$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: GDwC7dHQlTQgMjVDLpXf8m7RLFCKyFwPCUMMqsyWofI= Subject key identifier: E5:5D:C6:29:43:1E:13:99:CB:4A:40:D9:62:43:A8:4C:DC:F1:8D:58 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 0684 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 067F Signing time: Wed 20 Aug 2025 22:28:48 +0000 Manifest this update: Wed 20 Aug 2025 22:28:48 +0000 Manifest next update: Wed 27 Aug 2025 22:28:48 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: 3FiujWoTSppjlHZB5CdmsgX1gg8pyrZ0axqJV17zNS0=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 22:28:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Aug 20 22:28:48 2025 GMT Not After : Aug 27 22:28:48 2025 GMT Subject: CN=68a64c20-b06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fc:dd:d4:b1:7f:2b:86:fc:4e:d9:7d:66:1a: 7c:2b:9a:c8:43:ec:a1:62:b7:5a:a2:d5:a2:19:14: 43:b7:b2:df:e1:60:b8:d4:3f:f8:bd:4b:f2:d6:68: b0:c4:2b:3f:74:11:00:6c:2b:99:3f:ca:ee:70:cf: 0a:7b:41:af:da:19:25:5b:a1:19:39:ca:56:2b:6c: b5:62:bc:4e:94:d4:ea:9e:e8:93:d8:03:7c:c5:86: 90:07:2d:69:0a:ea:ee:eb:4f:96:dd:c5:f9:85:44: b3:e8:06:73:e5:9d:20:9f:77:8d:b3:b1:5f:ed:14: 51:89:be:4a:d3:1a:a5:41:92:e3:3d:2a:8c:15:7c: 93:f9:e5:b1:be:15:91:73:1f:1f:b1:2f:6b:74:58: 54:62:3f:52:45:63:91:63:4c:61:3a:c4:56:f8:42: 7d:d4:6c:9d:dd:97:cf:1a:5c:24:91:6d:9e:96:a4: eb:e7:8e:cd:76:01:dc:3b:9d:6a:ad:ee:3b:25:77: 12:ae:d8:96:76:59:31:de:76:20:bb:1d:1a:c3:43: 7e:87:ad:30:de:85:ce:8c:7e:a0:88:a7:a3:f9:31: 43:2f:39:65:1e:55:9f:9b:83:63:41:1b:7c:87:c6: d6:ed:49:fe:08:ac:aa:4d:1d:6d:e9:63:44:c5:34: c8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5D:C6:29:43:1E:13:99:CB:4A:40:D9:62:43:A8:4C:DC:F1:8D:58 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:2d:5f:d8:12:b1:bf:0d:12:52:37:6d:c7:30:ef:90:61:38: e6:a1:21:5e:7b:92:49:48:03:c4:80:5e:92:78:11:d8:a4:68: 4d:5f:e8:33:1f:3c:c0:fb:f5:c2:24:85:24:04:f0:56:92:1b: 9b:dd:c8:8f:5b:8c:47:ee:f8:6c:31:8b:3b:30:c1:81:80:ba: a3:28:42:9d:b3:54:f6:50:57:4c:6d:d4:d7:09:0d:0d:1b:f1: c6:ab:7e:d4:fd:71:53:6d:f4:44:6c:a0:73:82:31:94:64:31: 3b:63:48:14:61:bf:9f:c2:d7:89:09:6d:7c:32:a9:30:00:30: c6:83:dd:3d:dd:6b:63:e2:3f:bf:a5:ce:52:de:cb:93:3a:f6: d6:8d:f5:d4:00:83:00:24:26:eb:3d:15:f7:5f:59:f9:fe:35: 87:23:e7:ef:78:8c:8a:8a:5a:68:67:1e:a4:ec:c2:8a:2e:bd: cd:30:12:91:e7:5c:f3:27:e1:7f:09:ea:c1:4a:50:6b:b9:7f: 68:29:58:2c:e2:7c:14:72:6d:06:0b:f4:d1:71:9f:23:d9:a4: bf:f4:56:4c:7e:77:4f:a9:58:bb:88:f9:48:64:e2:17:9b:d8: b8:57:9d:28:11:ad:8e:10:66:e5:4e:98:2d:d5:3b:ac:bc:6d: 70:03:d4:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUwODIwMjIyODQ4WhcNMjUwODI3MjIyODQ4WjAYMRYwFAYD VQQDEw02OGE2NGMyMC1iMDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Pzd1LF/K4b8Ttl9Zhp8K5rIQ+yhYrdaotWiGRRDt7Lf4WC41D/4vUvy1miw xCs/dBEAbCuZP8rucM8Ke0Gv2hklW6EZOcpWK2y1YrxOlNTqnuiT2AN8xYaQBy1p Curu60+W3cX5hUSz6AZz5Z0gn3eNs7Ff7RRRib5K0xqlQZLjPSqMFXyT+eWxvhWR cx8fsS9rdFhUYj9SRWORY0xhOsRW+EJ91Gyd3ZfPGlwkkW2elqTr547NdgHcO51q re47JXcSrtiWdlkx3nYgux0aw0N+h60w3oXOjH6giKej+TFDLzllHlWfm4NjQRt8 h8bW7Un+CKyqTR1t6WNExTTI6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVdxilD HhOZy0pA2WJDqEzc8Y1YMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFLV/YErG/DRJSN23HMO+QYTjmoSFee5JJSAPEgF6SeBHYpGhNX+gz HzzA+/XCJIUkBPBWkhub3ciPW4xH7vhsMYs7MMGBgLqjKEKds1T2UFdMbdTXCQ0N G/HGq37U/XFTbfREbKBzgjGUZDE7Y0gUYb+fwteJCW18MqkwADDGg9093Wtj4j+/ pc5S3suTOvbWjfXUAIMAJCbrPRX3X1n5/jWHI+fveIyKilpoZx6k7MKKLr3NMBKR 51zzJ+F/CerBSlBruX9oKVgs4nwUcm0GC/TRcZ8j2aS/9FZMfndPqVi7iPlIZOIX m9i4V50oEa2OEGblTpgt1TusvG1wA9RC -----END CERTIFICATE-----Generated at Fri Aug 22 16:28:47 2025 by rpki-client