$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft File: M1KIaoOU86z15jXjxHVvTQpuRek.mft (raw, json) Hash identifier: wkh34yGqZRSXOev+iJos/cuIrnWJ/Vgq8+aErIRkSZg= Subject key identifier: 38:51:88:E3:2C:9B:37:B2:31:F5:40:94:F8:12:1F:D6:0F:7E:9A:17 Authority key identifier: 33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 Certificate issuer: /CN=A91B5AD4/serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Certificate serial: 09B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft Manifest number: 09B0 Signing time: Sun 24 Aug 2025 19:30:33 +0000 Manifest this update: Sun 24 Aug 2025 19:30:33 +0000 Manifest next update: Sun 31 Aug 2025 19:30:33 +0000 Files and hashes: 1: M1KIaoOU86z15jXjxHVvTQpuRek.crl (hash: Ch9bot68q5smbbVQ510IkU2weuOBcKHekAqN1tKYDPM=) 2: 67A60C64441E11EB861F005AC4F9AE02.roa (hash: JcavRD/UkGMKefo40xrhCPb2PgEwMsvZQrFanuv4C9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5AD4, serialNumber=3352886A8394F3ACF5E635E3C4756F4D0A6E45E9 Validity Not Before: Aug 24 19:30:33 2025 GMT Not After : Aug 31 19:30:33 2025 GMT Subject: CN=68ab6859-d49f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bb:fd:d1:2c:c3:3d:74:8a:91:79:38:27:24: 15:76:e1:c7:25:86:02:39:c9:2c:8b:d4:ab:a8:02: 05:de:80:09:31:c6:29:a5:db:ee:25:8e:70:54:e5: 2c:50:3d:63:85:b6:53:7d:8f:65:bb:35:8a:ab:21: 38:82:00:97:ab:3d:e1:5a:54:4e:4e:5f:ea:11:0b: a2:dc:d1:5f:c7:f0:95:6e:6b:32:62:e4:6e:bc:78: 73:34:d6:97:08:b2:ac:dc:32:a5:47:81:b5:aa:17: 3a:36:cc:6e:ed:67:fa:0b:55:3f:7a:04:49:1a:7e: e9:ee:c8:f8:49:34:54:60:9d:99:2f:39:84:9b:55: 85:2e:ef:a5:32:7d:48:e1:2b:59:aa:51:bd:a5:1a: c2:54:0a:13:cf:51:0d:aa:e0:b4:9f:f0:a7:96:7d: 2b:c0:1b:d3:63:32:0b:98:7a:68:15:47:e6:9a:4c: b7:ca:3d:1b:31:94:bd:79:15:be:66:54:d5:d5:44: 10:b9:d0:be:52:a7:62:5a:1e:cc:4b:23:ee:4e:3a: a0:6d:5a:56:27:83:81:eb:f2:59:ea:a7:01:fb:df: d8:b8:53:11:ab:21:44:83:23:6d:2c:37:de:17:a5: 62:12:0c:b5:6b:f3:fb:52:6d:58:a4:6a:91:72:b1: 00:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:51:88:E3:2C:9B:37:B2:31:F5:40:94:F8:12:1F:D6:0F:7E:9A:17 X509v3 Authority Key Identifier: keyid:33:52:88:6A:83:94:F3:AC:F5:E6:35:E3:C4:75:6F:4D:0A:6E:45:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M1KIaoOU86z15jXjxHVvTQpuRek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5AD4/11226B7E8F8A11EA9828C65DC4F9AE02/M1KIaoOU86z15jXjxHVvTQpuRek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c5:f7:64:0b:e1:23:07:81:2e:30:1f:0b:66:09:2b:75:1e: 64:74:c0:e9:1c:2a:7d:40:62:d7:d9:5c:4b:6a:8f:a8:a7:04: 89:e3:24:ec:45:8c:2b:4e:59:0f:f4:2e:9d:9c:a4:55:f4:74: 21:d9:0b:a2:f9:42:45:ff:f6:20:5d:e8:02:1a:0a:2e:e6:3f: c9:93:19:7d:80:fc:44:cc:cc:96:b6:0d:cf:38:95:41:7a:37: 44:35:c4:b5:d0:17:72:c3:38:07:f5:16:d1:0e:68:f2:44:84: c9:62:be:b6:c1:31:ed:a2:2c:c9:71:50:1c:66:ab:df:ec:ea: 27:97:32:11:f7:4b:3c:68:bf:b1:e4:3a:b4:c4:2c:bd:ae:d1: 27:9b:9a:81:e4:d3:55:c6:d9:a4:50:bc:34:b3:2d:a8:65:d3: 49:6e:31:31:05:6c:0c:b6:2b:6e:bc:63:78:ed:ae:e1:ff:1f: f8:df:39:0b:a4:58:ab:b6:e3:5d:c1:ac:16:ee:fc:fc:07:55: 16:5c:f3:ef:f3:37:10:27:ed:7a:9f:cb:7d:99:7b:bb:dd:e5: b7:e0:0b:84:0f:53:db:3c:74:34:8d:25:18:d0:57:97:62:a5: 27:da:34:96:14:c6:f8:9f:b2:4f:f0:df:d6:87:47:ab:9e:77: 7f:6e:91:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVBRDQxMTAvBgNVBAUTKDMzNTI4ODZBODM5NEYzQUNGNUU2MzVFM0M0NzU2RjRE MEE2RTQ1RTkwHhcNMjUwODI0MTkzMDMzWhcNMjUwODMxMTkzMDMzWjAYMRYwFAYD VQQDEw02OGFiNjg1OS1kNDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbv90SzDPXSKkXk4JyQVduHHJYYCOcksi9SrqAIF3oAJMcYppdvuJY5wVOUs UD1jhbZTfY9luzWKqyE4ggCXqz3hWlROTl/qEQui3NFfx/CVbmsyYuRuvHhzNNaX CLKs3DKlR4G1qhc6Nsxu7Wf6C1U/egRJGn7p7sj4STRUYJ2ZLzmEm1WFLu+lMn1I 4StZqlG9pRrCVAoTz1ENquC0n/Cnln0rwBvTYzILmHpoFUfmmky3yj0bMZS9eRW+ ZlTV1UQQudC+UqdiWh7MSyPuTjqgbVpWJ4OB6/JZ6qcB+9/YuFMRqyFEgyNtLDfe F6ViEgy1a/P7Um1YpGqRcrEALQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhRiOMs mzeyMfVAlPgSH9YPfpoXMB8GA1UdIwQYMBaAFDNSiGqDlPOs9eY148R1b00KbkXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUFENC8xMTIyNkI3RThG OEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2ejE1alhqeEhWdlRRcHVS ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00xS0lhb09VODZ6MTVqWGp4SFZ2VFFwdVJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUFENC8xMTIyNkI3RThGOEExMUVBOTgyOEM2NURDNEY5QUUwMi9NMUtJYW9PVTg2 ejE1alhqeEhWdlRRcHVSZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0xfdkC+EjB4EuMB8LZgkrdR5kdMDpHCp9QGLX2VxLao+opwSJ4yTs RYwrTlkP9C6dnKRV9HQh2Qui+UJF//YgXegCGgou5j/Jkxl9gPxEzMyWtg3POJVB ejdENcS10BdywzgH9RbRDmjyRITJYr62wTHtoizJcVAcZqvf7OonlzIR90s8aL+x 5Dq0xCy9rtEnm5qB5NNVxtmkULw0sy2oZdNJbjExBWwMtituvGN47a7h/x/43zkL pFirtuNdwawW7vz8B1UWXPPv8zcQJ+16n8t9mXu73eW34AuED1PbPHQ0jSUY0FeX YqUn2jSWFMb4n7JP8N/Wh0ernnd/bpG9 -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:55 2025 by rpki-client