$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: 3K2mfinlRRTWQm0ohyY+hL+9oe7VCn20qm5Ou/i9YzA= Subject key identifier: DB:07:3D:CF:54:C6:5C:40:53:C0:BD:0B:70:DD:16:59:E8:76:41:40 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B6F Signing time: Sun 24 Aug 2025 16:14:57 +0000 Manifest this update: Sun 24 Aug 2025 16:14:57 +0000 Manifest next update: Sun 31 Aug 2025 16:14:57 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: ZmeQViARtv+zTflmpgLBoTt6XKaO/yRHpCfRgW4burc=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7033 (0x1b79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Aug 24 16:14:57 2025 GMT Not After : Aug 31 16:14:57 2025 GMT Subject: CN=68ab3a81-44a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:59:e9:61:d3:af:5a:5f:fd:eb:8e:d7:03:b0: 0c:d4:37:09:e4:80:76:a4:d2:0e:e2:a0:9b:bb:6e: c4:a0:d4:ea:07:9a:cd:71:2d:f5:9f:72:d8:d5:ad: 65:8a:59:b9:fe:de:fd:0b:1f:46:21:88:c3:df:6b: b8:0c:23:7c:d0:04:dd:90:53:93:08:b5:0a:eb:60: df:fc:73:73:d6:84:c4:de:44:b1:2e:28:9b:1f:71: dd:07:17:4c:ec:47:fa:87:d2:a1:cf:46:56:fc:8c: 5b:00:e5:a0:8e:7f:7c:6a:77:87:a5:a5:40:94:e8: ef:cd:b3:53:6d:b0:01:75:85:3e:54:1f:7f:50:1a: 91:2f:d2:cb:f9:b6:00:78:4b:80:cc:c3:6e:77:56: 9c:a0:16:b7:a6:c1:3b:9b:c4:e3:26:b6:f5:c8:be: 8a:31:24:46:cb:fa:9d:cc:ed:db:0b:f1:b1:5e:01: ae:1c:8f:a1:2a:0e:1b:8c:06:cd:bc:e1:39:56:0c: a3:80:e3:af:d5:59:b3:e7:4e:e0:9e:b7:ad:de:59: 85:8f:85:b4:dd:0b:e3:ef:7a:8e:ac:63:9d:ad:7e: 37:41:78:5d:ea:ed:5b:dc:44:19:66:15:9e:21:be: 0d:c9:5f:f9:69:c2:65:74:1d:6d:9d:fc:fb:59:66: 4b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:07:3D:CF:54:C6:5C:40:53:C0:BD:0B:70:DD:16:59:E8:76:41:40 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ef:2c:16:96:1e:ff:fc:b7:60:d4:70:f9:b0:44:bf:21:a8: 9e:24:df:a8:e9:50:32:56:1d:b3:b9:60:65:47:a8:7f:8a:16: d2:99:3b:a8:b0:45:f0:5c:2f:a7:15:6e:96:c0:52:1b:0b:8f: e6:d3:fb:3e:d0:14:f5:5b:9e:ff:ae:57:50:4d:89:8e:a4:6b: fb:9a:c3:59:8a:ae:8d:b1:81:6e:61:9d:d3:7b:36:a6:4f:c7: 91:98:b5:78:92:9c:ee:9a:41:6e:87:15:df:c0:b6:41:d9:1c: c9:59:f6:5c:5d:d5:46:0e:c9:90:25:5f:07:20:e4:c5:65:b1: ad:ef:66:31:9e:53:57:41:3f:98:ae:ac:a3:68:63:dc:16:b6: b7:a9:d7:2a:9d:e8:ff:0c:a7:94:62:e2:03:13:54:be:48:0d: 31:1e:47:b1:aa:0a:59:c3:56:8c:d8:14:fb:49:8c:f4:82:21: a5:a8:d1:dd:c9:84:1e:ee:ec:19:fc:f2:82:88:07:a6:79:3d: 54:0b:3b:cf:27:83:01:c8:67:92:a6:c5:e4:e2:24:4b:28:bc: 95:71:fe:6f:15:f5:56:2f:d5:53:56:7d:d1:d6:4a:4e:86:9c: e2:8a:a7:41:14:70:d9:34:8b:41:21:b5:cc:bd:b6:6c:61:a1: de:ce:14:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwODI0MTYxNDU3WhcNMjUwODMxMTYxNDU3WjAYMRYwFAYD VQQDEw02OGFiM2E4MS00NGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VnpYdOvWl/9647XA7AM1DcJ5IB2pNIO4qCbu27EoNTqB5rNcS31n3LY1a1l ilm5/t79Cx9GIYjD32u4DCN80ATdkFOTCLUK62Df/HNz1oTE3kSxLiibH3HdBxdM 7Ef6h9Khz0ZW/IxbAOWgjn98aneHpaVAlOjvzbNTbbABdYU+VB9/UBqRL9LL+bYA eEuAzMNud1acoBa3psE7m8TjJrb1yL6KMSRGy/qdzO3bC/GxXgGuHI+hKg4bjAbN vOE5VgyjgOOv1Vmz507gnret3lmFj4W03Qvj73qOrGOdrX43QXhd6u1b3EQZZhWe Ib4NyV/5acJldB1tnfz7WWZL3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsHPc9U xlxAU8C9C3DdFlnodkFAMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX7ywWlh7//Ldg1HD5sES/IaieJN+o6VAyVh2zuWBlR6h/ihbSmTuo sEXwXC+nFW6WwFIbC4/m0/s+0BT1W57/rldQTYmOpGv7msNZiq6NsYFuYZ3Tezam T8eRmLV4kpzumkFuhxXfwLZB2RzJWfZcXdVGDsmQJV8HIOTFZbGt72YxnlNXQT+Y rqyjaGPcFra3qdcqnej/DKeUYuIDE1S+SA0xHkexqgpZw1aM2BT7SYz0giGlqNHd yYQe7uwZ/PKCiAemeT1UCzvPJ4MByGeSpsXk4iRLKLyVcf5vFfVWL9VTVn3R1kpO hpziiqdBFHDZNItBIbXMvbZsYaHezhQk -----END CERTIFICATE-----Generated at Sun Aug 24 21:38:53 2025 by rpki-client