$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: qPT/rSFAL8MXQGiFKbLncbDyeevs7XkEYfmXS7hSkaU= Subject key identifier: A2:DF:05:29:5B:35:AA:D9:79:36:8D:71:3F:F5:05:2D:47:D8:E3:4D Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 1634 Signing time: Wed 20 Aug 2025 16:48:53 +0000 Manifest this update: Wed 20 Aug 2025 16:48:52 +0000 Manifest next update: Wed 27 Aug 2025 16:48:52 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: bMUXLFasRLl3Yw8doPPg+rzduhkWe+D7GOuaWacVw/k=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: CGg33H9/VkhPgziJXWcA6Qz7BN3epjzI9EHcIP++h+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5705 (0x1649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Aug 20 16:48:52 2025 GMT Not After : Aug 27 16:48:52 2025 GMT Subject: CN=68a5fc75-06fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a3:f9:b0:58:d1:4a:ef:78:ac:01:ad:eb:b0: ba:00:25:e1:12:55:02:65:aa:f8:9c:b9:9d:d6:fe: 48:e6:68:5b:f3:a6:80:e5:ce:e5:30:fc:f4:6a:eb: e6:4b:2b:c9:3e:6c:27:ba:f5:11:cd:9a:79:da:2d: 60:84:fd:63:ff:30:e9:e9:52:c7:f6:a8:c3:fa:58: 46:18:6f:a5:77:61:95:0c:04:81:3d:5e:6f:49:7c: 6a:8c:27:02:98:25:71:35:01:11:dc:0e:50:99:36: 9c:d5:4f:49:fe:01:9a:c4:6a:f0:f2:a5:7e:b0:cd: e0:b1:4b:91:79:02:25:71:b2:f2:74:87:43:64:aa: 60:46:2b:64:61:4a:70:f4:41:3a:2c:ce:76:28:f2: b7:67:47:b1:0b:4d:b6:42:f7:22:29:e4:d8:7f:49: 2f:ba:8f:b2:24:66:56:6b:7c:cb:83:ac:16:db:41: d8:5f:3a:11:4e:a5:fe:2c:79:70:b4:c9:fe:77:42: 35:ca:65:71:4c:70:e3:31:99:ea:73:bc:ed:35:3a: 86:4e:e4:cd:7a:22:54:59:ec:41:72:b0:97:a2:da: 88:e6:3c:53:e7:36:0e:3f:e9:48:f8:9d:45:a8:4d: 3f:97:5a:e5:68:9a:f9:80:8c:ac:f5:e5:63:69:f2: 94:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DF:05:29:5B:35:AA:D9:79:36:8D:71:3F:F5:05:2D:47:D8:E3:4D X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:cb:e5:ae:10:37:e3:19:d6:c5:da:d7:b3:b7:a3:c5:7d:f5: 03:de:da:e0:4a:20:a0:49:33:2a:ff:5d:9d:58:57:5a:29:ad: c2:7f:c4:e1:51:00:36:35:9a:c6:aa:83:1a:e8:b5:f2:b5:ba: 8e:17:73:3a:89:a9:3d:76:a1:75:14:7e:f5:a2:a7:b7:87:06: 36:94:5f:eb:b0:cc:c2:b1:72:f3:58:31:56:a1:27:18:a6:fe: 60:84:6e:65:13:54:d2:b1:38:12:32:80:4e:33:88:2a:fd:4a: 09:39:60:92:96:fa:ee:8e:bd:a3:51:cd:ce:83:3f:e3:9e:88: 0a:69:1d:a1:c8:57:61:d5:91:3c:ee:1b:fb:4b:67:11:f2:41: 42:2d:4e:53:13:1e:2e:d6:b9:7b:85:53:da:f2:9f:e3:6d:69: 93:99:ad:b5:81:a4:91:26:00:d0:5b:a5:20:81:58:b1:09:37: d9:68:68:85:f6:ef:96:81:d7:a2:03:9c:5d:9f:1a:e1:4d:f8: f6:61:bb:e9:48:f2:46:ef:20:da:c3:97:52:0e:41:9f:b8:fc: a2:c1:ae:4f:34:ce:46:84:10:51:a6:e3:f2:a1:50:f0:a9:60: c8:8a:c7:f0:e4:c9:ea:db:e7:b1:01:f7:1d:e8:a0:4d:83:28: 8b:17:84:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwODIwMTY0ODUyWhcNMjUwODI3MTY0ODUyWjAYMRYwFAYD VQQDEw02OGE1ZmM3NS0wNmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKP5sFjRSu94rAGt67C6ACXhElUCZar4nLmd1v5I5mhb86aA5c7lMPz0auvm SyvJPmwnuvURzZp52i1ghP1j/zDp6VLH9qjD+lhGGG+ld2GVDASBPV5vSXxqjCcC mCVxNQER3A5QmTac1U9J/gGaxGrw8qV+sM3gsUuReQIlcbLydIdDZKpgRitkYUpw 9EE6LM52KPK3Z0exC022QvciKeTYf0kvuo+yJGZWa3zLg6wW20HYXzoRTqX+LHlw tMn+d0I1ymVxTHDjMZnqc7ztNTqGTuTNeiJUWexBcrCXotqI5jxT5zYOP+lI+J1F qE0/l1rlaJr5gIys9eVjafKUdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLfBSlb NarZeTaNcT/1BS1H2ONNMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7y+WuEDfjGdbF2tezt6PFffUD3trgSiCgSTMq/12dWFdaKa3Cf8Th UQA2NZrGqoMa6LXytbqOF3M6iak9dqF1FH71oqe3hwY2lF/rsMzCsXLzWDFWoScY pv5ghG5lE1TSsTgSMoBOM4gq/UoJOWCSlvrujr2jUc3Ogz/jnogKaR2hyFdh1ZE8 7hv7S2cR8kFCLU5TEx4u1rl7hVPa8p/jbWmTma21gaSRJgDQW6UggVixCTfZaGiF 9u+WgdeiA5xdnxrhTfj2YbvpSPJG7yDaw5dSDkGfuPyiwa5PNM5GhBBRpuPyoVDw qWDIisfw5Mnq2+exAfcd6KBNgyiLF4Sl -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:19 2025 by rpki-client