e:cb:5c: f0:32:ed:ea:02:cc:5a:43:a6:21:99:55:6d:0b:02: de:b0:ca:05:f9:dc:50:b9:65:0b:ab:23:d9:12:53: 29:38:11:05:89:d2:ba:03:a3:0b:a1:c4:27:4d:5e: 58:17:9f:de:cd:76:84:08:3b:40:a0:83:bc:91:52: c4:bf:5e:2d:57:aa:1f:73:34:e2:ba:76:aa:88:19: 82:1f:22:9b:94:a8:ba:ee:24:d7:73:c2:45:6c:bd: 72:56:e9:ae:45:2f:af:22:15:6c:9c:61:e3:73:d9: 0f:27:cb:22:b7:66:ab:6e:53:e4:c1:13:b0:40:ef: 8b:f0:bd:5d:34:17:89:64:81:41:4e:46:68:bf:44: 96:4e:d8:a8:62:df:00:f3:8d:26:5f:a1:4e:e0:f5: 0d:33:69:6e:86:9b:c7:2d:3a:2f:d7:42:6e:75:e7: fd:3c:21:a7:06:05:53:ad:19:6d:d1:90:76:91:aa: 68:ae:30:33:5d:6e:24:95:d8:35:a1:d3:62:6e:85: aa:c6:37:dd:a4:eb:9d:46:fa:1a:bc:95:32:ed:4d: 62:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6B:84:88:68:9D:00:19:A8:3C:24:48:A4:5C:9D:38:CE:37:5B:D5 X509v3 Authority Key Identifier: keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:15:ec:9a:45:35:72:9e:ed:fe:05:73:e1:75:06:11:67:23: ac:c7:09:c3:8c:41:97:33:57:71:41:34:fa:c2:1c:b9:d4:6a: da:ce:77:70:e7:aa:c4:65:d1:5b:bf:31:1d:ce:b1:eb:12:67: 18:fb:eb:09:b2:21:20:c0:83:b8:7b:08:0f:c3:76:51:30:de: fa:c1:12:fe:a1:bb:da:70:49:ad:0b:e4:6e:8d:b1:38:b1:df: 11:26:df:70:9a:65:5c:98:55:92:01:a1:6a:64:cd:75:08:63: 12:e1:eb:34:23:25:1d:b1:f1:20:89:fd:05:d8:ae:79:c2:85: a1:99:1d:5a:c6:18:29:ae:2b:8d:dc:4a:9e:e9:47:27:85:e4: 3b:7a:39:ae:27:8c:48:32:2e:c4:7f:06:62:fc:f2:1f:f7:f7: 80:3d:f8:04:21:4b:1a:60:1b:4e:82:0e:e0:88:e5:48:b7:6f: 2c:e1:f5:23:53:99:df:bc:c2:5b:0a:72:06:0e:6d:04:4a:ed: bd:b8:6c:ab:c5:bb:20:d5:00:cd:6a:fd:24:d6:9a:cd:b9:5a: 86:67:c7:ca:28:f3:2d:aa:a6:27:10:43:46:ab:b8:d6:a7:83: 51:d1:90:5b:ef:88:b6:29:2e:d4:63:28:87:47:70:70:d0:32: ac:79:0b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA0RDYxMTAvBgNVBAUTKEVCQUE0QzQ0RjI0ODkzNzE0QTFENUIzNjBBMkQ3QjJE ODYwNUIxNjMwHhcNMjUwOTA1MDU0OTIyWhcNMjUwOTEyMDU0OTIyWjAYMRYwFAYD VQQDEw02OGJhNzllMi03N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aYs2voCg/JhJ7bXJTBuGKK9kWc8yQbFsRewr7GJOyZPjslgNunOByBuy1zw Mu3qAsxaQ6YhmVVtCwLesMoF+dxQuWULqyPZElMpOBEFidK6A6MLocQnTV5YF5/e zXaECDtAoIO8kVLEv14tV6ofczTiunaqiBmCHyKblKi67iTXc8JFbL1yVumuRS+v IhVsnGHjc9kPJ8sit2arblPkwROwQO+L8L1dNBeJZIFBTkZov0SWTtioYt8A840m X6FO4PUNM2luhpvHLTov10Judef9PCGnBgVTrRlt0ZB2kaporjAzXW4kldg1odNi boWqxjfdpOudRvoavJUy7U1iZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBrhIho nQAZqDwkSKRcnTjON1vVMB8GA1UdIwQYMBaAFOuqTETySJNxSh1bNgotey2GBbFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDRENi9BRDBDQUMxRTMx QTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWszRktIVnMyQ2kxN0xZWUZz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzY2cE1SUEpJazNGS0hWczJDaTE3TFlZRnNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDRENi9BRDBDQUMxRTMxQTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWsz RktIVnMyQ2kxN0xZWUZzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpFeyaRTVynu3+BXPhdQYRZyOsxwnDjEGXM1dxQTT6why51Grazndw 56rEZdFbvzEdzrHrEmcY++sJsiEgwIO4ewgPw3ZRMN76wRL+obvacEmtC+RujbE4 sd8RJt9wmmVcmFWSAaFqZM11CGMS4es0IyUdsfEgif0F2K55woWhmR1axhgpriuN 3Eqe6UcnheQ7ejmuJ4xIMi7EfwZi/PIf9/eAPfgEIUsaYBtOgg7giOVIt28s4fUj U5nfvMJbCnIGDm0ESu29uGyrxbsg1QDNav0k1prNuVqGZ8fKKPMtqqYnEENGq7jW p4NR0ZBb74i2KS7UYyiHR3Bw0DKseQtq -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:07 2025 by rpki-client