$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json) Hash identifier: qIt9oR3e6u3Y4iA8Op8rNt4pR8UMBv0ImMvkUu2p4f4= Subject key identifier: BA:B4:BD:6E:74:82:6F:8D:96:F3:8B:AE:0A:D1:C1:5B:2E:45:B6:0F Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft Manifest number: D5 Signing time: Wed 03 Sep 2025 06:07:55 +0000 Manifest this update: Wed 03 Sep 2025 06:07:55 +0000 Manifest next update: Wed 10 Sep 2025 06:07:55 +0000 Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: vetL4fWjrBXX2a6nkeMEUCNSj8fpPMhnaIC9il9mZ3M=) 2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: dwidYpMLAJTM9jddkunL1qdnHKOnW/Pf1EZaeXyq6Fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Validity Not Before: Sep 3 06:07:55 2025 GMT Not After : Sep 10 06:07:55 2025 GMT Subject: CN=68b7db3b-bf1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b2:db:9a:44:c4:9f:ac:de:a9:43:d6:62:30: 48:f7:75:d9:7b:13:51:77:7c:f0:46:f2:43:f3:f4: 18:20:94:e0:f8:7c:85:31:c2:25:8d:f5:9d:d0:8f: 40:9a:a8:ce:42:98:e6:70:47:b7:82:36:1b:6b:f8: 81:a4:07:b2:d6:1c:c6:43:80:52:db:b8:70:62:f7: f9:b6:ec:a1:dd:5f:16:50:53:38:cb:b7:49:4e:2b: 43:bf:01:2e:be:b3:56:78:b5:be:06:b2:0d:11:ec: 12:b4:a7:58:2a:af:bd:04:34:3c:08:61:99:4a:17: 3a:cd:c6:29:69:34:e4:ce:82:42:b8:73:1d:5a:fd: 0b:82:b3:f8:00:dc:6e:8e:d2:f0:d8:39:82:ed:0d: 01:d2:a4:b6:03:ec:bf:84:1e:70:3e:a2:df:7b:e5: c1:e5:84:e4:19:71:05:1b:1e:60:31:43:a0:05:a9: f1:10:36:54:29:80:3c:6d:18:a1:b9:0c:f9:c3:c3: 79:76:70:a4:50:df:50:75:d3:48:8f:03:1f:5f:5e: 8d:fb:74:4e:db:47:f1:7d:93:af:35:94:35:48:a9: fe:e0:c7:71:ae:44:d4:98:27:9d:02:df:e2:07:18: b6:8c:33:af:56:de:f4:e3:aa:cd:dc:4e:41:96:c2: 52:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B4:BD:6E:74:82:6F:8D:96:F3:8B:AE:0A:D1:C1:5B:2E:45:B6:0F X509v3 Authority Key Identifier: keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:f0:c8:e3:d8:34:c6:8b:15:19:c1:9c:d6:65:0b:42:28:bb: 4b:b3:18:32:dd:bb:64:1e:37:c1:c8:41:1e:18:3b:c7:6d:6b: 73:7f:ae:03:c8:fa:7e:aa:ca:e6:d7:2c:ee:99:e0:87:78:4f: 9c:c5:21:9b:bb:35:13:54:79:5b:df:0f:e4:d6:73:9c:2a:6c: fc:3c:e2:d5:d6:17:74:a3:d6:79:cb:e1:84:88:dc:76:52:49: 28:6a:84:f7:1f:67:83:ee:89:13:d8:0d:f2:7f:3d:7e:7c:f2: 6f:41:0a:e0:13:4b:e2:f5:37:83:90:f1:a1:4e:ba:8f:39:22: 9e:72:db:e1:b1:fc:0b:75:16:52:28:4e:4c:c1:a8:9a:8d:e4: be:73:28:38:cc:56:4a:d6:80:b5:30:c3:35:f4:5f:a6:88:27: 30:30:e6:46:46:f2:32:86:e5:32:1c:c1:a0:8f:8a:f4:7a:40: 88:ee:36:91:2a:00:2c:14:a7:cc:32:00:43:99:54:31:09:84: 00:74:49:1a:d0:31:db:f0:78:a9:1c:39:67:e8:19:ec:df:8e: d6:5e:a3:99:cc:a3:2a:ba:05:31:4e:6e:89:18:54:2f:8f:b0: c5:1b:5b:79:66:67:3e:ed:f2:16:38:d3:49:f4:f3:72:b8:b6: 60:6b:c7:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKDA3MjQ0QTk5NENEQzRCOTM4MDc0NzExQzQyNDhENDlG OUQ1MEQ4MjcwHhcNMjUwOTAzMDYwNzU1WhcNMjUwOTEwMDYwNzU1WjAYMRYwFAYD VQQDEw02OGI3ZGIzYi1iZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07LbmkTEn6zeqUPWYjBI93XZexNRd3zwRvJD8/QYIJTg+HyFMcIljfWd0I9A mqjOQpjmcEe3gjYba/iBpAey1hzGQ4BS27hwYvf5tuyh3V8WUFM4y7dJTitDvwEu vrNWeLW+BrINEewStKdYKq+9BDQ8CGGZShc6zcYpaTTkzoJCuHMdWv0LgrP4ANxu jtLw2DmC7Q0B0qS2A+y/hB5wPqLfe+XB5YTkGXEFGx5gMUOgBanxEDZUKYA8bRih uQz5w8N5dnCkUN9QddNIjwMfX16N+3RO20fxfZOvNZQ1SKn+4MdxrkTUmCedAt/i Bxi2jDOvVt7046rN3E5BlsJSvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLq0vW50 gm+NlvOLrgrRwVsuRbYPMB8GA1UdIwQYMBaAFAckSplM3EuTgHRxHEJI1J+dUNgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS9GQzY2RjVBRTQ1 QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1T0FkSEVjUWtqVW41MVEy Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5UkttVXpjUzVPQWRIRWNRa2pVbjUxUTJDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS9GQzY2RjVBRTQ1QUQxMUVGQjQzNUVCNkZDNEY5QUUwMi9CeVJLbVV6Y1M1 T0FkSEVjUWtqVW41MVEyQ2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy8Mjj2DTGixUZwZzWZQtCKLtLsxgy3btkHjfByEEeGDvHbWtzf64D yPp+qsrm1yzumeCHeE+cxSGbuzUTVHlb3w/k1nOcKmz8POLV1hd0o9Z5y+GEiNx2 UkkoaoT3H2eD7okT2A3yfz1+fPJvQQrgE0vi9TeDkPGhTrqPOSKectvhsfwLdRZS KE5MwaiajeS+cyg4zFZK1oC1MMM19F+miCcwMOZGRvIyhuUyHMGgj4r0ekCI7jaR KgAsFKfMMgBDmVQxCYQAdEka0DHb8HipHDln6Bns347WXqOZzKMqugUxTm6JGFQv j7DFG1t5Zmc+7fIWONNJ9PNyuLZga8eo -----END CERTIFICATE-----Generated at Thu Sep 4 13:56:46 2025 by rpki-client