$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft File: a1P4D46IGzcxlyZjuhiXt0qS1E0.mft (raw, json) Hash identifier: KRf83Gdn7sl6peX+Y+sCHG8R+9L3VaaEDV/Klm7nEw4= Subject key identifier: 19:0D:8B:4E:C8:67:14:49:E8:91:DD:91:5C:BC:50:2E:4B:E3:78:AF Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft Manifest number: 0209 Signing time: Fri 05 Sep 2025 02:46:14 +0000 Manifest this update: Fri 05 Sep 2025 02:46:13 +0000 Manifest next update: Fri 12 Sep 2025 02:46:13 +0000 Files and hashes: 1: a1P4D46IGzcxlyZjuhiXt0qS1E0.crl (hash: pH3AyK5gnvkY5CM3sFeOCw5EN49jIAIU0qZli7UWmn8=) 2: A216EC4E3C7911F0B25C0585C4F9AE02.roa (hash: vKLf2rHEIG3SZoTwG/5Mh6FH3VoQv1z4rOoGSmOI4Fs=) 3: 026537E8861E11F0BC465F85C4F9AE02.roa (hash: /7r7P4AnrguSGgl5ZX4GQrE71KMoMDZh31zaE/ThIEk=) 4: 8361CB4E5AE611F0963E5C62C4F9AE02.roa (hash: M4WGtwFkPwUoSWIULQ4yxINkgXWufBIM4+UZEpcRmO4=) 5: B856D46C3B9611F0B2363C74C4F9AE02.roa (hash: h/qcaSqjY8kiFIGM/MMPsHobkpAe/EdAmdDLkkpjgjM=) 6: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (hash: LcCehnLIRoCgjwwcDQ7TUr2n1e7iAgFU0iCoo79xeiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:46:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Validity Not Before: Sep 5 02:46:13 2025 GMT Not After : Sep 12 02:46:13 2025 GMT Subject: CN=68ba4ef6-8c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6c:e1:bf:23:b2:cb:c7:c9:c5:51:ff:4d:2e: 45:36:38:d6:87:dd:7d:d6:b2:14:b6:76:58:05:2f: 96:84:7f:1d:75:68:b2:cc:7b:66:3a:6e:05:d6:24: 2a:91:23:35:7e:a1:53:c1:a6:1f:f4:e4:2f:4f:66: 93:74:b8:5d:8c:49:ea:2f:23:0d:17:91:af:af:23: cb:9a:17:77:99:8c:63:b6:09:37:9e:f3:dc:61:42: 37:0e:f6:35:b0:02:9e:34:8a:85:cb:34:1d:cb:bb: 5d:84:69:5b:81:b1:27:71:c6:61:df:35:9e:86:33: af:75:52:9a:f6:f8:f2:9e:70:1b:53:96:b9:f4:62: af:1a:8e:6d:5e:da:21:60:ac:fd:d3:ac:55:b4:7f: 1d:bd:32:12:f6:79:71:b5:fd:d9:c3:6f:d1:b6:5a: 5b:1e:88:3b:9a:78:eb:0a:1c:2a:8b:38:aa:72:66: 78:1f:18:64:50:e1:bc:3d:c1:d3:16:55:16:34:3a: 43:47:d0:d7:41:04:36:38:75:ae:a4:c4:a3:ff:5a: a2:a2:47:f3:93:6a:29:ad:3e:db:ac:74:06:b0:8b: 2c:ac:3d:bc:0a:de:7c:d4:8e:ed:f3:50:b1:2a:e4: 4c:1d:d7:03:e1:51:3e:6d:3a:2e:10:7e:e0:2c:f2: f6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:0D:8B:4E:C8:67:14:49:E8:91:DD:91:5C:BC:50:2E:4B:E3:78:AF X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4e:2c:c4:c9:77:98:b3:bb:7e:f7:1f:cc:18:67:3c:15:ae: a6:58:17:e6:cf:1f:65:c0:c3:df:a5:b2:e5:77:48:14:40:05: a9:cc:1d:1f:f4:56:b9:eb:97:2b:f7:91:c8:05:4b:5e:91:ea: 3b:9a:cf:22:11:62:5e:6b:4b:fa:66:8f:b4:c7:b3:7a:96:b8: 9d:4d:2d:48:ec:78:92:20:d2:98:02:81:ef:b6:e6:6f:b6:b9: e9:c7:b0:b1:79:99:c4:75:47:81:09:ae:23:5b:e7:52:e4:18: 7e:99:41:36:a4:24:c2:62:9a:fe:d0:75:3c:cb:1c:d8:2a:58: 06:dc:5d:5e:b4:e2:1f:90:19:b5:03:2b:6b:46:4c:44:df:19: 32:e4:02:51:86:cc:42:36:30:04:e1:9b:81:a6:1a:81:6d:de: 5d:b8:8c:db:c2:22:fc:a7:33:24:a7:94:d0:dd:7e:c5:d2:fd: d1:41:95:f7:70:76:44:37:5f:e0:d8:bd:a6:4b:36:4f:e0:0d: 30:30:80:7c:71:3b:2d:9a:68:8e:d7:22:40:0d:21:8e:55:bb: 73:a3:d3:b9:51:14:28:e3:0b:5a:2e:03:76:39:dd:05:24:c1: e4:8a:31:1a:5c:1a:14:06:91:ba:e1:09:65:2d:98:cb:f5:71: cc:0e:4f:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjUwOTA1MDI0NjEzWhcNMjUwOTEyMDI0NjEzWjAYMRYwFAYD VQQDEw02OGJhNGVmNi04YzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mzhvyOyy8fJxVH/TS5FNjjWh9191rIUtnZYBS+WhH8ddWiyzHtmOm4F1iQq kSM1fqFTwaYf9OQvT2aTdLhdjEnqLyMNF5GvryPLmhd3mYxjtgk3nvPcYUI3DvY1 sAKeNIqFyzQdy7tdhGlbgbEnccZh3zWehjOvdVKa9vjynnAbU5a59GKvGo5tXtoh YKz906xVtH8dvTIS9nlxtf3Zw2/RtlpbHog7mnjrChwqiziqcmZ4HxhkUOG8PcHT FlUWNDpDR9DXQQQ2OHWupMSj/1qiokfzk2oprT7brHQGsIssrD28Ct581I7t81Cx KuRMHdcD4VE+bTouEH7gLPL2JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkNi07I ZxRJ6JHdkVy8UC5L43ivMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEMy81RkEzNkUzNDg5MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6 Y3hseVpqdWhpWHQwcVMxRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXTizEyXeYs7t+9x/MGGc8Fa6mWBfmzx9lwMPfpbLld0gUQAWpzB0f 9Fa565cr95HIBUtekeo7ms8iEWJea0v6Zo+0x7N6lridTS1I7HiSINKYAoHvtuZv trnpx7CxeZnEdUeBCa4jW+dS5Bh+mUE2pCTCYpr+0HU8yxzYKlgG3F1etOIfkBm1 AytrRkxE3xky5AJRhsxCNjAE4ZuBphqBbd5duIzbwiL8pzMkp5TQ3X7F0v3RQZX3 cHZEN1/g2L2mSzZP4A0wMIB8cTstmmiO1yJADSGOVbtzo9O5URQo4wtaLgN2Od0F JMHkijEaXBoUBpG64QllLZjL9XHMDk+C -----END CERTIFICATE-----Generated at Sat Sep 6 02:36:13 2025 by rpki-client