$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: 9WjpAOZ7eT10j9FBKvCNSLarl9IkhBODr4EzPrRiSjg= Subject key identifier: 71:73:92:B4:55:BE:E9:AE:35:36:33:87:D9:B9:82:88:F4:7A:FA:72 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 224E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 221A Signing time: Mon 08 Sep 2025 15:52:25 +0000 Manifest this update: Mon 08 Sep 2025 15:52:25 +0000 Manifest next update: Mon 15 Sep 2025 15:52:25 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: UI3NywTe90Nn/1CFZvYQo1Q6e2+KykfGDnie7cRUPig=) 2: 1272CD8E65DB11F0A01C3E60C4F9AE02.roa (hash: EVkIEa29+KtvqbQ6gMLWGo1HWVznSyqTu9iTd0m1oV0=) 3: 11D9E3F865DB11F0A01C3E60C4F9AE02.roa (hash: SkqOP3HGJvJNACUcXS+nN5Zr4p2eXR8/AXO6wYAFnB4=) 4: 756C3370F38611EFBF7CEF35C4F9AE02.roa (hash: du5SamzGoud2VmU4jSD3B3FaKaAiMGpYcMTILdk3Bb0=) 5: 114016CE65DB11F0A01C3E60C4F9AE02.roa (hash: ErUpQfksEEfKD74XB+FFiaOlKOxRk0KEFfC9SCixKUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8782 (0x224e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845, serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Sep 8 15:52:25 2025 GMT Not After : Sep 15 15:52:25 2025 GMT Subject: CN=68befbb9-aeae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bb:f6:68:b3:aa:13:06:ff:97:ed:08:75:e2: af:2b:bc:39:5f:9a:cc:56:53:8c:5f:2e:11:0f:04: b9:c2:b3:d1:54:1a:d4:9e:26:62:ef:c2:d2:97:2a: 89:ba:b5:04:95:4b:d0:be:de:be:48:24:33:94:c8: 80:e7:4e:ca:7a:b0:25:b4:e0:35:09:0e:ef:d7:df: 58:b2:9c:c7:5b:62:21:88:ed:c2:c8:d3:0a:92:4a: 86:0e:2e:5a:82:2e:98:39:9e:1e:88:cb:04:8b:dd: 6f:06:e9:08:4f:c3:f3:88:1b:f1:5b:39:45:22:14: d6:c5:1b:6b:bc:66:61:cc:a5:12:b8:b2:35:e3:c8: 74:66:c2:8e:87:d8:69:c5:1d:9d:7c:46:29:38:cd: ee:1d:99:5a:0f:f7:aa:96:77:3b:56:d7:13:b2:ef: 13:00:fc:52:b1:e1:b8:48:ad:22:a5:ab:f5:c4:ea: 9b:5d:8f:73:1e:ed:c8:58:58:3d:81:15:bc:15:01: 70:c9:1b:a5:98:83:28:88:33:6b:a5:57:e8:52:1e: 99:92:37:87:32:fe:13:a3:f5:e2:f3:82:00:ef:bc: 6a:e5:a0:a0:8e:a0:57:d1:52:61:86:24:2a:3e:4e: 18:3f:18:fa:5d:66:f6:90:49:b9:99:86:bc:1e:80: 35:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:73:92:B4:55:BE:E9:AE:35:36:33:87:D9:B9:82:88:F4:7A:FA:72 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:7a:b4:fd:ef:81:58:63:91:17:5a:4b:74:65:50:39:bf:f5: 6a:a6:19:d1:75:51:dc:ce:eb:dc:ee:90:72:58:52:b8:86:7f: 5c:3a:12:be:48:dd:b5:cf:e2:cb:b7:67:84:32:77:c7:d6:eb: f8:19:d6:7a:0e:46:18:17:05:dc:77:53:19:d1:f6:a4:0d:2c: 7f:07:23:05:9c:68:c4:cb:cc:d3:d9:79:7d:e9:f0:25:d1:bb: c0:3b:da:af:d2:f4:56:12:85:c3:d3:d9:f7:45:e7:e7:d9:66: e7:65:8a:71:0e:ec:b2:a1:68:c2:1e:52:7c:38:e3:c6:07:90: e1:c7:ab:12:0d:a0:ea:d7:51:94:6d:b1:0d:ea:4e:ac:88:cb: 85:d0:ec:55:11:db:85:d8:ea:30:ad:6e:35:14:81:48:5d:24: 78:75:e8:58:a7:e3:07:4e:90:31:51:a2:59:74:8c:31:0d:1a: 1c:4d:f5:2f:1e:ab:03:bb:88:fe:1a:60:2e:14:93:33:6d:01: 36:f9:5d:b5:00:5b:d3:43:c9:db:f4:57:5f:d1:94:b1:e2:c6: 58:09:c9:99:af:66:54:3f:f6:77:f7:37:b7:1e:de:f5:47:ea: 3d:9c:31:bd:9c:cf:2a:9a:8d:ea:a0:1e:c0:8c:54:3c:21:4f: dd:0e:fb:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjUwOTA4MTU1MjI1WhcNMjUwOTE1MTU1MjI1WjAYMRYwFAYD VQQDEw02OGJlZmJiOS1hZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbv2aLOqEwb/l+0IdeKvK7w5X5rMVlOMXy4RDwS5wrPRVBrUniZi78LSlyqJ urUElUvQvt6+SCQzlMiA507KerAltOA1CQ7v199YspzHW2IhiO3CyNMKkkqGDi5a gi6YOZ4eiMsEi91vBukIT8PziBvxWzlFIhTWxRtrvGZhzKUSuLI148h0ZsKOh9hp xR2dfEYpOM3uHZlaD/eqlnc7VtcTsu8TAPxSseG4SK0ipav1xOqbXY9zHu3IWFg9 gRW8FQFwyRulmIMoiDNrpVfoUh6ZkjeHMv4To/Xi84IA77xq5aCgjqBX0VJhhiQq Pk4YPxj6XWb2kEm5mYa8HoA1SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFzkrRV vumuNTYzh9m5goj0evpyMB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPerT974FYY5EXWkt0ZVA5v/VqphnRdVHczuvc7pByWFK4hn9cOhK+ SN21z+LLt2eEMnfH1uv4GdZ6DkYYFwXcd1MZ0fakDSx/ByMFnGjEy8zT2Xl96fAl 0bvAO9qv0vRWEoXD09n3Refn2WbnZYpxDuyyoWjCHlJ8OOPGB5Dhx6sSDaDq11GU bbEN6k6siMuF0OxVEduF2OowrW41FIFIXSR4dehYp+MHTpAxUaJZdIwxDRocTfUv HqsDu4j+GmAuFJMzbQE2+V21AFvTQ8nb9Fdf0ZSx4sZYCcmZr2ZUP/Z39ze3Ht71 R+o9nDG9nM8qmo3qoB7AjFQ8IU/dDvs5 -----END CERTIFICATE-----Generated at Mon Sep 8 19:40:45 2025 by rpki-client