$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: QV8uz6hXInJlMUfNXogXfbux3PmPlW78ItnVungB3oM= Subject key identifier: D4:6D:53:4E:D1:3E:E7:01:A4:CD:C7:30:F2:18:61:23:9C:12:FE:A4 Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 02CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 02C2 Signing time: Fri 05 Sep 2025 01:50:10 +0000 Manifest this update: Fri 05 Sep 2025 01:50:09 +0000 Manifest next update: Fri 12 Sep 2025 01:50:09 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: Ha4rYTlH8X2FEEKpvk6P5yHQSu3AppT36oZmLeB4nx8=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 714 (0x2ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Sep 5 01:50:09 2025 GMT Not After : Sep 12 01:50:09 2025 GMT Subject: CN=68ba41d2-395f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:1a:53:2c:e9:81:03:cd:68:cf:61:10:50: eb:fd:57:e8:a4:82:45:4b:0a:3a:ca:b3:07:a3:00: 75:b9:c0:7e:b5:cf:3a:53:77:c1:f6:46:13:e0:37: ec:46:4a:2d:38:2b:b3:c5:7d:6f:9e:27:1b:40:eb: 03:7a:fa:74:90:33:d1:76:fd:37:f9:e3:be:66:4f: f6:7e:ad:30:78:f7:2f:65:20:4b:49:f4:f7:b1:7d: a1:ca:f8:1d:a8:a3:22:b6:0c:1c:65:84:d5:cb:2e: 66:7b:8f:eb:2d:47:b9:ea:ed:f7:b1:10:c5:00:cc: 7b:8a:ef:0f:46:a3:c8:94:8b:79:97:7d:56:5d:6d: 53:0a:5b:d6:98:85:ff:60:21:64:4c:35:e0:77:f5: 8c:7f:b2:e7:ad:5b:ed:cc:5a:e3:e4:33:bf:9b:db: 23:a0:b9:fd:63:c6:4e:0e:81:67:71:ee:aa:8c:b5: 0f:31:81:f4:89:1f:4b:61:cf:6b:dd:0f:4d:99:eb: 51:26:54:9c:c5:c0:31:20:fe:35:9e:ed:0c:e4:a3: 29:b1:b1:17:9b:1d:11:62:0b:cc:4b:3f:82:33:55: a7:5d:dc:91:a1:c4:a3:cf:cd:2a:11:27:c3:80:bc: 53:4c:bb:57:de:95:2e:fd:e1:92:66:a6:de:91:2d: 58:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6D:53:4E:D1:3E:E7:01:A4:CD:C7:30:F2:18:61:23:9C:12:FE:A4 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7d:a0:ca:b6:ce:9a:91:55:ce:4e:53:5c:fa:16:3a:21:e4: 99:8d:e1:af:f2:d2:ec:d0:99:c0:c2:95:00:ec:33:9c:b2:83: f2:13:66:fe:7c:3a:65:03:71:34:05:dc:37:6e:a6:7b:57:6c: 23:80:5c:f9:a0:64:c5:d9:e2:e5:89:7f:80:31:28:67:a4:9c: e9:6a:ec:16:f6:36:55:90:f1:d3:97:16:5e:c9:4c:51:68:27: 66:99:d5:66:74:34:0c:8a:b7:d5:c3:d3:50:01:de:17:e2:aa: 47:c0:cd:92:ce:6a:ce:66:ea:b2:6e:ab:e0:7d:20:c0:58:01: 1c:33:db:56:2d:88:e1:03:87:28:90:98:94:ce:4d:cd:94:98: cb:28:38:6c:d8:50:80:1b:be:1c:41:41:6e:d3:4b:d6:56:b1: 34:ad:91:f8:8c:b5:85:b7:af:5f:2b:07:56:24:ff:69:e0:89: e7:ac:fe:e1:06:b5:53:f9:7c:f1:9e:a9:41:56:18:fa:c3:4f: cb:ae:b0:5e:26:e7:49:5b:aa:51:fa:d1:35:f7:73:70:5a:fc: 4f:ac:6c:dc:77:ee:fa:90:fa:a6:8d:ec:21:10:bb:ad:80:a2: d0:a6:1a:08:74:33:25:ec:f9:f9:f5:72:55:aa:07:4d:0e:bc: 3f:e8:02:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUwOTA1MDE1MDA5WhcNMjUwOTEyMDE1MDA5WjAYMRYwFAYD VQQDEw02OGJhNDFkMi0zOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzkaUyzpgQPNaM9hEFDr/VfopIJFSwo6yrMHowB1ucB+tc86U3fB9kYT4Dfs RkotOCuzxX1vnicbQOsDevp0kDPRdv03+eO+Zk/2fq0wePcvZSBLSfT3sX2hyvgd qKMitgwcZYTVyy5me4/rLUe56u33sRDFAMx7iu8PRqPIlIt5l31WXW1TClvWmIX/ YCFkTDXgd/WMf7LnrVvtzFrj5DO/m9sjoLn9Y8ZODoFnce6qjLUPMYH0iR9LYc9r 3Q9NmetRJlScxcAxIP41nu0M5KMpsbEXmx0RYgvMSz+CM1WnXdyRocSjz80qESfD gLxTTLtX3pUu/eGSZqbekS1YAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRtU07R PucBpM3HMPIYYSOcEv6kMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGfaDKts6akVXOTlNc+hY6IeSZjeGv8tLs0JnAwpUA7DOcsoPyE2b+ fDplA3E0Bdw3bqZ7V2wjgFz5oGTF2eLliX+AMShnpJzpauwW9jZVkPHTlxZeyUxR aCdmmdVmdDQMirfVw9NQAd4X4qpHwM2SzmrOZuqybqvgfSDAWAEcM9tWLYjhA4co kJiUzk3NlJjLKDhs2FCAG74cQUFu00vWVrE0rZH4jLWFt69fKwdWJP9p4InnrP7h BrVT+XzxnqlBVhj6w0/LrrBeJudJW6pR+tE193NwWvxPrGzcd+76kPqmjewhELut gKLQphoIdDMl7Pn59XJVqgdNDrw/6AK+ -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:28 2025 by rpki-client