$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: 9D/XlD6dJaK/E6kykqkiIGlACZy/2Id3x5Z9a1RYvsA= Subject key identifier: 7C:86:53:5F:ED:D3:3B:92:C3:84:34:C9:9A:CB:42:ED:AE:36:76:99 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 08B7 Signing time: Wed 20 Aug 2025 20:33:39 +0000 Manifest this update: Wed 20 Aug 2025 20:33:38 +0000 Manifest next update: Wed 27 Aug 2025 20:33:38 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: Edj12pkyhTetorH+8ZYVJS/EzLVoXXV7mqvJVDPWF6g=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Aug 20 20:33:38 2025 GMT Not After : Aug 27 20:33:38 2025 GMT Subject: CN=68a63123-bcba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:bd:44:1a:57:8d:30:43:4e:33:30:8a:8b: 87:c6:81:41:dc:00:39:b4:28:68:68:ed:88:8a:44: 6d:b9:1b:8a:20:e8:f9:51:54:9c:b9:3a:6d:ab:33: 8f:91:8c:53:2f:c9:34:0c:c5:41:ff:a5:c3:b8:62: 89:c2:db:cb:a8:22:b2:a1:15:b1:45:9c:92:8f:2c: 6e:23:68:39:45:b3:ba:a5:ca:67:5a:9c:db:3d:73: bc:4b:13:82:67:6b:17:87:e2:5e:b9:6c:5f:79:96: 7f:74:39:8b:ba:bd:eb:78:e1:eb:e3:69:10:ad:72: 50:98:3d:5f:52:86:9b:87:18:a8:17:2c:bf:88:7b: 67:e0:8e:1a:45:63:06:a1:ef:fc:66:1a:97:b0:54: ef:72:35:db:fe:eb:b8:6f:0a:84:29:85:df:de:78: 83:c2:0f:33:3a:dc:40:f7:fe:8c:84:d0:1d:4f:b4: 7e:50:07:13:dd:fa:c5:ad:44:51:db:d9:ed:0a:2d: 2a:7e:2f:bb:06:f4:b9:29:15:4d:db:99:e3:fe:e0: b3:8a:55:5a:bf:59:ef:2e:77:c0:35:f9:c1:f7:76: 5b:5b:0d:7b:76:b4:29:79:8f:f7:d8:de:c9:f5:1d: 57:a2:ce:42:8a:4c:ec:d8:2f:cb:cf:f5:82:57:4a: eb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:86:53:5F:ED:D3:3B:92:C3:84:34:C9:9A:CB:42:ED:AE:36:76:99 X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:63:4b:97:ae:dd:34:2c:d4:69:08:eb:bb:1a:0d:9b:a7:46: cc:41:79:5d:19:41:fd:5c:31:51:a4:08:c6:5e:b9:dc:0e:72: 37:a6:bc:f6:76:a7:0d:57:33:3b:f3:34:b8:d5:a9:e1:df:13: a5:32:c1:30:dd:c3:f3:b8:83:fb:e1:f7:fd:59:d1:4b:d2:3c: a4:a0:14:cc:76:70:78:8c:e3:fc:b0:38:51:d7:01:6d:6a:7e: ab:5b:9c:3e:fc:e6:d6:1a:3c:ab:94:75:20:82:a7:31:8f:fa: bb:14:e5:d8:c7:27:9d:e2:21:2c:6d:da:e5:af:c1:23:ac:93: 04:9d:19:1d:e1:61:d4:46:86:39:9c:e3:7e:40:53:c4:2c:58: be:a1:6a:ac:62:45:08:5e:28:b1:b2:d8:ab:74:99:bf:8e:db: 77:e2:01:f2:0d:d0:4a:e8:17:9b:48:9e:1d:58:64:2d:5a:04: ff:61:c2:f6:2f:72:32:dd:20:29:6d:aa:e3:f3:59:d9:d9:e2: e6:e3:6e:05:24:b8:60:4b:c3:9b:b2:8c:53:57:df:df:7b:b6: e9:94:dd:ab:b6:01:b4:9a:24:fc:63:64:d9:2e:c4:91:93:f1: df:0e:14:15:23:55:78:13:56:f4:9b:b2:89:97:78:39:97:8f: c8:da:67:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUwODIwMjAzMzM4WhcNMjUwODI3MjAzMzM4WjAYMRYwFAYD VQQDEw02OGE2MzEyMy1iY2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgu9RBpXjTBDTjMwiouHxoFB3AA5tChoaO2IikRtuRuKIOj5UVScuTptqzOP kYxTL8k0DMVB/6XDuGKJwtvLqCKyoRWxRZySjyxuI2g5RbO6pcpnWpzbPXO8SxOC Z2sXh+JeuWxfeZZ/dDmLur3reOHr42kQrXJQmD1fUoabhxioFyy/iHtn4I4aRWMG oe/8ZhqXsFTvcjXb/uu4bwqEKYXf3niDwg8zOtxA9/6MhNAdT7R+UAcT3frFrURR 29ntCi0qfi+7BvS5KRVN25nj/uCzilVav1nvLnfANfnB93ZbWw17drQpeY/32N7J 9R1Xos5Cikzs2C/Lz/WCV0rrYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyGU1/t 0zuSw4Q0yZrLQu2uNnaZMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIY0uXrt00LNRpCOu7Gg2bp0bMQXldGUH9XDFRpAjGXrncDnI3prz2 dqcNVzM78zS41anh3xOlMsEw3cPzuIP74ff9WdFL0jykoBTMdnB4jOP8sDhR1wFt an6rW5w+/ObWGjyrlHUggqcxj/q7FOXYxyed4iEsbdrlr8EjrJMEnRkd4WHURoY5 nON+QFPELFi+oWqsYkUIXiixstirdJm/jtt34gHyDdBK6BebSJ4dWGQtWgT/YcL2 L3Iy3SApbarj81nZ2eLm424FJLhgS8ObsoxTV9/fe7bplN2rtgG0miT8Y2TZLsSR k/HfDhQVI1V4E1b0m7KJl3g5l4/I2mfD -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:12 2025 by rpki-client