$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft File: k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json) Hash identifier: qZjdFTFIA6shPVW3KmRH/U1RHzHddmIJndPY18FV1B0= Subject key identifier: 0F:FA:FE:48:EC:87:09:02:92:FE:77:4D:D1:AD:A7:7B:14:91:BE:9B Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 13F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft Manifest number: 13D6 Signing time: Sun 24 Aug 2025 16:55:13 +0000 Manifest this update: Sun 24 Aug 2025 16:55:12 +0000 Manifest next update: Sun 31 Aug 2025 16:55:12 +0000 Files and hashes: 1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: 9A0dXuBiTAnQ4MCFuNn8qdSgM1Q/OQutfxI515QWQjE=) 2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: bw4oyTaqoqfdp29e2lYAU370gy2twH+W8CpSCQrTXLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5105 (0x13f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: Aug 24 16:55:12 2025 GMT Not After : Aug 31 16:55:12 2025 GMT Subject: CN=68ab43f0-3306 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d5:d8:fc:0e:13:a7:8d:38:c5:8d:99:66:a6: 23:aa:6d:c8:d1:b6:17:d5:bf:be:7a:c2:43:fa:d7: 46:90:0f:9b:f2:af:21:30:15:ea:2a:be:bd:27:64: d4:09:d9:7b:e0:55:f7:f1:5b:64:2c:3b:29:5c:ab: 76:7c:36:69:d5:37:d7:dd:90:06:46:37:9e:f4:a1: 1e:28:3a:38:b0:86:ec:15:73:40:52:ad:0f:1e:89: 3e:4d:d8:31:66:d2:f2:ce:df:53:88:c4:03:49:6a: b4:ae:cc:d4:17:4d:d7:9f:c7:76:dd:fb:48:56:12: 51:19:fd:81:e9:43:e9:ae:68:32:cf:cc:e3:ca:4e: 23:5c:6d:d1:2c:9a:f1:b0:17:41:b6:4c:04:93:95: 3b:34:ff:58:55:c1:fc:7d:10:ee:55:c5:ce:41:24: db:6d:3e:40:43:48:e1:d2:7c:37:40:dd:91:48:a7: 47:b9:cd:64:4a:d0:c9:d6:02:a2:ae:ac:3c:d9:d0: a6:f1:4c:df:ad:52:ce:30:dc:36:bd:54:37:76:e1: f4:b0:1f:8b:b4:0f:67:44:ae:57:f8:f7:83:60:24: 82:d9:9d:6d:55:da:99:a9:dc:d9:0d:e9:da:57:7d: af:3e:1a:50:fa:3e:97:b5:44:0a:ca:74:67:81:e1: 13:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FA:FE:48:EC:87:09:02:92:FE:77:4D:D1:AD:A7:7B:14:91:BE:9B X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:4f:93:b5:bc:cf:ee:a3:60:f2:10:d3:c3:f8:ed:f0:bc:f9: 46:25:bd:34:ae:79:ef:59:0c:d6:cd:fd:d7:f3:76:81:1f:9a: 82:7f:3a:d7:be:f4:27:1f:8a:be:7a:29:76:c0:dd:36:60:b7: a3:33:f1:63:75:3b:42:a6:38:d5:3b:c3:1a:34:c1:ac:14:4a: 39:e5:d8:f3:cb:0e:06:58:fd:31:2d:95:97:9e:5d:56:c4:b5: ab:5b:b8:17:ec:f6:38:24:ae:c0:1e:f4:c5:d9:08:30:1a:f1: cd:16:00:35:5a:72:25:00:2a:6d:29:93:29:b0:34:ab:82:2d: 78:fc:a3:e2:a6:e7:62:06:ff:28:96:e9:1c:8c:6b:e2:63:3d: 56:53:4b:be:5d:a0:65:3e:64:82:d0:54:1d:14:f5:d1:e0:4c: ae:e8:b6:45:2b:5f:ba:f4:9e:fd:7b:35:47:b2:0e:12:b3:11: d2:d3:ec:ab:66:8d:d3:4a:74:0f:f6:9e:c7:a6:53:df:c5:19: 85:8b:d1:f7:ee:97:8d:68:88:05:6e:bf:9a:50:09:18:f2:96: 6d:a7:f8:19:3b:2b:e2:87:c0:ec:df:24:6e:bc:54:6a:9a:94: 59:5b:65:fb:36:7d:8f:ce:ab:fd:d7:74:6d:7d:47:96:af:13: bf:4f:a9:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjUwODI0MTY1NTEyWhcNMjUwODMxMTY1NTEyWjAYMRYwFAYD VQQDEw02OGFiNDNmMC0zMzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NXY/A4Tp404xY2ZZqYjqm3I0bYX1b++esJD+tdGkA+b8q8hMBXqKr69J2TU Cdl74FX38VtkLDspXKt2fDZp1TfX3ZAGRjee9KEeKDo4sIbsFXNAUq0PHok+Tdgx ZtLyzt9TiMQDSWq0rszUF03Xn8d23ftIVhJRGf2B6UPprmgyz8zjyk4jXG3RLJrx sBdBtkwEk5U7NP9YVcH8fRDuVcXOQSTbbT5AQ0jh0nw3QN2RSKdHuc1kStDJ1gKi rqw82dCm8UzfrVLOMNw2vVQ3duH0sB+LtA9nRK5X+PeDYCSC2Z1tVdqZqdzZDena V32vPhpQ+j6XtUQKynRngeET2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/6/kjs hwkCkv53TdGtp3sUkb6bMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QxNS83QzY4NUE4Mjk1QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxP cFlVb0M3TXhMekVPRWd3T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUT5O1vM/uo2DyENPD+O3wvPlGJb00rnnvWQzWzf3X83aBH5qCfzrX vvQnH4q+eil2wN02YLejM/FjdTtCpjjVO8MaNMGsFEo55djzyw4GWP0xLZWXnl1W xLWrW7gX7PY4JK7AHvTF2QgwGvHNFgA1WnIlACptKZMpsDSrgi14/KPipudiBv8o lukcjGviYz1WU0u+XaBlPmSC0FQdFPXR4Eyu6LZFK1+69J79ezVHsg4SsxHS0+yr Zo3TSnQP9p7HplPfxRmFi9H37peNaIgFbr+aUAkY8pZtp/gZOyvih8Ds3yRuvFRq mpRZW2X7Nn2Pzqv913RtfUeWrxO/T6l3 -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:18 2025 by rpki-client