$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: KjQ066JlrqmjRqmqt2K4SsaiiczpP6+0jh3f4ErfHSQ= Subject key identifier: 4A:77:CE:5B:E1:3A:A7:93:0D:68:A9:15:AE:8E:5B:AF:8F:5F:BF:51 Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 0508 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 0501 Signing time: Wed 20 Aug 2025 23:45:21 +0000 Manifest this update: Wed 20 Aug 2025 23:45:20 +0000 Manifest next update: Wed 27 Aug 2025 23:45:20 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: tyKgSj9nl4EyQm7ALtYIIXWC2b6POtUIc4rUUKdwYIA=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: b/ItM9VGVv0zUWnweJ6+Pz3YcBgADXF1u82bmhYCBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Aug 20 23:45:20 2025 GMT Not After : Aug 27 23:45:20 2025 GMT Subject: CN=68a65e11-eb98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:34:71:84:14:53:d7:45:47:0e:fd:00:fd:7e: 35:af:48:fd:1a:38:02:ef:07:f3:9c:4c:1d:f0:ac: 1c:8d:f9:2b:12:bc:75:2d:c8:cd:6f:ab:22:44:c3: b3:85:cb:20:e4:87:c6:21:d2:a7:6f:26:92:9a:7b: 61:ee:c7:c6:71:70:fe:c9:46:82:64:ec:95:3f:42: 5d:df:89:13:3e:6c:4e:9b:24:9b:fe:69:44:25:9f: 49:7a:0a:a7:4b:90:59:14:9c:30:de:e3:17:06:6e: c4:06:76:5a:ac:65:ba:1a:d6:45:be:02:d7:6f:8c: 43:73:b9:1e:17:4c:98:3e:18:29:a0:7e:0b:1e:40: c7:f7:5d:49:36:cb:2f:4f:6e:f7:7f:ef:bf:d1:de: a0:76:24:37:c5:00:d2:22:6c:e2:b4:61:f4:11:28: 0a:3b:95:80:1a:3e:7e:75:8c:c1:0b:c5:e3:6c:69: be:64:7d:76:fc:a6:6b:93:05:12:75:c1:cb:67:5a: 53:3f:6d:cb:77:46:96:88:b6:67:1a:f5:31:31:55: 48:cd:5c:1d:86:25:30:09:93:8a:5c:a6:38:cc:b5: db:66:a1:7d:5f:a9:93:48:97:00:4e:40:e5:ab:4a: b1:f0:2a:9b:34:ff:6b:5a:3b:90:93:85:71:b1:60: cc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:77:CE:5B:E1:3A:A7:93:0D:68:A9:15:AE:8E:5B:AF:8F:5F:BF:51 X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:3e:8f:96:dd:b9:d2:2c:77:f1:bf:f4:69:ab:d0:f8:84:bb: 77:03:91:e0:43:a4:2e:95:6c:bb:9d:0b:6f:a8:06:ca:97:0d: 2e:bc:d8:e1:f1:53:f8:8a:8b:6d:d9:66:b5:49:ab:ab:72:58: be:ec:a3:fc:f0:19:cc:60:71:03:c2:05:d4:de:fd:ab:78:a6: a7:69:56:27:19:a3:5e:db:b8:ac:3e:f9:ab:76:57:1f:44:d1: 96:8a:53:32:cb:99:a1:90:47:2b:4e:64:45:6e:6a:1d:b6:48: 32:e2:d0:3c:f9:9b:c5:2b:29:24:82:4f:3e:1d:fe:b0:bb:8c: 87:fb:0d:bf:3a:e1:a2:1b:d2:d5:72:01:fe:1e:9f:74:2b:bc: 40:b0:55:0c:36:10:ae:27:14:62:03:f0:b5:22:ca:7e:22:63: 46:15:12:e9:86:ad:f3:4c:5d:a6:dc:23:42:1f:25:29:9f:73: a0:65:41:fe:72:99:11:90:54:f3:70:93:4a:bd:99:73:08:ab: e0:cd:44:53:db:72:81:a0:3f:5e:c9:79:0d:a1:f8:f2:b2:1e: 04:2a:1e:10:c4:bc:ed:ad:9e:25:19:ce:c6:5e:43:27:70:a9: d1:9d:5d:4e:a7:85:46:1e:6b:94:c3:b8:02:be:b4:6a:c9:da: b7:c3:f5:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUwODIwMjM0NTIwWhcNMjUwODI3MjM0NTIwWjAYMRYwFAYD VQQDEw02OGE2NWUxMS1lYjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszRxhBRT10VHDv0A/X41r0j9GjgC7wfznEwd8KwcjfkrErx1LcjNb6siRMOz hcsg5IfGIdKnbyaSmnth7sfGcXD+yUaCZOyVP0Jd34kTPmxOmySb/mlEJZ9Jegqn S5BZFJww3uMXBm7EBnZarGW6GtZFvgLXb4xDc7keF0yYPhgpoH4LHkDH911JNssv T273f++/0d6gdiQ3xQDSImzitGH0ESgKO5WAGj5+dYzBC8XjbGm+ZH12/KZrkwUS dcHLZ1pTP23Ld0aWiLZnGvUxMVVIzVwdhiUwCZOKXKY4zLXbZqF9X6mTSJcATkDl q0qx8CqbNP9rWjuQk4VxsWDMbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEp3zlvh OqeTDWipFa6OW6+PX79RMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTPo+W3bnSLHfxv/Rpq9D4hLt3A5HgQ6QulWy7nQtvqAbKlw0uvNjh 8VP4iott2Wa1Saurcli+7KP88BnMYHEDwgXU3v2reKanaVYnGaNe27isPvmrdlcf RNGWilMyy5mhkEcrTmRFbmodtkgy4tA8+ZvFKykkgk8+Hf6wu4yH+w2/OuGiG9LV cgH+Hp90K7xAsFUMNhCuJxRiA/C1Isp+ImNGFRLphq3zTF2m3CNCHyUpn3OgZUH+ cpkRkFTzcJNKvZlzCKvgzURT23KBoD9eyXkNofjysh4EKh4QxLztrZ4lGc7GXkMn cKnRnV1Op4VGHmuUw7gCvrRqydq3w/UI -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:45 2025 by rpki-client