$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: 1vCyGt7jxMeEMGb56PQIbpRoy+JOt1YnL9Rm+I+NMjc= Subject key identifier: 69:26:B7:30:C7:31:2D:4D:4A:0A:BA:81:3B:A6:47:33:3D:36:09:BD Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 34D2 Signing time: Fri 22 Aug 2025 14:19:37 +0000 Manifest this update: Fri 22 Aug 2025 14:19:37 +0000 Manifest next update: Fri 29 Aug 2025 14:19:37 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: 0kYP0wb/6n9O/u+DmLw6JdkiPpau9OsMstbzGFoRHWg=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13554 (0x34f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Aug 22 14:19:37 2025 GMT Not After : Aug 29 14:19:37 2025 GMT Subject: CN=68a87c79-359a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:53:17:79:ac:83:ca:74:db:2a:ae:c1:74:c8: 75:39:ba:8a:d6:01:82:62:a6:ab:9a:5b:2e:d9:01: cd:80:fc:ce:04:6f:75:16:b2:dd:e0:67:02:cc:77: 61:e1:74:29:9d:59:0c:b6:7b:f9:ec:f6:9b:17:37: c0:21:5c:6d:35:b1:60:2c:e6:17:74:dd:b9:f0:99: 74:f6:72:ed:90:64:44:86:5c:4d:f4:e6:9a:01:fc: 0d:f3:5b:7f:2e:a0:20:33:e1:04:07:53:68:01:79: d2:46:ce:ed:41:b0:1a:84:c7:15:10:c9:08:e7:2b: a4:42:d0:b3:1e:c1:c2:63:fa:ca:24:1d:46:67:6f: 74:f0:60:7f:7d:17:b2:5a:2f:82:53:a8:e9:69:7f: 7d:55:74:12:13:a5:ca:35:3c:83:57:76:b3:9f:30: e6:02:df:fb:be:02:b8:2b:d5:ef:8a:2c:79:a6:8e: 35:d6:32:81:60:3b:58:50:61:4c:a5:18:45:6e:a7: 1c:31:16:94:57:ef:b6:28:cb:00:17:6e:45:d8:bb: 82:1d:6d:d5:0d:eb:c9:d9:5e:ae:32:62:73:87:7b: 34:d1:f3:f0:53:db:9c:8e:b6:75:99:ca:b4:f7:6b: 99:12:e4:aa:cd:94:da:18:d0:52:19:48:a6:f6:17: 29:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:26:B7:30:C7:31:2D:4D:4A:0A:BA:81:3B:A6:47:33:3D:36:09:BD X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:47:d4:00:8f:c7:d9:b4:8f:0d:86:e2:99:70:53:01:af:eb: 00:22:0c:27:5e:6e:c9:77:17:c0:9a:6d:91:ca:0a:34:08:05: 03:8c:e7:4c:bb:9f:3b:66:2b:2e:b8:ad:ba:7e:de:a1:de:2f: c6:dc:d6:b2:d1:5c:89:f1:4d:65:6b:17:f3:59:70:6a:be:cf: 0f:cf:63:9a:a7:25:e6:c8:80:3d:cb:1e:40:3b:ba:d8:29:f1: 45:12:f6:01:cc:e2:61:94:56:eb:55:0c:bf:af:07:9b:13:f6: 2a:ba:b6:f6:2e:7c:83:2f:bf:a0:62:ee:be:34:46:aa:2b:dc: 0f:89:68:cd:23:0d:78:47:c6:4c:72:96:c2:1b:01:ef:54:8b: 69:16:4e:47:38:03:1d:fe:20:54:48:e7:2d:9e:86:f6:93:39: 44:64:20:2f:b6:cc:30:04:9c:fc:62:61:ea:6b:4e:2a:4b:4d: 46:79:a3:5b:67:46:87:14:38:ca:22:e6:d9:34:03:98:b7:dc: 15:9a:71:a4:a2:d2:fb:73:f6:4c:4b:88:81:1a:26:29:9a:39: ac:d1:4d:4e:5c:a4:a4:5d:96:9d:e2:cf:5f:4c:d9:95:70:8d: d7:80:52:7a:c9:c5:a1:84:05:b0:26:ba:f8:3a:7d:23:ce:1a: 3c:d2:7a:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwODIyMTQxOTM3WhcNMjUwODI5MTQxOTM3WjAYMRYwFAYD VQQDEw02OGE4N2M3OS0zNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlMXeayDynTbKq7BdMh1ObqK1gGCYqarmlsu2QHNgPzOBG91FrLd4GcCzHdh 4XQpnVkMtnv57PabFzfAIVxtNbFgLOYXdN258Jl09nLtkGREhlxN9OaaAfwN81t/ LqAgM+EEB1NoAXnSRs7tQbAahMcVEMkI5yukQtCzHsHCY/rKJB1GZ2908GB/fRey Wi+CU6jpaX99VXQSE6XKNTyDV3aznzDmAt/7vgK4K9Xviix5po411jKBYDtYUGFM pRhFbqccMRaUV++2KMsAF25F2LuCHW3VDevJ2V6uMmJzh3s00fPwU9ucjrZ1mcq0 92uZEuSqzZTaGNBSGUim9hcpZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkmtzDH MS1NSgq6gTumRzM9Ngm9MB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSR9QAj8fZtI8NhuKZcFMBr+sAIgwnXm7JdxfAmm2Rygo0CAUDjOdM u587ZisuuK26ft6h3i/G3Nay0VyJ8U1laxfzWXBqvs8Pz2OapyXmyIA9yx5AO7rY KfFFEvYBzOJhlFbrVQy/rwebE/Yqurb2LnyDL7+gYu6+NEaqK9wPiWjNIw14R8ZM cpbCGwHvVItpFk5HOAMd/iBUSOctnob2kzlEZCAvtswwBJz8YmHqa04qS01GeaNb Z0aHFDjKIubZNAOYt9wVmnGkotL7c/ZMS4iBGiYpmjms0U1OXKSkXZad4s9fTNmV cI3XgFJ6ycWhhAWwJrr4On0jzho80nqM -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:11 2025 by rpki-client