$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: hbI7Fpq50GJL+lODHb9mfEH/m8I8VPXkNKUtnNzDFtc= Subject key identifier: 15:4E:BB:07:A0:DF:28:C0:AE:4A:60:9D:F8:27:D9:2B:91:02:50:99 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 354B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 34F9 Signing time: Tue 02 Sep 2025 14:17:31 +0000 Manifest this update: Tue 02 Sep 2025 14:17:30 +0000 Manifest next update: Tue 09 Sep 2025 14:17:30 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: SLmPe8lckxAXBIaUrGLuPFNZZADE7BVpb/RidLy7Yfg=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 14:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13643 (0x354b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Sep 2 14:17:30 2025 GMT Not After : Sep 9 14:17:30 2025 GMT Subject: CN=68b6fc7a-7528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:83:90:1e:0f:bc:d2:e5:d0:5a:b6:a9:dc:af: d2:95:f6:92:bb:7e:71:90:fb:f0:ff:3a:7a:f3:33: c1:db:65:9c:e7:36:69:b9:be:e6:c3:b3:87:7b:44: 20:2d:69:6f:44:7a:35:f7:21:f7:a0:8e:69:a5:c3: ea:d8:c3:3c:3d:16:2d:9e:b8:88:4f:2c:71:a2:dd: d7:4f:9c:8c:39:38:91:8b:b9:c2:54:ab:3f:70:44: 72:f2:cc:92:21:06:1a:c9:7b:07:6f:91:73:62:ca: bc:df:94:1a:4e:01:bc:4f:40:93:4f:d1:b8:ed:cd: 88:f0:28:39:c2:ce:4e:7d:db:4d:f5:4c:e6:c7:5c: 8b:9e:45:4d:00:c0:4f:b8:4d:3a:6f:70:cf:e3:25: 53:c7:89:01:5e:66:75:02:65:57:c9:52:74:71:95: 08:b0:e3:b6:e3:0c:53:cd:0f:15:f2:c6:3b:8e:af: 33:05:85:ed:5a:e1:9f:c9:4d:d2:38:e4:1c:2a:8f: c8:ec:01:1c:ea:b6:74:63:1f:e3:eb:60:bc:6e:e0: e1:e9:ed:23:75:96:69:98:a7:8f:0b:5d:61:eb:2c: cb:f0:89:b8:41:97:ff:8b:64:67:2f:23:ad:61:b2: 28:69:97:93:6d:f4:26:56:28:a4:f9:2b:66:c4:dd: 75:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4E:BB:07:A0:DF:28:C0:AE:4A:60:9D:F8:27:D9:2B:91:02:50:99 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:35:22:8f:e9:f8:d2:3b:e2:19:4a:21:ec:71:60:13:73:2b: 80:27:d0:1a:4c:8b:6a:77:87:3b:33:3c:c7:a9:2e:2c:da:d2: 5e:87:e2:26:50:2d:b3:52:bc:e0:83:bd:d6:02:25:5a:3f:1e: 89:f3:db:1a:7d:45:a4:aa:16:28:d2:a8:2d:d7:42:f4:cc:c7: c9:74:eb:a9:58:78:1a:07:20:a6:c3:c1:c4:2f:c9:23:ff:51: 90:1e:cf:d0:53:82:27:8d:47:b1:97:1f:4f:c0:57:0b:ac:2e: 2b:39:5c:2b:b2:bc:75:cc:7d:30:02:cf:0f:be:69:86:10:bd: 20:84:d9:a8:f4:e0:f8:67:86:12:11:f8:79:96:27:bc:52:49: d1:a4:6c:3d:0a:ce:96:14:53:50:9b:38:8c:a4:1c:d4:73:10: fd:ca:ac:27:94:2c:a3:95:5c:ef:94:24:66:6e:5a:3f:aa:17: e8:e7:98:fc:a2:31:b5:3c:d8:ac:20:59:c8:89:2c:d9:0e:c9: 0a:04:2d:e6:e0:d9:b1:8c:7e:4b:b8:71:97:5d:5d:f7:f2:68: 8e:be:31:c1:d5:be:7a:bf:fc:82:5e:81:af:42:6e:f4:88:0a: 7b:47:0f:6b:b9:d3:d4:8f:a9:00:48:0b:33:ed:8b:5e:e4:68: 18:55:2d:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUwOTAyMTQxNzMwWhcNMjUwOTA5MTQxNzMwWjAYMRYwFAYD VQQDEw02OGI2ZmM3YS03NTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYOQHg+80uXQWrap3K/SlfaSu35xkPvw/zp68zPB22Wc5zZpub7mw7OHe0Qg LWlvRHo19yH3oI5ppcPq2MM8PRYtnriITyxxot3XT5yMOTiRi7nCVKs/cERy8syS IQYayXsHb5FzYsq835QaTgG8T0CTT9G47c2I8Cg5ws5OfdtN9Uzmx1yLnkVNAMBP uE06b3DP4yVTx4kBXmZ1AmVXyVJ0cZUIsOO24wxTzQ8V8sY7jq8zBYXtWuGfyU3S OOQcKo/I7AEc6rZ0Yx/j62C8buDh6e0jdZZpmKePC11h6yzL8Im4QZf/i2RnLyOt YbIoaZeTbfQmViik+StmxN11QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVOuweg 3yjArkpgnfgn2SuRAlCZMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbNSKP6fjSO+IZSiHscWATcyuAJ9AaTItqd4c7MzzHqS4s2tJeh+Im UC2zUrzgg73WAiVaPx6J89safUWkqhYo0qgt10L0zMfJdOupWHgaByCmw8HEL8kj /1GQHs/QU4InjUexlx9PwFcLrC4rOVwrsrx1zH0wAs8PvmmGEL0ghNmo9OD4Z4YS Efh5lie8UknRpGw9Cs6WFFNQmziMpBzUcxD9yqwnlCyjlVzvlCRmblo/qhfo55j8 ojG1PNisIFnIiSzZDskKBC3m4NmxjH5LuHGXXV338miOvjHB1b56v/yCXoGvQm70 iAp7Rw9rudPUj6kASAsz7Yte5GgYVS16 -----END CERTIFICATE-----Generated at Wed Sep 3 11:52:56 2025 by rpki-client