$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft File: MAeESqoZm6nIjWQEw9_oduHjn8Y.mft (raw, json) Hash identifier: u0OFPIVruROLlAx8ClZifZaHfVKJGtswyCPv6wBTB4c= Subject key identifier: 0B:8B:6A:02:E4:40:93:E0:C5:68:5D:E1:7A:9D:28:C5:A6:56:AA:26 Authority key identifier: 30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 Certificate issuer: /CN=A91E46B1/serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Certificate serial: 14C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft Manifest number: 14B2 Signing time: Sat 06 Sep 2025 16:57:47 +0000 Manifest this update: Sat 06 Sep 2025 16:57:46 +0000 Manifest next update: Sat 13 Sep 2025 16:57:46 +0000 Files and hashes: 1: MAeESqoZm6nIjWQEw9_oduHjn8Y.crl (hash: GWlbpbey4WV9NDU+Rq1u5WxZi2SZi1xVdpZDSjXPlYU=) 2: D0D94718CB8111E89EDE697DC4F9AE02.roa (hash: fzmHVxiTK7D8PG5yindwGef8+csbEOVTRn9jS+V30ac=) 3: 391E6EDE679B11E886728650C4F9AE02.roa (hash: iYa29kjN+8nhwT/98WnKo7Pi7A7FL3PggbbxiD2rxqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5318 (0x14c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1, serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Validity Not Before: Sep 6 16:57:46 2025 GMT Not After : Sep 13 16:57:46 2025 GMT Subject: CN=68bc680b-ba4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:c4:6a:06:9f:af:2b:03:d5:06:e9:43:1e:ea: 8a:2d:51:1c:6a:a1:de:0b:d2:c4:ba:4b:23:e9:ca: 05:a6:3e:38:e6:c0:c2:2c:90:7a:e4:d0:3c:51:98: 1c:31:28:ef:58:67:79:a9:cb:d0:72:23:09:03:19: 5b:29:5f:b4:9f:30:c5:88:5f:88:d8:86:c3:55:8b: 73:fc:e8:ed:54:ab:5a:c2:83:25:21:b0:74:79:7a: e6:5b:6c:00:30:e0:9d:c9:00:ed:4c:71:86:ba:2d: f5:87:f3:1c:cf:1e:ea:bb:54:9a:0d:45:8b:d3:e0: 65:7c:c1:df:5c:6c:c2:43:e2:e9:a3:a0:7f:a8:9a: 4b:e9:1d:0e:43:1b:81:b2:ad:71:21:bf:fe:d4:36: b9:09:65:ab:8a:8d:f7:d7:ed:32:fc:72:43:b5:fc: 13:d9:1f:5d:7b:b8:51:ed:20:2c:09:8a:3f:26:2e: 05:80:9c:be:88:b5:89:0c:c8:17:c2:0d:02:4a:8c: 48:96:f0:b4:fb:78:80:84:27:99:20:04:a1:36:0b: 95:5a:80:31:04:c2:a7:d5:ec:1f:0f:d2:ef:61:9c: 71:7d:13:e6:37:5e:31:f5:1b:cd:63:fe:ca:73:8f: 4f:e7:41:21:05:54:1e:83:fb:83:ae:58:f3:3a:6c: e2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:8B:6A:02:E4:40:93:E0:C5:68:5D:E1:7A:9D:28:C5:A6:56:AA:26 X509v3 Authority Key Identifier: keyid:30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:1d:e4:ff:72:41:52:45:29:70:99:ec:84:3f:e4:5a:c6:22: ed:3d:22:cb:cf:3e:79:c1:fd:04:fe:71:02:a7:ae:6b:7d:9d: 0c:db:0a:83:60:55:07:94:11:75:f3:22:7b:d5:5d:2c:9c:5b: 5c:5c:a0:1a:5f:7c:45:b0:e0:72:bf:59:ff:41:29:55:98:54: 34:db:b4:cd:58:4f:d4:8f:ac:1f:24:b0:ff:ca:76:1c:a9:77: 6f:6c:27:74:ec:95:b2:5e:5c:94:40:98:48:27:63:28:f6:e1: a6:3c:7f:0e:3a:25:b9:7b:05:84:ab:25:1d:2c:93:39:be:f7: 03:8d:66:8a:4b:fb:b7:fa:98:1b:b9:2b:2f:04:55:d6:43:4b: 37:45:e3:b1:a6:56:77:69:89:3f:c7:e4:ce:54:a5:54:1f:5e: cf:7c:7b:dc:82:c3:82:37:5f:63:80:79:ac:50:b9:86:90:98: 58:6a:7a:8f:a7:b4:11:a0:c6:9d:f7:d0:ca:eb:27:51:63:81: 79:88:dc:5b:d1:1e:08:ba:b9:6c:76:fc:f4:8b:eb:26:1d:2e: 35:2f:ef:79:3b:a9:ee:0a:29:53:73:36:ad:79:a6:42:61:3e: 63:b0:e2:a0:57:35:d3:03:d4:ca:e8:29:7d:fb:b2:6f:d0:62: fa:2a:b2:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDMwMDc4NDRBQUExOTlCQTlDODhENjQwNEMzREZFODc2 RTFFMzlGQzYwHhcNMjUwOTA2MTY1NzQ2WhcNMjUwOTEzMTY1NzQ2WjAYMRYwFAYD VQQDEw02OGJjNjgwYi1iYTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA88RqBp+vKwPVBulDHuqKLVEcaqHeC9LEuksj6coFpj445sDCLJB65NA8UZgc MSjvWGd5qcvQciMJAxlbKV+0nzDFiF+I2IbDVYtz/OjtVKtawoMlIbB0eXrmW2wA MOCdyQDtTHGGui31h/Mczx7qu1SaDUWL0+BlfMHfXGzCQ+Lpo6B/qJpL6R0OQxuB sq1xIb/+1Da5CWWrio331+0y/HJDtfwT2R9de7hR7SAsCYo/Ji4FgJy+iLWJDMgX wg0CSoxIlvC0+3iAhCeZIAShNguVWoAxBMKn1ewfD9LvYZxxfRPmN14x9RvNY/7K c49P50EhBVQeg/uDrljzOmzidQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuLagLk QJPgxWhd4XqdKMWmVqomMB8GA1UdIwQYMBaAFDAHhEqqGZupyI1kBMPf6Hbh45/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GMDBERjM2NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02bklqV1FFdzlfb2R1SGpu OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BZUVTcW9abTZuSWpXUUV3OV9vZHVIam44WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZCMS9GMDBERjM2NjY3OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02 bklqV1FFdzlfb2R1SGpuOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2HeT/ckFSRSlwmeyEP+RaxiLtPSLLzz55wf0E/nECp65rfZ0M2wqD YFUHlBF18yJ71V0snFtcXKAaX3xFsOByv1n/QSlVmFQ027TNWE/Uj6wfJLD/ynYc qXdvbCd07JWyXlyUQJhIJ2Mo9uGmPH8OOiW5ewWEqyUdLJM5vvcDjWaKS/u3+pgb uSsvBFXWQ0s3ReOxplZ3aYk/x+TOVKVUH17PfHvcgsOCN19jgHmsULmGkJhYanqP p7QRoMad99DK6ydRY4F5iNxb0R4Iurlsdvz0i+smHS41L+95O6nuCilTczateaZC YT5jsOKgVzXTA9TK6Cl9+7Jv0GL6KrKe -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:59 2025 by rpki-client