$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft File: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft (raw, json) Hash identifier: OUmKcCV4oRt677LYSNznshWkB3/9DqVYFmxYOQKYd2o= Subject key identifier: 19:D9:2C:93:32:28:9F:39:BC:DA:85:E7:43:BA:06:A1:86:EC:A8:5E Authority key identifier: D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 Certificate issuer: /CN=A91D1234/serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Certificate serial: 0351 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft Manifest number: 034D Signing time: Fri 19 Sep 2025 01:25:33 +0000 Manifest this update: Fri 19 Sep 2025 01:25:32 +0000 Manifest next update: Fri 26 Sep 2025 01:25:32 +0000 Files and hashes: 1: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl (hash: dKNcyIC7l4xORy9ZSJI3LDgjO9D0S0CkXBATrSfntCs=) 2: 84A0C6B4D02811ECB2472344C4F9AE02.roa (hash: 2T9vsc4C1WKjq9QaM+1XQHhjEU7ftzmE6rg4euSNxbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 849 (0x351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1234, serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Validity Not Before: Sep 19 01:25:32 2025 GMT Not After : Sep 26 01:25:32 2025 GMT Subject: CN=68ccb10c-8a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:67:a2:24:a1:a5:18:f7:de:1f:9e:84:49:6b: d0:74:b6:38:65:ed:07:d8:1b:a5:d1:23:b6:59:a3: 16:f5:02:bb:24:91:c5:e3:59:4d:dc:f9:fb:74:1c: b1:20:a7:29:f8:62:2f:7a:e1:8b:51:a6:a5:df:42: 00:d0:af:f2:4c:a0:84:f2:51:96:df:ae:6b:60:98: f6:b6:23:5a:07:7e:31:39:d0:a9:bc:e4:df:99:3f: f3:dd:c7:56:16:98:df:b9:92:c9:a8:72:bd:36:74: a6:c5:36:00:42:54:69:dd:fa:f3:45:00:0d:be:62: 4f:e4:76:69:00:55:35:73:44:19:24:1e:8d:73:60: 79:66:70:90:9d:e6:99:02:f3:c9:36:6b:39:a9:4a: 13:fe:f2:10:d4:18:c2:c4:b4:33:f0:9a:c1:64:01: 2b:fc:fc:ec:bb:08:2f:82:aa:15:fe:48:da:28:5e: cf:ee:77:8b:dc:46:45:48:81:52:27:db:c0:d6:83: c0:f2:96:bb:52:9b:9c:4a:53:7b:35:47:15:44:2a: 25:3f:4e:2f:70:ea:0b:0e:cc:67:5f:e3:39:ba:9d: 0a:5e:13:35:74:85:12:10:48:a2:3c:89:94:52:d6: aa:a3:b3:e8:f7:17:ee:4c:60:cf:9a:61:39:03:f6: d9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D9:2C:93:32:28:9F:39:BC:DA:85:E7:43:BA:06:A1:86:EC:A8:5E X509v3 Authority Key Identifier: keyid:D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:08:9c:68:6c:ba:bc:c8:83:22:f0:6e:d5:a5:25:d7:5c:5a: e5:c0:2e:c7:fb:d1:7d:82:da:77:1d:98:92:01:07:20:f8:06: 2c:4b:9b:1d:00:3f:c3:63:c3:a4:16:0f:f9:f1:2b:b9:54:6c: 4b:b0:50:92:37:e2:09:53:8b:90:b2:98:1f:7c:fe:c7:1a:9e: 9b:4b:a4:2c:55:45:76:e9:14:1b:01:60:f8:a7:4f:72:cc:7a: 4e:d5:0b:12:18:fe:a6:a1:87:7a:fb:d2:33:bd:eb:3b:36:76: ea:2c:ff:ef:fb:71:93:49:e9:bb:ff:e8:22:4c:b5:ec:69:d9: 38:36:66:6c:d3:6f:1d:3b:65:88:58:4f:1d:26:15:94:27:75: 9a:2e:62:a3:c5:f5:dc:96:73:51:a8:61:a5:8d:31:5f:50:10: 6f:ec:25:ee:1e:9f:26:ac:02:91:12:68:9b:e3:58:b7:e2:f9: e1:b6:93:c2:e0:60:e1:7e:96:d7:4c:50:dd:af:58:d3:01:ea: 6d:86:7a:93:08:cd:d7:ce:d8:6e:1c:6d:0a:e3:0f:16:60:49: 30:ba:ce:e0:3e:ab:91:1f:79:22:07:4b:64:26:b8:ff:fb:c4: e3:a5:79:9f:92:93:2c:8d:b4:9f:d0:c6:64:ca:16:a5:ae:31: 4c:40:e9:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMzQxMTAvBgNVBAUTKEQzQzYyMkU3OTBGMURFRjE2OTI4QkJFNTU0MTgxNzI3 Q0Y4Qzg4RjgwHhcNMjUwOTE5MDEyNTMyWhcNMjUwOTI2MDEyNTMyWjAYMRYwFAYD VQQDEw02OGNjYjEwYy04YTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGeiJKGlGPfeH56ESWvQdLY4Ze0H2Bul0SO2WaMW9QK7JJHF41lN3Pn7dByx IKcp+GIveuGLUaal30IA0K/yTKCE8lGW365rYJj2tiNaB34xOdCpvOTfmT/z3cdW FpjfuZLJqHK9NnSmxTYAQlRp3frzRQANvmJP5HZpAFU1c0QZJB6Nc2B5ZnCQneaZ AvPJNms5qUoT/vIQ1BjCxLQz8JrBZAEr/PzsuwgvgqoV/kjaKF7P7neL3EZFSIFS J9vA1oPA8pa7UpucSlN7NUcVRColP04vcOoLDsxnX+M5up0KXhM1dIUSEEiiPImU Utaqo7Po9xfuTGDPmmE5A/bZLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnZLJMy KJ85vNqF50O6BqGG7KheMB8GA1UdIwQYMBaAFNPGIueQ8d7xaSi75VQYFyfPjIj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIzNC9CMEZGMzBGRUQw MjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2RnBLTHZsVkJnWEo4LU1p UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WWk1NUR4M3ZGcEtMdmxWQmdYSjgtTWlQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIzNC9CMEZGMzBGRUQwMjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2 RnBLTHZsVkJnWEo4LU1pUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFCJxobLq8yIMi8G7VpSXXXFrlwC7H+9F9gtp3HZiSAQcg+AYsS5sd AD/DY8OkFg/58Su5VGxLsFCSN+IJU4uQspgffP7HGp6bS6QsVUV26RQbAWD4p09y zHpO1QsSGP6moYd6+9Izves7NnbqLP/v+3GTSem7/+giTLXsadk4NmZs028dO2WI WE8dJhWUJ3WaLmKjxfXclnNRqGGljTFfUBBv7CXuHp8mrAKREmib41i34vnhtpPC 4GDhfpbXTFDdr1jTAepthnqTCM3XzthuHG0K4w8WYEkwus7gPquRH3kiB0tkJrj/ +8TjpXmfkpMsjbSf0MZkyhalrjFMQOm+ -----END CERTIFICATE-----Generated at Fri Sep 19 11:52:17 2025 by rpki-client