$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: 12YMl08WEe3oIZXJFFaWqs+phGIFmcrWFsp1+eTldgU= Subject key identifier: 07:92:92:0B:F6:EE:C5:BF:66:2D:EF:65:66:4A:3E:A8:4C:D0:C7:98 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 1053 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 1043 Signing time: Thu 04 Sep 2025 14:24:59 +0000 Manifest this update: Thu 04 Sep 2025 14:24:59 +0000 Manifest next update: Thu 11 Sep 2025 14:24:59 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: 1iTSvGuKkqbVr8sPA7Mxa9Dk40c736cZ7wTZfonmwak=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4179 (0x1053) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Sep 4 14:24:59 2025 GMT Not After : Sep 11 14:24:59 2025 GMT Subject: CN=68b9a13b-8a41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:93:5a:cd:a3:0b:c7:5f:b3:85:68:83:4f: 80:30:11:e4:ed:b3:c5:84:95:56:4c:e5:da:a6:40: 2b:95:6a:d0:06:5e:f1:45:ed:a0:0a:7b:4e:55:01: 1e:b5:c0:b5:c3:1f:b4:b5:c5:0a:02:f0:93:df:ae: 16:d3:d3:f0:a6:0b:bb:93:b2:ae:8e:4d:77:9c:04: aa:f7:d7:22:3a:b1:3c:41:df:88:6b:28:e0:a1:42: 55:92:72:19:09:f5:00:6b:91:c5:2e:6c:93:99:92: f6:aa:3c:21:21:1b:b9:bb:11:dd:f1:29:6e:61:55: f3:0f:11:9d:1c:6b:66:0f:a7:85:39:8a:38:9b:9b: 32:22:c8:e9:3c:9a:74:ae:68:5b:27:c0:69:81:89: 00:72:bc:c9:6d:86:0d:8d:73:3c:1a:ec:ee:1f:27: 06:23:9b:73:96:86:22:7d:72:e8:ab:ee:f7:b7:77: a4:0a:10:6f:41:b1:39:9f:20:b8:0a:d2:bc:7c:da: 0f:aa:d7:46:6d:f5:ca:dd:b7:7c:99:02:05:c2:e5: 13:ea:0c:94:fc:46:c3:b6:eb:4c:16:07:e6:f4:b7: db:ae:a8:1f:1a:6d:55:f7:8b:3a:55:09:b2:a1:fd: e4:6e:95:9d:72:a4:23:f3:75:fc:1b:48:b0:b2:3d: 26:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:92:92:0B:F6:EE:C5:BF:66:2D:EF:65:66:4A:3E:A8:4C:D0:C7:98 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:44:a2:95:6a:ac:26:f2:f1:64:81:9c:24:02:cb:1e:63:22: 9a:20:3b:c6:6c:c9:e7:bf:f8:dd:75:83:7e:92:39:62:33:b9: 61:04:44:82:07:53:c5:c2:61:1f:19:9c:18:e3:41:6f:eb:63: e5:b2:eb:9c:8d:d3:6d:9b:41:95:1f:48:94:8b:06:52:fc:de: 1e:9c:ef:1e:54:7d:a6:1d:94:ba:ec:19:39:53:37:bf:cc:d1: b7:e8:f2:c0:b9:5f:56:a8:82:0e:08:a1:77:79:8b:df:3d:79: 21:38:e8:d6:a1:66:ec:8d:17:be:8f:80:f0:ab:6f:7f:a5:7b: d6:9e:e3:c9:41:bc:94:56:aa:23:89:9d:18:05:19:0f:bb:a1: ed:40:e0:9f:81:5b:8d:7f:72:ec:53:d2:c4:29:9c:73:8d:38: 1d:55:e5:bb:5d:7a:01:be:9c:c4:d6:a5:07:b3:9d:5b:7e:b9: 6d:58:fd:c2:3e:7c:3e:e9:ea:59:fb:fe:fe:96:a6:7b:21:00: 2b:c3:6f:8f:81:5a:34:4b:7d:33:82:e1:b4:46:f0:ca:51:87: 59:4a:ed:1b:88:48:f7:f5:39:1c:6e:f3:d8:52:23:34:e9:cb: 0e:02:ac:c8:51:4c:6e:1f:ea:62:5c:bc:9f:f6:1c:67:3c:cd: 9d:ce:fc:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUwOTA0MTQyNDU5WhcNMjUwOTExMTQyNDU5WjAYMRYwFAYD VQQDEw02OGI5YTEzYi04YTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8KTWs2jC8dfs4Vog0+AMBHk7bPFhJVWTOXapkArlWrQBl7xRe2gCntOVQEe tcC1wx+0tcUKAvCT364W09Pwpgu7k7Kujk13nASq99ciOrE8Qd+IayjgoUJVknIZ CfUAa5HFLmyTmZL2qjwhIRu5uxHd8SluYVXzDxGdHGtmD6eFOYo4m5syIsjpPJp0 rmhbJ8BpgYkAcrzJbYYNjXM8GuzuHycGI5tzloYifXLoq+73t3ekChBvQbE5nyC4 CtK8fNoPqtdGbfXK3bd8mQIFwuUT6gyU/EbDtutMFgfm9LfbrqgfGm1V94s6VQmy of3kbpWdcqQj83X8G0iwsj0m2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeSkgv2 7sW/Zi3vZWZKPqhM0MeYMB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIRKKVaqwm8vFkgZwkAsseYyKaIDvGbMnnv/jddYN+kjliM7lhBESC B1PFwmEfGZwY40Fv62PlsuucjdNtm0GVH0iUiwZS/N4enO8eVH2mHZS67Bk5Uze/ zNG36PLAuV9WqIIOCKF3eYvfPXkhOOjWoWbsjRe+j4Dwq29/pXvWnuPJQbyUVqoj iZ0YBRkPu6HtQOCfgVuNf3LsU9LEKZxzjTgdVeW7XXoBvpzE1qUHs51bfrltWP3C Pnw+6epZ+/7+lqZ7IQArw2+PgVo0S30zguG0RvDKUYdZSu0biEj39TkcbvPYUiM0 6csOAqzIUUxuH+piXLyf9hxnPM2dzvzn -----END CERTIFICATE-----Generated at Sat Sep 6 11:52:18 2025 by rpki-client