$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: 8BkW+sIrGbMFfaKX4lA4DUTcSk0stcDNVCD+U43d3UU= Subject key identifier: CD:EA:0E:6D:FE:35:E5:04:DF:8D:E0:02:44:04:81:8B:49:9E:88:AE Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0993 Signing time: Sun 24 Aug 2025 20:06:19 +0000 Manifest this update: Sun 24 Aug 2025 20:06:18 +0000 Manifest next update: Sun 31 Aug 2025 20:06:18 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: jBpzKIy3KpGnkOdDPBVXnuEk9jwmNw7ZPv4GVZs6a4g=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: 6TUVFO2Ivu/tY1JvgLaKV+3n0wexlzOCwMKMpOyQlPA=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2466 (0x9a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Aug 24 20:06:18 2025 GMT Not After : Aug 31 20:06:18 2025 GMT Subject: CN=68ab70bb-c08f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:a4:a3:bc:b6:1b:6c:23:d3:fd:e3:e0:96:f9: be:81:c7:04:38:ab:fa:f0:0d:78:cd:bb:6b:87:74: 0d:e6:9e:f6:62:d7:83:33:73:43:68:df:2b:84:0b: 62:dd:cf:15:4b:5b:8b:03:f0:b6:26:53:17:7d:d8: c9:92:fe:fb:13:4d:85:71:69:fc:39:d6:c5:5b:67: 2e:c9:60:50:d0:b6:7d:32:5f:91:7f:d1:5d:46:6a: 40:2c:1b:a8:26:b7:de:0c:ce:e0:4a:1f:d4:06:b4: c8:75:1c:15:55:4e:51:79:9c:be:6d:9f:77:93:90: b6:b0:b7:75:e1:b9:60:9c:df:ae:29:92:3f:b9:cb: 6f:7a:07:18:2f:6c:fb:99:0a:6d:b7:26:f3:de:94: b0:a5:97:98:1d:ad:d9:8a:60:63:91:56:75:38:92: f1:fc:8e:17:9a:c7:bb:9f:93:57:88:4b:86:bd:3e: 1f:b3:16:98:7e:74:37:ac:07:64:ac:62:e1:e2:ad: 89:87:ec:5c:61:8c:66:19:50:75:ef:9f:2a:b2:8d: 19:05:9b:a0:36:1e:02:dc:bb:4c:d1:a5:cb:0f:2d: 36:65:47:e9:44:56:ca:c3:d6:ad:ca:08:2c:07:f3: bc:68:9b:d6:51:0f:98:72:76:1c:33:1c:a4:e6:9a: 9f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:EA:0E:6D:FE:35:E5:04:DF:8D:E0:02:44:04:81:8B:49:9E:88:AE X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:70:ab:b9:e4:b5:3a:ad:21:63:9e:ed:27:be:bc:41:2c:24: b2:86:2d:3a:18:34:b9:46:ba:89:7c:b7:6c:e3:c9:ea:2b:10: c3:c4:77:e6:95:23:94:1e:bf:35:61:f6:31:d6:ab:7a:94:5c: 36:e2:cb:4f:5f:2d:e9:96:9b:c8:81:94:28:25:eb:f6:8f:ca: 08:d3:5d:5f:eb:3e:6d:0a:28:37:7f:74:47:3d:f8:63:15:53: 16:db:23:d5:d7:a3:c9:5a:ad:e2:e1:6d:16:9d:7d:66:50:2d: ec:8e:c9:0e:a0:19:9f:7c:6f:95:41:c6:e0:0d:ed:85:b0:25: 44:70:db:70:c1:13:55:01:a1:d9:97:9c:98:25:7d:a8:23:51: 1f:aa:53:df:62:fb:6b:35:5a:5c:b8:7f:93:9b:47:99:3c:59: 12:23:55:49:7a:c7:e0:7d:d1:cb:da:cd:89:60:ad:9f:f6:b5: 08:95:db:14:52:52:a2:43:d5:ee:f3:aa:fc:17:83:24:65:9a: 19:41:28:e1:47:aa:cb:79:a5:7f:4b:50:4a:3e:5e:4d:c8:af: f9:d4:a7:0c:71:a0:d1:a3:80:85:e7:f9:04:02:90:39:3a:c3: 6d:f5:1f:34:e3:c3:9e:6c:9b:3c:36:d3:2d:c9:0f:c1:c7:8a: 00:df:f9:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUwODI0MjAwNjE4WhcNMjUwODMxMjAwNjE4WjAYMRYwFAYD VQQDEw02OGFiNzBiYi1jMDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/qSjvLYbbCPT/ePglvm+gccEOKv68A14zbtrh3QN5p72YteDM3NDaN8rhAti 3c8VS1uLA/C2JlMXfdjJkv77E02FcWn8OdbFW2cuyWBQ0LZ9Ml+Rf9FdRmpALBuo JrfeDM7gSh/UBrTIdRwVVU5ReZy+bZ93k5C2sLd14blgnN+uKZI/uctvegcYL2z7 mQpttybz3pSwpZeYHa3ZimBjkVZ1OJLx/I4Xmse7n5NXiEuGvT4fsxaYfnQ3rAdk rGLh4q2Jh+xcYYxmGVB1758qso0ZBZugNh4C3LtM0aXLDy02ZUfpRFbKw9atyggs B/O8aJvWUQ+YcnYcMxyk5pqfowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3qDm3+ NeUE343gAkQEgYtJnoiuMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZcKu55LU6rSFjnu0nvrxBLCSyhi06GDS5RrqJfLds48nqKxDDxHfm lSOUHr81YfYx1qt6lFw24stPXy3plpvIgZQoJev2j8oI011f6z5tCig3f3RHPfhj FVMW2yPV16PJWq3i4W0WnX1mUC3sjskOoBmffG+VQcbgDe2FsCVEcNtwwRNVAaHZ l5yYJX2oI1EfqlPfYvtrNVpcuH+Tm0eZPFkSI1VJesfgfdHL2s2JYK2f9rUIldsU UlKiQ9Xu86r8F4MkZZoZQSjhR6rLeaV/S1BKPl5NyK/51KcMcaDRo4CF5/kEApA5 OsNt9R8048OebJs8NtMtyQ/Bx4oA3/mv -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:11 2025 by rpki-client