$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: 4b1JW5egCqIES6gHH6JQHSbLNhvwHIP2w2bMcYx9Dr0= Subject key identifier: 4F:15:96:AA:D0:0A:A9:2E:F2:AD:0A:43:0B:2F:83:73:F3:00:42:5C Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: 8A Signing time: Fri 05 Sep 2025 07:05:53 +0000 Manifest this update: Fri 05 Sep 2025 07:05:53 +0000 Manifest next update: Fri 12 Sep 2025 07:05:53 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: OboaVXT5wXL3WLGAh45i+IP+wJoeEoAQnJ9UTDk9nDI=) 2: E5FC085A843011F0971BDC44C4F9AE02.roa (hash: TmQjJA9MkbzXubDuYe9ot48CH91CXeYRqJHt5RQNZcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Sep 5 07:05:53 2025 GMT Not After : Sep 12 07:05:53 2025 GMT Subject: CN=68ba8bd1-b3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6c:26:e3:2e:ab:cc:1c:c7:1e:ea:8b:e9:3a: df:9a:71:c4:db:b7:0a:6a:d5:e5:e6:5e:71:d9:d1: c7:91:e8:11:20:6c:a1:3e:a0:14:4d:85:67:1f:d5: 1a:8c:71:8b:2e:7c:e8:d6:3c:a9:7e:c1:23:8d:2b: e0:42:e7:a4:55:5a:7f:45:e0:22:6f:d6:42:64:65: 63:8e:90:28:32:df:ad:ca:7f:8f:d9:82:72:b4:66: 79:72:03:bd:c5:24:98:03:ca:26:a0:a0:c4:47:e1: 4f:57:23:36:fb:df:29:aa:24:b7:e5:56:37:34:74: f8:79:fb:ac:05:68:5b:e3:16:6c:a0:e5:27:da:90: 02:d1:c9:79:01:76:76:86:73:91:de:1a:40:2a:ea: 9a:85:cf:24:8f:75:f1:e8:20:98:a6:79:7e:ef:06: 37:3a:b5:50:09:4b:67:20:f1:19:70:62:2d:f2:57: e6:72:41:dc:e6:5b:a2:49:3e:02:82:22:87:6a:e2: d5:72:a1:24:f9:3a:16:c6:4d:e0:ac:4a:6e:e3:d1: 8b:c2:5a:78:37:51:e2:71:b6:10:35:c9:96:f5:db: bd:8e:4b:7a:3f:62:d0:7b:e2:5b:de:bf:bc:16:eb: 7f:d1:e7:a3:ec:06:2d:51:46:ad:bb:43:54:c3:e3: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:15:96:AA:D0:0A:A9:2E:F2:AD:0A:43:0B:2F:83:73:F3:00:42:5C X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c1:a8:28:30:ab:e8:dc:d4:ce:50:bc:28:d1:64:36:ec:c2: ed:f5:ed:44:76:59:1b:d1:23:8c:4d:8d:1f:57:d0:9f:b8:fe: 17:87:ce:52:71:fd:65:f7:30:2b:5c:6f:cf:04:0a:8a:04:7c: b5:d7:a4:2a:01:de:41:a1:c9:f8:28:58:ed:80:d3:a2:58:42: 89:bf:c3:a6:70:e4:4a:59:81:93:3c:11:28:d3:95:47:83:c3: f2:35:7b:e1:1c:cd:77:88:a1:e7:d7:1e:4a:a2:bc:e5:ae:00: b0:ce:78:83:2d:96:4d:04:d3:af:85:7f:cb:eb:7c:40:0a:88: f6:ee:c6:bc:e6:8f:79:68:d1:d4:94:f9:db:80:76:b1:18:aa: 94:b1:f4:54:26:db:9d:78:20:02:ee:f8:6b:1b:6c:e8:c5:77: 95:19:4b:f6:b4:36:ca:82:0f:0b:96:f1:88:31:a5:cf:49:b4: cd:35:de:35:7b:04:29:4e:cf:61:e9:9a:03:13:a8:6e:5a:6f: a1:51:a1:7d:fe:88:1a:1a:7a:ad:f7:a9:ab:72:c4:9d:75:0a: 84:23:7d:16:d5:de:b7:e3:b4:09:54:27:dc:10:ee:0a:da:a8: db:c3:fc:98:d0:90:5d:14:98:15:81:1f:6f:fd:b9:c4:00:68: d7:46:4b:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDRCMDkyREYxMDQyODBGNDVCQzNGMjc5NkY0MDFDQzJC NEM2MTQ0RTkwHhcNMjUwOTA1MDcwNTUzWhcNMjUwOTEyMDcwNTUzWjAYMRYwFAYD VQQDEw02OGJhOGJkMS1iM2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGwm4y6rzBzHHuqL6TrfmnHE27cKatXl5l5x2dHHkegRIGyhPqAUTYVnH9Ua jHGLLnzo1jypfsEjjSvgQuekVVp/ReAib9ZCZGVjjpAoMt+tyn+P2YJytGZ5cgO9 xSSYA8omoKDER+FPVyM2+98pqiS35VY3NHT4efusBWhb4xZsoOUn2pAC0cl5AXZ2 hnOR3hpAKuqahc8kj3Xx6CCYpnl+7wY3OrVQCUtnIPEZcGIt8lfmckHc5luiST4C giKHauLVcqEk+ToWxk3grEpu49GLwlp4N1HicbYQNcmW9du9jkt6P2LQe+Jb3r+8 Fut/0eej7AYtUUatu0NUw+Md3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8VlqrQ Cqku8q0KQwsvg3PzAEJcMB8GA1UdIwQYMBaAFEsJLfEEKA9FvD8nlvQBzCtMYUTp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8yQkM5MjQ1MEJF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0QwVzhQeWVXOUFITUsweGhS T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODMwNy8yQkM5MjQ1MEJFQ0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0Qw VzhQeWVXOUFITUsweGhST2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0wagoMKvo3NTOULwo0WQ27MLt9e1Edlkb0SOMTY0fV9CfuP4Xh85S cf1l9zArXG/PBAqKBHy116QqAd5Bocn4KFjtgNOiWEKJv8OmcORKWYGTPBEo05VH g8PyNXvhHM13iKHn1x5KorzlrgCwzniDLZZNBNOvhX/L63xACoj27sa85o95aNHU lPnbgHaxGKqUsfRUJtudeCAC7vhrG2zoxXeVGUv2tDbKgg8LlvGIMaXPSbTNNd41 ewQpTs9h6ZoDE6huWm+hUaF9/ogaGnqt96mrcsSddQqEI30W1d6347QJVCfcEO4K 2qjbw/yY0JBdFJgVgR9v/bnEAGjXRkub -----END CERTIFICATE-----Generated at Sat Sep 6 20:58:20 2025 by rpki-client