$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft File: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft (raw, json) Hash identifier: b5ci1pEkdoSOy06cLUgWwP2PPjXOWXK93AvV6ZdRHqQ= Subject key identifier: 70:67:9E:55:3E:1F:4C:EC:0C:5A:09:FC:CF:C7:FD:55:5C:6D:7F:2C Authority key identifier: E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 Certificate issuer: /CN=A91BBA4F/serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft Manifest number: 36 Signing time: Sun 07 Sep 2025 08:06:54 +0000 Manifest this update: Sun 07 Sep 2025 08:06:53 +0000 Manifest next update: Sun 14 Sep 2025 08:06:53 +0000 Files and hashes: 1: 4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl (hash: 9ZFhKYxtUud2/EvP1Ym5IYpAadPJS+Rq67REJ2NVxHQ=) 2: 58C16E043B7811F099AF3F55C4F9AE02.roa (hash: EdyHrGdK241FduLFJE474YipzEeOWQ4qQLPgbqAJOd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 08:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E0398D54ACD9DB33ED4FCAA8D22805D45E80CBB6 Validity Not Before: Sep 7 08:06:53 2025 GMT Not After : Sep 14 08:06:53 2025 GMT Subject: CN=68bd3d1d-c0ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b1:9e:0d:98:31:ea:69:c0:58:7d:b5:1d:c1: 4f:72:2f:b6:2f:0f:50:6d:f2:20:f0:c0:54:3a:a5: 18:a5:6c:68:0a:56:4f:b4:21:b6:5c:07:2f:23:87: 92:ac:0d:cc:62:f6:48:40:22:64:f5:95:17:cd:21: 56:74:fb:98:35:2a:7c:fa:33:64:1d:5f:39:7b:b2: 5f:8a:08:a1:32:9f:a6:5e:00:14:ec:6e:72:90:2f: 47:19:4c:2b:fc:5d:99:8a:51:d7:f5:a6:a6:60:58: 0e:a2:ce:bd:cf:e8:c7:c9:e4:04:74:30:74:61:f9: 5c:ae:da:5f:3c:7e:4e:ba:c9:8b:e7:20:c8:05:08: 57:e8:06:9f:ab:32:5f:31:70:21:38:55:ac:3c:fd: 1d:a8:04:fa:00:ff:d8:b5:e6:03:2d:21:26:2b:98: ae:28:a2:e5:f3:50:f8:54:76:b2:29:69:eb:9c:ca: bb:36:18:34:06:44:ea:cd:dc:c8:c3:ab:50:45:8b: e6:f6:ef:c6:70:fa:b5:e0:2c:5d:7c:1c:48:54:2c: 29:54:d3:b3:62:58:dc:a6:7c:3c:e6:2e:f8:14:db: 06:df:8a:8f:ba:d6:12:3d:a2:14:e9:77:b6:84:51: 67:ca:6e:ec:93:8b:25:59:4c:a6:f3:5b:26:f1:7b: 20:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:67:9E:55:3E:1F:4C:EC:0C:5A:09:FC:CF:C7:FD:55:5C:6D:7F:2C X509v3 Authority Key Identifier: keyid:E0:39:8D:54:AC:D9:DB:33:ED:4F:CA:A8:D2:28:05:D4:5E:80:CB:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/587F35DA3B7711F097A8BB24C4F9AE02/4DmNVKzZ2zPtT8qo0igF1F6Ay7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8c:f2:0e:bf:7d:d1:4c:20:b2:4a:22:db:7b:d0:e1:7b:7f: 85:9d:99:80:e5:cc:c6:bd:9d:3b:2f:b5:35:2a:99:50:a0:8a: 0a:6e:5f:d1:1b:c5:74:d2:65:98:3f:00:e2:c7:41:59:2b:94: de:b7:56:c4:08:9d:43:09:27:14:dc:61:77:f6:ff:30:f1:f3: 4d:86:43:09:d2:9d:3b:12:31:1b:3c:ca:c2:f9:8d:1f:51:61: 35:a5:c0:98:3e:a5:6e:4f:42:8d:68:5a:71:f6:68:99:a2:f4: 91:ec:fe:3d:c3:1f:ca:44:04:42:04:41:f2:5e:d8:9c:8a:2d: a6:1b:75:32:51:6a:68:64:73:99:b3:0d:3b:81:f5:ef:b2:e0: ed:fd:cb:6c:de:4b:86:9f:42:9a:98:6f:23:e7:f0:98:73:d9: f3:fd:c7:cb:c5:f6:e5:9d:38:26:a0:55:98:35:e1:75:90:7e: 68:cb:e3:89:54:76:99:77:68:92:d6:26:ec:32:be:8d:38:e2: ac:0c:f2:15:da:bb:7a:ed:dc:cb:cc:23:c3:ba:58:bb:2b:cd: 4a:f1:ae:c5:e2:46:82:29:da:6d:59:3c:5c:91:5c:87:59:cd: c0:25:f1:46:cd:14:03:a3:20:27:fd:88:39:e9:50:5e:45:8f: a1:f6:09:3c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTAzOThENTRBQ0Q5REIzM0VENEZDQUE4RDIyODA1RDQ1 RTgwQ0JCNjAeFw0yNTA5MDcwODA2NTNaFw0yNTA5MTQwODA2NTNaMBgxFjAUBgNV BAMTDTY4YmQzZDFkLWMwY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBsZ4NmDHqacBYfbUdwU9yL7YvD1Bt8iDwwFQ6pRilbGgKVk+0IbZcBy8jh5Ks Dcxi9khAImT1lRfNIVZ0+5g1Knz6M2QdXzl7sl+KCKEyn6ZeABTsbnKQL0cZTCv8 XZmKUdf1pqZgWA6izr3P6MfJ5AR0MHRh+Vyu2l88fk66yYvnIMgFCFfoBp+rMl8x cCE4Vaw8/R2oBPoA/9i15gMtISYrmK4oouXzUPhUdrIpaeucyrs2GDQGROrN3MjD q1BFi+b278Zw+rXgLF18HEhULClU07NiWNymfDzmLvgU2wbfio+61hI9ohTpd7aE UWfKbuyTiyVZTKbzWybxeyB5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcGeeVT4f TOwMWgn8z8f9VVxtfywwHwYDVR0jBBgwFoAU4DmNVKzZ2zPtT8qo0igF1F6Ay7Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzU4N0YzNURBM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQdFQ4cW8waWdGMUY2QXk3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNERtTlZLeloyelB0VDhxbzBpZ0YxRjZBeTdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzU4N0YzNURBM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzREbU5WS3paMnpQ dFQ4cW8waWdGMUY2QXk3WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACOM8g6/fdFMILJKItt70OF7f4WdmYDlzMa9nTsvtTUqmVCgigpuX9Eb xXTSZZg/AOLHQVkrlN63VsQInUMJJxTcYXf2/zDx802GQwnSnTsSMRs8ysL5jR9R YTWlwJg+pW5PQo1oWnH2aJmi9JHs/j3DH8pEBEIEQfJe2JyKLaYbdTJRamhkc5mz DTuB9e+y4O39y2zeS4afQpqYbyPn8Jhz2fP9x8vF9uWdOCagVZg14XWQfmjL44lU dpl3aJLWJuwyvo044qwM8hXau3rt3MvMI8O6WLsrzUrxrsXiRoIp2m1ZPFyRXIdZ zcAl8UbNFAOjICf9iDnpUF5Fj6H2CTw= -----END CERTIFICATE-----Generated at Tue Sep 9 07:34:16 2025 by rpki-client