$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: 6zzcEtp6++cV7ewZmb/xvr3NTLTQ6xpvyovwWHUeQjI= Subject key identifier: 9E:34:C5:5D:C6:6E:0F:77:98:78:51:93:BB:C0:60:FC:DD:54:14:5F Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: 015A Signing time: Sun 07 Sep 2025 04:28:00 +0000 Manifest this update: Sun 07 Sep 2025 04:28:00 +0000 Manifest next update: Sun 14 Sep 2025 04:28:00 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: Cqc756DrGbF2Kd9btuPhrjuzdbnU3DdvnFYHvJcGaOs=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: PTNlCaFqxgAXX8dh1a7LSvNmOXF/4erL00o7/e/JlJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 04:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2, serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Sep 7 04:28:00 2025 GMT Not After : Sep 14 04:28:00 2025 GMT Subject: CN=68bd09d0-b2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0e:44:ac:4e:28:bb:b6:10:c3:52:15:d4:68: 7d:87:d9:1b:fa:55:14:c4:71:34:0d:7b:38:c6:60: 3a:4d:e4:1a:c7:34:8f:cb:0e:49:9e:b5:b9:ce:85: 8e:d9:fb:55:c3:23:2a:51:d9:f0:5f:54:88:bc:2c: 95:cd:0e:70:04:75:73:24:7a:20:d8:e8:42:22:f9: d6:92:30:dc:e0:4d:db:ad:68:42:5c:57:3b:4a:03: 5a:e1:1d:4d:e3:d8:e8:e8:50:38:78:f1:ee:72:e3: ed:63:77:4c:84:d6:60:ae:86:78:a5:ea:b0:29:63: ab:15:f6:ba:cd:e2:dc:3c:f3:f4:5c:e8:a9:56:a2: 1b:1a:ed:4e:76:56:1c:d6:9c:16:41:a3:c6:98:46: 31:8c:f8:5f:48:e8:25:58:5c:83:e7:54:e5:f7:65: e1:99:65:bb:d6:a4:46:77:a3:2d:b8:5a:c8:14:f0: 83:02:80:04:d3:bb:32:ba:84:2c:3e:83:c0:ac:31: 9c:d5:61:d8:60:97:2f:ab:1a:54:82:66:fa:68:d9: 5c:1c:fa:61:6a:a3:52:72:c2:c1:c9:b1:8d:51:95: 62:3c:93:e7:47:97:87:f6:56:1b:ad:57:83:6f:4f: ba:f4:0a:31:8e:75:f3:63:e1:0a:d5:12:27:3a:a7: 2c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:34:C5:5D:C6:6E:0F:77:98:78:51:93:BB:C0:60:FC:DD:54:14:5F X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:80:6e:71:67:bc:e8:26:c3:e6:8a:15:ea:ab:30:5a:35:77: 03:1f:53:4e:eb:a7:5d:3e:d7:35:de:ce:4c:78:c3:5d:59:4d: 4c:89:1f:e8:60:81:9b:8a:e7:d8:1b:ad:60:7f:bc:21:2f:df: 97:24:05:f0:4f:99:2a:0c:91:6b:e6:44:cb:ba:59:ae:5c:c7: cf:92:03:a7:fd:84:44:6d:59:3a:54:9d:3b:33:fb:25:ee:23: 55:80:46:81:7b:69:5f:52:25:44:1b:f4:3a:be:b2:6c:3a:e9: 67:54:06:e3:cf:b7:56:9b:04:b7:82:46:12:9e:6d:1f:82:01: 97:cc:7f:dc:e9:ca:aa:59:79:0b:0e:70:5e:e1:fe:f5:e8:1d: 52:3f:49:60:37:98:dc:10:0d:14:60:2c:0f:07:27:20:93:52: 49:d4:1a:62:14:2d:ca:8b:76:bf:35:7e:52:c4:2b:61:11:54: a5:4f:dd:03:96:0e:0e:7a:dc:cc:79:fc:5f:e6:9a:a0:e0:43: 2e:86:a1:fa:3e:3a:93:82:e5:40:c1:d6:52:31:90:22:32:82: 1f:74:60:ac:24:b2:02:2c:16:f6:c0:19:3e:35:7c:5d:b8:4e: 05:c1:8e:ab:0a:3b:89:0f:71:69:04:0b:f7:b7:1f:b8:32:11: ec:bf:97:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjUwOTA3MDQyODAwWhcNMjUwOTE0MDQyODAwWjAYMRYwFAYD VQQDEw02OGJkMDlkMC1iMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQ5ErE4ou7YQw1IV1Gh9h9kb+lUUxHE0DXs4xmA6TeQaxzSPyw5JnrW5zoWO 2ftVwyMqUdnwX1SIvCyVzQ5wBHVzJHog2OhCIvnWkjDc4E3brWhCXFc7SgNa4R1N 49jo6FA4ePHucuPtY3dMhNZgroZ4peqwKWOrFfa6zeLcPPP0XOipVqIbGu1OdlYc 1pwWQaPGmEYxjPhfSOglWFyD51Tl92XhmWW71qRGd6MtuFrIFPCDAoAE07syuoQs PoPArDGc1WHYYJcvqxpUgmb6aNlcHPphaqNScsLBybGNUZViPJPnR5eH9lYbrVeD b0+69AoxjnXzY+EK1RInOqcszQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ40xV3G bg93mHhRk7vAYPzdVBRfMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4gG5xZ7zoJsPmihXqqzBaNXcDH1NO66ddPtc13s5MeMNdWU1MiR/o YIGbiufYG61gf7whL9+XJAXwT5kqDJFr5kTLulmuXMfPkgOn/YREbVk6VJ07M/sl 7iNVgEaBe2lfUiVEG/Q6vrJsOulnVAbjz7dWmwS3gkYSnm0fggGXzH/c6cqqWXkL DnBe4f716B1SP0lgN5jcEA0UYCwPBycgk1JJ1BpiFC3Ki3a/NX5SxCthEVSlT90D lg4OetzMefxf5pqg4EMuhqH6PjqTguVAwdZSMZAiMoIfdGCsJLICLBb2wBk+NXxd uE4FwY6rCjuJD3FpBAv3tx+4MhHsv5d5 -----END CERTIFICATE-----Generated at Sun Sep 7 14:22:26 2025 by rpki-client