$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft File: V02z1iXehCAuOsnBw9Wwd01reOM.mft (raw, json) Hash identifier: hGKaspDJnKKietXXU9d5aKJUatAWv9llhPiuUzy7zC8= Subject key identifier: E0:3B:B9:BC:67:E9:76:93:99:FF:CC:1E:82:35:3E:43:7B:B0:EA:D1 Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft Manifest number: 22 Signing time: Fri 05 Sep 2025 08:20:27 +0000 Manifest this update: Fri 05 Sep 2025 08:20:26 +0000 Manifest next update: Fri 12 Sep 2025 08:20:26 +0000 Files and hashes: 1: V02z1iXehCAuOsnBw9Wwd01reOM.crl (hash: wQ9oDQUapD5YRwErKXA5arH0ng5iwaPai8Y0DszbVcQ=) 2: 900FB71E596711F093280246C4F9AE02.roa (hash: tpoAf7rWotW8KjjlHeClNMLXYiXyuuy+xdTcFAlJiIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Sep 5 08:20:26 2025 GMT Not After : Sep 12 08:20:26 2025 GMT Subject: CN=68ba9d4a-34cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7a:26:6c:b9:c3:65:cd:da:c7:72:77:3c:39: 1a:86:ff:be:98:b6:de:13:fb:4c:88:89:f7:ad:25: e5:3d:a2:82:01:1c:15:d1:64:da:d8:0a:af:f1:72: d9:e6:f8:9b:d2:26:42:48:e6:b3:e9:d0:14:fa:aa: f6:f5:bc:2c:99:cb:ac:3f:33:00:97:94:59:59:c9: cc:bb:bb:d3:81:8d:26:3e:45:5d:45:c7:ff:6d:2d: 06:4f:d3:0d:d2:32:da:ef:ee:3f:50:99:a9:43:90: 51:fd:46:2e:20:f4:2f:37:72:18:9b:64:60:67:cc: 5b:ff:5c:a0:11:30:3d:76:16:c7:bb:fa:61:51:d4: 37:17:b6:9c:8a:9f:ef:20:07:84:f9:a2:d1:15:80: dc:8c:09:cf:9c:fc:2e:53:36:35:5b:df:dc:47:41: df:c1:64:f6:fd:23:74:10:20:76:ad:b8:10:37:6b: ca:bd:d5:e0:6b:1d:c9:5d:82:3a:84:09:46:23:61: bd:07:53:f5:48:cf:89:6b:2f:a1:d9:c6:57:c2:3f: 87:b0:3f:28:40:30:6e:d0:c6:b2:ff:d4:00:f4:e2: 0c:b0:4e:9a:36:5f:99:9b:9c:57:13:97:4c:ee:03: 11:86:03:67:c5:20:2d:97:2e:84:07:dd:a9:83:fd: ce:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3B:B9:BC:67:E9:76:93:99:FF:CC:1E:82:35:3E:43:7B:B0:EA:D1 X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:45:0f:4d:6f:e3:cf:4e:65:21:a2:d5:34:b6:01:a1:18:8e: 9d:7c:3c:0a:81:41:39:bc:c1:33:17:0b:a0:00:03:a4:86:ce: f1:14:c9:1c:6e:3d:33:b5:4f:16:98:68:56:64:95:a7:16:11: d0:21:5f:03:67:e6:f9:4e:c7:a2:13:d8:70:72:08:1b:13:06: 34:25:af:10:d5:97:94:0a:e2:41:2e:ab:40:d6:67:fa:16:5d: 77:98:2a:7f:fc:ab:4b:68:ca:92:53:c9:d6:fc:ad:0b:b9:b3: 33:db:46:7b:81:4b:bc:32:d7:2d:1b:4d:31:fb:57:60:98:75: 15:01:a0:94:89:6d:1a:a3:f8:a5:6c:43:f2:0c:cc:d4:8b:2c: ea:f2:7a:50:08:7f:fe:6a:f5:00:59:fa:d6:0b:20:fe:50:23: 9c:e6:b4:96:07:3e:cf:41:27:e0:31:06:3b:34:61:e2:fc:45: 58:be:f4:2a:47:9e:c8:29:9a:26:67:0b:c6:8c:bf:45:fa:e9: 6c:23:7c:59:1e:54:3d:f3:9f:61:ad:21:ed:d3:5b:7f:d9:c7: 3d:f6:b8:c3:ab:5c:ee:ea:de:6c:51:e4:c6:f5:a0:1b:02:68: 3e:8c:10:68:9e:55:37:8b:b1:d8:fa:6c:d9:78:42:51:e0:b4: b0:b9:f9:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoNTc0REIzRDYyNURFODQyMDJFM0FDOUMxQzNENUIwNzc0 RDZCNzhFMzAeFw0yNTA5MDUwODIwMjZaFw0yNTA5MTIwODIwMjZaMBgxFjAUBgNV BAMTDTY4YmE5ZDRhLTM0Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIeiZsucNlzdrHcnc8ORqG/76Ytt4T+0yIifetJeU9ooIBHBXRZNrYCq/xctnm +JvSJkJI5rPp0BT6qvb1vCyZy6w/MwCXlFlZycy7u9OBjSY+RV1Fx/9tLQZP0w3S Mtrv7j9QmalDkFH9Ri4g9C83chibZGBnzFv/XKARMD12Fse7+mFR1DcXtpyKn+8g B4T5otEVgNyMCc+c/C5TNjVb39xHQd/BZPb9I3QQIHatuBA3a8q91eBrHcldgjqE CUYjYb0HU/VIz4lrL6HZxlfCP4ewPyhAMG7QxrL/1AD04gywTpo2X5mbnFcTl0zu AxGGA2fFIC2XLoQH3amD/c4VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4Du5vGfp dpOZ/8wegjU+Q3uw6tEwHwYDVR0jBBgwFoAUV02z1iXehCAuOsnBw9Wwd01reOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzQ5QTFBODc4NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjAyejFpWGVoQ0F1T3NuQnc5V3dkMDFyZU9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz M0FBLzQ5QTFBODc4NTk2NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENB dU9zbkJ3OVd3ZDAxcmVPTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFVFD01v489OZSGi1TS2AaEYjp18PAqBQTm8wTMXC6AAA6SGzvEUyRxu PTO1TxaYaFZklacWEdAhXwNn5vlOx6IT2HByCBsTBjQlrxDVl5QK4kEuq0DWZ/oW XXeYKn/8q0toypJTydb8rQu5szPbRnuBS7wy1y0bTTH7V2CYdRUBoJSJbRqj+KVs Q/IMzNSLLOryelAIf/5q9QBZ+tYLIP5QI5zmtJYHPs9BJ+AxBjs0YeL8RVi+9CpH nsgpmiZnC8aMv0X66WwjfFkeVD3zn2GtIe3TW3/Zxz32uMOrXO7q3mxR5Mb1oBsC aD6MEGieVTeLsdj6bNl4QlHgtLC5+Yo= -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:08 2025 by rpki-client