$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: uvOo9OWSqUUY4LZUmECbCyVF9eoRG18HpBOxs+eldL4= Subject key identifier: 81:4A:97:7A:16:1A:7F:D2:0A:2E:80:31:4E:63:5B:1B:59:54:A9:45 Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: EE Signing time: Wed 03 Sep 2025 05:47:49 +0000 Manifest this update: Wed 03 Sep 2025 05:47:48 +0000 Manifest next update: Wed 10 Sep 2025 05:47:48 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: EIkQBfDVxB9MfHzovx682Z2g0f0piUEOkBSYggJ52Vg=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: YulPvT0hM25YZIDv5KjG+XciSXVC4OQirSgi0X2f6Hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091, serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Sep 3 05:47:48 2025 GMT Not After : Sep 10 05:47:48 2025 GMT Subject: CN=68b7d684-7af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5f:b4:db:bc:61:b8:92:90:35:3e:a1:6e:bd: 07:15:8a:d2:13:5d:9f:a1:30:50:f7:a0:66:d5:3d: 06:3e:40:f3:00:b1:7e:51:22:82:a7:fd:75:48:36: 11:90:de:69:10:c0:93:fc:a9:a9:aa:82:49:05:6a: ba:14:5d:eb:74:01:59:85:62:7c:76:e6:b0:1c:0d: c7:ff:d3:9d:ee:2f:a4:b4:9d:14:d6:5f:83:31:9f: 13:17:74:95:ab:ad:42:26:7a:b6:43:48:b3:13:3b: a2:ce:88:ec:91:bf:e0:7f:fd:2b:87:d3:92:38:4d: 44:47:83:2a:96:e2:65:4d:8e:6d:9b:4d:61:10:07: 51:f0:12:9f:7e:72:24:89:12:5f:cc:83:bf:8b:8a: 1c:eb:74:56:b6:9f:09:58:a9:a3:93:34:44:0a:05: 4c:07:b6:ca:d6:0a:0d:2c:0b:81:5d:23:92:c8:be: 1e:b2:c5:ce:52:13:39:3d:f9:f8:ba:46:d7:b6:2f: fa:f0:c8:3b:8e:1c:d5:9c:6f:a5:da:3f:59:b0:07: 3a:51:79:17:02:98:61:ee:d2:23:fd:42:64:93:fb: 13:9d:6a:15:33:ee:46:fa:56:65:fc:1b:25:32:4a: 51:aa:bc:78:5f:97:19:e7:5c:b8:5c:fb:2f:b8:5a: 7e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:4A:97:7A:16:1A:7F:D2:0A:2E:80:31:4E:63:5B:1B:59:54:A9:45 X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:44:8a:13:07:2d:ef:75:f5:ca:77:58:63:19:57:0d:0d:44: f6:63:dc:07:cd:bd:fa:7f:e6:f0:f5:ea:7e:a5:61:24:d6:02: 4c:45:fa:18:ac:2e:8c:98:7f:74:69:cf:ef:09:c4:89:0c:55: 52:1b:6b:cc:e0:8a:f0:20:a4:67:8c:ea:1c:7f:dc:cb:a3:da: 14:ea:3a:17:49:9a:a2:90:c1:73:3b:c6:4f:6b:59:79:63:d4: 2d:df:e8:6e:81:9b:00:71:c0:32:27:46:3c:b2:91:e1:d6:a3: c6:16:4e:cc:75:1c:ec:36:4a:70:0b:ff:4c:91:f0:24:21:8e: f4:19:a5:4f:b9:94:dc:6e:1c:2b:16:2e:d7:16:a9:76:bd:d5: e6:b5:91:e8:84:5d:79:8d:2b:ad:ff:34:14:23:bf:09:3f:06: 39:94:79:43:94:98:66:1c:da:a9:34:d8:62:06:b3:69:c2:44: 86:11:df:c8:a7:d8:07:17:c8:61:76:6e:8a:9b:2f:9b:b5:fb: e9:79:d7:97:28:ab:20:f4:ce:4a:d5:d6:e5:db:32:01:8c:7b: 13:30:71:d3:05:cb:14:f7:2a:92:a1:f0:92:0b:13:41:85:fc: 59:23:00:1b:d3:f8:e2:5d:6d:d0:5b:91:69:87:11:c0:8f:33: 42:b3:51:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQwOTExMTAvBgNVBAUTKDgzQzkwMTUxQkUxNzgyMTRGQzE2NzU4MzM0RDNCNkQ1 Mjc3QTNDQkYwHhcNMjUwOTAzMDU0NzQ4WhcNMjUwOTEwMDU0NzQ4WjAYMRYwFAYD VQQDEw02OGI3ZDY4NC03YWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1+027xhuJKQNT6hbr0HFYrSE12foTBQ96Bm1T0GPkDzALF+USKCp/11SDYR kN5pEMCT/KmpqoJJBWq6FF3rdAFZhWJ8duawHA3H/9Od7i+ktJ0U1l+DMZ8TF3SV q61CJnq2Q0izEzuizojskb/gf/0rh9OSOE1ER4MqluJlTY5tm01hEAdR8BKffnIk iRJfzIO/i4oc63RWtp8JWKmjkzRECgVMB7bK1goNLAuBXSOSyL4essXOUhM5Pfn4 ukbXti/68Mg7jhzVnG+l2j9ZsAc6UXkXAphh7tIj/UJkk/sTnWoVM+5G+lZl/Bsl MkpRqrx4X5cZ51y4XPsvuFp+tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIFKl3oW Gn/SCi6AMU5jWxtZVKlFMB8GA1UdIwQYMBaAFIPJAVG+F4IU/BZ1gzTTttUnejy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDA5MS81QTExNkJBQTFE OUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdoVDhGbldETk5PMjFTZDZQ TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDA5MS81QTExNkJBQTFEOUQxMUVGQTEwRjJEM0FDNEY5QUUwMi9nOGtCVWI0WGdo VDhGbldETk5PMjFTZDZQTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7RIoTBy3vdfXKd1hjGVcNDUT2Y9wHzb36f+bw9ep+pWEk1gJMRfoY rC6MmH90ac/vCcSJDFVSG2vM4IrwIKRnjOocf9zLo9oU6joXSZqikMFzO8ZPa1l5 Y9Qt3+hugZsAccAyJ0Y8spHh1qPGFk7MdRzsNkpwC/9MkfAkIY70GaVPuZTcbhwr Fi7XFql2vdXmtZHohF15jSut/zQUI78JPwY5lHlDlJhmHNqpNNhiBrNpwkSGEd/I p9gHF8hhdm6Kmy+btfvpedeXKKsg9M5K1dbl2zIBjHsTMHHTBcsU9yqSofCSCxNB hfxZIwAb0/jiXW3QW5FphxHAjzNCs1E3 -----END CERTIFICATE-----Generated at Thu Sep 4 13:58:37 2025 by rpki-client