$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: jHIvLYIpR11ikF8k/uEaOz8VN0bYAKAqu66LIHwfR8Q= Subject key identifier: 84:AB:19:99:63:0E:4C:31:BA:F8:7B:48:AA:11:0F:0E:30:7F:A1:38 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0D91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D66 Signing time: Mon 08 Sep 2025 18:02:25 +0000 Manifest this update: Mon 08 Sep 2025 18:02:25 +0000 Manifest next update: Mon 15 Sep 2025 18:02:25 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: X7GDo65pnW+q68VXGAtnghvLPOZvmMJotKn5Sdbgdso=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3473 (0xd91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Sep 8 18:02:25 2025 GMT Not After : Sep 15 18:02:25 2025 GMT Subject: CN=68bf1a31-28dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c5:55:08:32:59:f5:55:36:46:62:8e:89:16: 0f:17:97:a2:ad:ce:83:52:37:21:5f:e7:ef:7b:23: 41:72:db:e8:27:f1:3c:43:e3:e3:ef:82:00:4b:2d: a9:72:71:28:b3:bc:75:6d:10:c1:29:8b:38:d5:01: 7a:74:e4:de:11:3c:ef:9b:b1:3b:d7:4e:c2:70:7c: 2d:6a:8c:aa:bb:53:b6:dc:a8:17:5f:d6:6c:ca:db: b2:77:cf:7f:58:e2:91:9c:db:03:ed:07:fb:e6:7e: da:ed:d6:96:71:0c:be:7c:a6:20:16:4a:bd:96:5b: 59:e2:09:a5:4b:a5:23:84:a7:81:f5:11:27:6a:b7: 50:97:b0:ff:24:94:cf:60:93:af:6b:48:2c:05:1c: 86:4a:d2:9a:c9:eb:7e:a6:51:38:a7:28:fa:09:01: 77:eb:42:ab:53:41:3f:94:f4:43:8d:d5:11:5b:de: ad:6c:19:53:79:2e:49:24:e4:e0:99:0e:41:80:85: 92:88:cb:76:0a:00:56:69:c2:a5:67:50:c8:06:32: 7d:11:26:19:66:95:6e:ee:10:c1:84:d2:33:80:13: 27:80:81:bd:1e:52:06:8c:36:b0:0a:3e:99:9d:9b: 20:80:e7:96:95:4f:65:27:be:f2:31:40:be:c2:8d: d3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:AB:19:99:63:0E:4C:31:BA:F8:7B:48:AA:11:0F:0E:30:7F:A1:38 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:6d:8a:47:e2:e3:ef:e8:3c:0d:fd:c8:52:2a:7f:91:1e:f1: c8:c8:4a:c7:d0:34:d1:22:da:fa:35:7c:f8:c3:77:9e:6d:39: 8f:67:34:b4:55:18:eb:63:63:3d:97:dd:d7:6a:0c:2d:46:f8: 17:c7:99:df:e7:5b:ca:4f:21:44:78:2a:43:f2:da:ae:70:e8: dd:2d:47:de:4b:d4:7e:28:df:5d:27:b3:4c:7e:73:ae:60:e9: 17:16:89:f7:74:1c:1f:d6:f6:a1:ae:3b:50:b8:16:7b:0d:7a: cb:05:8e:c9:68:3a:ee:4e:8f:5d:68:f2:6c:39:62:58:43:fd: 8d:70:62:e0:0b:89:f6:a3:d1:93:09:2b:12:76:c9:82:19:cf: 52:ad:d9:ff:82:4a:82:55:11:54:4e:76:06:40:f0:70:60:a5: fd:fb:6b:65:f4:10:99:dc:8a:bb:6b:ef:9e:1a:8b:fa:a2:42: bc:4a:b3:b1:a4:c6:65:c0:bd:93:06:3f:7d:b0:b9:28:09:43: 02:6f:1b:f9:5d:08:14:c2:52:11:de:28:7c:62:70:4e:21:5e: df:43:a2:24:41:29:6f:4d:9c:58:9a:10:0c:77:13:4e:5c:5c: aa:e3:bd:f3:89:81:3b:09:39:94:fb:c3:4f:4d:35:68:d7:b4: c1:01:8e:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUwOTA4MTgwMjI1WhcNMjUwOTE1MTgwMjI1WjAYMRYwFAYD VQQDEw02OGJmMWEzMS0yOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsVVCDJZ9VU2RmKOiRYPF5eirc6DUjchX+fveyNBctvoJ/E8Q+Pj74IASy2p cnEos7x1bRDBKYs41QF6dOTeETzvm7E7107CcHwtaoyqu1O23KgXX9Zsytuyd89/ WOKRnNsD7Qf75n7a7daWcQy+fKYgFkq9lltZ4gmlS6UjhKeB9REnardQl7D/JJTP YJOva0gsBRyGStKayet+plE4pyj6CQF360KrU0E/lPRDjdURW96tbBlTeS5JJOTg mQ5BgIWSiMt2CgBWacKlZ1DIBjJ9ESYZZpVu7hDBhNIzgBMngIG9HlIGjDawCj6Z nZsggOeWlU9lJ77yMUC+wo3TpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISrGZlj Dkwxuvh7SKoRDw4wf6E4MB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVbYpH4uPv6DwN/chSKn+RHvHIyErH0DTRItr6NXz4w3eebTmPZzS0 VRjrY2M9l93XagwtRvgXx5nf51vKTyFEeCpD8tqucOjdLUfeS9R+KN9dJ7NMfnOu YOkXFon3dBwf1vahrjtQuBZ7DXrLBY7JaDruTo9daPJsOWJYQ/2NcGLgC4n2o9GT CSsSdsmCGc9Srdn/gkqCVRFUTnYGQPBwYKX9+2tl9BCZ3Iq7a++eGov6okK8SrOx pMZlwL2TBj99sLkoCUMCbxv5XQgUwlIR3ih8YnBOIV7fQ6IkQSlvTZxYmhAMdxNO XFyq473ziYE7CTmU+8NPTTVo17TBAY5W -----END CERTIFICATE-----Generated at Wed Sep 10 07:41:44 2025 by rpki-client