$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft File: M4vXge0h5dsUBXs3uQOipAjiQgI.mft (raw, json) Hash identifier: N48JRwYPpiQScazM5CWJ7xOCVoFjGsX/UWXcrc3eja0= Subject key identifier: 06:CB:AD:95:5A:6B:B1:90:6F:BB:50:FF:01:C4:71:68:B6:9A:85:D6 Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 34F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft Manifest number: 34CA Signing time: Sun 24 Aug 2025 14:51:50 +0000 Manifest this update: Sun 24 Aug 2025 14:51:49 +0000 Manifest next update: Sun 31 Aug 2025 14:51:49 +0000 Files and hashes: 1: M4vXge0h5dsUBXs3uQOipAjiQgI.crl (hash: Z6aqR/oUwFdwo+S/BJRbmYsg+YJRms8VKudpaN56DS4=) 2: 5F114FB2C28811EB8BB7245FC4F9AE02.roa (hash: NTEzu1pSF4sdWy2GcCcEDp/gqX9S2zLnxs3jJP1dXh4=) 3: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (hash: MtAXGpGxLYC9TQTRbnJyAY8nZ+XjjJVEjf45TgfTD7c=) 4: 5CD84EBCC28811EB8BB7245FC4F9AE02.roa (hash: +MuzD9gM5AUhBlmI5x0tCQas+CPjWTVYziN5P4guwtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13553 (0x34f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1, serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Aug 24 14:51:49 2025 GMT Not After : Aug 31 14:51:49 2025 GMT Subject: CN=68ab2705-4d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:af:d8:c4:e0:e1:3a:cd:39:d5:8e:3e:3c:6c: f5:49:a4:92:5d:12:10:76:f6:f4:6d:d0:5d:cc:66: 9d:65:c9:b4:59:21:c0:50:f1:25:95:76:a0:37:9a: ac:19:9c:6a:69:c3:27:56:d8:87:a4:2e:94:0b:15: 98:e0:82:fa:c8:26:8a:46:08:df:9f:cb:79:32:de: 27:d2:f6:82:de:55:96:af:56:10:e4:2b:d6:6f:3c: d0:ed:d4:b4:bd:28:22:20:b6:d3:c4:cf:1a:e1:ae: b7:14:d9:df:cf:08:8b:c8:eb:39:f1:2f:c0:f4:95: c2:3e:7e:17:9d:b9:df:08:28:86:59:ca:53:80:67: 8f:02:07:e5:96:d9:bb:40:bf:b7:bc:06:d3:58:a1: d4:51:30:b4:cc:9c:e1:8f:ca:ba:00:13:b6:d6:f1: 4f:99:6c:64:fe:2c:2c:d6:f4:10:86:10:df:0c:50: 3e:81:33:00:06:af:1b:43:1f:84:cb:f9:ca:be:8c: 9e:97:12:c9:b5:ce:98:08:4a:ad:a8:0b:c0:ad:a2: b1:32:11:a2:00:bb:bd:7d:d1:ee:70:1b:4f:89:a2: 05:ac:46:3a:e0:4f:10:c2:a6:3b:1c:06:a0:56:61: 3d:3f:d5:b6:c7:8c:7a:b0:da:13:6a:76:7a:7b:69: 7c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:CB:AD:95:5A:6B:B1:90:6F:BB:50:FF:01:C4:71:68:B6:9A:85:D6 X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:03:1d:84:9a:c2:db:98:40:d2:11:d5:1a:1a:cf:0c:ca:4a: 77:7c:9b:a9:b1:f3:92:11:26:20:f4:80:8d:08:2a:0f:c3:c3: cf:b9:a1:ea:bf:1a:9d:86:a2:2f:89:fd:e3:6e:42:6d:34:88: 55:46:ad:f8:62:f9:5c:1d:fd:5b:ef:a0:3c:75:cb:03:75:5d: 9e:bc:90:e0:5a:1a:d6:7b:a6:ee:27:9e:11:ba:5f:b7:f0:52: c6:67:a0:a6:0d:b9:bf:1f:7d:0a:cb:a1:fe:51:f0:56:4d:8f: d5:0b:d6:54:35:21:77:93:64:31:c2:8a:0a:3b:40:90:03:22: 6f:20:74:d9:b4:00:29:e0:64:56:18:5d:bc:d7:ab:25:c1:07: 3c:e4:64:a8:17:7e:dd:ea:6c:df:28:c2:59:4d:61:2e:ab:c5: 84:70:38:65:3c:db:85:c2:68:69:79:6c:68:46:9a:a5:44:d7: 22:80:80:9d:9e:bc:20:8e:a8:d1:a9:b4:65:96:95:54:f0:bd: 2a:14:84:33:a2:fa:8d:76:9d:5e:9a:b3:55:6f:9d:93:71:92: 4e:e2:e3:f9:21:be:c2:75:cc:7e:4f:06:03:93:55:af:41:c4: 17:77:e3:7c:d8:b8:35:66:e5:e7:a2:6d:8a:68:f9:75:e2:22: 00:ce:97:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjUwODI0MTQ1MTQ5WhcNMjUwODMxMTQ1MTQ5WjAYMRYwFAYD VQQDEw02OGFiMjcwNS00ZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArK/YxODhOs051Y4+PGz1SaSSXRIQdvb0bdBdzGadZcm0WSHAUPEllXagN5qs GZxqacMnVtiHpC6UCxWY4IL6yCaKRgjfn8t5Mt4n0vaC3lWWr1YQ5CvWbzzQ7dS0 vSgiILbTxM8a4a63FNnfzwiLyOs58S/A9JXCPn4XnbnfCCiGWcpTgGePAgflltm7 QL+3vAbTWKHUUTC0zJzhj8q6ABO21vFPmWxk/iws1vQQhhDfDFA+gTMABq8bQx+E y/nKvoyelxLJtc6YCEqtqAvAraKxMhGiALu9fdHucBtPiaIFrEY64E8QwqY7HAag VmE9P9W2x4x6sNoTanZ6e2l8mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbLrZVa a7GQb7tQ/wHEcWi2moXWMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzhDMS9FNzVBQzI2MjFEOTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVk c1VCWHMzdVFPaXBBamlRZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGAx2EmsLbmEDSEdUaGs8Mykp3fJupsfOSESYg9ICNCCoPw8PPuaHq vxqdhqIvif3jbkJtNIhVRq34YvlcHf1b76A8dcsDdV2evJDgWhrWe6buJ54Rul+3 8FLGZ6CmDbm/H30Ky6H+UfBWTY/VC9ZUNSF3k2QxwooKO0CQAyJvIHTZtAAp4GRW GF2816slwQc85GSoF37d6mzfKMJZTWEuq8WEcDhlPNuFwmhpeWxoRpqlRNcigICd nrwgjqjRqbRllpVU8L0qFIQzovqNdp1emrNVb52TcZJO4uP5Ib7Cdcx+TwYDk1Wv QcQXd+N82Lg1ZuXnom2KaPl14iIAzpeh -----END CERTIFICATE-----Generated at Sun Aug 24 22:13:42 2025 by rpki-client