$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: Uc2soAOGCe/oDvUfL+MeE0AozH54htaFSfDYg6GS85I= Subject key identifier: EF:A6:B8:BF:11:08:E2:EE:C8:C5:B6:4C:64:60:3C:45:0F:6C:4E:C0 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 7C Signing time: Fri 05 Sep 2025 07:11:50 +0000 Manifest this update: Fri 05 Sep 2025 07:11:49 +0000 Manifest next update: Fri 12 Sep 2025 07:11:49 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: QR5BAnzyQ0K7px6qMNTePchreh5zbRFOijDlcHFkB7g=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Sep 5 07:11:49 2025 GMT Not After : Sep 12 07:11:49 2025 GMT Subject: CN=68ba8d36-862a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:dd:c1:f4:d1:53:be:04:e9:b7:26:b4:92:63: 14:8a:ce:1b:b2:7f:ec:62:d1:98:8a:82:fd:63:46: c9:1f:37:e8:a1:01:a3:38:19:4d:d1:22:1f:0c:f5: 05:c4:ab:dd:1f:62:a4:f6:52:da:b1:63:39:96:95: 3f:ae:b3:f9:7b:06:97:be:bf:ff:97:64:5e:b7:f6: a5:3d:3b:5b:ca:83:c1:07:54:85:3a:07:40:60:76: df:e6:b3:96:6e:75:22:0f:c6:20:82:bc:e7:63:d7: fb:03:40:0b:d5:39:bf:44:f9:7b:c6:27:c8:59:49: 5e:da:d9:07:a2:eb:4e:03:a2:af:db:88:fe:ce:94: 2a:f8:fd:14:d5:24:44:b0:bf:4b:aa:16:f7:86:8c: c3:0e:fa:05:02:44:38:c4:18:59:0b:27:55:a8:6e: 72:7f:14:8d:96:fd:44:b7:2b:9c:6e:73:34:f8:c4: 9c:1c:c6:24:b2:bb:15:45:73:d2:2b:97:c1:ee:54: 94:bc:af:79:e4:c3:13:ed:a2:e1:2e:4b:9b:c1:d8: e0:50:80:af:25:be:ba:4f:6d:e4:2b:7b:e3:20:e5: 81:82:3e:3d:3f:bf:9c:f3:f3:7b:ea:20:37:ea:a4: 6a:49:05:94:62:17:e3:49:e8:b4:54:1d:d5:81:ee: 67:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A6:B8:BF:11:08:E2:EE:C8:C5:B6:4C:64:60:3C:45:0F:6C:4E:C0 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:67:f0:be:35:55:34:c5:f9:82:ed:6f:8b:63:39:15:4a:99: 85:91:77:34:bd:89:65:a1:32:ea:2c:41:df:af:e7:45:6f:11: f4:4a:8f:b7:75:ae:d4:df:83:26:f8:15:c2:ea:79:c6:a3:c1: ce:23:78:eb:9d:31:68:3b:21:b2:45:f1:7c:54:39:65:d1:b7: bf:20:40:28:ba:8a:a3:2d:f4:84:99:c9:7d:8f:56:8e:78:ee: 21:9a:3e:6a:0b:7d:90:e6:b1:28:d4:f2:e5:4d:f3:ec:4b:8d: 57:9f:f7:02:19:24:7d:d3:15:fd:82:65:67:99:65:8f:5e:7c: e0:df:1a:95:10:87:69:de:e7:60:3f:a3:ff:43:20:0a:cc:ab: 59:62:0c:da:78:bf:9c:eb:2f:eb:4e:02:0f:2b:c7:75:e4:7a: a3:62:aa:f7:da:8c:51:a4:8d:6c:83:00:fd:b2:49:b0:78:7a: 83:65:76:33:90:76:1f:7d:12:29:ab:f8:fc:85:3e:31:d2:0c: 98:8e:78:16:2c:1a:aa:64:52:e9:be:5a:17:d0:7f:18:b1:40: 73:2a:be:1b:2d:c1:aa:66:52:e9:6f:84:80:5d:a9:e5:37:45: 9b:05:34:37:1b:17:55:05:dc:ed:4a:d9:35:2e:0a:3c:75:ae: 85:c0:16:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA5MDUwNzExNDlaFw0yNTA5MTIwNzExNDlaMBgxFjAUBgNV BAMTDTY4YmE4ZDM2LTg2MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI3cH00VO+BOm3JrSSYxSKzhuyf+xi0ZiKgv1jRskfN+ihAaM4GU3RIh8M9QXE q90fYqT2UtqxYzmWlT+us/l7Bpe+v/+XZF639qU9O1vKg8EHVIU6B0Bgdt/ms5Zu dSIPxiCCvOdj1/sDQAvVOb9E+XvGJ8hZSV7a2Qei604Doq/biP7OlCr4/RTVJESw v0uqFveGjMMO+gUCRDjEGFkLJ1WobnJ/FI2W/US3K5xuczT4xJwcxiSyuxVFc9Ir l8HuVJS8r3nkwxPtouEuS5vB2OBQgK8lvrpPbeQre+Mg5YGCPj0/v5zz83vqIDfq pGpJBZRiF+NJ6LRUHdWB7mePAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU76a4vxEI 4u7IxbZMZGA8RQ9sTsAwHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALVn8L41VTTF+YLtb4tjORVKmYWRdzS9iWWhMuosQd+v50VvEfRKj7d1 rtTfgyb4FcLqecajwc4jeOudMWg7IbJF8XxUOWXRt78gQCi6iqMt9ISZyX2PVo54 7iGaPmoLfZDmsSjU8uVN8+xLjVef9wIZJH3TFf2CZWeZZY9efODfGpUQh2ne52A/ o/9DIArMq1liDNp4v5zrL+tOAg8rx3XkeqNiqvfajFGkjWyDAP2ySbB4eoNldjOQ dh99Eimr+PyFPjHSDJiOeBYsGqpkUum+WhfQfxixQHMqvhstwapmUulvhIBdqeU3 RZsFNDcbF1UF3O1K2TUuCjx1roXAFp0= -----END CERTIFICATE-----Generated at Sat Sep 6 15:16:18 2025 by rpki-client