$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: JGETOa/s2jXb6FVsQ7pwZbUfJeDy519LrYujpnWTioM= Subject key identifier: ED:90:E3:F4:44:A5:42:40:88:AA:89:81:37:8E:D6:1B:67:AF:0F:86 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 080F Signing time: Thu 04 Sep 2025 21:09:39 +0000 Manifest this update: Thu 04 Sep 2025 21:09:39 +0000 Manifest next update: Thu 11 Sep 2025 21:09:39 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: bq91FA6m1hSIwOlX6RYtX/x8FpY05yQ1AHnCogjJYcY=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 21:09:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Sep 4 21:09:39 2025 GMT Not After : Sep 11 21:09:39 2025 GMT Subject: CN=68ba0013-75c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:31:75:80:a1:22:76:7e:a5:50:42:0b:60:99: 84:ea:49:ac:51:c0:6d:9e:6d:36:ca:99:19:0d:86: 11:59:0c:bf:14:5a:16:db:1c:25:c2:49:34:63:11: 79:fb:a0:40:d7:8a:09:e8:fe:79:b4:9c:0e:c7:d8: 37:f7:77:57:88:cc:4c:87:56:b2:6d:a0:71:75:a2: dd:62:1e:f7:50:95:b6:3a:4b:64:69:bf:52:07:df: 99:55:05:28:42:62:5c:61:47:d9:c1:7f:5c:89:ad: ba:b4:25:f9:1e:f2:31:9a:12:81:a9:aa:1f:48:23: 9b:c2:fb:0d:8a:46:28:38:2b:2f:7f:53:07:e5:f4: 7a:74:0a:97:7c:60:83:03:a8:d9:28:51:68:ac:fc: ae:ed:67:71:27:83:63:78:39:cc:43:dd:9e:bd:c3: 61:25:cb:0a:da:ab:0e:df:b1:b8:cb:2d:34:40:8a: 78:b4:3e:19:25:50:99:ac:eb:ab:ca:a5:43:a2:b0: 00:31:98:79:5c:e9:14:d5:dd:ce:92:55:36:b1:a2: 9f:59:f0:64:9a:2b:2d:52:35:f3:49:a3:83:d2:48: 6f:f0:b2:a9:9c:7d:df:f0:b6:ce:79:1d:b6:25:16: 63:0d:ea:04:17:60:49:c9:91:37:96:f9:0c:2b:38: 52:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:90:E3:F4:44:A5:42:40:88:AA:89:81:37:8E:D6:1B:67:AF:0F:86 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:42:ad:a0:1b:f4:79:17:71:6d:46:83:97:31:4b:07:4b:79: 4e:7e:f4:74:0a:25:f4:46:b5:37:b8:4a:7c:ad:3a:c6:d3:7f: 73:fd:19:6a:8c:3e:6b:85:f9:bb:fe:68:c6:ed:95:a0:6f:02: 6b:e8:bf:56:fb:0e:67:74:ea:26:86:74:49:f6:cd:fa:a6:95: d2:04:13:83:1c:c2:f2:a2:e9:ae:bf:f6:85:5a:62:79:d1:ee: fe:54:2d:22:7c:ae:ce:a1:35:9f:62:3d:c2:32:9c:5c:79:40: 59:27:c3:0a:54:c1:38:93:de:f9:56:f5:f9:f6:24:4e:82:b5: 85:23:85:ff:4a:b6:75:c3:0e:12:29:69:ec:a0:ee:72:1b:be: 0f:30:56:d8:23:27:72:09:2c:6f:69:e5:ee:b2:7d:e4:a0:ba: 77:23:7b:1e:ea:5b:00:3b:00:6b:17:dc:f0:2b:1d:f7:a1:88: b9:05:4c:02:66:c1:e8:50:a1:f8:0a:21:d3:52:98:40:78:f4: 18:ae:2f:d2:7d:6e:b1:56:6d:fd:9d:e0:4a:11:59:6b:8e:07: 6b:06:9e:20:85:fd:7c:1c:3b:b8:84:4b:9c:0f:bc:bb:5a:fc: 8b:dc:4f:cd:cf:9c:2b:c2:7b:b7:34:ad:cf:12:fa:11:af:67: ec:e0:16:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwOTA0MjEwOTM5WhcNMjUwOTExMjEwOTM5WjAYMRYwFAYD VQQDEw02OGJhMDAxMy03NWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DF1gKEidn6lUEILYJmE6kmsUcBtnm02ypkZDYYRWQy/FFoW2xwlwkk0YxF5 +6BA14oJ6P55tJwOx9g393dXiMxMh1aybaBxdaLdYh73UJW2Oktkab9SB9+ZVQUo QmJcYUfZwX9cia26tCX5HvIxmhKBqaofSCObwvsNikYoOCsvf1MH5fR6dAqXfGCD A6jZKFForPyu7WdxJ4NjeDnMQ92evcNhJcsK2qsO37G4yy00QIp4tD4ZJVCZrOur yqVDorAAMZh5XOkU1d3OklU2saKfWfBkmistUjXzSaOD0khv8LKpnH3f8LbOeR22 JRZjDeoEF2BJyZE3lvkMKzhSrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2Q4/RE pUJAiKqJgTeO1htnrw+GMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwQq2gG/R5F3FtRoOXMUsHS3lOfvR0CiX0RrU3uEp8rTrG039z/Rlq jD5rhfm7/mjG7ZWgbwJr6L9W+w5ndOomhnRJ9s36ppXSBBODHMLyoumuv/aFWmJ5 0e7+VC0ifK7OoTWfYj3CMpxceUBZJ8MKVME4k975VvX59iROgrWFI4X/SrZ1ww4S KWnsoO5yG74PMFbYIydyCSxvaeXusn3koLp3I3se6lsAOwBrF9zwKx33oYi5BUwC ZsHoUKH4CiHTUphAePQYri/SfW6xVm39neBKEVlrjgdrBp4ghf18HDu4hEucD7y7 WvyL3E/Nz5wrwnu3NK3PEvoRr2fs4BYA -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:53 2025 by rpki-client