$ rpki-client -vvf rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft File: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft (raw, json) Hash identifier: PjSyMdnSNb1UCLOdjl8JCNtRzN3bC14mZh6kwXabs24= Subject key identifier: D9:42:BA:1D:1E:F0:CF:93:98:85:8D:64:E5:E4:F0:14:F2:50:FE:64 Authority key identifier: 08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F Certificate issuer: /CN=A91C941B/serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Certificate serial: 051B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft Manifest number: 050E Signing time: Fri 22 Aug 2025 23:49:08 +0000 Manifest this update: Fri 22 Aug 2025 23:49:07 +0000 Manifest next update: Fri 29 Aug 2025 23:49:07 +0000 Files and hashes: 1: CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl (hash: EsoFW5+SOmREC+dTXOpgkk9KT77IA7Tr2D+Hh/FYh6I=) 2: B3883EE61A8C11ECBD6CCF18C4F9AE02.roa (hash: eZkG1iVHjA07zqibQCS20vDKvxGWhApC6gs+W5wfJ9g=) 3: F719961A1A8611ECB908E939C4F9AE02.roa (hash: 8CERVYgkltWj4G95QfjHRAzhZOs/2MofXT3PQbZreQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C941B, serialNumber=08025B9B44EED8AE0B76F11E0372CE961877AD9F Validity Not Before: Aug 22 23:49:07 2025 GMT Not After : Aug 29 23:49:07 2025 GMT Subject: CN=68a901f3-f2e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:49:dc:12:a9:e9:26:89:c4:cd:d1:ed:e1:ed: 0e:2b:c9:86:b9:26:ea:3f:14:5f:06:82:40:18:38: fa:c6:08:94:10:f3:a4:3c:74:f4:f7:78:6a:ed:57: 83:ec:8f:07:2b:d8:5b:7a:a4:52:3f:f0:75:7a:20: a6:9f:c0:39:57:f0:e8:7c:15:a8:d5:5d:f8:71:ca: 06:91:1d:c4:ff:28:f2:55:3c:57:64:90:39:53:20: 13:f8:48:60:aa:bc:99:db:fd:67:77:18:dd:3a:55: c1:75:00:0d:6c:2d:05:9b:8a:e1:b1:3f:9c:7f:8f: ce:dd:17:4e:0c:a2:6f:2b:b8:82:6b:12:ff:92:fe: e7:e8:95:15:71:17:98:10:d6:4a:56:2d:73:e4:8a: 67:49:db:b4:d1:95:23:66:4e:b9:58:36:98:f5:05: bf:e2:a3:60:38:a1:1f:3f:31:74:0d:8e:c0:a2:9d: 62:f1:d8:8b:af:36:68:50:40:45:c8:5e:42:33:ea: 1b:9d:2b:9a:2f:6f:3e:77:3c:0c:02:53:8c:7e:28: 0f:7e:c5:7d:64:4b:c2:08:47:db:96:16:b9:d0:e4: 1a:c7:b7:e8:28:bb:24:94:86:cf:53:52:94:30:2d: 5d:54:a3:4b:21:fc:36:2b:1a:07:f9:48:59:b5:d8: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:42:BA:1D:1E:F0:CF:93:98:85:8D:64:E5:E4:F0:14:F2:50:FE:64 X509v3 Authority Key Identifier: keyid:08:02:5B:9B:44:EE:D8:AE:0B:76:F1:1E:03:72:CE:96:18:77:AD:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C941B/69F6B7DE1A8311EC8C922229C4F9AE02/CAJbm0Tu2K4LdvEeA3LOlhh3rZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e2:fc:9b:bf:5c:6d:d2:da:64:f9:f4:5e:bb:d4:2a:98:41: 19:f3:26:52:d0:56:29:0b:fb:f5:df:df:11:af:db:23:97:05: 37:d4:e4:dd:fd:ca:aa:2b:7f:8e:36:34:2b:43:32:ea:d6:9f: d9:d6:7d:26:84:33:81:d1:c3:10:eb:38:1d:48:3c:12:f8:45: 3c:ca:26:eb:45:c3:f8:07:47:9a:9d:54:d2:b6:81:18:77:5a: a4:49:8e:d1:f7:ab:35:a3:ac:00:de:f6:8c:8a:df:0c:c1:cf: 28:ee:0d:bb:a6:e8:ce:f7:20:0a:f8:30:5e:fd:13:9a:1e:cf: 7e:37:7f:fa:e9:25:f8:3d:63:d2:c0:e8:7e:54:db:39:01:d6: 0b:3a:32:fd:f2:af:f6:89:db:7c:b1:4f:95:19:fb:49:fe:b8: c4:83:86:80:76:84:a3:55:6d:af:0b:6e:7f:db:3c:c3:35:6d: 14:1e:50:bc:49:54:4a:b6:5f:c1:5f:b1:51:c0:96:1c:fe:16: af:b9:91:5e:26:65:1f:0d:0b:d0:01:7e:fc:bf:d6:e6:fc:f5: 58:bb:86:7c:6f:fd:5d:54:d8:eb:50:78:06:b8:54:47:23:a5: 87:2f:a1:1b:87:bc:17:d3:ab:ca:06:f7:92:f0:5b:14:29:0b: 55:c3:e9:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0MUIxMTAvBgNVBAUTKDA4MDI1QjlCNDRFRUQ4QUUwQjc2RjExRTAzNzJDRTk2 MTg3N0FEOUYwHhcNMjUwODIyMjM0OTA3WhcNMjUwODI5MjM0OTA3WjAYMRYwFAYD VQQDEw02OGE5MDFmMy1mMmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkncEqnpJonEzdHt4e0OK8mGuSbqPxRfBoJAGDj6xgiUEPOkPHT093hq7VeD 7I8HK9hbeqRSP/B1eiCmn8A5V/DofBWo1V34ccoGkR3E/yjyVTxXZJA5UyAT+Ehg qryZ2/1ndxjdOlXBdQANbC0Fm4rhsT+cf4/O3RdODKJvK7iCaxL/kv7n6JUVcReY ENZKVi1z5IpnSdu00ZUjZk65WDaY9QW/4qNgOKEfPzF0DY7Aop1i8diLrzZoUEBF yF5CM+obnSuaL28+dzwMAlOMfigPfsV9ZEvCCEfblha50OQax7foKLsklIbPU1KU MC1dVKNLIfw2KxoH+UhZtdjqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlCuh0e 8M+TmIWNZOXk8BTyUP5kMB8GA1UdIwQYMBaAFAgCW5tE7tiuC3bxHgNyzpYYd62f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQxQi82OUY2QjdERTFB ODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJLNExkdkVlQTNMT2xoaDNy WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBSmJtMFR1Mks0TGR2RWVBM0xPbGhoM3JaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQxQi82OUY2QjdERTFBODMxMUVDOEM5MjIyMjlDNEY5QUUwMi9DQUpibTBUdTJL NExkdkVlQTNMT2xoaDNyWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM4vybv1xt0tpk+fReu9QqmEEZ8yZS0FYpC/v1398Rr9sjlwU31OTd /cqqK3+ONjQrQzLq1p/Z1n0mhDOB0cMQ6zgdSDwS+EU8yibrRcP4B0eanVTStoEY d1qkSY7R96s1o6wA3vaMit8Mwc8o7g27pujO9yAK+DBe/ROaHs9+N3/66SX4PWPS wOh+VNs5AdYLOjL98q/2idt8sU+VGftJ/rjEg4aAdoSjVW2vC25/2zzDNW0UHlC8 SVRKtl/BX7FRwJYc/havuZFeJmUfDQvQAX78v9bm/PVYu4Z8b/1dVNjrUHgGuFRH I6WHL6Ebh7wX06vKBveS8FsUKQtVw+ks -----END CERTIFICATE-----Generated at Sun Aug 24 22:11:25 2025 by rpki-client