$ rpki-client -vvf rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft File: S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft (raw, json) Hash identifier: FdvxHwzfcC4Wgf2eLHH5Coxd+QK4zri8q1IgI9vl+nE= Subject key identifier: 74:F2:6F:CD:B6:BC:02:B5:98:8D:90:5B:BA:51:12:BA:20:F1:BD:D3 Authority key identifier: 4B:DD:56:06:CE:E3:83:87:31:B2:76:EB:5A:E2:74:09:55:E6:E8:35 Certificate issuer: /CN=A91A40AE/serialNumber=4BDD5606CEE3838731B276EB5AE2740955E6E835 Certificate serial: 02D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S91WBs7jg4cxsnbrWuJ0CVXm6DU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft Manifest number: 02CF Signing time: Sat 23 Aug 2025 01:37:05 +0000 Manifest this update: Sat 23 Aug 2025 01:37:05 +0000 Manifest next update: Sat 30 Aug 2025 01:37:05 +0000 Files and hashes: 1: S91WBs7jg4cxsnbrWuJ0CVXm6DU.crl (hash: ZHFvmyPIDiXmlOpfxdHccliOuTkl+TNZIfJm700KsnY=) 2: 0C2902B4FC3D11ECAD619C35C4F9AE02.roa (hash: MBRZFEnGY9HD1b044iv1jg/gd/S5QUVqB7co270dkzU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.crl rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S91WBs7jg4cxsnbrWuJ0CVXm6DU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A40AE, serialNumber=4BDD5606CEE3838731B276EB5AE2740955E6E835 Validity Not Before: Aug 23 01:37:05 2025 GMT Not After : Aug 30 01:37:05 2025 GMT Subject: CN=68a91b41-ef4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e6:ed:1b:40:d7:72:ed:27:1b:ab:54:c5:79: 1d:58:fe:12:dc:5e:b3:52:46:6f:d2:5d:36:ca:3d: 92:44:97:c1:22:6e:24:29:23:b8:53:16:07:0a:a2: 5c:51:34:19:7f:b2:a1:a5:3f:30:22:b2:ef:9a:85: b4:0d:0b:6e:e7:74:96:2f:84:17:7b:e6:a3:72:05: 7d:c2:b6:46:31:b1:9c:44:d0:f0:01:b7:da:10:c2: 12:5b:a8:04:a8:bc:92:eb:0d:47:29:cd:90:8e:aa: 96:79:99:7f:90:f5:fd:3f:26:26:b3:93:04:1a:0a: de:db:e9:39:98:eb:2b:62:5a:ac:00:c5:14:ed:19: 8f:73:8c:a1:52:d4:5c:22:fe:df:64:b5:08:5c:b7: ad:2d:f6:5c:37:8c:d4:4e:65:a0:7f:d6:a0:31:5a: 9e:b9:62:e1:f4:cb:8f:ec:3c:24:71:94:5b:f7:6c: 7b:39:d5:2c:ba:40:a0:ed:72:4c:4d:9c:3c:00:19: cc:6e:78:96:77:ce:84:de:88:0a:9f:9c:49:fa:12: cb:65:4a:82:aa:3a:9a:e8:7c:17:c4:08:14:59:f3: 09:65:59:04:35:bc:33:6a:6b:8e:26:0a:dc:6b:33: 4e:35:15:6b:7f:c2:65:9a:7c:e8:bd:2f:81:94:8e: b0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F2:6F:CD:B6:BC:02:B5:98:8D:90:5B:BA:51:12:BA:20:F1:BD:D3 X509v3 Authority Key Identifier: keyid:4B:DD:56:06:CE:E3:83:87:31:B2:76:EB:5A:E2:74:09:55:E6:E8:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S91WBs7jg4cxsnbrWuJ0CVXm6DU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A40AE/86215FD0FC3811EC9D1AA71EC4F9AE02/S91WBs7jg4cxsnbrWuJ0CVXm6DU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:fb:87:0b:1f:53:b8:99:a6:bb:9e:1b:00:2a:e9:e3:8e:70: 56:52:6b:07:a1:34:dc:b1:02:56:a8:7e:26:0f:63:89:d7:e2: 9b:06:ce:27:17:d6:a5:26:5e:63:fb:ef:49:81:06:59:62:73: be:24:93:c9:76:bd:6e:60:ce:ee:4c:3e:a3:25:37:e2:df:3f: 1e:70:ed:6c:d3:e2:c3:9d:8f:17:62:e9:c2:ca:91:63:2e:a3: a1:8b:d8:b7:34:ba:5f:0f:2a:cf:c8:b9:0d:e6:47:37:21:d9: 6b:88:c4:91:68:19:0f:c3:ff:7c:8c:b7:f7:7a:5e:08:7b:b6: a2:6f:56:96:40:c7:51:ce:ec:32:a3:12:2f:fa:34:8e:7e:38: 10:50:64:6c:3d:73:50:6a:1c:b4:15:fa:63:2c:5a:11:a0:c5: 8b:b9:78:5d:cf:1c:73:e7:83:17:46:82:43:d1:18:de:69:c6: 34:1d:20:62:83:b0:b3:2e:58:7f:ee:c2:9d:89:d4:f9:f9:0d: 63:94:2d:67:7a:78:16:8c:28:a8:de:22:6b:44:98:01:2d:ef: a1:79:d2:3a:b0:ed:9c:07:c0:ed:7b:15:a3:a7:07:7a:c6:ee: 42:f2:dc:41:53:1b:f9:a2:cf:43:0f:97:ee:fa:f7:61:2f:c6: f6:d2:cf:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQwQUUxMTAvBgNVBAUTKDRCREQ1NjA2Q0VFMzgzODczMUIyNzZFQjVBRTI3NDA5 NTVFNkU4MzUwHhcNMjUwODIzMDEzNzA1WhcNMjUwODMwMDEzNzA1WjAYMRYwFAYD VQQDEw02OGE5MWI0MS1lZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ebtG0DXcu0nG6tUxXkdWP4S3F6zUkZv0l02yj2SRJfBIm4kKSO4UxYHCqJc UTQZf7KhpT8wIrLvmoW0DQtu53SWL4QXe+ajcgV9wrZGMbGcRNDwAbfaEMISW6gE qLyS6w1HKc2QjqqWeZl/kPX9PyYms5MEGgre2+k5mOsrYlqsAMUU7RmPc4yhUtRc Iv7fZLUIXLetLfZcN4zUTmWgf9agMVqeuWLh9MuP7DwkcZRb92x7OdUsukCg7XJM TZw8ABnMbniWd86E3ogKn5xJ+hLLZUqCqjqa6HwXxAgUWfMJZVkENbwzamuOJgrc azNONRVrf8JlmnzovS+BlI6wyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTyb822 vAK1mI2QW7pRErog8b3TMB8GA1UdIwQYMBaAFEvdVgbO44OHMbJ261ridAlV5ug1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDBBRS84NjIxNUZEMEZD MzgxMUVDOUQxQUE3MUVDNEY5QUUwMi9TOTFXQnM3amc0Y3hzbmJyV3VKMENWWG02 RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M5MVdCczdqZzRjeHNuYnJXdUowQ1ZYbTZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDBBRS84NjIxNUZEMEZDMzgxMUVDOUQxQUE3MUVDNEY5QUUwMi9TOTFXQnM3amc0 Y3hzbmJyV3VKMENWWG02RFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX+4cLH1O4maa7nhsAKunjjnBWUmsHoTTcsQJWqH4mD2OJ1+KbBs4n F9alJl5j++9JgQZZYnO+JJPJdr1uYM7uTD6jJTfi3z8ecO1s0+LDnY8XYunCypFj LqOhi9i3NLpfDyrPyLkN5kc3IdlriMSRaBkPw/98jLf3el4Ie7aib1aWQMdRzuwy oxIv+jSOfjgQUGRsPXNQahy0FfpjLFoRoMWLuXhdzxxz54MXRoJD0RjeacY0HSBi g7CzLlh/7sKdidT5+Q1jlC1nengWjCio3iJrRJgBLe+hedI6sO2cB8DtexWjpwd6 xu5C8txBUxv5os9DD5fu+vdhL8b20s9x -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:48 2025 by rpki-client