$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft File: RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft (raw, json) Hash identifier: cpkdhN41Hr7o+zc9MtwBdmZdaw2D/uriGilRm82+LXE= Subject key identifier: 80:FE:04:3B:FE:67:0D:3A:F1:E8:89:FF:9C:19:2E:7C:85:52:E5:A9 Authority key identifier: 44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 Certificate issuer: /CN=A91E5C49/serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft Manifest number: 0F38 Signing time: Mon 08 Sep 2025 21:25:55 +0000 Manifest this update: Mon 08 Sep 2025 21:25:55 +0000 Manifest next update: Mon 15 Sep 2025 21:25:55 +0000 Files and hashes: 1: RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl (hash: x7ULlIfjZ/iO2/WbMhK2uGQVycKZvm7Dyhlqg/zToxA=) 2: 84FDF25A396711ED8AF52966C4F9AE02.roa (hash: hkxmNGokisQG0mbBKypviapB/RNUZ9nsMjdRwBRak9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5C49, serialNumber=4416E89858DA677B0CDA33B87B2E8C8AFD1C6078 Validity Not Before: Sep 8 21:25:55 2025 GMT Not After : Sep 15 21:25:55 2025 GMT Subject: CN=68bf49e3-7369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:27:68:02:5a:0f:90:91:ab:cb:1f:19:48:83: 00:40:5a:c8:33:04:07:b4:fc:1a:cc:52:a0:26:f4: fc:c5:2c:3e:c4:32:d8:be:f8:86:1c:27:f7:6a:2e: 21:3d:c5:40:4e:10:47:e1:be:d8:fd:c3:dd:d0:9d: 23:ae:88:b6:73:7b:51:21:84:76:d3:5e:c1:c7:40: 77:8f:ed:45:d4:4c:19:3a:ad:26:42:08:8d:c6:8e: db:3f:3a:ed:1c:43:7c:25:07:81:52:6d:b9:01:3f: 6e:4f:fa:6c:35:7e:62:4f:ab:7c:26:e3:db:09:b7: b3:76:42:b8:32:f1:f9:92:dc:27:73:5b:84:1a:b7: 19:7e:fc:43:6f:5d:fb:fb:91:8e:b3:90:5d:bd:61: 46:ab:3c:ee:bb:21:b3:bf:16:17:f9:78:c0:53:85: 3b:2a:a2:9b:97:38:43:48:92:66:81:63:c4:d0:ae: f7:e9:d5:27:6d:e5:26:9e:33:15:9e:df:b0:84:9d: a5:6f:c3:16:60:9d:f0:9e:98:1d:33:8c:6a:33:ea: dc:c4:29:48:90:7a:72:68:6a:a2:43:4e:ed:8f:60: a2:c4:05:4c:76:30:46:d3:15:a7:96:32:25:f6:38: f3:71:06:72:de:c0:10:7e:da:4f:8e:51:c1:a1:c6: c6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FE:04:3B:FE:67:0D:3A:F1:E8:89:FF:9C:19:2E:7C:85:52:E5:A9 X509v3 Authority Key Identifier: keyid:44:16:E8:98:58:DA:67:7B:0C:DA:33:B8:7B:2E:8C:8A:FD:1C:60:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RBbomFjaZ3sM2jO4ey6Miv0cYHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5C49/8A87EFC21A4811EB8F143246C4F9AE02/RBbomFjaZ3sM2jO4ey6Miv0cYHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:37:53:0e:77:bd:b4:37:51:ff:2d:fa:1b:6a:97:47:00:98: a7:a9:ef:3b:fd:bc:23:bf:a0:4d:00:c4:e8:da:e0:9e:3a:b4: 13:b5:f4:a9:24:f6:4c:0c:1c:8b:97:d0:31:18:38:55:cf:d3: a3:a7:fc:d0:df:91:e7:d7:18:c7:3a:82:f6:6d:e5:5d:05:c4: 0f:f4:6a:90:2b:6c:aa:d6:85:f0:5a:e9:6e:e2:f9:5c:4e:73: b1:8e:b6:70:21:77:7b:de:dc:1f:0c:43:d4:c0:4c:14:2c:c0: 25:cc:e4:ef:11:b0:4e:3a:8e:20:3c:f0:7b:7c:14:58:4e:3d: 6b:8d:ba:d7:13:8f:5b:ac:81:b2:62:82:c6:3b:6c:73:a0:94: 3e:b4:72:f6:41:7a:46:9b:62:b1:8d:b2:6c:34:1c:de:e3:6c: d4:03:a8:09:49:72:80:93:75:03:4f:c9:90:05:55:68:e7:29: 15:1f:42:86:11:96:ee:64:59:6e:b4:aa:66:ef:e2:02:f3:c9: b8:83:9b:91:72:c2:5c:14:36:70:71:00:fd:a9:5b:62:70:ea: 34:58:55:4b:85:fe:22:24:ba:d7:48:d8:30:ce:d3:e8:0f:c7: 70:36:fb:8e:40:a0:2b:9b:dc:20:3f:fc:52:50:a1:f1:c2:0a: 85:1b:6e:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVDNDkxMTAvBgNVBAUTKDQ0MTZFODk4NThEQTY3N0IwQ0RBMzNCODdCMkU4QzhB RkQxQzYwNzgwHhcNMjUwOTA4MjEyNTU1WhcNMjUwOTE1MjEyNTU1WjAYMRYwFAYD VQQDEw02OGJmNDllMy03MzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCdoAloPkJGryx8ZSIMAQFrIMwQHtPwazFKgJvT8xSw+xDLYvviGHCf3ai4h PcVAThBH4b7Y/cPd0J0jroi2c3tRIYR2017Bx0B3j+1F1EwZOq0mQgiNxo7bPzrt HEN8JQeBUm25AT9uT/psNX5iT6t8JuPbCbezdkK4MvH5ktwnc1uEGrcZfvxDb137 +5GOs5BdvWFGqzzuuyGzvxYX+XjAU4U7KqKblzhDSJJmgWPE0K736dUnbeUmnjMV nt+whJ2lb8MWYJ3wnpgdM4xqM+rcxClIkHpyaGqiQ07tj2CixAVMdjBG0xWnljIl 9jjzcQZy3sAQftpPjlHBocbGRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFID+BDv+ Zw068eiJ/5wZLnyFUuWpMB8GA1UdIwQYMBaAFEQW6JhY2md7DNozuHsujIr9HGB4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUM0OS84QTg3RUZDMjFB NDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVozc00yak80ZXk2TWl2MGNZ SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCYm9tRmphWjNzTTJqTzRleTZNaXYwY1lIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUM0OS84QTg3RUZDMjFBNDgxMUVCOEYxNDMyNDZDNEY5QUUwMi9SQmJvbUZqYVoz c00yak80ZXk2TWl2MGNZSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGN1MOd720N1H/LfobapdHAJinqe87/bwjv6BNAMTo2uCeOrQTtfSp JPZMDByLl9AxGDhVz9Ojp/zQ35Hn1xjHOoL2beVdBcQP9GqQK2yq1oXwWulu4vlc TnOxjrZwIXd73twfDEPUwEwULMAlzOTvEbBOOo4gPPB7fBRYTj1rjbrXE49brIGy YoLGO2xzoJQ+tHL2QXpGm2KxjbJsNBze42zUA6gJSXKAk3UDT8mQBVVo5ykVH0KG EZbuZFlutKpm7+IC88m4g5uRcsJcFDZwcQD9qVticOo0WFVLhf4iJLrXSNgwztPo D8dwNvuOQKArm9wgP/xSUKHxwgqFG24Q -----END CERTIFICATE-----Generated at Tue Sep 9 08:46:21 2025 by rpki-client