$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: 7RMUltqZi5JQnVO7OIBBbvqM0zG/I9Gpj1NOX62KEbs= Subject key identifier: ED:16:D0:F9:C2:8B:90:29:75:4E:77:9D:8A:53:AD:FD:36:4F:DA:60 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0BB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0BAA Signing time: Sun 24 Aug 2025 18:57:34 +0000 Manifest this update: Sun 24 Aug 2025 18:57:34 +0000 Manifest next update: Sun 31 Aug 2025 18:57:34 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: yAIYligU5XtfAVJryqFHnS8kmQyh3pGYMikrnN05vE0=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2994 (0xbb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Aug 24 18:57:34 2025 GMT Not After : Aug 31 18:57:34 2025 GMT Subject: CN=68ab609e-fb03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:15:cd:2b:54:66:b9:60:ab:e5:ea:4f:c4:4f: 7d:5c:3c:bd:d4:39:bd:1d:ca:d8:24:72:81:18:60: 4f:db:17:0c:ae:2f:d3:4d:41:8f:06:2b:b0:2c:c8: 34:b5:89:3e:b0:5c:d6:3d:44:f0:ca:30:00:89:41: 99:e3:a3:5c:4c:a7:5f:07:fb:68:82:36:c8:d4:73: 8e:df:c3:5a:79:d0:81:d3:c3:2c:b2:37:d9:d4:7e: 77:68:c3:61:b3:5e:1c:04:24:ae:bb:51:fb:ef:69: 7e:9b:31:19:f3:c1:5a:96:81:e0:1b:bb:cf:7b:30: 36:4c:6e:30:7d:63:3a:e9:0d:8c:01:aa:df:26:d6: 87:57:af:52:fe:47:4a:80:f3:d5:ce:a5:91:c6:16: d4:a6:7c:8f:da:55:dc:e7:d3:fb:06:a8:61:9d:5b: 34:1c:be:fa:c6:04:2b:98:c3:35:c1:bf:9b:2c:84: 59:46:ef:9e:f1:db:1e:38:5c:a7:93:25:07:11:c8: 17:0f:cf:09:14:64:2f:b2:ac:93:3c:13:54:7c:87: 6d:cd:12:cf:74:ce:6f:ef:f3:5a:c7:7b:81:b3:a7: bc:31:df:63:c5:d7:38:87:c1:33:49:5d:a5:58:ad: 10:f3:c8:cf:dc:ee:ed:fa:bd:33:ac:72:e7:6a:3a: 00:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:16:D0:F9:C2:8B:90:29:75:4E:77:9D:8A:53:AD:FD:36:4F:DA:60 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:20:ef:32:99:2f:24:c8:80:4a:f1:b0:1f:1c:5d:f5:de:6b: f2:a6:c4:35:0c:59:c9:37:8a:4c:cf:c5:d4:62:eb:3d:45:82: 43:1d:6e:43:46:b7:d0:b6:ba:51:47:2f:e4:86:a9:14:27:83: 0c:ca:c6:01:a8:17:5b:5f:d4:94:c4:0c:57:0f:cb:33:73:f7: cf:d2:d1:fd:ad:00:da:17:56:d4:e7:5b:67:84:f4:3f:94:70: 18:60:10:f7:4d:64:9f:36:f0:0d:b0:90:59:5a:7c:16:7e:d3: c2:7b:b4:6c:4f:24:6b:14:8c:ea:1d:be:f7:c0:cc:44:fa:5a: 08:bd:53:8f:59:e9:b4:e3:bc:bf:52:37:c6:3b:00:9d:d6:ac: 79:52:c2:db:09:16:97:e1:d5:10:35:6c:50:72:eb:59:cf:ce: ce:40:1a:c0:41:e6:d4:74:d5:83:2f:e7:d6:57:8c:29:b6:ec: 32:3b:5f:04:34:9c:c0:44:fd:a5:75:0a:4b:d0:f9:aa:b3:4d: af:02:9e:4d:63:fd:f0:81:26:13:d5:53:60:70:17:df:56:d0: 74:de:f4:a3:c1:05:53:a5:6c:d8:05:85:a1:51:71:06:31:56: 62:f1:cf:f3:3a:4f:6e:df:eb:1c:18:cd:bc:ff:50:f9:d7:40: ea:40:71:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUwODI0MTg1NzM0WhcNMjUwODMxMTg1NzM0WjAYMRYwFAYD VQQDEw02OGFiNjA5ZS1mYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhXNK1RmuWCr5epPxE99XDy91Dm9HcrYJHKBGGBP2xcMri/TTUGPBiuwLMg0 tYk+sFzWPUTwyjAAiUGZ46NcTKdfB/togjbI1HOO38NaedCB08MssjfZ1H53aMNh s14cBCSuu1H772l+mzEZ88FaloHgG7vPezA2TG4wfWM66Q2MAarfJtaHV69S/kdK gPPVzqWRxhbUpnyP2lXc59P7BqhhnVs0HL76xgQrmMM1wb+bLIRZRu+e8dseOFyn kyUHEcgXD88JFGQvsqyTPBNUfIdtzRLPdM5v7/Nax3uBs6e8Md9jxdc4h8EzSV2l WK0Q88jP3O7t+r0zrHLnajoASQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0W0PnC i5ApdU53nYpTrf02T9pgMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALIO8ymS8kyIBK8bAfHF313mvypsQ1DFnJN4pMz8XUYus9RYJDHW5D RrfQtrpRRy/khqkUJ4MMysYBqBdbX9SUxAxXD8szc/fP0tH9rQDaF1bU51tnhPQ/ lHAYYBD3TWSfNvANsJBZWnwWftPCe7RsTyRrFIzqHb73wMxE+loIvVOPWem047y/ UjfGOwCd1qx5UsLbCRaX4dUQNWxQcutZz87OQBrAQebUdNWDL+fWV4wptuwyO18E NJzARP2ldQpL0Pmqs02vAp5NY/3wgSYT1VNgcBffVtB03vSjwQVTpWzYBYWhUXEG MVZi8c/zOk9u3+scGM28/1D510DqQHFN -----END CERTIFICATE-----Generated at Sun Aug 24 21:33:09 2025 by rpki-client