$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: l1YA9F3KaQEGrJrn9V9d2qsK+yuUe8HH7eutiDBFwjM= Subject key identifier: 9C:52:A7:F2:39:F0:15:6E:55:03:62:07:0C:3D:D6:1F:E4:71:2A:37 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: A3 Signing time: Sat 23 Aug 2025 06:36:03 +0000 Manifest this update: Sat 23 Aug 2025 06:36:02 +0000 Manifest next update: Sat 30 Aug 2025 06:36:02 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: 8KBjFDyiMT434KmsGlTZzXuzEq/i6UmtQJPjWI97GCY=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: jPKROmghkPyJWap1Ck0b+pE8AGKhobQAaRNerFhIWOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Aug 23 06:36:02 2025 GMT Not After : Aug 30 06:36:02 2025 GMT Subject: CN=68a96152-8dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:20:1e:e7:46:e6:9d:1e:28:15:30:61:b6:42: 3e:2d:4c:63:f4:cc:3a:de:86:08:73:c5:9f:e7:62: 83:f1:03:5e:e7:e0:a3:64:77:c0:24:b1:b8:51:98: a3:26:19:78:69:a0:86:c2:1e:a0:ca:af:f9:fe:a2: c9:d7:7c:64:45:14:76:8e:db:0d:f6:00:94:93:5f: 34:52:c8:01:79:18:8b:68:f3:ef:c8:25:55:8d:38: 1d:70:6b:d2:a4:96:59:db:bd:a0:01:3b:1e:8f:93: dc:87:bc:3d:0e:85:44:c9:70:2b:74:a5:4f:04:c3: d4:0a:bb:ee:ff:2a:d3:ff:b5:cb:b1:20:6e:9c:72: b5:7b:c3:8f:e6:7a:4c:19:70:cd:6e:c6:91:02:87: c2:5e:3a:e2:2b:86:a7:6c:fd:aa:97:8c:b9:54:bb: ce:1f:7f:54:6e:b6:d5:a3:0f:10:d8:6c:74:e2:63: 7b:4d:b3:35:7f:97:ed:e3:09:31:8a:07:8d:80:fd: 18:36:0e:f8:23:fe:96:68:89:f0:43:3d:3c:8c:d0: d9:fa:65:9c:7a:79:f2:37:62:3f:3b:db:1e:ca:10: 82:6f:f2:42:07:02:25:5b:30:b2:58:a7:79:28:d7: 55:59:1e:f7:d6:2f:6a:53:0f:cc:57:ac:b1:66:c0: 24:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:52:A7:F2:39:F0:15:6E:55:03:62:07:0C:3D:D6:1F:E4:71:2A:37 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:36:1a:10:22:8b:83:72:f6:8f:24:40:0f:db:7e:31:74:bb: e6:cf:e3:20:fc:c8:26:c4:10:bf:f3:9b:bc:00:54:58:cd:9d: 15:71:24:40:49:dd:1c:9f:7d:75:f1:70:8b:27:de:df:f5:cf: 00:3e:52:88:f2:ea:be:2e:75:18:90:05:6b:4b:69:76:79:ac: e0:91:f2:38:db:48:dc:14:8c:b2:f4:59:77:37:86:05:c6:fe: 45:4a:4e:9a:bb:ee:e1:85:16:b4:cd:75:42:47:87:c2:ea:2d: f6:60:9f:d8:ef:f4:d6:a9:24:61:14:01:cf:c4:9b:e2:1f:9d: 31:71:4f:1f:03:b7:e5:7f:89:84:ec:56:16:19:ea:db:ad:cf: 92:70:c4:6d:a5:fd:94:6f:0d:3d:13:a7:4d:70:c6:b3:bf:e2: 53:e1:94:fa:f9:51:d9:0a:5e:c6:d6:a3:2c:e5:14:d7:aa:88: f3:bb:8c:73:6b:db:e2:f7:38:a6:ff:ae:ce:e4:97:f1:77:b5: 67:88:42:f8:cc:1c:41:11:d1:cd:b5:88:c3:a2:20:b6:ba:cf: 35:63:74:67:4c:53:80:6a:9f:30:d2:3d:01:db:79:20:39:55: 69:95:2c:07:bf:fd:c9:6a:99:be:cb:d1:0d:07:61:d9:a8:f9: 82:49:65:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUwODIzMDYzNjAyWhcNMjUwODMwMDYzNjAyWjAYMRYwFAYD VQQDEw02OGE5NjE1Mi04ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCAe50bmnR4oFTBhtkI+LUxj9Mw63oYIc8Wf52KD8QNe5+CjZHfAJLG4UZij Jhl4aaCGwh6gyq/5/qLJ13xkRRR2jtsN9gCUk180UsgBeRiLaPPvyCVVjTgdcGvS pJZZ272gATsej5Pch7w9DoVEyXArdKVPBMPUCrvu/yrT/7XLsSBunHK1e8OP5npM GXDNbsaRAofCXjriK4anbP2ql4y5VLvOH39UbrbVow8Q2Gx04mN7TbM1f5ft4wkx igeNgP0YNg74I/6WaInwQz08jNDZ+mWcennyN2I/O9seyhCCb/JCBwIlWzCyWKd5 KNdVWR731i9qUw/MV6yxZsAk2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxSp/I5 8BVuVQNiBww91h/kcSo3MB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5NhoQIouDcvaPJEAP234xdLvmz+Mg/MgmxBC/85u8AFRYzZ0VcSRA Sd0cn3118XCLJ97f9c8APlKI8uq+LnUYkAVrS2l2eazgkfI420jcFIyy9Fl3N4YF xv5FSk6au+7hhRa0zXVCR4fC6i32YJ/Y7/TWqSRhFAHPxJviH50xcU8fA7flf4mE 7FYWGerbrc+ScMRtpf2Ubw09E6dNcMazv+JT4ZT6+VHZCl7G1qMs5RTXqojzu4xz a9vi9zim/67O5Jfxd7VniEL4zBxBEdHNtYjDoiC2us81Y3RnTFOAap8w0j0B23kg OVVplSwHv/3Japm+y9ENB2HZqPmCSWUT -----END CERTIFICATE-----Generated at Sun Aug 24 22:04:58 2025 by rpki-client