$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: Pbb/EmbRAZUp86Hhy9+nkbaPe+Z4Umkab8cN8YKdWh8= Subject key identifier: A2:CE:77:71:19:28:F0:B2:0F:04:D6:F8:47:39:A1:E0:97:65:33:CC Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 0867 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 085D Signing time: Sat 06 Sep 2025 20:54:00 +0000 Manifest this update: Sat 06 Sep 2025 20:53:59 +0000 Manifest next update: Sat 13 Sep 2025 20:53:59 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: QrKyhU2ECcEjWBv7yTcsWMSaN3Z4mDMYSXXkGnvA938=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: xQNJE/wFi8JMz2ss0ss1yj9BAf/VPU6rBNzmi8uV9UI=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2151 (0x867) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Sep 6 20:53:59 2025 GMT Not After : Sep 13 20:53:59 2025 GMT Subject: CN=68bc9f68-f6b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:89:44:dd:f0:49:99:f1:87:e1:2d:45:3a:db: 95:86:c6:5f:e4:fb:4f:b1:28:97:61:78:85:86:9c: 0a:e5:66:e3:5f:6b:81:03:51:7d:08:62:9b:38:32: 16:ce:95:86:9a:b0:f1:4c:6c:1a:30:10:80:dd:1a: ee:b7:ed:3a:35:37:bb:f5:bc:67:c4:e3:b1:57:66: ff:a6:ea:5f:9e:45:75:ae:50:fc:f8:29:be:f8:68: e6:9c:b5:ba:28:a9:12:5f:e6:ca:28:16:61:07:4f: 51:d6:50:cd:04:35:72:51:d7:b3:23:6e:1d:9f:5a: 77:23:a6:f8:7d:63:a4:9a:69:e0:73:f9:c7:48:ef: c0:cf:a6:a5:fe:02:d8:4b:26:71:6d:92:a3:67:b7: 22:20:7c:f9:95:5e:c0:dd:1a:ba:0d:aa:ba:03:79: d8:5a:29:91:9b:f1:d1:e0:c7:1a:95:8c:52:12:64: 97:db:e3:f0:64:57:28:79:64:47:e8:c4:0d:e0:fe: df:d3:89:bd:b8:de:d0:26:ad:6e:f8:41:9e:0a:e9: 47:22:93:e1:48:7b:6e:41:b2:9b:a2:9c:75:c3:df: 69:ad:05:3c:4c:a2:03:5d:5b:dc:19:46:66:21:15: 2d:57:1d:e1:d9:49:f2:63:e6:00:6c:f7:63:d9:35: df:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CE:77:71:19:28:F0:B2:0F:04:D6:F8:47:39:A1:E0:97:65:33:CC X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:06:22:c8:3b:f5:d3:5c:d4:9e:34:c7:8c:3e:c3:1c:2e:45: 07:51:c1:ef:11:c0:5f:ed:93:16:cb:bf:a3:32:66:2e:af:34: 08:c9:5c:31:7a:0a:6c:6d:4b:1a:47:90:1c:d2:d2:9c:83:c4: 47:31:94:b6:2f:0b:03:59:18:e2:4f:73:04:a3:47:de:67:ff: 48:be:a5:5e:62:99:f3:9d:b5:a4:4f:f5:e8:05:f3:31:69:ce: da:23:97:88:f8:29:76:dd:2d:e1:6a:36:66:53:39:f8:9e:67: f5:be:07:4d:f8:7f:99:8f:b7:c3:84:a6:10:e6:f8:b2:27:f3: c8:c3:09:5b:d5:9a:c8:9b:b6:b7:22:0a:d0:cb:7b:66:74:11: c3:95:e9:8f:a0:f1:4a:f1:75:6a:95:81:da:b7:70:61:a7:33: cb:5a:5f:18:62:87:c6:6a:72:96:ee:6e:3f:8b:5a:1a:06:1d: cf:ec:29:a8:de:16:33:cd:b8:c7:5a:1e:ff:03:e2:c6:dc:55: 89:2e:8a:9b:23:dc:21:97:fd:88:bd:f0:72:19:cb:ec:9a:ef: 3d:6a:24:5a:46:c6:b8:64:8d:50:1c:8f:be:f9:c5:42:77:29: 05:a1:c0:95:f6:55:20:80:38:c4:cc:8e:35:3a:6c:7a:99:84: 3b:84:ab:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUwOTA2MjA1MzU5WhcNMjUwOTEzMjA1MzU5WjAYMRYwFAYD VQQDEw02OGJjOWY2OC1mNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YlE3fBJmfGH4S1FOtuVhsZf5PtPsSiXYXiFhpwK5WbjX2uBA1F9CGKbODIW zpWGmrDxTGwaMBCA3Rrut+06NTe79bxnxOOxV2b/pupfnkV1rlD8+Cm++GjmnLW6 KKkSX+bKKBZhB09R1lDNBDVyUdezI24dn1p3I6b4fWOkmmngc/nHSO/Az6al/gLY SyZxbZKjZ7ciIHz5lV7A3Rq6Daq6A3nYWimRm/HR4McalYxSEmSX2+PwZFcoeWRH 6MQN4P7f04m9uN7QJq1u+EGeCulHIpPhSHtuQbKbopx1w99prQU8TKIDXVvcGUZm IRUtVx3h2UnyY+YAbPdj2TXfXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLOd3EZ KPCyDwTW+Ec5oeCXZTPMMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPBiLIO/XTXNSeNMeMPsMcLkUHUcHvEcBf7ZMWy7+jMmYurzQIyVwx egpsbUsaR5Ac0tKcg8RHMZS2LwsDWRjiT3MEo0feZ/9IvqVeYpnznbWkT/XoBfMx ac7aI5eI+Cl23S3hajZmUzn4nmf1vgdN+H+Zj7fDhKYQ5viyJ/PIwwlb1ZrIm7a3 IgrQy3tmdBHDlemPoPFK8XVqlYHat3BhpzPLWl8YYofGanKW7m4/i1oaBh3P7Cmo 3hYzzbjHWh7/A+LG3FWJLoqbI9whl/2IvfByGcvsmu89aiRaRsa4ZI1QHI+++cVC dykFocCV9lUggDjEzI41Omx6mYQ7hKvM -----END CERTIFICATE-----Generated at Mon Sep 8 03:32:59 2025 by rpki-client